Java tutorial
/* * Copyright 2004 - 2013 Wayne Grant * 2013 - 2019 Kai Kramer * * This file is part of KeyStore Explorer. * * KeyStore Explorer is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * KeyStore Explorer is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with KeyStore Explorer. If not, see <http://www.gnu.org/licenses/>. */ package org.kse.gui.dialogs.importexport; import java.awt.BorderLayout; import java.awt.Dialog; import java.awt.GridBagConstraints; import java.awt.GridBagLayout; import java.awt.Insets; import java.awt.event.ActionEvent; import java.awt.event.ActionListener; import java.awt.event.ItemEvent; import java.awt.event.ItemListener; import java.awt.event.KeyEvent; import java.awt.event.WindowAdapter; import java.awt.event.WindowEvent; import java.io.File; import java.io.FileNotFoundException; import java.security.PrivateKey; import java.security.cert.Certificate; import java.security.cert.X509Certificate; import java.text.MessageFormat; import java.util.ArrayList; import java.util.ResourceBundle; import javax.swing.AbstractAction; import javax.swing.JButton; import javax.swing.JCheckBox; import javax.swing.JComponent; import javax.swing.JFileChooser; import javax.swing.JFrame; import javax.swing.JLabel; import javax.swing.JOptionPane; import javax.swing.JPanel; import javax.swing.JPasswordField; import javax.swing.JTextField; import javax.swing.KeyStroke; import javax.swing.border.CompoundBorder; import javax.swing.border.EmptyBorder; import javax.swing.border.EtchedBorder; import org.apache.commons.io.FileUtils; import org.kse.crypto.CryptoException; import org.kse.crypto.Password; import org.kse.crypto.keypair.KeyPairUtil; import org.kse.crypto.privatekey.MsPvkUtil; import org.kse.crypto.privatekey.PrivateKeyEncryptedException; import org.kse.crypto.privatekey.PrivateKeyUnencryptedException; import org.kse.crypto.x509.X509CertUtil; import org.kse.gui.CurrentDirectory; import org.kse.gui.CursorUtil; import org.kse.gui.FileChooserFactory; import org.kse.gui.JEscDialog; import org.kse.gui.PlatformUtil; import org.kse.gui.dialogs.DViewCertificate; import org.kse.gui.dialogs.DViewPrivateKey; import org.kse.gui.error.DError; import org.kse.gui.error.DProblem; import org.kse.gui.error.Problem; /** * Dialog that allows the user to pick a PVK Private Key file and a certificate * file to import as a key pair. * */ public class DImportKeyPairPvk extends JEscDialog { private static final long serialVersionUID = 1L; private static ResourceBundle res = ResourceBundle.getBundle("org/kse/gui/dialogs/importexport/resources"); private static final String CANCEL_KEY = "CANCEL_KEY"; private JPanel jpKeyPair; private JLabel jlEncrypted; private JCheckBox jcbEncrypted; private JLabel jlPassword; private JPasswordField jpfPassword; private JLabel jlPrivateKey; private JTextField jtfPrivateKeyPath; private JButton jbPrivateKeyBrowse; private JButton jbPrivateKeyDetails; private JLabel jlCertificate; private JTextField jtfCertificatePath; private JButton jbCertificateBrowse; private JButton jbCertificateDetails; private JPanel jpButtons; private JButton jbImport; private JButton jbCancel; private PrivateKey privateKey; private Certificate[] certificateChain; /** * Creates a new DImportKeyPairPvk dialog. * * @param parent * The parent frame */ public DImportKeyPairPvk(JFrame parent) { super(parent, Dialog.ModalityType.DOCUMENT_MODAL); initComponents(); } private void initComponents() { GridBagConstraints gbcLbl = new GridBagConstraints(); gbcLbl.gridx = 0; gbcLbl.gridwidth = 3; gbcLbl.gridheight = 1; gbcLbl.insets = new Insets(5, 5, 5, 5); gbcLbl.anchor = GridBagConstraints.EAST; GridBagConstraints gbcEdCtrl = new GridBagConstraints(); gbcEdCtrl.gridx = 3; gbcEdCtrl.gridwidth = 3; gbcEdCtrl.gridheight = 1; gbcEdCtrl.insets = new