fast-rsa-engine 0.1.0-java

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 34ef8fe8898dc14764728ee5dd7fa4d53de8ad95
+  data.tar.gz: 6dc8fedd5cbe6811bc3ada4d4e41998d9c2f319b
+SHA512:
+  metadata.gz: 05d9be8088242e5514597463c0626e20ac2d6403f8467ca735b0a1df6115002a82670bfb0fe9ea2d24be97d01cb4716501e8b9f68130bfcea22f4bead783632a
+  data.tar.gz: a9953017c70958609774b7e4c6469f6fedde6a03695dc959ace5bdb6096a56f95cae944486e46dfb464d80627ecb4fa810e0b5fef5cfdf8a13e243cf395958a6

data/.gitignore

@@ -0,0 +1,4 @@
+pkg
+pom*
+*jar
+*lock

data/.travis.yml

@@ -0,0 +1,4 @@
+language: ruby
+rvm:
+- jruby
+- jruby-9.0.0.0

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+
+gemspec

data/LICENSE

@@ -0,0 +1,22 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 Lookout Inc.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+

data/README.md

@@ -0,0 +1,48 @@
+# Fast RSA Engine for jruby-openssl gem
+
+this gem replaces the RSA signature and RSA ciphers from jruby-openssl by the must faster implementation of them. see [corner.squareup.com/2014/02/faster-rsa-jnagmp.html](https://corner.squareup.com/2014/02/faster-rsa-jnagmp.html)
+
+but this works only for **darwin** and **linux-x84_64** platforms due to the library used from squareup.
+
+the improvement in performance brings JRuby verify and decrypy using RSA close to MRI.
+
+## installation
+
+via rubygems
+```
+gem install fast-rsa-engine
+```
+or add to your Gemfile
+```
+gem 'fast-rsa-engine'
+```
+
+installing the gem also takes care of the jar dependencies with jruby-1.7.16+
+
+## usage
+
+with bundler its auto-require magic will be sufficient. otherwise just
+
+    require 'fast-rsa-engine'
+
+## running the benchmark
+
+    ruby benchmark/benchmark-with-fast-rsa.rb
+
+or
+    ruby benchmark/benchmark-with-builtin-rsa.rb
+
+## developement
+
+get all the gems and jars in place
+
+    gem install jar-dependencies --development
+    bundle install
+
+for running all specs
+
+	rake
+
+## meta-fu
+
+enjoy :)

data/Rakefile

@@ -0,0 +1,22 @@
+#-*- mode: ruby -*-
+
+require 'bundler/gem_tasks'
+require 'ruby-maven'
+
+desc "Pack fast-rsa-engine.jar with the compiled classes"
+task :jar do
+  RubyMaven.exec('prepare-package', '-Dmaven.test.skip')
+end
+
+require "rspec/core/rake_task"
+RSpec::Core::RakeTask.new
+
+task :default => [ :jar, :spec ]
+
+require 'rubygems/package_task'
+Gem::PackageTask.new( eval File.read( './fast-rsa-engine.gemspec' ) ) do
+  desc 'Pack leafy-metrics.gem'
+  task :package => [:jar]
+end
+
+# vim: syntax=ruby

data/benchmark/benchmark-with-builtin-rsa.rb

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+
+require_relative 'benchmark'

data/benchmark/benchmark-with-fast-rsa.rb

@@ -0,0 +1,7 @@
+#!/usr/bin/env ruby
+
+$LOAD_PATH << File.expand_path('../../lib', __FILE__)
+if defined? JRUBY_VERSION
+  require 'fast-rsa-engine'
+end
+require_relative 'benchmark'

