• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• apkfile-master
  • src
    • main
      • resources
        • org
          • apache
            • tika
              • mime
                • custom-mimetypes.xml
      • java
        • org
          • cf
            • apkfile
              • res
                • UnknownChunk.java
                • XmlCdataChunk.java
                • TypeSpecChunk.java
                • StringPoolChunk.java
                • LibraryChunk.java
                • XmlResourceMapChunk.java
                • ResourceTableChunk.java
                • ResourceValue.java
                • SerializableResource.java
                • ResourceConfiguration.java
                • TypeChunk.java
                • PackageChunk.java
                • XmlEndElementChunk.java
                • AttributeId.java
                • XmlStartElementChunk.java
                • ResourceIdentifier.java
                • PackageUtils.java
                • XmlNamespaceEndChunk.java
                • XmlNamespaceChunk.java
                • XmlNamespaceStartChunk.java
                • Chunk.java
                • ResourceEntry.java
                • XmlNodeChunk.java
                • ChunkWithChunks.java
                • ResourceFile.java
                • XmlChunk.java
                • XmlAttribute.java
                • ResourceString.java
              • utils
                • Utils.java
              • BlamerTest.java
              • dex
                • ShortMethodReference.java
                • DexFile.java
                • DexClass.java
                • DexFileFactory.java
                • DexMethod.java
              • Main.java
              • apk
                • Resources.java
                • Certificate.java
                • ApkFile.java
                • ApkFileFactory.java
                • JarFileExclusionStrategy.java
              • analysis
                • DexReaderEntropyCalculator.java
                • ComplexityAnalyzer.java
                • EntropyCalculatingInputStream.java
              • manifest
                • Service.java
                • Data.java
                • PermissionTree.java
                • IntentFilter.java
                • AndroidManifest.java
                • SupportsScreens.java
                • PermissionGroup.java
                • Utils.java
                • Screen.java
                • Receiver.java
                • Activity.java
                • UsesFeature.java
                • Metadata.java
                • GrantUriPermission.java
                • AndroidManifestParsingException.java
                • UsesLibrary.java
                • Permission.java
                • Component.java
                • UsesConfiguration.java
                • Provider.java
                • Instrumentation.java
                • Application.java
                • ActivityAlias.java
              • Main2.java
              • ParseException.java
  • gradle
    • wrapper
      • gradle-wrapper.properties
  • apkfile.iml
  • apkfile.ipr
  • proguard.txt
  • gradlew.bat
  • LICENSE
  • gradlew
  • build.gradle
  • README.md
  • .idea
    • codeStyles
      • codeStyleConfig.xml
      • Project.xml
    • compiler.xml
    • modules.xml
    • codeStyleSettings.xml
    • misc.xml
    • copyright
      • profiles_settings.xml
    • modules
      • apkfile.iml
      • apkfile_test.iml
      • apkfile_main.iml
  • .gitignore
  • .vscode
    • settings.json
  • doc

package org.cf.apkfile.apk;

import org.cf.apkfile.utils.Utils;

import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.CertificateFactory;
import java.security.cert.X509Certificate;
import java.util.Collection;
import java.util.LinkedList;

public class Certificate {

    private final Collection<ApkCertificate> apkCertificates;

    public Certificate(InputStream certStream) throws IOException, CertificateException, NoSuchAlgorithmException {
        apkCertificates = new LinkedList<>();
        byte[] certificateBytes = Utils.readFully(certStream);
        loadCertificates(certificateBytes);
    }

    public Collection<ApkCertificate> getCertificates() {
        return apkCertificates;
    }

    private void loadCertificates(byte[] certificateBytes) throws IOException, NoSuchAlgorithmException, CertificateException {
        CertificateFactory cf = CertificateFactory.getInstance("X.509");
        Collection<X509Certificate> certificates = (Collection<X509Certificate>) cf.generateCertificates(new ByteArrayInputStream(certificateBytes));
        for (X509Certificate certificate : certificates) {
            byte[] publicKeyHash = Utils.sha1(new ByteArrayInputStream(certificate.getPublicKey().getEncoded()));
            byte[] signatureHash = Utils.sha1(new ByteArrayInputStream(certificate.getSignature()));
            String subjectPrincipal = certificate.getSubjectX500Principal().getName();
            String issuerPrincipal = certificate.getIssuerX500Principal().getName();
            String publicKeyHashString = Utils.bytesToHex(publicKeyHash);
            String signatureHashString = Utils.bytesToHex(signatureHash);
            ApkCertificate apkCertificate = new ApkCertificate(subjectPrincipal, issuerPrincipal, publicKeyHashString, signatureHashString);
            apkCertificates.add(apkCertificate);
        }
    }

    public class ApkCertificate {
        private final String subjectPrincipal;
        private final String issuerPrincipal;
        private final String publicKeyHash;
        private final String signatureHash;

        ApkCertificate(String subjectPrincipal, String issuerPrincipal, String publicKeyHash, String signatureHash) {
            this.subjectPrincipal = subjectPrincipal;
            this.issuerPrincipal = issuerPrincipal;
            this.publicKeyHash = publicKeyHash;
            this.signatureHash = signatureHash;
        }

        public String getSubjectPrincipal() {
            return subjectPrincipal;
        }

        public String getIssuerPrincipal() {
            return issuerPrincipal;
        }

        public String getPublicKeyHash() {
            return publicKeyHash;
        }

        public String getSignatureHash() {
            return signatureHash;
        }
    }
}