make in memo keystore persistent. We really need a real keystore .. anyway, good for testing anyway.

Author: thsc42

src/main/java/net/sharksystem/asap/crypto/InMemoASAPKeyStore.java

@@ -1,18 +1,25 @@
 package net.sharksystem.asap.crypto;
 
+import net.sharksystem.SharkException;
+import net.sharksystem.asap.ASAPException;
 import net.sharksystem.asap.ASAPSecurityException;
+import net.sharksystem.asap.utils.ASAPSerialization;
+import net.sharksystem.fs.ExtraData;
 import net.sharksystem.utils.Log;
 
 import javax.crypto.SecretKey;
 import java.io.*;
 import java.security.*;
 import java.security.spec.InvalidKeySpecException;
+import java.security.spec.PKCS8EncodedKeySpec;
 import java.security.spec.X509EncodedKeySpec;
 import java.util.HashMap;
 
 public class InMemoASAPKeyStore implements ASAPKeyStore {
+    private PrivateKey privateKey;
+    private PublicKey publicKey;
     private KeyPair keyPair;
-    private final CharSequence ownerID;
+    private CharSequence ownerID;
     private long keyPairCreationTime = 0;
 
     // for debugging only - we don't have private key in real apps
@@ -35,10 +42,16 @@ public InMemoASAPKeyStore(CharSequence ownerID) throws ASAPSecurityException {
      * Setup key store with a key pair
      * @param ownerID
      * @param ownerKeyPair
+     * @deprecated
      */
     public InMemoASAPKeyStore(CharSequence ownerID, KeyPair ownerKeyPair, long keyPairCreationTime) {
         this.ownerID = ownerID;
         this.keyPair = ownerKeyPair;
+        if(ownerKeyPair != null) {
+            this.privateKey = ownerKeyPair.getPrivate();
+            this.publicKey = ownerKeyPair.getPublic();
+        }
+
         this.keyPairCreationTime = keyPairCreationTime;
     }
 
@@ -73,13 +86,12 @@ public int getSymmetricKeyLen() {
         return ASAPKeyStore.DEFAULT_SYMMETRIC_KEY_SIZE;
     }
 
-    private String getLogStart() {
-        return this.getClass().getSimpleName() + ": ";
-    }
-
     public void generateKeyPair() throws ASAPSecurityException {
         this.setKeyPair(this.generateNewKeyPair());
+        this.privateKey = this.keyPair.getPrivate();
+        this.publicKey = this.keyPair.getPublic();
         this.keyPairCreationTime = System.currentTimeMillis();
+        this.save();
     }
 
     private KeyPair generateNewKeyPair() throws ASAPSecurityException {
@@ -107,15 +119,22 @@ public KeyPair createTestPeer(String id) throws ASAPSecurityException {
         return keyPair;
     }
 
+    private void checkKeyPairExistence() throws ASAPSecurityException {
+        if(this.keyPair == null) {
+            Log.writeLog(this, "create new keypair since requested but missing");
+            this.generateKeyPair();
+        }
+    }
+
     @Override
     public PrivateKey getPrivateKey() throws ASAPSecurityException {
-        if(this.keyPair == null) throw new ASAPSecurityException("private key does not exist");
+        this.checkKeyPairExistence();
         return this.keyPair.getPrivate();
     }
 
     @Override
     public PublicKey getPublicKey() throws ASAPSecurityException {
-        if(this.keyPair == null) throw new ASAPSecurityException("private key does not exist");
+        this.checkKeyPairExistence();
         return this.keyPair.getPublic();
     }
 
@@ -184,7 +203,6 @@ public String getAsymmetricSigningAlgorithm() {
     }
 
     public void addKeyPair(String peerID, KeyPair keyPair) {
-
         this.peerKeyPairs.put(peerID, keyPair);
     }
 