data/benchmark/benchmark.rb

@@ -0,0 +1,54 @@
+#!/usr/bin/env ruby
+
+count = (ARGV[0] || 1000).to_i
+path = File.dirname(__FILE__)
+ 
+require 'base64'
+require 'benchmark'
+require 'openssl'
+
+# configure keys
+public_key_file = "#{path}/foo_cert.pem" # public key in cert file
+private_key_file = "#{path}/foo.pem"     # private key file
+ 
+$public_key = OpenSSL::X509::Certificate.new(File.read(public_key_file)).public_key
+$private_key = OpenSSL::PKey::RSA.new(File.read(private_key_file))
+
+# example msg
+msg =  "THIS IS A TEST"
+ 
+# example key for encrypt operation
+aes = OpenSSL::Cipher::Cipher.new('aes-256-cbc')
+aes.encrypt
+key = aes.random_key
+
+def sign(msg)
+  $private_key.sign(OpenSSL::Digest.new('sha512'), msg)
+end
+ 
+def verify(msg, signature)
+  $public_key.verify(OpenSSL::Digest.new('sha512'), signature, msg)
+end
+ 
+def encrypt(content)
+  $public_key.public_encrypt(content)
+end
+ 
+def decrypt(encrypted_msg)
+  $private_key.private_decrypt(encrypted_msg)
+end
+ 
+# signature, encrypted key for verify, decrypt tests
+signature = sign(msg)
+encrypted_key = encrypt(msg)
+ 
+puts "#{RUBY_ENGINE} N = #{count}"
+Benchmark.bm(17) do |x|
+  x.report('sign') { count.times { sign(msg) } }
+  x.report('verify') { count.times { verify(msg, signature) } }
+  x.report('encrypt') { count.times { encrypt(key) } }
+  x.report('decrypt') { count.times { decrypt(encrypted_key) } }
+end
+puts
+p verify(msg, signature)
+p decrypt(encrypted_key)

data/benchmark/foo.pem

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----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==
+-----END RSA PRIVATE KEY-----

data/benchmark/foo_cert.pem

@@ -0,0 +1,29 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/fast-rsa-engine.gemspec

@@ -0,0 +1,31 @@
+#-*- mode: ruby -*-
+
+Gem::Specification.new do |s|
+  s.name = 'fast-rsa-engine'
+  s.version = '0.1.0'
+  s.author = 'Christian Meieier'
+  s.email = [ 'christian.meier@lookout.com' ]
+  s.platform = 'java'
+
+  s.license = 'MIT'
+  s.summary = %q(replaces the RSA signature and RSA ciphers from jruby-openssl by the must faster implementation of them)
+  s.homepage = 'https://github.com/lookout/fast-rsa-engine'
+  s.description = %q(this gem replaces the RSA signature and RSA ciphers from jruby-openssl by the must faster implementation of them. see https://corner.squareup.com/2014/02/faster-rsa-jnagmp.html)
+
+  s.files = `git ls-files`.split($/)
+
+  BC_VERSION = '1.50'
+  # needed for runtime
+  s.requirements << "jar com.squareup.jnagmp:bouncycastle-rsa, 1.0.0"
+  # needed for compilation
+  s.requirements << "jar org.bouncycastle:bcpkix-jdk15on, #{BC_VERSION}, :scope => :provided"
+  s.requirements << "jar org.bouncycastle:bcprov-jdk15on, #{BC_VERSION}, :scope => :provided"
+  s.requirements << "pom org.jruby:jruby-core, 1.7.21, :scope => :provided"
+
+  s.add_runtime_dependency 'jar-dependencies', '~> 0.1'
+  s.add_development_dependency 'ruby-maven', '~> 3.3'
+  s.add_development_dependency 'rspec', '~> 3.3'
+  s.add_development_dependency 'rake', '~> 10.2'
+end
+
+# vim: syntax=ruby

