ccrypto-java 0.1.0 → 0.2.0

data/lib/ccrypto/java/engines/compression_engine.rb

@@ -7,36 +7,11 @@ module Ccrypto
       include DataConversion
       include TR::CondUtils
 
-      include TeLogger::TeLogHelper
-
-      teLogger_tag :j_compression
-
       def initialize(*args, &block)
 
         @config = args.first
         raise CompressionError, "Compress Config is expected. Given #{@config}" if not @config.is_a?(Ccrypto::CompressionConfig)
         
-        #if block
-
-        #  outPath = block.call(:out_path)
-        #  if is_empty?(outPath)
-        #    outFile = block.call(:out_file) 
-        #    raise CompressionError, "OutputStream required" if not outFile.is_a?(java.io.OutputStream)
-        #    @out = outFile
-        #  else
-        #    @out = java.io.RandomAccessFile.new(java.io.File.new(outPath), "w")
-        #  end
-
-        #  @intBufSize = block.call(:int_buf_size) || 102400
-
-        #else
-        #  @intBufSize = 102400
-
-        #end
-
-        #@in = java.io.RandomAccessFile.new(java.nio.file.Files.createTempFile(nil,".zl").toFile, "rw")
-        #@inPtr = 0
-
         case @config.level
         when :best_compression
           teLogger.debug "Compression with best compression"
@@ -63,15 +38,13 @@ module Ccrypto
       def update(val)
         if val.length > 0
           teLogger.debug "Given #{val.length} bytes for compression"
-          #teLogger.debug "Write ready-to-compress data : #{val.length}"
-          #@in.write(to_java_bytes(val))
 
           @eng.setInput(to_java_bytes(val))
 
           @eng.finish
 
           baos = java.io.ByteArrayOutputStream.new
-          buf = ::Java::byte[102400].new
+          buf = ::Java::byte[READ_BUF_SIZE].new
           while not @eng.finished
             done = @eng.deflate(buf)
             @os.write(buf,0,done)
@@ -87,6 +60,12 @@ module Ccrypto
      
       end
 
+      private
+      def teLogger
+        Java.logger(:comp_eng)
+      end
+
+
     end
   end
 end

