Google Git
Sign in
fuchsia / third_party / tink / 7a59397ba3c086dc03649b95176fbca1dde61934 / . / java / src / main / java / com / google / crypto / tink / signature / RsaSsaPkcs1SignKeyManager.java
blob: ef5cfe67d69f63cafe7543344c298e4379f9b424 [file] [log] [blame]
// Copyright 2018 Google Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////
package com.google.crypto.tink.signature;
import com.google.crypto.tink.KeyManagerBase;
import com.google.crypto.tink.PrivateKeyManager;
import com.google.crypto.tink.PublicKeySign;
import com.google.crypto.tink.proto.KeyData;
import com.google.crypto.tink.proto.KeyData.KeyMaterialType;
import com.google.crypto.tink.proto.RsaSsaPkcs1KeyFormat;
import com.google.crypto.tink.proto.RsaSsaPkcs1Params;
import com.google.crypto.tink.proto.RsaSsaPkcs1PrivateKey;
import com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey;
import com.google.crypto.tink.subtle.EngineFactory;
import com.google.crypto.tink.subtle.RsaSsaPkcs1SignJce;
import com.google.crypto.tink.subtle.RsaSsaPkcs1VerifyJce;
import com.google.crypto.tink.subtle.Validators;
import com.google.protobuf.ByteString;
import com.google.protobuf.InvalidProtocolBufferException;
import java.math.BigInteger;
import java.nio.charset.Charset;
import java.security.GeneralSecurityException;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.interfaces.RSAPrivateCrtKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.RSAKeyGenParameterSpec;
import java.security.spec.RSAPrivateCrtKeySpec;
import java.security.spec.RSAPublicKeySpec;
/**
* This key manager generates new {@code RsaSsaPkcs1PrivateKey} keys and produces new instances of
* {@code RsaSsaPkcs1SignJce}.
*/
class RsaSsaPkcs1SignKeyManager
extends KeyManagerBase<PublicKeySign, RsaSsaPkcs1PrivateKey, RsaSsaPkcs1KeyFormat>
implements PrivateKeyManager<PublicKeySign> {
public RsaSsaPkcs1SignKeyManager() {
super(PublicKeySign.class, RsaSsaPkcs1PrivateKey.class, RsaSsaPkcs1KeyFormat.class, TYPE_URL);
}
public static final String TYPE_URL =
"type.googleapis.com/google.crypto.tink.RsaSsaPkcs1PrivateKey";
private static final int VERSION = 0;
private static final Charset UTF_8 = Charset.forName("UTF-8");
/** Test message. */
private static final byte[] TEST_MESSAGE = "Tink and Wycheproof.".getBytes(UTF_8);
@Override
public PublicKeySign getPrimitiveFromKey(RsaSsaPkcs1PrivateKey keyProto)
throws GeneralSecurityException {
validateKey(keyProto);
KeyFactory kf = EngineFactory.KEY_FACTORY.getInstance("RSA");
RSAPrivateCrtKey privateKey =
(RSAPrivateCrtKey)
kf.generatePrivate(
new RSAPrivateCrtKeySpec(
new BigInteger(1, keyProto.getPublicKey().getN().toByteArray()),
new BigInteger(1, keyProto.getPublicKey().getE().toByteArray()),
new BigInteger(1, keyProto.getD().toByteArray()),
new BigInteger(1, keyProto.getP().toByteArray()),
new BigInteger(1, keyProto.getQ().toByteArray()),
new BigInteger(1, keyProto.getDp().toByteArray()),
new BigInteger(1, keyProto.getDq().toByteArray()),
new BigInteger(1, keyProto.getCrt().toByteArray())));
// Sign and verify a test message to make sure that the key is correct.