data/lib/fast-rsa-engine.rb

@@ -0,0 +1,13 @@
+require 'fast-rsa-engine_jars.rb'
+require 'fast-rsa-engine.jar'
+require 'openssl'
+
+# keep the default name space clean and use tap
+tap do
+  engines = Java::OrgJrubyExtOpenssl::SecurityHelper.java_class.declared_field 'implEngines'
+  engines.accessible = true
+  com.github.lookout.fastrsa.SecurityHelperMap.setup( engines.value( Java::OrgJrubyExtOpenssl::SecurityHelper ))
+  use_internal = Java::OrgJrubyExtOpenssl::SecurityHelper.java_class.declared_field 'tryCipherInternal'
+  use_internal.accessible = true
+  use_internal.set_value( Java::OrgJrubyExtOpenssl::SecurityHelper, true )
+end

data/lib/fast-rsa-engine_jars.rb

@@ -0,0 +1,6 @@
+# this is a generated file, to avoid over-writing it just delete this comment
+require 'jar_dependencies'
+
+require_jar( 'net.java.dev.jna', 'jna', '4.0.0' )
+require_jar( 'com.squareup.jnagmp', 'bouncycastle-rsa', '1.0.0' )
+require_jar( 'com.squareup.jnagmp', 'jnagmp', '1.0.0' )

data/spec/cipher_spec.rb

@@ -0,0 +1,42 @@
+require_relative 'setup'
+
+describe 'Cipher' do
+
+  let( :this ) { File.expand_path( '..', __FILE__) }
+
+  let( :private_key ) {
+    file = File.read("#{this}/foo.pem")
+    OpenSSL::PKey::RSA.new(file)
+  }
+
+  let( :msg ) {
+    file = File.read("#{this}/foo_cert.pem")
+    public_key = OpenSSL::X509::Certificate.new(file).public_key
+    public_key.public_encrypt("THIS IS A TEST")
+  }
+
+  let( :rounds ) { 10 }
+
+  it 'is faster the regular cipher' do
+    # clear the fast engines
+    engines.clear
+
+    start = Time.new.to_f
+    rounds.times do
+      private_key.private_decrypt(msg)
+    end
+    delta1 = Time.new.to_f - start
+
+    # setup the fast engines
+    load( "${this}/../lib/fast-rsa-engine.rb" )
+
+    start = Time.new.to_f
+    rounds.times do
+      private_key.private_decrypt(msg)
+    end
+    delta2 = Time.new.to_f - start
+
+    expect( delta1 ).to be > 2 * delta2
+  end
+  
+end

data/spec/foo.pem

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----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==
+-----END RSA PRIVATE KEY-----