Insets(5, 5, 5, 5); gbcEdCtrl.anchor = GridBagConstraints.WEST; jlEncrypted = new JLabel(res.getString("DImportKeyPairPvk.jlEncrypted.text")); GridBagConstraints gbc_jlEncrypted = (GridBagConstraints) gbcLbl.clone(); gbc_jlEncrypted.gridy = 0; jcbEncrypted = new JCheckBox(); jcbEncrypted.setSelected(true); jcbEncrypted.setToolTipText(res.getString("DImportKeyPairPvk.jcbEncrypted.tooltip")); GridBagConstraints gbc_jcbEncrypted = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jcbEncrypted.gridy = 0; jlPassword = new JLabel(res.getString("DImportKeyPairPvk.jlPassword.text")); GridBagConstraints gbc_jlPassword = (GridBagConstraints) gbcLbl.clone(); gbc_jlPassword.gridy = 1; jpfPassword = new JPasswordField(15); jpfPassword.setToolTipText(res.getString("DImportKeyPairPvk.jpfPassword.tooltip")); GridBagConstraints gbc_jpfPassword = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jpfPassword.gridy = 1; jlPrivateKey = new JLabel(res.getString("DImportKeyPairPvk.jlPrivateKey.text")); GridBagConstraints gbc_jlPrivateKey = (GridBagConstraints) gbcLbl.clone(); gbc_jlPrivateKey.gridy = 2; jtfPrivateKeyPath = new JTextField(30); jtfPrivateKeyPath.setToolTipText(res.getString("DImportKeyPairPvk.jtfPrivateKeyPath.tooltip")); GridBagConstraints gbc_jtfPrivateKeyPath = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jtfPrivateKeyPath.gridy = 2; gbc_jtfPrivateKeyPath.gridwidth = 6; jbPrivateKeyBrowse = new JButton(res.getString("DImportKeyPairPvk.jbPrivateKeyBrowse.text")); PlatformUtil.setMnemonic(jbPrivateKeyBrowse, res.getString("DImportKeyPairPvk.jbPrivateKeyBrowse.mnemonic").charAt(0)); jbPrivateKeyBrowse.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { try { CursorUtil.setCursorBusy(DImportKeyPairPvk.this); privateKeyBrowsePressed(); } finally { CursorUtil.setCursorFree(DImportKeyPairPvk.this); } } }); jbPrivateKeyBrowse.setToolTipText(res.getString("DImportKeyPairPvk.jbPrivateKeyBrowse.tooltip")); GridBagConstraints gbc_jbPrivateKeyBrowse = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jbPrivateKeyBrowse.gridy = 2; gbc_jbPrivateKeyBrowse.gridx = 9; jbPrivateKeyDetails = new JButton(res.getString("DImportKeyPairPvk.jbPrivateKeyDetails.text")); jbPrivateKeyDetails.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { try { CursorUtil.setCursorBusy(DImportKeyPairPvk.this); privateKeyDetailsPressed(); } finally { CursorUtil.setCursorFree(DImportKeyPairPvk.this); } } }); PlatformUtil.setMnemonic(jbPrivateKeyDetails, res.getString("DImportKeyPairPvk.jbPrivateKeyDetails.mnemonic").charAt(0)); jbPrivateKeyDetails.setToolTipText(res.getString("DImportKeyPairPvk.jbPrivateKeyDetails.tooltip")); GridBagConstraints gbc_jbPrivateKeyDetails = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jbPrivateKeyDetails.gridy = 2; gbc_jbPrivateKeyDetails.gridx = 12; jlCertificate = new JLabel(res.getString("DImportKeyPairPvk.jlCertificate.text")); GridBagConstraints gbc_jlCertificate = (GridBagConstraints) gbcLbl.clone(); gbc_jlCertificate.gridy = 3; jtfCertificatePath = new JTextField(30); jtfCertificatePath.setToolTipText(res.getString("DImportKeyPairPvk.jtfCertificatePath.tooltip")); GridBagConstraints gbc_jtfCertificatePath = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jtfCertificatePath.gridy = 3; gbc_jtfCertificatePath.gridwidth = 6; jbCertificateBrowse = new JButton(res.getString("DImportKeyPairPvk.jbCertificateBrowse.text")); jbCertificateBrowse.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { try { CursorUtil.setCursorBusy(DImportKeyPairPvk.this); certificateBrowsePressed(); } finally { CursorUtil.setCursorFree(DImportKeyPairPvk.this); } } }); PlatformUtil.setMnemonic(jbCertificateBrowse, res.getString("DImportKeyPairPvk.jbCertificateBrowse.mnemonic").charAt(0)); jbCertificateBrowse.setToolTipText(res.getString("DImportKeyPairPvk.jbCertificateBrowse.tooltip")); GridBagConstraints gbc_jbCertificateBrowse = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jbCertificateBrowse.gridy = 3; gbc_jbCertificateBrowse.gridx = 9; jbCertificateDetails = new JButton(res.getString("DImportKeyPairPvk.jbCertificateDetails.text")); jbCertificateDetails.