/*
* JBoss, Home of Professional Open Source.
* Copyright 2015, Red Hat, Inc., and individual contributors
* as indicated by the @author tags. See the copyright.txt file in the
* distribution for a full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.jboss.as.cli.util;
import java.security.GeneralSecurityException;
import java.security.MessageDigest;
import java.security.cert.X509Certificate;
import java.util.HashMap;
import java.util.Map;
import org.jboss.as.cli.CommandLineException;
import org.wildfly.security.util.ByteIterator;
public class FingerprintGenerator {
private static final String[] FINGERPRINT_ALGORITHMS = new String[] { "MD5", "SHA1" };
public static Map<String, String> generateFingerprints(final X509Certificate cert) throws CommandLineException {
Map<String, String> fingerprints = new HashMap<String, String>(FINGERPRINT_ALGORITHMS.length);
for (String current : FINGERPRINT_ALGORITHMS) {
try {
fingerprints.put(current, generateFingerPrint(current, cert.getEncoded()));
} catch (GeneralSecurityException e) {
throw new CommandLineException("Unable to generate fingerprint", e);
}
}
return fingerprints;
}
private static String generateFingerPrint(final String algorithm, final byte[] cert) throws GeneralSecurityException {
StringBuilder sb = new StringBuilder();
MessageDigest md = MessageDigest.getInstance(algorithm);
byte[] digested = md.digest(cert);
String hex = ByteIterator.ofBytes(digested).hexEncode().drainToString();
boolean started = false;
for (int i = 0; i < hex.length() - 1; i += 2) {
if (started) {
sb.append(":");
} else {
started = true;
}
sb.append(hex.substring(i, i + 2));
}
return sb.toString();
}
}