data/spec/foo_cert.pem

@@ -0,0 +1,29 @@
+-----BEGIN CERTIFICATE-----
+MIIFAjCCAuoCBFWkCjYwDQYJKoZIhvcNAQELBQAwRTELMAkGA1UEBhMCQVUxEzAR
+BgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoMGEludGVybmV0IFdpZGdpdHMgUHR5
+IEx0ZDAeFw0xNTA3MTMxODU3NThaFw0xNzA3MTIxODU3NThaMEYxCzAJBgNVBAYT
+AlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRQwEgYDVQQHDAtTYW5GcmFuY2lzbzEM
+MAoGA1UEAwwDZm9vMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtPhH
+vStOVd29e7ElR3+uUeFYDdmVJ9OW1XQOs2QPpxSnpWbe++NNoqroCGCliRbXHYoX
++WpnbtdMDmLhSq4w4jmvL9CotFhfwhOtNY87GrEtMi2k+//OHz7hBZ5FqxEgNuC/
+vCZoGFZvnGRLmtU0Q2B/7VV4zG9CiEumBdvZ6K40471XL1c2W/AOyXXcGHVAO8PY
+F91CHu0gi6qB3tJ+kOrieX2cIs1W8NVc5Cz4SGwzlI8J9td9XE0Yef2aLxT021Dx
+xuRubZI57/zrbR0MUoa0dKG6GTYMGw3g3gzjkcHjFLhn7FJgqxubFz2xEQWO03SI
+aQj5lxF9tW9u8PKJwhiNrnIMa4JreNELlGCfqTd1eYJgvC2f6pkiNODbAqwhlALC
+XKOSVBdT5ZzkP99O8vq3+mLfjYH9/0bheXKe/eeXcNoedH5xtnglQOUqGw5BwkRk
+cApv/+rcs2GvhlWjCc9SmBQlu2lR7gPkUMvemHlzVtid3VKOt45/pGTkcD8iK/6Q
+YmwlqmiU3Wq0NOcF5UcVqyQRCl9Vyzu280OsA8jpNRbTm/QLIxVKRwNSlSa3Et17
+omk2Xi7nLQybrpEpIZ6NsTaps23Auxg3cPHNjcPVOWbUpiRsQh8JBQMAyJY/7eQ4
+xtaKOS8VHrwIJVIuJWbLiXW9oBCjk6eA/kHM/FMCAwEAATANBgkqhkiG9w0BAQsF
+AAOCAgEAdcnH4rVynCQWGYfR/n2XC0j34d058kfTqFuIYuTwEkY0jkIZqRBZuzwm
+F88BKlRPk4qkkMXjRmvBisdcyFQiyvlf+fJlDuNKk21Dae+4P3HMz6xPK6vathKS
+pAzQr9KDOp628c/8rGoxCV2hAkSyzHBC5WUwP8yBxWVG6QzqFrnUkTEo6x9S6RkG
+10g7YWi594L3RoJ/gFWKuqn3sGCetrqhQfrdskS5FaCEGLrs7/h74AJnjs6aVJCZ
+LklsjPJpadd+WSFIRCGQhTWQUKVc8bil9vDxfIPW5Kj/DJvirbeJinGEIc7gR9WI
+bYdje5UCphWlJr5ePGreyZvyDUElgTjhiiqWlUAgG5eJYJ2NEvH4g70laIDJZYt2
+PZA0egp29+EKG3U3CXJkOoW8/z4mFgReYpWh/pqZesLePh4dbBrK/WCdAprKImZc
+ymOD6K5IY9A0CeN6uW9VBnI0ed8KEGagfKCpCEBgbkhq27y7FVke1/oVXkWrXIFt
+WfDd1hAJwUbxAeQXEwyAqDoCyKIvDqksGW+NL2o0N9DCP5cTMgho34WeUVdAuezM
+6wznqkkK9TB8mOtiJhPomlO2YL5/ShVVX0FoyQQ+ox2WMYIurbwguRVUAUNnfIdf
+EqvJtVogFDekF8bxVA5RoiON8Dr8cDxSMU5eoH0Ixp3id5zsxQI=
+-----END CERTIFICATE-----

data/spec/security_helper_spec.rb

@@ -0,0 +1,14 @@
+require_relative 'setup'
+
+describe 'SecurityHelper' do
+
+  it 'registers signatures with SecurityHelper' do
+    # clear the fast engines
+    engines.clear
+    # setup the fast engines
+    load( "${this}/../lib/fast-rsa-engine.rb" )
+
+    expect( engines.size ).to eq( 12 )
+  end
+  
+end

data/spec/setup.rb

@@ -0,0 +1,8 @@
+$: << File.expand_path( '../../lib', __FILE__ )
+require 'fast-rsa-engine'
+
+def engines
+  engines = Java::OrgJrubyExtOpenssl::SecurityHelper.java_class.declared_field 'implEngines'
+  engines.accessible = true
+  engines.value( Java::OrgJrubyExtOpenssl::SecurityHelper )
+end

data/spec/signature_spec.rb

@@ -0,0 +1,35 @@
+require_relative 'setup'
+
+describe 'Signature' do
+
+  let( :this ) { File.expand_path( '..', __FILE__) }
+
+  let( :private_key ) { OpenSSL::PKey::RSA.new(File.read("#{this}/foo.pem")) }
+
+  let( :msg ) { "THIS IS A TEST" }
+
+  let( :rounds ) { 10 }
+
+  it 'is faster the regular signature' do
+    # clear the fast engines
+    engines.clear
+
+    start = Time.new.to_f
+    rounds.times do
+      private_key.sign(OpenSSL::Digest.new('sha512'), msg)
+    end
+    delta1 = Time.new.to_f - start
+
+    # setup the fast engines
+    load( "${this}/../lib/fast-rsa-engine.rb" )
+
+    start = Time.new.to_f
+    rounds.times do
+      private_key.sign(OpenSSL::Digest.new('sha512'), msg)
+    end
+    delta2 = Time.new.to_f - start
+
+    expect( delta1 ).to be > 2 * delta2
+  end
+  
+end