RsaSsaPkcs1SignJce signer =
new RsaSsaPkcs1SignJce(
privateKey, SigUtil.toHashType(keyProto.getPublicKey().getParams().getHashType()));
RSAPublicKey publicKey =
(RSAPublicKey)
kf.generatePublic(
new RSAPublicKeySpec(
new BigInteger(1, keyProto.getPublicKey().getN().toByteArray()),
new BigInteger(1, keyProto.getPublicKey().getE().toByteArray())));
RsaSsaPkcs1VerifyJce verifier =
new RsaSsaPkcs1VerifyJce(
publicKey, SigUtil.toHashType(keyProto.getPublicKey().getParams().getHashType()));
try {
verifier.verify(signer.sign(TEST_MESSAGE), TEST_MESSAGE);
} catch (GeneralSecurityException e) {
throw new RuntimeException(
"Security bug: signing with private key followed by verifying with public key failed"
+ e);
}
return signer;
}
/**
* @param serializedKeyFormat serialized {@code RsaSsaPkcs1KeyFormat} proto
* @return new {@code RsaSsaPkcs1PrivateKey} proto
*/
@Override
public RsaSsaPkcs1PrivateKey newKeyFromFormat(RsaSsaPkcs1KeyFormat format)
throws GeneralSecurityException {
validateKeyFormat(format);
RsaSsaPkcs1Params params = format.getParams();
KeyPairGenerator keyGen = EngineFactory.KEY_PAIR_GENERATOR.getInstance("RSA");
RSAKeyGenParameterSpec spec =
new RSAKeyGenParameterSpec(
format.getModulusSizeInBits(),
new BigInteger(1, format.getPublicExponent().toByteArray()));
keyGen.initialize(spec);
KeyPair keyPair = keyGen.generateKeyPair();
RSAPublicKey pubKey = (RSAPublicKey) keyPair.getPublic();
RSAPrivateCrtKey privKey = (RSAPrivateCrtKey) keyPair.getPrivate();
// Creates RsaSsaPkcs1PublicKey.
RsaSsaPkcs1PublicKey pkcs1PubKey =
RsaSsaPkcs1PublicKey.newBuilder()
.setVersion(VERSION)
.setParams(params)
.setE(ByteString.copyFrom(pubKey.getPublicExponent().toByteArray()))
.setN(ByteString.copyFrom(pubKey.getModulus().toByteArray()))
.build();
// Creates RsaSsaPkcs1PrivateKey.
return RsaSsaPkcs1PrivateKey.newBuilder()
.setVersion(VERSION)
.setPublicKey(pkcs1PubKey)
.setD(ByteString.copyFrom(privKey.getPrivateExponent().toByteArray()))
.setP(ByteString.copyFrom(privKey.getPrimeP().toByteArray()))
.setQ(ByteString.copyFrom(privKey.getPrimeQ().toByteArray()))
.setDp(ByteString.copyFrom(privKey.getPrimeExponentP().toByteArray()))
.setDq(ByteString.copyFrom(privKey.getPrimeExponentQ().toByteArray()))
.setCrt(ByteString.copyFrom(privKey.getCrtCoefficient().toByteArray()))
.build();
}
@Override
protected KeyMaterialType keyMaterialType() {
return KeyMaterialType.ASYMMETRIC_PRIVATE;
}
@Override
protected RsaSsaPkcs1PrivateKey parseKeyProto(ByteString byteString)
throws InvalidProtocolBufferException {
return RsaSsaPkcs1PrivateKey.parseFrom(byteString);
}
@Override
protected RsaSsaPkcs1KeyFormat parseKeyFormatProto(ByteString byteString)
throws InvalidProtocolBufferException {
return RsaSsaPkcs1KeyFormat.parseFrom(byteString);
}
@Override
public KeyData getPublicKeyData(ByteString serializedKey) throws GeneralSecurityException {
try {
RsaSsaPkcs1PrivateKey privKeyProto = RsaSsaPkcs1PrivateKey.parseFrom(serializedKey);
return KeyData.newBuilder()
.setTypeUrl(RsaSsaPkcs1VerifyKeyManager.TYPE_URL)
.setValue(privKeyProto.getPublicKey().toByteString())
.setKeyMaterialType(KeyData.KeyMaterialType.ASYMMETRIC_PUBLIC)
.build();
} catch (InvalidProtocolBufferException e) {
throw new GeneralSecurityException("expected serialized RsaSsaPkcs1PrivateKey proto", e);
}
}
@Override
public int getVersion() {
return VERSION;
}
@Override
protected void validateKeyFormat(RsaSsaPkcs1KeyFormat keyFormat) throws GeneralSecurityException {
SigUtil.validateRsaSsaPkcs1Params(keyFormat.getParams());
Validators.validateRsaModulusSize(keyFormat.getModulusSizeInBits());
}
@Override
protected void validateKey(RsaSsaPkcs1PrivateKey privKey) throws GeneralSecurityException {
Validators.validateVersion(privKey.getVersion(), VERSION);
Validators.validateRsaModulusSize(
(new BigInteger(1, privKey.getPublicKey().getN().toByteArray())).bitLength());
SigUtil.validateRsaSsaPkcs1Params(privKey.getPublicKey().getParams());
}
}