Google Git
Sign in
fuchsia / third_party / tink / 837cb690988e5ce1b929bfdf6fb4cafdb44a2531 / . / java_src / src / main / java / com / google / crypto / tink / jwt / JwkSetConverter.java
blob: 3f080ce5a80f0105778ae07ef1d50f9c8e186a83 [file] [log] [blame]
// Copyright 2021 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////
package com.google.crypto.tink.jwt;
import static java.nio.charset.StandardCharsets.UTF_8;
import com.google.crypto.tink.KeysetHandle;
import com.google.crypto.tink.KeysetReader;
import com.google.crypto.tink.KeysetWriter;
import com.google.crypto.tink.proto.EncryptedKeyset;
import com.google.crypto.tink.proto.JwtEcdsaAlgorithm;
import com.google.crypto.tink.proto.JwtEcdsaPublicKey;
import com.google.crypto.tink.proto.JwtRsaSsaPkcs1Algorithm;
import com.google.crypto.tink.proto.JwtRsaSsaPkcs1PublicKey;
import com.google.crypto.tink.proto.KeyData;
import com.google.crypto.tink.proto.KeyData.KeyMaterialType;
import com.google.crypto.tink.proto.KeyStatusType;
import com.google.crypto.tink.proto.Keyset;
import com.google.crypto.tink.proto.OutputPrefixType;
import com.google.crypto.tink.subtle.Base64;
import com.google.crypto.tink.tinkkey.KeyAccess;
import com.google.gson.JsonArray;
import com.google.gson.JsonElement;
import com.google.gson.JsonObject;
import com.google.gson.JsonParseException;
import com.google.gson.internal.Streams;
import com.google.gson.stream.JsonReader;
import com.google.protobuf.ByteString;
import com.google.protobuf.ExtensionRegistryLite;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.OutputStream;
import java.io.StringReader;
import java.security.GeneralSecurityException;
/**
* Provides functions to import and export Json Web Key (JWK) sets.
*
* <p>It currently supports public keys for algorithms ES256, ES384, ES512, RS256, RS384 and RS512.
*/
public final class JwkSetConverter {
/**
* Converts a Tink KeysetHandle into a Json Web Key (JWK) set.
*
* <p>Currently, only public keys for algorithms ES256, ES384, ES512, RS256, RS384 and RS512 are
* supported. JWK is defined in https://www.rfc-editor.org/rfc/rfc7517.txt.
*/
public static String fromKeysetHandle(KeysetHandle handle, KeyAccess keyAccess)
throws IOException, GeneralSecurityException {
ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
handle.writeNoSecret(new JwkSetWriter(outputStream));
return outputStream.toString();
}
/**
* Converts a Json Web Key (JWK) set into a Tink KeysetHandle.
*
* <p>It requires that all keys in the set have the "algo" field set. Currently, only public keys
* for algorithms ES256, ES384, ES512, RS256, RS384 and RS512 are supported. JWK is defined in
* https://www.rfc-editor.org/rfc/rfc7517.txt.
*/
public static KeysetHandle toKeysetHandle(String jwkSet, KeyAccess keyAccess)
throws IOException, GeneralSecurityException {
return KeysetHandle.readNoSecret(new JwkSetReader(jwkSet));
}
private static final String JWT_ECDSA_PUBLIC_KEY_URL =
"type.googleapis.com/google.crypto.tink.JwtEcdsaPublicKey";
private static final String JWT_RSA_SSA_PKCS1_PUBLIC_KEY_URL =
"type.googleapis.com/google.crypto.tink.JwtRsaSsaPkcs1PublicKey";
private static final String JWT_RSA_SSA_PSS_PUBLIC_KEY_URL =
"type.googleapis.com/google.crypto.tink.JwtRsaSsaPssPublicKey";
private static final class JwkSetWriter implements KeysetWriter {
private final OutputStream outputStream;
private JwkSetWriter(OutputStream outputStream) {
this.outputStream = outputStream;
}
@Override
public void write(Keyset keyset) throws IOException {
JsonObject jwkSet;
try {
jwkSet = convertKeyset(keyset);
} catch (GeneralSecurityException exception) {
throw new IOException(exception);
}
outputStream.write(jwkSet.toString().getBytes(UTF_8));
}
@Override
public void write(EncryptedKeyset keyset) {
throw new UnsupportedOperationException("EncryptedKeyset are not implemented");
}
private static JsonObject convertKeyset(Keyset keyset)
throws IOException, GeneralSecurityException {
JsonArray keys = new JsonArray();
for (Keyset.Key key : keyset.getKeyList()) {
if (key.getStatus() != KeyStatusType.ENABLED) {
continue;
}
if (key.getKeyData().getKeyMaterialType() != KeyMaterialType.ASYMMETRIC_PUBLIC) {
throw new GeneralSecurityException("only public keys can be converted");
}
switch (key.getKeyData().getTypeUrl()) {
case JWT_ECDSA_PUBLIC_KEY_URL:
keys.add(convertJwtEcdsaKey(key));
break;
case JWT_RSA_SSA_PKCS1_PUBLIC_KEY_URL:
keys.add(convertJwtRsaSsaPkcs1(key));
break;
case JWT_RSA_SSA_PSS_PUBLIC_KEY_URL:
throw new GeneralSecurityException("JwtRsaSsaPssPublicKey is not yet implemented");
default:
throw new GeneralSecurityException(
String.format("key type %s is not supported", key.getKeyData().getTypeUrl()));
}
}