data/src/main/java/com/github/lookout/fastrsa/FastCipherSpi.java

@@ -0,0 +1,195 @@
+package com.github.lookout.fastrsa;
+
+import com.squareup.crypto.rsa.NativeRSAEngine;
+
+import java.lang.reflect.Field;
+import java.security.spec.MGF1ParameterSpec;
+
+import javax.crypto.NoSuchPaddingException;
+import javax.crypto.spec.OAEPParameterSpec;
+import javax.crypto.spec.PSource;
+
+import org.bouncycastle.crypto.Digest;
+import org.bouncycastle.jcajce.provider.util.DigestFactory;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.crypto.AsymmetricBlockCipher;
+import org.bouncycastle.asn1.nist.NISTObjectIdentifiers;
+import org.bouncycastle.asn1.oiw.OIWObjectIdentifiers;
+import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
+import org.bouncycastle.asn1.teletrust.TeleTrusTObjectIdentifiers;
+import org.bouncycastle.crypto.encodings.ISO9796d1Encoding;
+import org.bouncycastle.crypto.encodings.OAEPEncoding;
+import org.bouncycastle.crypto.encodings.PKCS1Encoding;
+import org.bouncycastle.jcajce.provider.asymmetric.rsa.CipherSpi;
+import org.bouncycastle.util.Strings;
+
+public class FastCipherSpi extends CipherSpi {
+
+    private FastCipherSpi(AsymmetricBlockCipher cipher) {
+        super( cipher );
+    }
+
+    private void initFromSpec(OAEPParameterSpec pSpec)
+        throws NoSuchPaddingException, NoSuchFieldException, IllegalAccessException
+    {
+        MGF1ParameterSpec mgfParams = (MGF1ParameterSpec)pSpec.getMGFParameters();
+        Digest digest = DigestFactory.getDigest(mgfParams.getDigestAlgorithm());
+
+        if (digest == null)
+        {
+            throw new NoSuchPaddingException("no match on OAEP constructor for digest algorithm: "+ mgfParams.getDigestAlgorithm());
+        }
+
+        cipher(new OAEPEncoding(new NativeRSAEngine(), digest, ((PSource.PSpecified)pSpec.getPSource()).getValue()));
+        set( pSpec, "paramSpec" );
+    }
+
+    private void cipher(AsymmetricBlockCipher cipher)
+        throws NoSuchFieldException, IllegalAccessException
+    {
+        set( cipher, "cipher" );
+    }
+
+    private void set(Object object, String name)
+        throws NoSuchFieldException, IllegalAccessException
+    {
+        Field field = getClass().getSuperclass().getSuperclass().getDeclaredField(name);
+        field.setAccessible(true);
+        field.set(this, object);
+    }
+
+    protected void engineSetPadding(
+        String padding)
+        throws NoSuchPaddingException
+    {
+        try {
+            String pad = Strings.toUpperCase(padding);
+
+            if (pad.equals("NOPADDING"))
+                {
+                    cipher(new NativeRSAEngine());
+                }
+            else if (pad.equals("PKCS1PADDING"))
+                {
+                    cipher(new PKCS1Encoding(new NativeRSAEngine()));
+                }
+            else if (pad.equals("ISO9796-1PADDING"))
+                {
+                    cipher(new ISO9796d1Encoding(new NativeRSAEngine()));
+                }
+            else if (pad.equals("OAEPWITHMD5ANDMGF1PADDING"))
+                {
+                    initFromSpec(new OAEPParameterSpec("MD5", "MGF1", new MGF1ParameterSpec("MD5"), PSource.PSpecified.DEFAULT));
+                }
+            else if (pad.equals("OAEPPADDING"))
+                {
+                    initFromSpec(OAEPParameterSpec.DEFAULT);
+                }
+            else if (pad.equals("OAEPWITHSHA1ANDMGF1PADDING") || pad.equals("OAEPWITHSHA-1ANDMGF1PADDING"))
+                {
+                    initFromSpec(OAEPParameterSpec.DEFAULT);