data/lib/ccrypto/java/engines/crystal_dilithium_engine.rb

@@ -0,0 +1,226 @@
+
+require_relative '../data_conversion'
+
+java_import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumParameters
+java_import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumKeyGenerationParameters
+java_import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumKeyPairGenerator
+java_import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumPublicKeyParameters
+java_import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumSigner
+
+module Ccrypto
+  module Java
+    
+    class CrystalDilithiumEngineError < StandardError; end
+
+    class CrystalDilithiumPublicKey < Ccrypto::PublicKey
+      include DataConversion
+      include TR::CondUtils
+
+      attr_reader :param
+      def initialize(pubKey, param)
+        super(pubKey)
+        @param = param
+      end
+
+      def to_bin
+        @native_pubKey.encoded
+      end
+
+      def encoded
+        to_bin
+      end
+
+      def self.to_key(params, bin)
+        bin = to_java_bytes(bin) if not bin.is_a?(::Java::byte[])
+
+        case params
+        when Ccrypto::CrystalDilithiumConfig
+          pa = params.provider_config[:params]
+        when Symbol
+          pa = CrystalDilithiumEngine.supported_configs[params]
+          if not_empty?(pa)
+            pa = pa.provider_config[:params]
+          end
+        else
+          raise CrystalDilithiumEngineError, "Unsupported params type '#{params.class}'"
+        end
+
+        raise CrystalDilithiumEngineError, "Unknown param '#{param}'" if is_empty?(pa)
+
+        pubKey = DilithiumPublicKeyParameters.new(pa, bin)
+        CrystalDilithiumPublicKey.new(pubKey, pa)
+      end
+
+      def equals?(pubKey)
+        if not @native_pubKey.nil?
+          case pubKey
+          when CrystalDilithiumPublicKey
+            @native_pubKey.encoded == pubKey.to_bin
+          else
+            logger.warn "Unmatched public key : (native) #{@native_pubKey} vs. (subject) #{pubKey}"
+            false
+          end
+        else
+          logger.warn "CrystalDilithiumPublicKey equals? returned false because native_pubKey is nil"
+          false
+        end
+      end
+      alias_method :key_equals?, :equals?
+
+    end # class CrystalDilithiumPublicKey
+
+    class CrystalDilithiumPrivateKey < Ccrypto::PrivateKey
+
+      attr_reader :param
+      def initialize(privKey, param)
+        super(privKey)
+        @param = param
+      end
+
+      def to_bin
+        @native_privKey.encoded
+      end
+
+      def self.to_key(params = {})
+        param = params[:param]
+        bcParam = CrystalDilithiumEngine.find_config(param)
+        bcPrivKey = org.bouncycastle.pqc.crypto.crystals.dilithium::DilithiumPrivateKeyParameters.new(bcParam.provider_config[:params], params[:rho].to_java_bytes, params[:k].to_java_bytes, params[:tr].to_java_bytes, params[:s1].to_java_bytes, params[:s2].to_java_bytes, params[:t0].to_java_bytes, params[:t1].to_java_bytes)
+        CrystalDilithiumPrivateKey.new(bcPrivKey, param)
+      end
+
+      def equals?(privKey)
+        if not @native_privKey.nil?
+          case privKey
+          when CrystalDilithiumPrivateKey
+            @native_privKey.encoded == privKey.to_bin
+          else
+            logger.warn "Unmatched private key : (native) #{@native_privKey} vs. (subject) #{privKey}"
+            false
+          end
+        else
+          logger.warn "ED25519PrivateKey equals? returned false because native_privKey is nil"
+          false
+        end
+      end
+      alias_method :key_equals?, :equals?
+
+    end # class CrystalDilithiumPrivateKey
+
+    # 
+    # Crystal-Dilithium mainly for data signing
+    #
+    class CrystalDilithiumKeyBundle
+      include Ccrypto::KeyBundle
+      include TR::CondUtils
+
+      def initialize(kp, param)
+        @nativeKeypair = kp