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { try { CursorUtil.setCursorBusy(DImportKeyPairPvk.this); certificateDetailsPressed(); } finally { CursorUtil.setCursorFree(DImportKeyPairPvk.this); } } }); PlatformUtil.setMnemonic(jbCertificateDetails, res.getString("DImportKeyPairPvk.jbCertificateDetails.mnemonic").charAt(0)); jbCertificateDetails.setToolTipText(res.getString("DImportKeyPairPvk.jbCertificateDetails.tooltip")); GridBagConstraints gbc_jbCertificateDetails = (GridBagConstraints) gbcEdCtrl.clone(); gbc_jbCertificateDetails.gridy = 3; gbc_jbCertificateDetails.gridx = 12; jpKeyPair = new JPanel(new GridBagLayout()); jpKeyPair.setBorder(new CompoundBorder(new CompoundBorder(new EmptyBorder(5, 5, 5, 5), new EtchedBorder()), new EmptyBorder(5, 5, 5, 5))); jpKeyPair.add(jlEncrypted, gbc_jlEncrypted); jpKeyPair.add(jcbEncrypted, gbc_jcbEncrypted); jpKeyPair.add(jlPassword, gbc_jlPassword); jpKeyPair.add(jpfPassword, gbc_jpfPassword); jpKeyPair.add(jlPrivateKey, gbc_jlPrivateKey); jpKeyPair.add(jtfPrivateKeyPath, gbc_jtfPrivateKeyPath); jpKeyPair.add(jbPrivateKeyBrowse, gbc_jbPrivateKeyBrowse); jpKeyPair.add(jbPrivateKeyDetails, gbc_jbPrivateKeyDetails); jpKeyPair.add(jlCertificate, gbc_jlCertificate); jpKeyPair.add(jtfCertificatePath, gbc_jtfCertificatePath); jpKeyPair.add(jbCertificateBrowse, gbc_jbCertificateBrowse); jpKeyPair.add(jbCertificateDetails, gbc_jbCertificateDetails); jcbEncrypted.addItemListener(new ItemListener() { @Override public void itemStateChanged(ItemEvent evt) { if (jcbEncrypted.isSelected()) { jpfPassword.setEnabled(true); } else { jpfPassword.setEnabled(false); jpfPassword.setText(""); } } }); jbImport = new JButton(res.getString("DImportKeyPairPvk.jbImport.text")); PlatformUtil.setMnemonic(jbImport, res.getString("DImportKeyPairPvk.jbImport.mnemonic").charAt(0)); jbImport.setToolTipText(res.getString("DImportKeyPairPvk.jbImport.tooltip")); jbImport.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { try { CursorUtil.setCursorBusy(DImportKeyPairPvk.this); importPressed(); } finally { CursorUtil.setCursorFree(DImportKeyPairPvk.this); } } }); jbCancel = new JButton(res.getString("DImportKeyPairPvk.jbCancel.text")); jbCancel.addActionListener(new ActionListener() { @Override public void actionPerformed(ActionEvent evt) { cancelPressed(); } }); jbCancel.getInputMap(JComponent.WHEN_IN_FOCUSED_WINDOW).put(KeyStroke.getKeyStroke(KeyEvent.VK_ESCAPE, 0), CANCEL_KEY); jbCancel.getActionMap().put(CANCEL_KEY, new AbstractAction() { private static final long serialVersionUID = 1L; @Override public void actionPerformed(ActionEvent evt) { cancelPressed(); } }); jpButtons = PlatformUtil.createDialogButtonPanel(jbImport, jbCancel); getContentPane().setLayout(new BorderLayout()); getContentPane().add(jpKeyPair, BorderLayout.CENTER); getContentPane().add(jpButtons, BorderLayout.SOUTH); addWindowListener(new WindowAdapter() { @Override public void windowClosing(WindowEvent evt) { closeDialog(); } }); setTitle(res.getString("DImportKeyPairPvk.Title")); setResizable(false); getRootPane().setDefaultButton(jbImport); pack(); } private void privateKeyBrowsePressed() { JFileChooser chooser = FileChooserFactory.getPvkFileChooser(); File currentFile = new File(jtfPrivateKeyPath.getText()); if ((currentFile.getParentFile() != null) && (currentFile.getParentFile().exists())) { chooser.setCurrentDirectory(currentFile.getParentFile()); } else { chooser.setCurrentDirectory(CurrentDirectory.get()); } chooser.setDialogTitle(res.getString("DImportKeyPairPvk.ChoosePrivateKey.Title")); chooser.setMultiSelectionEnabled(false); int rtnValue = chooser.showDialog(this, res.getString("DImportKeyPairPvk.PrivateKeyFileChooser.button")); if (rtnValue == JFileChooser.APPROVE_OPTION) { File chosenFile = chooser.getSelectedFile(); CurrentDirectory.updateForFile(chosenFile); jtfPrivateKeyPath.setText(chosenFile.toString()); jtfPrivateKeyPath.setCaretPosition(0); } } private void certificateBrowsePressed() { JFileChooser chooser = FileChooserFactory.getCertFileChooser(); File currentFile = new File(jtfCertificatePath.getText()); if ((currentFile.getParentFile() != null) && (currentFile.getParentFile().exists())) { chooser.setCurrentDirectory(currentFile.getParentFile()); } else { chooser.setCurrentDirectory(CurrentDirectory.get()); } chooser.setDialogTitle(res.getString("DImportKeyPairPvk.ChooseCertificate.Title")); chooser.setMultiSelectionEnabled(false); int rtnValue = chooser.showDialog(this, res.getString("DImportKeyPairPvk.CertificateFileChooser.button")); if (rtnValue == JFileChooser.APPROVE_OPTION) { File chosenFile = chooser.getSelectedFile(); CurrentDirectory.updateForFile(chosenFile); jtfCertificatePath.setText(chosenFile.toString()); jtfCertificatePath.setCaretPosition(0); } } private void privateKeyDetailsPressed() { try { String path = new File(jtfPrivateKeyPath.getText()).getName(); PrivateKey privateKey = loadPrivateKey(); if (privateKey != null) { DViewPrivateKey dViewPrivateKey = new DViewPrivateKey(this, MessageFormat.format(res.getString("DImportKeyPairPvk.ViewPrivateKeyDetails.Title"), path), privateKey); dViewPrivateKey.setLocationRelativeTo(this); dViewPrivateKey.setVisible(true); } } catch (CryptoException ex) { DError.displayError(this, ex); } } private PrivateKey loadPrivateKey() { String privateKeyPath = jtfPrivateKeyPath.getText().trim(); if (privateKeyPath.length() == 0) { JOptionPane.showMessageDialog(this, res.getString("DImportKeyPairPvk.PrivateKeyRequired.message"), getTitle(), JOptionPane.WARNING_MESSAGE); return null; } File privateKeyFile = new File(privateKeyPath); try { PrivateKey privateKey = null; byte[] pvkData = FileUtils.readFileToByteArray(privateKeyFile); if (!jcbEncrypted.isSelected()) { privateKey = MsPvkUtil.load(pvkData); } else { Password password = new Password(jpfPassword.getPassword()); privateKey = MsPvkUtil.loadEncrypted(pvkData, password); } return privateKey; } catch (PrivateKeyEncryptedException ex) { JOptionPane.showMessageDialog(this, MessageFormat .format(res.getString("DImportKeyPairPvk.PrivateKeyEncrypted.message"), privateKeyFile), getTitle(), JOptionPane.WARNING_MESSAGE); jcbEncrypted.setSelected(true); return null; } catch (PrivateKeyUnencryptedException ex) { JOptionPane.showMessageDialog(this, MessageFormat .format(res.getString("DImportKeyPairPvk.PrivateKeyNotEncrypted.message"), privateKeyFile), getTitle(), JOptionPane.WARNING_MESSAGE); jcbEncrypted.setSelected(false); return null; } catch (FileNotFoundException ex) { JOptionPane.showMessageDialog(this, MessageFormat.format(res.getString("DImportKeyPairPvk.NoReadFile.message"), privateKeyFile), getTitle(), JOptionPane.WARNING_MESSAGE); return null; } catch (Exception ex) { Problem problem = createLoadPvkProblem(ex, privateKeyFile); DProblem dProblem = new DProblem(this, res.getString("DImportKeyPairPvk.ProblemLoadingPvk.Title"), problem); dProblem.setLocationRelativeTo(this); dProblem.setVisible(true); return null; } } private Problem createLoadPvkProblem(Exception exception, File pvkFile) { String problemStr = null; ArrayList<String> causeList = new ArrayList<>(); if (jcbEncrypted.isSelected()) { problemStr = MessageFormat.format(res.getString("DImportKeyPairPvk.NoLoadEncryptedPvk.Problem"), pvkFile.getName()); causeList.add(res.getString("DImportKeyPairPvk.PasswordIncorrectPvk.Cause")); } else { problemStr = MessageFormat.format(res.getString("DImportKeyPairPvk.NoLoadUnencryptedPvk.Problem"), pvkFile.getName()); } causeList.add(res.getString("DImportKeyPairPvk.NotPvk.Cause")); causeList.add(res.getString("DImportKeyPairPvk.CorruptedPvk.Cause")); String[] causes = causeList.toArray(new String[causeList.size()]); Problem problem = new Problem(problemStr, causes, exception); return problem; } private void certificateDetailsPressed() { try { X509Certificate[] certs = loadCertificates(); if ((certs != null) && (certs.length != 0)) { String path = new File(jtfCertificatePath.getText()).getName(); DViewCertificate dViewCertificate = new DViewCertificate(this, MessageFormat.format(res.getString("DImportKeyPairPvk.ViewCertificateDetails.Title"), path), certs, null, DViewCertificate.NONE); dViewCertificate.setLocationRelativeTo(this); dViewCertificate.setVisible(true); } } catch (CryptoException ex) { DError.displayError(this, ex); } } private X509Certificate[] loadCertificates() { String certificatePath = jtfCertificatePath.getText().trim(); if (certificatePath.length() == 0) { JOptionPane.showMessageDialog(this, res.getString("DImportKeyPairPvk.CertificateRequired.message"), getTitle(), JOptionPane.WARNING_MESSAGE); return null; } File certificateFile = new File(certificatePath); try { byte[] certsBytes = FileUtils.readFileToByteArray(certificateFile); X509Certificate[] certs = X509CertUtil.loadCertificates(certsBytes); if (certs.length == 0) { JOptionPane.showMessageDialog(this, MessageFormat .format(res.getString("DImportKeyPairPvk.NoCertsFound.message"), certificateFile), getTitle(), JOptionPane.WARNING_MESSAGE); } return certs; } catch (FileNotFoundException ex) { JOptionPane.showMessageDialog(this, MessageFormat.format(res.getString("DImportKeyPairPvk.NoReadFile.message"), certificateFile), getTitle(), JOptionPane.WARNING_MESSAGE); return null; } catch (Exception ex) { Problem problem = createLoadCertsProblem(ex, certificateFile); DProblem dProblem = new DProblem(this, res.getString("DImportKeyPairPvk.ProblemLoadingCerts.Title"), problem); dProblem.setLocationRelativeTo(this); dProblem.setVisible(true); return null; } } private Problem createLoadCertsProblem(Exception exception, File certsFile) { String problemStr = MessageFormat.format(res.getString("DImportKeyPairPvk.NoLoadCerts.Problem"), certsFile.getName()); String[] causes = new String[] { res.getString("DImportKeyPairPvk.NotCerts.Cause"), res.getString("DImportKeyPairPvk.CorruptedCerts.Cause") }; Problem problem = new Problem(problemStr, causes, exception); return problem; } /** * Get the private part of the key pair chosen by the user for import. * * @return The private key or null if the user has not chosen a key pair */ public PrivateKey getPrivateKey() { return privateKey; } /** * Get the certificate chain part of the key pair chosen by the user for * import. * * @return The certificate chain or null if the user has not chosen a key * pair */ public Certificate[] getCertificateChain() { return certificateChain; } private void importPressed() { try { PrivateKey privateKey = loadPrivateKey(); if (privateKey == null) { return; } X509Certificate[] certs = loadCertificates(); if ((certs == null) || (certs.length == 0)) { return; } certs = X509CertUtil.orderX509CertChain(certs); if (!KeyPairUtil.validKeyPair(privateKey, certs[0].getPublicKey())) { JOptionPane.showMessageDialog(this, res.getString("DImportKeyPairPvk.KeyPairInvalid.message"), getTitle(), JOptionPane.WARNING_MESSAGE); return; } this.privateKey = privateKey; certificateChain = certs; closeDialog(); } catch (Exception ex) { DError.displayError(this, ex); } } private void cancelPressed() { closeDialog(); } private void closeDialog() { setVisible(false); dispose(); } }