+                }
+            else if (pad.equals("OAEPWITHSHA224ANDMGF1PADDING") || pad.equals("OAEPWITHSHA-224ANDMGF1PADDING"))
+                {
+                    initFromSpec(new OAEPParameterSpec("SHA-224", "MGF1", new MGF1ParameterSpec("SHA-224"), PSource.PSpecified.DEFAULT));
+                }
+            else if (pad.equals("OAEPWITHSHA256ANDMGF1PADDING") || pad.equals("OAEPWITHSHA-256ANDMGF1PADDING"))
+                {
+                    initFromSpec(new OAEPParameterSpec("SHA-256", "MGF1", MGF1ParameterSpec.SHA256, PSource.PSpecified.DEFAULT));
+                }
+            else if (pad.equals("OAEPWITHSHA384ANDMGF1PADDING") || pad.equals("OAEPWITHSHA-384ANDMGF1PADDING"))
+                {
+                    initFromSpec(new OAEPParameterSpec("SHA-384", "MGF1", MGF1ParameterSpec.SHA384, PSource.PSpecified.DEFAULT));
+                }
+            else if (pad.equals("OAEPWITHSHA512ANDMGF1PADDING") || pad.equals("OAEPWITHSHA-512ANDMGF1PADDING"))
+                {
+                    initFromSpec(new OAEPParameterSpec("SHA-512", "MGF1", MGF1ParameterSpec.SHA512, PSource.PSpecified.DEFAULT));
+                }
+            else
+                {
+                    throw new NoSuchPaddingException(padding + " unavailable with RSA.");
+                }
+        }
+        catch(NoSuchFieldException e){
+            System.err.println("fall back to slow engine: " + e.getMessage());
+            super.engineSetPadding(padding);
+        }
+        catch(IllegalAccessException e){
+            System.err.println("fall back to slow engine: " + e.getMessage());
+            super.engineSetPadding(padding);
+        }
+    }
+
+    static public class NoPadding
+        extends FastCipherSpi
+    {
+        public NoPadding()
+        {
+            super(new NativeRSAEngine());
+        }
+    }
+
+    static public class PKCS1v1_5Padding
+        extends FastCipherSpi
+    {
+        public PKCS1v1_5Padding()
+        {
+            super(new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class PKCS1v1_5Padding_PrivateOnly
+        extends FastCipherSpi
+    {
+        public PKCS1v1_5Padding_PrivateOnly()
+        {
+            super(new PKCS1Encoding(new NativeRSAEngine()));
+            try {
+                engineSetMode("1");// private key only
+            }
+            catch(Exception e) {
+                throw new RuntimeException( "bug", e );
+            }
+        }
+    }
+
+    static public class PKCS1v1_5Padding_PublicOnly
+        extends FastCipherSpi
+    {
+        public PKCS1v1_5Padding_PublicOnly()
+        {
+            super(new PKCS1Encoding(new NativeRSAEngine()));
+            try {
+                engineSetMode("2");// public key only
+            }
+            catch(Exception e) {
+                throw new RuntimeException( "bug", e );
+            }
+        }
+    }
+
+    static public class OAEPPadding
+        extends FastCipherSpi
+    {
+        public OAEPPadding()
+        {
+            super(new NativeRSAEngine());
+            //super(OAEPParameterSpec.DEFAULT);
+            try {
+                engineSetPadding("OAEPPADDING");
+            }
+            catch(Exception e) {
+                throw new RuntimeException( "bug", e );
+            }
+        }
+    }
+
+    static public class ISO9796d1Padding
+        extends FastCipherSpi
+    {
+        public ISO9796d1Padding()
+        {
+            super(new ISO9796d1Encoding(new NativeRSAEngine()));
+        }
+    }
+}

