Signatures work

This commit is contained in:
Christian Basler 2015-05-15 15:25:06 +02:00
parent ed14e95d70
commit cb1392e0f4
5 changed files with 119 additions and 16 deletions

View File

@ -17,6 +17,7 @@
package ch.dissem.bitmessage.entity; package ch.dissem.bitmessage.entity;
import ch.dissem.bitmessage.entity.payload.ObjectPayload; import ch.dissem.bitmessage.entity.payload.ObjectPayload;
import ch.dissem.bitmessage.entity.payload.ObjectType;
import ch.dissem.bitmessage.entity.payload.Pubkey; import ch.dissem.bitmessage.entity.payload.Pubkey;
import ch.dissem.bitmessage.entity.valueobject.InventoryVector; import ch.dissem.bitmessage.entity.valueobject.InventoryVector;
import ch.dissem.bitmessage.entity.valueobject.PrivateKey; import ch.dissem.bitmessage.entity.valueobject.PrivateKey;
@ -98,30 +99,47 @@ public class ObjectMessage implements MessagePayload {
return payload.isSigned(); return payload.isSigned();
} }
private byte[] getBytesToSign() throws IOException { private byte[] getBytesToSign() {
try {
ByteArrayOutputStream out = new ByteArrayOutputStream(); ByteArrayOutputStream out = new ByteArrayOutputStream();
writeHeaderWithoutNonce(out); writeHeaderWithoutNonce(out);
payload.writeBytesToSign(out); payload.writeBytesToSign(out);
return out.toByteArray(); return out.toByteArray();
} catch (IOException e) {
throw new RuntimeException(e);
}
} }
public void sign(PrivateKey key) { public void sign(PrivateKey key) {
// TODO if (payload.isSigned()) {
// Security. payload.setSignature(Security.getSignature(getBytesToSign(), key));
}
} }
public void decrypt(PrivateKey key) throws IOException { public void decrypt(PrivateKey key) throws IOException {
if (payload instanceof Encrypted){ if (payload instanceof Encrypted) {
((Encrypted) payload).decrypt(key.getPrivateEncryptionKey()); ((Encrypted) payload).decrypt(key.getPrivateEncryptionKey());
} }
} }
public void decrypt(byte[] privateEncryptionKey) throws IOException { public void decrypt(byte[] privateEncryptionKey) throws IOException {
if (payload instanceof Encrypted){ if (payload instanceof Encrypted) {
((Encrypted) payload).decrypt(privateEncryptionKey); ((Encrypted) payload).decrypt(privateEncryptionKey);
} }
} }
public void encrypt(byte[] publicEncryptionKey) throws IOException{
if (payload instanceof Encrypted){
((Encrypted) payload).encrypt(publicEncryptionKey);
}
}
public void encrypt(Pubkey publicKey) throws IOException{
if (payload instanceof Encrypted){
((Encrypted) payload).encrypt(publicKey.getEncryptionKey());
}
}
public boolean isSignatureValid(Pubkey pubkey) throws IOException { public boolean isSignatureValid(Pubkey pubkey) throws IOException {
if (isEncrypted()) throw new IllegalStateException("Payload must be decrypted first"); if (isEncrypted()) throw new IllegalStateException("Payload must be decrypted first");
return Security.isSignatureValid(getBytesToSign(), payload.getSignature(), pubkey); return Security.isSignatureValid(getBytesToSign(), payload.getSignature(), pubkey);
@ -176,6 +194,11 @@ public class ObjectMessage implements MessagePayload {
return this; return this;
} }
public Builder objectType(ObjectType objectType) {
this.objectType = objectType.getNumber();
return this;
}
public Builder version(long version) { public Builder version(long version) {
this.version = version; this.version = version;
return this; return this;

View File

@ -123,4 +123,9 @@ public class V4Pubkey extends Pubkey implements Encrypted {
public void setSignature(byte[] signature) { public void setSignature(byte[] signature) {
decrypted.setSignature(signature); decrypted.setSignature(signature);
} }
@Override
public boolean isSigned() {
return true;
}
} }

