Method: PkernelJce::KeyPair.public_key

Defined in:
lib/pkernel_jce/keypair.rb

.public_key(priv, opts = { }) ⇒ Object 



219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
 
# File 'lib/pkernel_jce/keypair.rb', line 219

def KeyPair.public_key(priv, opts = { })
  if priv.nil?
    raise PkernelJce::Error, "Cannot derive public key from nil key"
  else
    if priv.java_kind_of?(java.security.KeyPair)
      priv.getPublic
    elsif priv.java_kind_of?(java.security.PrivateKey)
      type = key_type(priv)
      case type
      when Pkernel::KeyPair::RSA_KEY_NAME
        java.security.KeyFactory.getInstance("RSA").generatePublic(java.security.spec.RSAPublicKeySpec.new(priv.modulus, priv.public_exponent))
      when Pkernel::KeyPair::DSA_KEY_NAME
        y = priv.params.g.to_java.modPow(priv.x, priv.params.p)
        spec = java.security.spec.DSAPublicKeySpec.new(y, priv.params.p, priv.params.q, priv.params.g)
        prov = PkernelJce::Provider.add_default
        java.security.KeyFactory.getInstance("DSA",prov).generatePublic(spec)
      when Pkernel::KeyPair::EC_KEY_NAME
        case priv
          # No way to recover public key using SUN provider yet
        #when Java::SunSecurityEc::ECPrivateKeyImpl
          # this uses BC also so add provider first
          #pProv = PkernelJce::Provider.add_default
          #curveName = priv.params.name.split(" ")[0]

          #ecSpec = org.bouncycastle.jcajce.provider.asymmetric.util.EC5Util.convertSpec(priv.params,false)
          #q = ecSpec.g.to_java.multiply(priv.s)
          #bcW = ecSpec.curve.decodePoint(q.getEncoded(false))
          ##w = org.bouncycastle.math.ec.ECPoint.new(bcW.getAffineXCoord.toBigInteger, bcW.getAffineYCoord.toBigInteger)
          #w = java.security.spec.ECPoint.new(bcW.getAffineXCoord.toBigInteger, bcW.getAffineYCoord.toBigInteger)
          #curveParam = org.bouncycastle.jce.ECNamedCurveTable.getParameterSpec(curveName)
          ##keySpec = org.bouncycastle.jce.spec.ECPublicKeySpec.new(w,curveParam)
          #keySpec = java.security.spec.ECPublicKeySpec.new(w,curveParam)

          ##java.security.KeyFactory.getInstance("EC",pProv).generatePublic(keySpec)

        when Java::OrgBouncycastleCryptoParams::ECPrivateKeyParameters, org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey
          d = priv.d
          q = priv.parameters.g.to_java.multiply(d)
          pubSpec = org.bouncycastle.jce.spec.ECPublicKeySpec.new(q, priv.parameters)
          prov = PkernelJce::Provider.add_default
          java.security.KeyFactory.getInstance("EC",prov).generatePublic(pubSpec)
        else
          raise PkernelJce::Error, "Haven't figure out how to convert #{priv.class} into public key yet..."
        end
        #p priv
        #p priv.methods.sort
        #d = priv.d;
        #q = priv.parameters.g.to_java.multiply(d);
        #pubSpec = org.bouncycastle.jce.spec.ECPublicKeySpec.new(q, priv.parameters);
        #prov = PkernelJce::Provider.add_default
        #java.security.KeyFactory.getInstance("EC",prov).generatePublic(pubSpec)
      else
      end
    elsif priv.java_kind_of?(java.security.PublicKey)
      priv
    elsif priv.java_kind_of?(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo)
      org.bouncycastle.openssl.jcajce.JcaPEMKeyConverter.new.getPublicKey(priv)
    elsif priv.java_kind_of?(org.bouncycastle.cert.X509CertificateHolder)
      org.bouncycastle.openssl.jcajce.JcaPEMKeyConverter.new.getPublicKey(priv.subject_public_key_info)
    elsif priv.java_kind_of?(java.security.cert.Certificate)
      priv.public_key 
    else
      raise PkernelJce::Error, "Unsupported key type '#{priv.class}' to convert to public key"
    end
  end
end