data/src/main/java/com/github/lookout/fastrsa/FastDigestSignatureSpi.java

@@ -0,0 +1,133 @@
+package com.github.lookout.fastrsa;
+
+import com.squareup.crypto.rsa.NativeRSAEngine;
+
+import java.lang.reflect.Field;
+
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.crypto.Digest;
+import org.bouncycastle.crypto.digests.MD2Digest;
+import org.bouncycastle.crypto.digests.MD4Digest;
+import org.bouncycastle.crypto.digests.MD5Digest;
+import org.bouncycastle.crypto.digests.NullDigest;
+import org.bouncycastle.crypto.digests.RIPEMD128Digest;
+import org.bouncycastle.crypto.digests.RIPEMD160Digest;
+import org.bouncycastle.crypto.digests.RIPEMD256Digest;
+import org.bouncycastle.crypto.digests.SHA1Digest;
+import org.bouncycastle.crypto.digests.SHA224Digest;
+import org.bouncycastle.crypto.digests.SHA256Digest;
+import org.bouncycastle.crypto.digests.SHA384Digest;
+import org.bouncycastle.crypto.digests.SHA512Digest;
+import org.bouncycastle.crypto.AsymmetricBlockCipher;
+import org.bouncycastle.asn1.nist.NISTObjectIdentifiers;
+import org.bouncycastle.asn1.oiw.OIWObjectIdentifiers;
+import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
+import org.bouncycastle.asn1.teletrust.TeleTrusTObjectIdentifiers;
+import org.bouncycastle.crypto.encodings.PKCS1Encoding;
+import org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi;
+
+public class FastDigestSignatureSpi extends DigestSignatureSpi {
+
+    private FastDigestSignatureSpi(ASN1ObjectIdentifier objId, Digest digest, AsymmetricBlockCipher cipher) {
+        super( objId, digest, cipher);
+    }
+
+    static public class SHA1
+        extends DigestSignatureSpi
+    {
+        public SHA1()
+        {
+            super(OIWObjectIdentifiers.idSHA1, new SHA1Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class SHA224
+        extends DigestSignatureSpi
+    {
+        public SHA224()
+        {
+            super(NISTObjectIdentifiers.id_sha224, new SHA224Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class SHA256
+        extends DigestSignatureSpi
+    {
+        public SHA256()
+        {
+            super(NISTObjectIdentifiers.id_sha256, new SHA256Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class SHA384
+        extends DigestSignatureSpi
+    {
+        public SHA384()
+        {
+            super(NISTObjectIdentifiers.id_sha384, new SHA384Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class SHA512
+        extends DigestSignatureSpi
+    {
+        public SHA512()
+        {
+            super(NISTObjectIdentifiers.id_sha512, new SHA512Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class MD2
+        extends DigestSignatureSpi
+    {
+        public MD2()
+        {
+            super(PKCSObjectIdentifiers.md2, new MD2Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class MD4
+        extends DigestSignatureSpi
+    {
+        public MD4()
+        {
+            super(PKCSObjectIdentifiers.md4, new MD4Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class MD5
+        extends DigestSignatureSpi
+    {
+        public MD5()
+        {
+            super(PKCSObjectIdentifiers.md5, new MD5Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class RIPEMD160
+        extends DigestSignatureSpi
+    {
+        public RIPEMD160()
+        {
+            super(TeleTrusTObjectIdentifiers.ripemd160, new RIPEMD160Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class RIPEMD128
+        extends DigestSignatureSpi
+    {
+        public RIPEMD128()
+        {
+            super(TeleTrusTObjectIdentifiers.ripemd128, new RIPEMD128Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+
+    static public class RIPEMD256
+        extends DigestSignatureSpi
+    {
+        public RIPEMD256()
+        {
+            super(TeleTrusTObjectIdentifiers.ripemd256, new RIPEMD256Digest(), new PKCS1Encoding(new NativeRSAEngine()));
+        }
+    }
+}