View File

@ -22,14 +22,11 @@ import ch.dissem.bitmessage.factory.Factory;
import ch.dissem.bitmessage.ports.ProofOfWorkEngine; import ch.dissem.bitmessage.ports.ProofOfWorkEngine;
import org.bouncycastle.asn1.x9.X9ECParameters; import org.bouncycastle.asn1.x9.X9ECParameters;
import org.bouncycastle.crypto.ec.CustomNamedCurves; import org.bouncycastle.crypto.ec.CustomNamedCurves;
import org.bouncycastle.jce.ECNamedCurveTable;
import org.bouncycastle.jce.ECPointUtil;
import org.bouncycastle.jce.provider.BouncyCastleProvider; import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.jce.spec.ECNamedCurveSpec;
import org.bouncycastle.jce.spec.ECParameterSpec; import org.bouncycastle.jce.spec.ECParameterSpec;
import org.bouncycastle.jce.spec.ECPrivateKeySpec;
import org.bouncycastle.jce.spec.ECPublicKeySpec; import org.bouncycastle.jce.spec.ECPublicKeySpec;
import org.bouncycastle.math.ec.ECPoint; import org.bouncycastle.math.ec.ECPoint;
import org.bouncycastle.util.encoders.Hex;
import org.slf4j.Logger; import org.slf4j.Logger;
import org.slf4j.LoggerFactory; import org.slf4j.LoggerFactory;
@ -185,7 +182,6 @@ public class Security {
} }
public static boolean isSignatureValid(byte[] bytesToSign, byte[] signature, Pubkey pubkey) { public static boolean isSignatureValid(byte[] bytesToSign, byte[] signature, Pubkey pubkey) {
ECPoint W = keyToPoint(pubkey.getSigningKey());
try { try {
ECParameterSpec spec = new ECParameterSpec( ECParameterSpec spec = new ECParameterSpec(
EC_CURVE_PARAMETERS.getCurve(), EC_CURVE_PARAMETERS.getCurve(),
@ -195,7 +191,8 @@ public class Security {
EC_CURVE_PARAMETERS.getSeed() EC_CURVE_PARAMETERS.getSeed()
); );
KeySpec keySpec = new ECPublicKeySpec(W, spec); ECPoint Q = keyToPoint(pubkey.getSigningKey());
KeySpec keySpec = new ECPublicKeySpec(Q, spec);
PublicKey publicKey = KeyFactory.getInstance("ECDSA", "BC").generatePublic(keySpec); PublicKey publicKey = KeyFactory.getInstance("ECDSA", "BC").generatePublic(keySpec);
Signature sig = Signature.getInstance("ECDSA", "BC"); Signature sig = Signature.getInstance("ECDSA", "BC");
@ -206,4 +203,27 @@ public class Security {
throw new RuntimeException(e); throw new RuntimeException(e);
} }
} }
public static byte[] getSignature(byte[] data, ch.dissem.bitmessage.entity.valueobject.PrivateKey privateKey) {
try {
ECParameterSpec spec = new ECParameterSpec(
EC_CURVE_PARAMETERS.getCurve(),
EC_CURVE_PARAMETERS.getG(),
EC_CURVE_PARAMETERS.getN(),
EC_CURVE_PARAMETERS.getH(),
EC_CURVE_PARAMETERS.getSeed()
);
BigInteger d = keyToBigInt(privateKey.getPrivateSigningKey());
KeySpec keySpec = new ECPrivateKeySpec(d, spec);
PrivateKey privKey = KeyFactory.getInstance("ECDSA", "BC").generatePrivate(keySpec);
Signature sig = Signature.getInstance("ECDSA", "BC");
sig.initSign(privKey);
sig.update(data);
return sig.sign();
} catch (Exception e) {
throw new RuntimeException(e);
}
}
} }

View File

@ -14,11 +14,12 @@
* limitations under the License. * limitations under the License.
*/ */
package ch.dissem.bitmessage.utils; package ch.dissem.bitmessage;
import ch.dissem.bitmessage.entity.payload.CryptoBox; import ch.dissem.bitmessage.entity.payload.CryptoBox;
import ch.dissem.bitmessage.entity.payload.GenericPayload; import ch.dissem.bitmessage.entity.payload.GenericPayload;
import ch.dissem.bitmessage.entity.valueobject.PrivateKey; import ch.dissem.bitmessage.entity.valueobject.PrivateKey;
import ch.dissem.bitmessage.utils.Security;
import org.junit.Ignore; import org.junit.Ignore;
import org.junit.Test; import org.junit.Test;

View File

@ -0,0 +1,54 @@
/*
* Copyright 2015 Christian Basler
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package ch.dissem.bitmessage;
import ch.dissem.bitmessage.entity.BitmessageAddress;
import ch.dissem.bitmessage.entity.ObjectMessage;
import ch.dissem.bitmessage.entity.payload.ObjectType;
import ch.dissem.bitmessage.entity.payload.Pubkey;
import ch.dissem.bitmessage.entity.valueobject.PrivateKey;
import ch.dissem.bitmessage.utils.TestUtils;
import org.junit.Test;
import java.io.IOException;
import static org.junit.Assert.assertTrue;
public class SignatureTest {
@Test
public void ensureValidationWorks() throws IOException {
ObjectMessage object = TestUtils.loadObjectMessage(3, "V3Pubkey.payload");
Pubkey pubkey = (Pubkey) object.getPayload();
assertTrue(object.isSignatureValid(pubkey));
}
@Test
public void ensureSigningWorks() throws IOException {
PrivateKey privateKey = new PrivateKey(1, 1000, 1000);
BitmessageAddress address = new BitmessageAddress(privateKey);
ObjectMessage objectMessage = new ObjectMessage.Builder()
.objectType(ObjectType.PUBKEY)
.stream(1)
.version(1)
.payload(privateKey.getPubkey())
.build();
objectMessage.sign(privateKey);
assertTrue(objectMessage.isSignatureValid(privateKey.getPubkey()));
}
}