Package tahrir.io.crypto

Source Code of tahrir.io.crypto.TrCrypto

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
package tahrir.io.crypto;

import com.google.common.io.BaseEncoding;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import tahrir.TrConstants;
import tahrir.io.serialization.TrSerializableException;
import tahrir.io.serialization.TrSerializer;
import tahrir.tools.ByteArraySegment;
import tahrir.tools.ByteArraySegment.ByteArraySegmentBuilder;
import tahrir.tools.Tuple2;

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import java.io.ByteArrayOutputStream;
import java.io.DataInputStream;
import java.io.DataOutputStream;
import java.security.*;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;

/**
* A simple implementation of the RSA algorithm
*
* @author Ian Clarke <ian.clarke@gmail.com>
*/
public class TrCrypto {
  static SecureRandom sRand = new SecureRandom();

  static {
    Security.addProvider(new BouncyCastleProvider());
  }

  public static Tuple2<RSAPublicKey, RSAPrivateKey> createRsaKeyPair() {
    try {
      final KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
      keyGen.initialize(2048);
      final KeyPair key = keyGen.generateKeyPair();
      return Tuple2.of((RSAPublicKey) key.getPublic(), (RSAPrivateKey) key.getPrivate());
    } catch (final NoSuchAlgorithmException e) {
      throw new RuntimeException(e);
    }
  }

  public static TrSymKey createAesKey() {
    KeyGenerator kgen;
    try {
      kgen = KeyGenerator.getInstance("AES");
      kgen.init(128);
      final SecretKey skey = kgen.generateKey();
      return new TrSymKey(new ByteArraySegment(skey.getEncoded()));
    } catch (final NoSuchAlgorithmException e) {
      throw new RuntimeException(e);
    }
  }

  private static Cipher getRSACipher() {
    try {
      return Cipher.getInstance("RSA/None/NoPadding", "BC");
    } catch (final NoSuchAlgorithmException e) {
      throw new RuntimeException(e);
    } catch (final NoSuchProviderException e) {
      throw new RuntimeException(e);
    } catch (final NoSuchPaddingException e) {
      throw new RuntimeException(e);
    }
  }

  public static String toBase64(final RSAPublicKey pubKey) {
    return BaseEncoding.base64().encode(pubKey.getEncoded());
  }

    public static String toBase64(final RSAPrivateKey privateKey) {
       return BaseEncoding.base64().encode(privateKey.getEncoded());
     }

  public static RSAPublicKey decodeBase64PublicKey(final String base64String) {
    final byte[] bytes = BaseEncoding.base64().decode(base64String);
    try {
      return (RSAPublicKey) KeyFactory.getInstance("RSA").generatePublic(new X509EncodedKeySpec(bytes));
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }

    public static RSAPrivateKey decodeBase64PrivateKey(final String base64String) {
        final byte[] bytes = BaseEncoding.base64().decode(base64String);
        try {
            return (RSAPrivateKey) KeyFactory.getInstance("RSA").generatePrivate(new PKCS8EncodedKeySpec(bytes));
        } catch (final Exception e) {
            throw new RuntimeException(e);
        }
    }

  public static TrSignature sign(final Object toSign, final RSAPrivateKey privKey) throws TrSerializableException {
    final ByteArrayOutputStream baos = new ByteArrayOutputStream(TrConstants.DEFAULT_BAOS_SIZE);
    final DataOutputStream dos = new DataOutputStream(baos);
    try {
      TrSerializer.serializeTo(toSign, dos);
      dos.flush();
      final Signature signature = Signature.getInstance("SHA256withRSA", "BC");
      signature.initSign(privKey);
      signature.update(baos.toByteArray());
      return new TrSignature(signature.sign());
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }

  public static boolean verify(final TrSignature signature, final Object toVerify, final RSAPublicKey pubKey)
      throws TrSerializableException {
    // TODO: We serialize this object and then throw the result away, which
    // is probably wasteful as frequently the object will be serialized
    // elsewhere
    final ByteArrayOutputStream baos = new ByteArrayOutputStream(TrConstants.DEFAULT_BAOS_SIZE);
    final DataOutputStream dos = new DataOutputStream(baos);
    try {
      TrSerializer.serializeTo(toVerify, dos);
      final Signature sig = Signature.getInstance("SHA256withRSA", "BC");
      sig.initVerify(pubKey);
      sig.update(baos.toByteArray());
      return sig.verify(signature.signature);
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }

  }

  public static <T> TrPPKEncrypted<T> encrypt(final T plainText, final RSAPublicKey pubKey)
      throws TrSerializableException {
    // TODO: Lots of reading from and writing to byte arrays, inefficient
    final ByteArrayOutputStream serializedPlaintext = new ByteArrayOutputStream(TrConstants.DEFAULT_BAOS_SIZE);
    final ByteArraySegmentBuilder dos = ByteArraySegment.builder();
    try {
      TrSerializer.serializeTo(plainText, dos);
      dos.flush();
      final TrSymKey aesKey = createAesKey();
      final ByteArraySegment aesEncrypted = aesKey.encrypt(dos.build());
      final Cipher cipher = getRSACipher();
      cipher.init(Cipher.ENCRYPT_MODE, pubKey);
      final byte[] rsaEncryptedAesKey = cipher.doFinal(aesKey.toBytes());
      return new TrPPKEncrypted<T>(rsaEncryptedAesKey, aesEncrypted);
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }

  public static ByteArraySegment encryptRaw(final ByteArraySegment pt, final RSAPublicKey pubKey) {
    final Cipher cipher = getRSACipher();
    try {
      cipher.init(Cipher.ENCRYPT_MODE, pubKey);
      return new ByteArraySegment(cipher.doFinal(pt.array, pt.offset, pt.length));
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }


  public static ByteArraySegment decryptRaw(final ByteArraySegment cipherText, final RSAPrivateKey privKey) {
    final Cipher cipher = getRSACipher();
    try {
      cipher.init(Cipher.DECRYPT_MODE, privKey);
      return new ByteArraySegment(cipher.doFinal(cipherText.array, cipherText.offset, cipherText.length));
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }

  public static <T> T decrypt(final Class<T> c, final TrPPKEncrypted<T> cipherText, final RSAPrivateKey privKey) {
    final Cipher cipher = getRSACipher();
    try {
      cipher.init(Cipher.DECRYPT_MODE, privKey);
      final TrSymKey aesKey = new TrSymKey(new ByteArraySegment(cipher.doFinal(cipherText.rsaEncryptedAesKey)));
      final ByteArraySegment serializedPlainTextByteArray = aesKey.decrypt(cipherText.aesCypherText);
      final DataInputStream dis = serializedPlainTextByteArray.toDataInputStream();
      return TrSerializer.deserializeFrom(c, dis);
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }
}
TOP

Related Classes of tahrir.io.crypto.TrCrypto

  • tahrir.tools.ByteArraySegment
  • tahrir.tools.ByteArraySegment.ByteArraySegmentBuilder
  • javax.crypto.KeyGenerator
  • java.security.spec.X509EncodedKeySpec
  • javax.crypto.SecretKey
  • java.security.spec.PKCS8EncodedKeySpec
  • java.io.DataInputStream
  • java.io.DataOutputStream
  • java.io.ByteArrayOutputStream
  • javax.crypto.Cipher
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.