data/src/main/java/com/github/lookout/fastrsa/SecurityHelperMap.java

@@ -0,0 +1,29 @@
+package com.github.lookout.fastrsa;
+
+import java.util.Map;
+
+public class SecurityHelperMap {
+
+    private SecurityHelperMap() {}
+
+    public static void setup( Map<String, Class<?>> engines ) {
+        String[] names = {
+            "MD2", "MD4", "MD5",
+            "RIPEMD128", "RIPEMD160", "RIPEMD256",
+            "SHA1", "SHA224", "SHA256", "SHA384", "SHA512"
+        };
+
+        ClassLoader classLoader = SecurityHelperMap.class.getClassLoader();
+        for (String name : names ) {
+            try {
+                engines.put( "Signature:" + name + "WITHRSA",
+                             classLoader.loadClass( FastDigestSignatureSpi.class.getName() + "$" + name ) );
+            }
+            catch( ClassNotFoundException e ) {
+                System.err.println( "signature class not found for: " + name + " ( " + e.getMessage() + " )" );
+            }
+        }
+
+        engines.put( "Cipher:RSA", FastCipherSpi.NoPadding.class );
+    }
+}

metadata

@@ -0,0 +1,127 @@
+--- !ruby/object:Gem::Specification
+name: fast-rsa-engine
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: java
+authors:
+- Christian Meieier
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2015-07-23 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: jar-dependencies
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.1'
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.1'
+  prerelease: false
+  type: :runtime
+- !ruby/object:Gem::Dependency
+  name: ruby-maven
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  prerelease: false
+  type: :development
+- !ruby/object:Gem::Dependency
+  name: rspec
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  prerelease: false
+  type: :development
+- !ruby/object:Gem::Dependency
+  name: rake
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.2'
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.2'
+  prerelease: false
+  type: :development
+description: this gem replaces the RSA signature and RSA ciphers from jruby-openssl by the must faster implementation of them. see https://corner.squareup.com/2014/02/faster-rsa-jnagmp.html
+email:
+- christian.meier@lookout.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .travis.yml
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- benchmark/benchmark-with-builtin-rsa.rb
+- benchmark/benchmark-with-fast-rsa.rb
+- benchmark/benchmark.rb
+- benchmark/foo.pem
+- benchmark/foo_cert.pem
+- fast-rsa-engine.gemspec
+- lib/fast-rsa-engine.rb
+- lib/fast-rsa-engine_jars.rb
+- spec/cipher_spec.rb
+- spec/foo.pem
+- spec/foo_cert.pem
+- spec/security_helper_spec.rb
+- spec/setup.rb
+- spec/signature_spec.rb
+- src/main/java/com/github/lookout/fastrsa/FastCipherSpi.java
+- src/main/java/com/github/lookout/fastrsa/FastDigestSignatureSpi.java
+- src/main/java/com/github/lookout/fastrsa/SecurityHelperMap.java
+homepage: https://github.com/lookout/fast-rsa-engine
+licenses:
+- MIT
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements:
+- jar com.squareup.jnagmp:bouncycastle-rsa, 1.0.0
+- jar org.bouncycastle:bcpkix-jdk15on, 1.50, :scope => :provided
+- jar org.bouncycastle:bcprov-jdk15on, 1.50, :scope => :provided
+- pom org.jruby:jruby-core, 1.7.21, :scope => :provided
+rubyforge_project:
+rubygems_version: 2.4.8
+signing_key:
+specification_version: 4
+summary: replaces the RSA signature and RSA ciphers from jruby-openssl by the must faster implementation of them
+test_files: []