JsonObject jwkSet = new JsonObject();
jwkSet.add("keys", keys);
return jwkSet;
}
private static JsonObject convertJwtEcdsaKey(Keyset.Key key)
throws IOException, GeneralSecurityException {
if (key.getOutputPrefixType() != OutputPrefixType.RAW) {
throw new GeneralSecurityException("only OutputPrefixType.RAW is supported");
}
JwtEcdsaPublicKey jwtEcdsaPublicKey =
JwtEcdsaPublicKey.parseFrom(
key.getKeyData().getValue(), ExtensionRegistryLite.getEmptyRegistry());
String alg;
String crv;
switch (jwtEcdsaPublicKey.getAlgorithm()) {
case ES256:
alg = "ES256";
crv = "P-256";
break;
case ES384:
alg = "ES384";
crv = "P-384";
break;
case ES512:
alg = "ES512";
crv = "P-521";
break;
default:
throw new GeneralSecurityException("unknown algorithm");
}
JsonObject jsonKey = new JsonObject();
jsonKey.addProperty("kty", "EC");
jsonKey.addProperty("crv", crv);
jsonKey.addProperty("x", Base64.urlSafeEncode(jwtEcdsaPublicKey.getX().toByteArray()));
jsonKey.addProperty("y", Base64.urlSafeEncode(jwtEcdsaPublicKey.getY().toByteArray()));
jsonKey.addProperty("use", "sig");
jsonKey.addProperty("alg", alg);
JsonArray keyOps = new JsonArray();
keyOps.add("verify");
jsonKey.add("key_ops", keyOps);
return jsonKey;
}
private static JsonObject convertJwtRsaSsaPkcs1(Keyset.Key key)
throws IOException, GeneralSecurityException {
if (key.getOutputPrefixType() != OutputPrefixType.RAW) {
throw new GeneralSecurityException("only OutputPrefixType.RAW is supported");
}
JwtRsaSsaPkcs1PublicKey jwtRsaSsaPkcs1PublicKey =
JwtRsaSsaPkcs1PublicKey.parseFrom(
key.getKeyData().getValue(), ExtensionRegistryLite.getEmptyRegistry());
String alg;
switch (jwtRsaSsaPkcs1PublicKey.getAlgorithm()) {
case RS256:
alg = "RS256";
break;
case RS384:
alg = "RS384";
break;
case RS512:
alg = "RS512";
break;
default:
throw new GeneralSecurityException("unknown algorithm");
}
JsonObject jsonKey = new JsonObject();
jsonKey.addProperty("kty", "RSA");
jsonKey.addProperty("n", Base64.urlSafeEncode(jwtRsaSsaPkcs1PublicKey.getN().toByteArray()));
jsonKey.addProperty("e", Base64.urlSafeEncode(jwtRsaSsaPkcs1PublicKey.getE().toByteArray()));
jsonKey.addProperty("use", "sig");
jsonKey.addProperty("alg", alg);
JsonArray keyOps = new JsonArray();
keyOps.add("verify");
jsonKey.add("key_ops", keyOps);
return jsonKey;
}
}
private static final class JwkSetReader implements KeysetReader {
private final String input;
private JwkSetReader(String input) {
this.input = input;
}
@Override
public Keyset read() throws IOException {
try {
JsonReader jsonReader = new JsonReader(new StringReader(input));
jsonReader.setLenient(false);
return convertKeyset(Streams.parse(jsonReader).getAsJsonObject());
} catch (IllegalStateException | JsonParseException | StackOverflowError ex) {
throw new IOException("invalid JSON: " + ex);
}
}
@Override
public EncryptedKeyset readEncrypted() {
throw new UnsupportedOperationException("EncryptedKeyset are not implemented");
}
private String getStringItem(JsonObject obj, String name) throws IOException {
if (!obj.has(name)) {
throw new IOException(name + " not found");
}
if (!obj.get(name).isJsonPrimitive() || !obj.get(name).getAsJsonPrimitive().isString()) {
throw new IOException(name + " is not a string");
}
return obj.get(name).getAsString();
}
private void expectStringItem(JsonObject obj, String name, String expectedValue)
throws IOException {
String value = getStringItem(obj, name);
if (!value.equals(expectedValue)) {
throw new IOException("unexpected " + name + " value: " + value);
}
}
private void validateUseIsSig(JsonObject jsonKey) throws IOException {
if (!jsonKey.has("use")) {
return;
}
expectStringItem(jsonKey, "use", "sig");
}
private void validateKeyOpsIsVerify(JsonObject jsonKey) throws IOException {
if (!jsonKey.has("key_ops")) {
return;
}
JsonArray keyOps = jsonKey.get("key_ops").getAsJsonArray();
if (keyOps.size() != 1) {
throw new IOException("unexpected key_ops: " + keyOps);
}
if (!keyOps.get(0).isJsonPrimitive() || !keyOps.get(0).getAsJsonPrimitive().isString()) {
throw new IOException("key_ops is not a string");
}
if (!keyOps.get(0).getAsString().equals("verify")) {
throw new IOException("unexpected keyOps value: " + keyOps.get(0).getAsString());
}
}
private Keyset convertKeyset(JsonObject jsonKeyset) throws IOException {
Keyset.Builder builder = Keyset.newBuilder();
JsonArray jsonKeys = jsonKeyset.get("keys").getAsJsonArray();
for (JsonElement element : jsonKeys) {
JsonObject jsonKey = element.getAsJsonObject();
String algPrefix = getStringItem(jsonKey, "alg").substring(0, 2);
switch (algPrefix) {
case "RS":
builder.addKey(convertToRsaSsaPkcs1Key(jsonKey));
break;
case "ES":
builder.addKey(convertEcdsaKey(jsonKey));
break;
// TODO(juerg): Add support for "PS".