+        @param = param
+        raise KeypairEngineException, "Given keypair is nil" if @param.nil?
+      end
+
+      def public_key
+        if @_pubKey.nil?
+          @_pubKey = CrystalDilithiumPublicKey.new(@nativeKeypair.getPublic(), @param.param)
+        end
+        @_pubKey
+      end
+
+      def private_key
+        if @_privKey.nil?
+          @_privKey = CrystalDilithiumPrivateKey.new(@nativeKeypair.getPrivate(), @param.param)
+        end
+        @_privKey
+      end
+
+      def is_public_key_equal?(pubKey)
+        @nativeKeypair.getPublic().encoded == pubKey.encoded
+      end
+
+    end # class CrystalDilithiumKeyBundle
+
+    class CrystalDilithiumEngine
+      include DataConversion
+      include TR::CondUtils
+
+      def self.supported_params
+        supported_configs.keys
+      end
+
+      def self.supported_configs
+        if @supportedConfig.nil?
+          @supportedConfig = {}
+          {
+            dilithium2: DilithiumParameters::dilithium2,
+            dilithium3: DilithiumParameters::dilithium3,
+            dilithium5: DilithiumParameters::dilithium5,
+            dilithium2_aes: DilithiumParameters::dilithium2_aes,
+            dilithium3_aes: DilithiumParameters::dilithium3_aes,
+            dilithium5_aes: DilithiumParameters::dilithium5_aes,
+          }.each do |k,kp|
+            conf = Ccrypto::CrystalDilithiumConfig.new(k)
+            conf.provider_config = { params: kp.dup }
+            @supportedConfig[k] = conf
+          end
+        end 
+        @supportedConfig.freeze
+      end
+
+      def self.find_config(conf)
+        supported_configs.select { |k,v| k == conf }.first[1]
+      end
+
+      def self.logger
+        Ccrypto::Java.logger(:dilithium_engine)
+      end
+
+      def initialize(*args, &block)
+        @config = args.first
+        raise KeypairEngineException, "1st parameter must be a #{Ccrypto::KeypairConfig.class} object" if not @config.is_a?(Ccrypto::KeypairConfig)
+      end
+
+      def generate_keypair(&block)
+      
+        rand = java.security.SecureRandom.getInstanceStrong
+        kpg = DilithiumKeyPairGenerator.new
+        #logger.debug "CD config  : #{@config.inspect}"
+        #logger.debug "CD config  : #{DilithiumKeyGenerationParameters}"
+        #logger.debug "CD provider config  : #{@config.provider_config}"
+        #logger.debug "CD provider config params  : #{@config.provider_config[:params]}"
+        #logger.debug "CD provider config params  : #{DilithiumParameters::dilithium2}"
+        param = DilithiumKeyGenerationParameters.new(rand, @config.provider_config[:params])
+        logger.debug "CD param  : #{param.inspect}"
+        kpg.init(param)
+
+        CrystalDilithiumKeyBundle.new(kpg.generateKeyPair(), @config)
+
+      end
+
+      def sign(data, &block)
+
+        raise KeypairEngineException, "Keypair is required" if @config.keypair.nil?
+        raise KeypairEngineException, "Crystal Dilithium keypair is required. Given #{@config.keypair}" if not @config.keypair.is_a?(CrystalDilithiumKeyBundle)
+        kp = @config.keypair
+        
+        signer = DilithiumSigner.new
+        signer.init(true, kp.private_key.native)
+        signer.generateSignature(to_java_bytes(data))
+
+      end
+
+      def self.verify(pubKey, data, sign)
+        raise KeypairEngineException, "Given public key to verify is empty" if is_empty?(pubKey)
+        raise KeypairEngineException, "Given data to verify is empty" if is_empty?(data)
+        raise KeypairEngineException, "Given signature to verify is empty" if is_empty?(sign)
+
+        ver = DilithiumSigner.new
+        puts "verifying public key #{pubKey.inspect}"
+        ver.init(false, pubKey.native)
+
+        ver.verifySignature(to_java_bytes(data), to_java_bytes(sign))
+      end
+
+    end # class CrystalDilithiumEngine
+
+  end
+end

