// 
// Decompiled by Procyon v0.6.0
// 

package io.netty.handler.ssl;

import io.netty.util.internal.logging.InternalLoggerFactory;
import java.io.InputStreamReader;
import io.netty.util.CharsetUtil;
import java.io.FileNotFoundException;
import java.io.Reader;
import java.io.FileReader;
import org.bouncycastle.operator.OperatorCreationException;
import org.bouncycastle.pkcs.PKCSException;
import java.io.IOException;
import org.bouncycastle.operator.InputDecryptorProvider;
import org.bouncycastle.openssl.PEMDecryptorProvider;
import org.bouncycastle.openssl.jcajce.JceOpenSSLPKCS8DecryptorProviderBuilder;
import org.bouncycastle.pkcs.PKCS8EncryptedPrivateKeyInfo;
import org.bouncycastle.openssl.jcajce.JcePEMDecryptorProviderBuilder;
import org.bouncycastle.openssl.PEMEncryptedKeyPair;
import org.bouncycastle.openssl.PEMKeyPair;
import org.bouncycastle.asn1.pkcs.PrivateKeyInfo;
import org.bouncycastle.openssl.jcajce.JcaPEMKeyConverter;
import java.io.File;
import org.bouncycastle.openssl.PEMParser;
import io.netty.handler.ssl.util.BouncyCastleUtil;
import java.security.PrivateKey;
import java.io.InputStream;
import io.netty.util.internal.logging.InternalLogger;

final class BouncyCastlePemReader
{
    private static final InternalLogger logger;
    
    public static PrivateKey getPrivateKey(final InputStream keyInputStream, final String keyPassword) {
        if (!BouncyCastleUtil.isBcPkixAvailable()) {
            if (BouncyCastlePemReader.logger.isDebugEnabled()) {
                BouncyCastlePemReader.logger.debug("Bouncy castle provider is unavailable.", BouncyCastleUtil.unavailabilityCauseBcPkix());
            }
            return null;
        }
        try {
            final PEMParser parser = newParser(keyInputStream);
            return getPrivateKey(parser, keyPassword);
        }
        catch (final Exception e) {
            BouncyCastlePemReader.logger.debug("Unable to extract private key", e);
            return null;
        }
    }
    
    public static PrivateKey getPrivateKey(final File keyFile, final String keyPassword) {
        if (!BouncyCastleUtil.isBcPkixAvailable()) {
            if (BouncyCastlePemReader.logger.isDebugEnabled()) {
                BouncyCastlePemReader.logger.debug("Bouncy castle provider is unavailable.", BouncyCastleUtil.unavailabilityCauseBcPkix());
            }
            return null;
        }
        try {
            final PEMParser parser = newParser(keyFile);
            return getPrivateKey(parser, keyPassword);
        }
        catch (final Exception e) {
            BouncyCastlePemReader.logger.debug("Unable to extract private key", e);
            return null;
        }
    }
    
    private static JcaPEMKeyConverter newConverter() {
        return new JcaPEMKeyConverter().setProvider(BouncyCastleUtil.getBcProviderJce());
    }
    
    private static PrivateKey getPrivateKey(final PEMParser pemParser, final String keyPassword) throws IOException, PKCSException, OperatorCreationException {
        try {
            final JcaPEMKeyConverter converter = newConverter();
            PrivateKey pk = null;
            for (Object object = pemParser.readObject(); object != null && pk == null; object = pemParser.readObject()) {
                if (BouncyCastlePemReader.logger.isDebugEnabled()) {
                    BouncyCastlePemReader.logger.debug("Parsed PEM object of type {} and assume key is {}encrypted", object.getClass().getName(), (keyPassword == null) ? "not " : "");
                }
                if (keyPassword == null) {
                    if (object instanceof PrivateKeyInfo) {
                        pk = converter.getPrivateKey((PrivateKeyInfo)object);
                    }
                    else if (object instanceof PEMKeyPair) {
                        pk = converter.getKeyPair((PEMKeyPair)object).getPrivate();
                    }
                    else {
                        BouncyCastlePemReader.logger.debug("Unable to handle PEM object of type {} as a non encrypted key", object.getClass());
                    }
                }
                else if (object instanceof PEMEncryptedKeyPair) {
                    final PEMDecryptorProvider decProv = new JcePEMDecryptorProviderBuilder().setProvider(BouncyCastleUtil.getBcProviderJce()).build(keyPassword.toCharArray());
                    pk = converter.getKeyPair(((PEMEncryptedKeyPair)object).decryptKeyPair(decProv)).getPrivate();
                }
                else if (object instanceof PKCS8EncryptedPrivateKeyInfo) {
                    final InputDecryptorProvider pkcs8InputDecryptorProvider = new JceOpenSSLPKCS8DecryptorProviderBuilder().setProvider(BouncyCastleUtil.getBcProviderJce()).build(keyPassword.toCharArray());
                    pk = converter.getPrivateKey(((PKCS8EncryptedPrivateKeyInfo)object).decryptPrivateKeyInfo(pkcs8InputDecryptorProvider));
                }
                else {
                    BouncyCastlePemReader.logger.debug("Unable to handle PEM object of type {} as a encrypted key", object.getClass());
                }
                if (pk == null) {}
            }
            if (pk == null && BouncyCastlePemReader.logger.isDebugEnabled()) {
                BouncyCastlePemReader.logger.debug("No key found");
            }
            return pk;
        }
        finally {
            if (pemParser != null) {
                try {
                    pemParser.close();
                }
                catch (final Exception exception) {
                    BouncyCastlePemReader.logger.debug("Failed closing pem parser", exception);
                }
            }
        }
    }
    
    private static PEMParser newParser(final File keyFile) throws FileNotFoundException {
        return new PEMParser(new FileReader(keyFile));
    }
    
    private static PEMParser newParser(final InputStream keyInputStream) {
        return new PEMParser(new InputStreamReader(keyInputStream, CharsetUtil.US_ASCII));
    }
    
    private BouncyCastlePemReader() {
    }
    
    static {
        logger = InternalLoggerFactory.getInstance(BouncyCastlePemReader.class);
    }
}