@@ -242,4 +260,80 @@ public void readPublicKey(CharSequence peer, InputStream is) throws ASAPSecurity
         // store it
         this.putPublicKey(peer, publicKey);
     }
+
+    //////////////////////////////////////////////////////////////////////////////////////////////////////////////
+    //                                                persist                                                   //
+    //////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+    private ExtraData mementoExtraData;
+    private CharSequence mementoKey;
+
+    public void setMementoTarget(ExtraData extraData, CharSequence key) {
+        this.mementoExtraData = extraData;
+        this.mementoKey = key;
+    }
+
+    private void save() {
+        if(this.mementoExtraData != null && this.mementoKey != null) {
+            try {
+                this.mementoExtraData.putExtra(this.mementoKey, this.createMemento());
+            } catch (IOException | SharkException e) {
+                Log.writeLogErr(this, "cannot write memento: " + e.getLocalizedMessage());
+            }
+        } else {
+            Log.writeLog(this, "cannot write data - no persistent storage");
+        }
+    }
+
+    byte[] createMemento() throws ASAPSecurityException, IOException {
+        ByteArrayOutputStream baos = new ByteArrayOutputStream();
+
+        // encoded private key
+        ASAPSerialization.writeByteArray(this.getPrivateKey().getEncoded(), baos);
+        // private key algorithm
+        ASAPSerialization.writeCharSequenceParameter(this.getPrivateKey().getAlgorithm(), baos);
+        // private key format
+        ASAPSerialization.writeCharSequenceParameter(this.getPrivateKey().getFormat(), baos);
+
+        // public key encoded
+        ASAPSerialization.writeByteArray(this.getPublicKey().getEncoded(), baos);
+        // public key algorithm
+        ASAPSerialization.writeCharSequenceParameter(this.getPublicKey().getAlgorithm(), baos);
+        // public key format
+        ASAPSerialization.writeCharSequenceParameter(this.getPublicKey().getFormat(), baos);
+
+        // creation time
+        ASAPSerialization.writeLongParameter(this.keyPairCreationTime, baos);
+
+        // ownerID
+        ASAPSerialization.writeCharSequenceParameter(this.ownerID, baos);
+
+        return baos.toByteArray();
+    }
+
+    public void restoreFromMemento(byte[] mementoData) throws IOException, ASAPException {
+        ByteArrayInputStream bais = new ByteArrayInputStream(mementoData);
+
+        byte[] privateKeyBytes = ASAPSerialization.readByteArray(bais);
+        String privateKeyAlgorithm = ASAPSerialization.readCharSequenceParameter(bais);
+        String privateKeyFormat = ASAPSerialization.readCharSequenceParameter(bais);
+
+        byte[] publicKeyBytes = ASAPSerialization.readByteArray(bais);
+        String publicKeyAlgorithm = ASAPSerialization.readCharSequenceParameter(bais);
+        String publicKeyFormat = ASAPSerialization.readCharSequenceParameter(bais);
+
+        // reproduce private key
+        // as to be seen, pretty limited alg/format support yet :/
+        try {
+            KeyFactory kf = KeyFactory.getInstance("RSA");
+            this.privateKey = kf.generatePrivate(new PKCS8EncodedKeySpec(privateKeyBytes));
+            this.publicKey = kf.generatePublic(new X509EncodedKeySpec(publicKeyBytes));
+        } catch (NoSuchAlgorithmException | InvalidKeySpecException e) {
+            throw new ASAPException("cannot restore keystore form memento: " + e.getLocalizedMessage());
+        }
+
+        // reset those simple data after that critical stuff.
+        this.keyPairCreationTime = ASAPSerialization.readLongParameter(bais);
+        this.ownerID = ASAPSerialization.readCharSequenceParameter(bais);
+    }
 }

src/main/java/net/sharksystem/asap/engine/ASAPInternalPeerFS.java

@@ -702,7 +702,7 @@ public ASAPKeyStore getASAPKeyStore() throws ASAPSecurityException {
 
     public ExtraData getExtraData() throws SharkException, IOException {
         if(this.extraData == null) {
-            this.extraData = new ExtraDataFS(this.rootFolderName);
+            this.extraData = new ExtraDataFS(this.rootFolderName, "asapPeerExtraData");
         }
 
         return this.extraData;
@@ -718,7 +718,7 @@ public void putExtra(CharSequence key, Integer value) throws IOException, SharkE
     }
 
     @Override
-    public void putExtra(CharSequence key, String value) throws IOException, SharkException {
+    public void putExtra(CharSequence key, CharSequence value) throws IOException, SharkException {
         this.getExtraData().putExtra(key, value);
     }
 

src/main/java/net/sharksystem/fs/ExtraData.java

@@ -11,11 +11,17 @@ public interface ExtraData {
 
     void putExtra(CharSequence key, Integer value) throws IOException, SharkException;
 