data/lib/ccrypto/java/engines/crystal_kyber_engine.rb

@@ -0,0 +1,260 @@
+
+require_relative '../data_conversion'
+
+java_import org.bouncycastle.pqc.crypto.crystals.kyber.KyberParameters
+java_import org.bouncycastle.pqc.crypto.crystals.kyber.KyberKeyGenerationParameters
+java_import org.bouncycastle.pqc.crypto.crystals.kyber.KyberPublicKeyParameters
+java_import org.bouncycastle.pqc.crypto.crystals.kyber.KyberKEMGenerator
+java_import org.bouncycastle.pqc.crypto.crystals.kyber.KyberKEMExtractor
+
+require_relative '../data_conversion'
+
+module Ccrypto
+  module Java
+    
+    class CrystalKyberPublicKey < Ccrypto::CrystalKyberPublicKey
+      include DataConversion 
+      include TR::CondUtils
+
+      def initialize(kp, param)
+        super(kp) 
+        @keyParam = param
+      end
+
+      # Public API
+      def key_param
+        @keyParam
+      end
+      alias_method :param, :key_param
+
+      # Public API
+      def to_bin
+        @native_pubKey.encoded
+      end
+
+      # Public API
+      def encoded
+        to_bin
+      end
+
+      def to_s
+        "Crystal Kyber - #{@keyParam} : #{native.inspect}"
+      end
+
+      # Public API
+      def self.to_key(params, bin)
+        bin = to_java_bytes(bin) if not bin.is_a?(::Java::byte[])
+
+        case params
+        when Ccrypto::CrystalKyberConfig
+          pa = params.provider_config[:params]
+        when Symbol
+          pa = CrystalKyberEngine.supported_configs[params]
+          if not_empty?(pa)
+            pa = pa.provider_config[:params]
+          end
+        else
+          raise CrystalKyberEngineError, "Unsupported params type '#{params.class}'"
+        end
+
+        raise CrystalKyberEngineError, "Unknown param '#{param}'" if is_empty?(pa)
+
+        pubKey = KyberPublicKeyParameters.new(pa, bin)
+        CrystalKyberPublicKey.new(pubKey, params)
+      end
+
+      def key_equals?(pubKey)
+        if not @native_pubKey.nil?
+          case pubKey
+          when CrystalKyberPublicKey
+            @native_pubKey.encoded == pubKey.to_bin
+          else
+            logger.warn "Unmatched public key : (native) #{@native_pubKey} vs. (subject) #{pubKey}"
+
+            false
+          end
+        else
+          logger.warn "CrystalKyberPublicKey equals? returned false because native_pubKey is nil"
+          false
+        end
+      end
+      alias_method :equals?, :key_equals?
+
+    end # class CrystalKyberPublicKey
+
+    class CrystalKyberPrivateKey < Ccrypto::PrivateKey
+
+      def initialize(kp, param)
+        super(kp) 
+        @keyParam = param
+      end
+
+      def key_param
+        @keyParam
+      end
+      alias_method :param, :key_param
+
+      def to_bin
+        @native_privKey.encoded
+      end
+
+      def self.to_key(params = {})
+        param = params[:param]
+        bcParam = CrystalKyberEngine.find_config(param)
+        bcPrivKey = org.bouncycastle.pqc.crypto.crystals.kyber::KyberPrivateKeyParameters.new(bcParam.provider_config[:params], params[:s].to_java_bytes, params[:hpk].to_java_bytes, params[:nonce].to_java_bytes, params[:t].to_java_bytes, params[:rho].to_java_bytes)
+        CrystalKyberPrivateKey.new(bcPrivKey, param)
+      end
+
+      def equals?(privKey)
+        if not @native_privKey.nil?
+          case privKey
+          when CrystalKyberPrivateKey
+            @native_privKey.encoded == privKey.to_bin
+          else
+            logger.warn "Unmatched private key : (native) #{@native_privKey} vs. (subject) #{privKey}"
+            false
+          end
+        else
+          logger.warn "CrystalKyberPrivateKey equals? returned false because native_privKey is nil"
+          false
+        end
+      end
+      alias_method :key_equals?, :equals?
+
+    end # class CrystalKyberPrivateKey
+
+    class CrystalKyberKEM
+      include TR::CondUtils
+      include DataConversion
+
+      def initialize(kem)
+        @kem = kem
+        raise KeypairEngineException, "KEM cannot be empty" if is_empty?(@kem)
+      end
+
+      def for_recipient
+        @kem.getEncapsulation() 
+      end
+
+      def for_cipher
+        @kem.getSecret()
+      end
+
+      def native
+        @kem
+      end
+
+    end # class CrystalKyberKEM
+
+    # 
+    # Crystal-Kyber mainly for encryption via derivation
+    #
+    class CrystalKyberKeyBundle
+      include Ccrypto::KeyBundle