default:
throw new IOException("unexpected alg value: " + getStringItem(jsonKey, "alg"));
}
}
return builder.build();
}
private Keyset.Key convertToRsaSsaPkcs1Key(JsonObject jsonKey) throws IOException {
JwtRsaSsaPkcs1Algorithm algorithm;
switch (getStringItem(jsonKey, "alg")) {
case "RS256":
algorithm = JwtRsaSsaPkcs1Algorithm.RS256;
break;
case "RS384":
algorithm = JwtRsaSsaPkcs1Algorithm.RS384;
break;
case "RS512":
algorithm = JwtRsaSsaPkcs1Algorithm.RS512;
break;
default:
throw new IOException("Unknown Rsa Algorithm: " + getStringItem(jsonKey, "alg"));
}
if (jsonKey.has("p")
|| jsonKey.has("q")
|| jsonKey.has("dq")
|| jsonKey.has("dq")
|| jsonKey.has("d")
|| jsonKey.has("qi")) {
throw new UnsupportedOperationException("importing RSA private keys is not implemented");
}
expectStringItem(jsonKey, "kty", "RSA");
validateUseIsSig(jsonKey);
validateKeyOpsIsVerify(jsonKey);
JwtRsaSsaPkcs1PublicKey pkcs1PubKey =
JwtRsaSsaPkcs1PublicKey.newBuilder()
.setVersion(0)
.setAlgorithm(algorithm)
.setE(ByteString.copyFrom(Base64.urlSafeDecode(getStringItem(jsonKey, "e"))))
.setN(ByteString.copyFrom(Base64.urlSafeDecode(getStringItem(jsonKey, "n"))))
.build();
KeyData keyData =
KeyData.newBuilder()
.setTypeUrl(JWT_RSA_SSA_PKCS1_PUBLIC_KEY_URL)
.setValue(pkcs1PubKey.toByteString())
.setKeyMaterialType(KeyMaterialType.ASYMMETRIC_PUBLIC)
.build();
return Keyset.Key.newBuilder()
.setStatus(KeyStatusType.ENABLED)
.setOutputPrefixType(OutputPrefixType.RAW)
.setKeyData(keyData)
.build();
}
private Keyset.Key convertEcdsaKey(JsonObject jsonKey) throws IOException {
JwtEcdsaAlgorithm algorithm;
switch (getStringItem(jsonKey, "alg")) {
case "ES256":
expectStringItem(jsonKey, "crv", "P-256");
algorithm = JwtEcdsaAlgorithm.ES256;
break;
case "ES384":
expectStringItem(jsonKey, "crv", "P-384");
algorithm = JwtEcdsaAlgorithm.ES384;
break;
case "ES512":
expectStringItem(jsonKey, "crv", "P-521");
algorithm = JwtEcdsaAlgorithm.ES512;
break;
default:
throw new IOException("Unknown Ecdsa Algorithm: " + getStringItem(jsonKey, "alg"));
}
if (jsonKey.has("d")) {
throw new UnsupportedOperationException("importing ECDSA private keys is not implemented");
}
expectStringItem(jsonKey, "kty", "EC");
validateUseIsSig(jsonKey);
validateKeyOpsIsVerify(jsonKey);
JwtEcdsaPublicKey ecdsaPubKey =
JwtEcdsaPublicKey.newBuilder()
.setVersion(0)
.setAlgorithm(algorithm)
.setX(ByteString.copyFrom(Base64.urlSafeDecode(getStringItem(jsonKey, "x"))))
.setY(ByteString.copyFrom(Base64.urlSafeDecode(getStringItem(jsonKey, "y"))))
.build();
KeyData keyData =
KeyData.newBuilder()
.setTypeUrl(JWT_ECDSA_PUBLIC_KEY_URL)
.setValue(ecdsaPubKey.toByteString())
.setKeyMaterialType(KeyMaterialType.ASYMMETRIC_PUBLIC)
.build();
return Keyset.Key.newBuilder()
.setStatus(KeyStatusType.ENABLED)
.setOutputPrefixType(OutputPrefixType.RAW)
.setKeyData(keyData)
.build();
}
}
private JwkSetConverter() {}
}