-    void putExtra(CharSequence key, String value) throws IOException, SharkException;
+    void putExtra(CharSequence key, CharSequence value) throws IOException, SharkException;
 
     void putExtra(CharSequence key, Set<CharSequence> value) throws IOException, SharkException;
 
-    // get a parameter by a key
+    /** get a parameter by a key
+     *
+     * @param key
+     * @return
+     * @throws IOException
+     * @throws SharkException if no such key exists
+     */
     byte[] getExtra(CharSequence key) throws IOException, SharkException;
 
     int getExtraInteger(CharSequence key) throws IOException, SharkException;

src/main/java/net/sharksystem/fs/ExtraDataFS.java

@@ -10,19 +10,21 @@
 import java.util.Set;
 
 public class ExtraDataFS implements ExtraData {
-    public static final String EXTRA_FILE_EXTENSION = ".extraData";
-    private final CharSequence fileExtension;
+    public static final String DEFAULT_FILE_NAME = ".extraData";
+    private final CharSequence fileName;
     private final CharSequence rootFolderName;
 
     private Map<CharSequence, byte[]> extraData = new HashMap<>();
 
     public ExtraDataFS(CharSequence rootFolderName) throws SharkException, IOException {
-        this(rootFolderName, EXTRA_FILE_EXTENSION);
+        this(rootFolderName, DEFAULT_FILE_NAME);
     }
 
     public ExtraDataFS(CharSequence rootFolder, CharSequence fileName) throws IOException, SharkException {
         this.rootFolderName = rootFolder;
-        this.fileExtension = fileName;
+        // hide file in any case
+        if(fileName.charAt(0) != '.') this.fileName = "." + fileName;
+        else this.fileName = fileName;
         File rootFolderFile = new File(rootFolder.toString());
         if(!rootFolderFile.exists()) {
             // create
@@ -32,7 +34,7 @@ public ExtraDataFS(CharSequence rootFolder, CharSequence fileName) throws IOExce
     }
 
     private File getExtraFile() {
-        String extraFileName = this.rootFolderName + "/" + EXTRA_FILE_EXTENSION;
+        String extraFileName = this.rootFolderName + "/" + fileName;
         return new File(extraFileName);
     }
 
@@ -146,7 +148,7 @@ public void putExtra(CharSequence key, Integer value) throws IOException, SharkE
     }
 
     @Override
-    public void putExtra(CharSequence key, String value) throws IOException, SharkException {
+    public void putExtra(CharSequence key, CharSequence value) throws IOException, SharkException {
         ByteArrayOutputStream baos = new ByteArrayOutputStream();
         ASAPSerialization.writeCharSequenceParameter(value, baos);
         this.putExtra(key, baos.toByteArray());
@@ -165,7 +167,9 @@ public void putExtra(CharSequence key, Set<CharSequence> value) throws IOExcepti
      */
     public byte[] getExtra(CharSequence key) throws IOException, SharkException {
         this.restoreExtraData();
-        return this.extraData.get(key);
+        byte[] value = this.extraData.get(key);
+        if(value == null) throw new SharkException("no value for key" + key);
+        return value;
     }
 
     @Override

src/test/java/net/sharksystem/asap/crypto/PersistInMemoKeystore.java

@@ -0,0 +1,24 @@
+package net.sharksystem.asap.crypto;
+
+import net.sharksystem.asap.ASAPException;
+import net.sharksystem.asap.ASAPSecurityException;
+import org.junit.Test;
+
+import java.io.IOException;
+
+import static net.sharksystem.utils.testsupport.TestConstants.ALICE_ID;
+
+public class PersistInMemoKeystore {
+    /**
+     * It is not really a good idea to implement a serialization like this. It is extremely
+     * vulnerable... But is makes testing a bit easier.
+     */
+    @Test
+    public void writeAndRestore() throws ASAPException, IOException {
+        InMemoASAPKeyStore imKeystore = new InMemoASAPKeyStore("TestPeer");
+        imKeystore.generateKeyPair();
+
+        byte[] memento = imKeystore.createMemento();
+        imKeystore.restoreFromMemento(memento);
+    }
+}