+      include TR::CondUtils
+      include DataConversion
+
+      def initialize(kp, params)
+        @nativeKeypair = kp
+        @nativeParam = params
+      end
+
+      def enc_derive(pubKey, &block)
+        raise KeypairEngineException, "Given public key to derive cannot be empty" if is_empty?(pubKey) 
+        raise KeypairEngineException, "Given public key need to be a Crystal Kyber public key" if not pubKey.is_a?(CrystalKyberPublicKey)
+
+        rand = java.security.SecureRandom.getInstanceStrong()
+        kemGen = KyberKEMGenerator.new(rand)
+        CrystalKyberKEM.new(kemGen.generateEncapsulated(pubKey.native))
+      end
+      alias_method :derive_enc_shared_secret, :enc_derive
+
+      def dec_derive(kem, &block)
+        raise KeypairEngineException, "Native Keypair not available" if is_empty?(@nativeKeypair)
+
+        kemExt = KyberKEMExtractor.new(@nativeKeypair.getPrivate)
+        kemExt.extractSecret(to_java_bytes(kem))
+      end
+      alias_method :derive_dec_shared_secret, :dec_derive
+
+      def public_key
+        if @_pubKey.nil?
+          @_pubKey = CrystalKyberPublicKey.new(@nativeKeypair.getPublic(), @nativeParam.param)
+        end
+        @_pubKey
+      end
+
+      def private_key
+        if @_privKey.nil?
+          @_privKey = CrystalKyberPrivateKey.new(@nativeKeypair.getPrivate(), @nativeParam.param)
+        end
+        @_privKey
+      end
+
+    end # class CrystalKyberKeyBundle
+
+    class CrystalKyberEngine
+
+      def self.supported_params
+        supported_configs.keys
+      end
+
+      def self.supported_configs
+        if @supportedConfig.nil?
+          @supportedConfig = {}
+          {
+            kyber512: KyberParameters::kyber512,
+            kyber768: KyberParameters::kyber768,
+            kyber1024: KyberParameters::kyber1024,
+            kyber512_aes: KyberParameters::kyber512_aes,
+            kyber768_aes: KyberParameters::kyber768_aes,
+            kyber1024_aes: KyberParameters::kyber1024_aes,
+          }.each do |k,kp|
+            conf = Ccrypto::CrystalKyberConfig.new(k)
+            conf.provider_config = { params: kp }
+            @supportedConfig[k] = conf
+          end
+        end 
+        @supportedConfig.freeze
+      end
+
+       def self.find_config(conf)
+        supported_configs.select { |k,v| k == conf }.first[1]
+      end
+
+     def self.get_available_session_keysize
+        [512, 768, 1024].freeze
+      end
+
+      def self.get_session_keysize_param(keysize, with_aes = false)
+        case keysize.to_i
+        when 512, 768, 1024
+          if with_aes
+            supported_configs["kyber#{keysize.to_i}_aes".to_sym]
+          else
+            supported_configs["kyber#{keysize.to_i}".to_sym]
+          end
+        else
+          raise KeypairEngineException, "Crystal Kyber only has keysizes of 512,768 and 1024"
+        end
+      end
+
+      def initialize(*args, &block)
+        @config = args.first
+        raise KeypairEngineException, "1st parameter must be a #{Ccrypto::KeypairConfig.class} object" if not @config.is_a?(Ccrypto::KeypairConfig)
+      end
+
+      def generate_keypair(&block)
+      
+        rand = java.security.SecureRandom.getInstanceStrong
+        kpg = org.bouncycastle.pqc.crypto.crystals.kyber.KyberKeyPairGenerator.new
+        kpg.init(KyberKeyGenerationParameters.new(rand, @config.provider_config[:params]))
+
+        CrystalKyberKeyBundle.new(kpg.generateKeyPair(), @config)
+
+      end
+
+    end # class CrystalKyberEngine
+
+  end
+end

data/lib/ccrypto/java/engines/decompression_engine.rb

@@ -7,9 +7,6 @@ module Ccrypto
       include DataConversion
       include TR::CondUtils
 
-      include TeLogger::TeLogHelper
-      teLogger_tag :j_decompression
-
       def initialize(*args,&block)
        
         @eng = java.util.zip.Inflater.new
@@ -25,7 +22,7 @@ module Ccrypto
           @eng.setInput(to_java_bytes(val))
 
           baos = java.io.ByteArrayOutputStream.new
-          buf = ::Java::byte[102400].new
+          buf = ::Java::byte[READ_BUF_SIZE].new
           while not @eng.finished
             done = @eng.inflate(buf)
             teLogger.debug "Done #{done} bytes"
@@ -43,6 +40,10 @@ module Ccrypto
       def final
       end
 
+      def teLogger
+        Java.logger(:decomp_eng)
+      end
+
     end
   end
 end