Signing finished. Must use AES instead of RSA for encryption though. Much easier on the long run and faster.

Author: thsc42

src/net/sharksystem/asap/protocol/ASAP_Modem_Impl.java

@@ -117,13 +117,25 @@ public ASAP_PDU_1_0 readPDU(InputStream is) throws IOException, ASAPException {
         cmd = (byte)(cmd & CMD_MASK);
 
         if(encrypted) {
-            CryptoSession cryptoSession = new CryptoSession(this.signAndEncryptionKeyStorage);
-            InputStream decryptedIS = cryptoSession.decrypt(is);
-            is = decryptedIS;
+            try {
+                CryptoSession cryptoSession = new CryptoSession(this.signAndEncryptionKeyStorage);
+                InputStream decryptedIS = cryptoSession.decrypt(is);
+                is = decryptedIS;
+            }
+            catch(ASAPSecurityException e) {
+                System.out.println(this.getLogStart() + "cannot decrypt message. TODO: Store (according to some rules) and forward it?!");
+            }
         }
 
         int flagsInt = PDU_Impl.readByte(is);
 
+        InputStream realIS = is;
+        CryptoSession verifyCryptoSession = null;
+        if(PDU_Impl.flagSet(PDU_Impl.SIGNED_TO_BIT_POSITION, flagsInt)) {
+            verifyCryptoSession = new CryptoSession(this.signAndEncryptionKeyStorage);
+            is = verifyCryptoSession.setupInputStreamListener(is, flagsInt);
+        }
+
         PDU_Impl pdu = null;
 
         switch(cmd) {
@@ -133,15 +145,12 @@ public ASAP_PDU_1_0 readPDU(InputStream is) throws IOException, ASAPException {
             default: throw new ASAPException("unknown command: " + cmd);
         }
 
-        if(pdu.signed()) {
+        if(verifyCryptoSession != null) {
             String sender = pdu.getSender();
             if(sender != null) {
                 // read signature and try to verify
                 try {
-                    CryptoSession cryptoSession = new CryptoSession(this.signAndEncryptionKeyStorage);
-                    if(cryptoSession.verify(sender, is)) {
-                        pdu.setVerified(true);
-                    }
+                    pdu.setVerified(verifyCryptoSession.verify(sender, realIS));
                 }
                 catch(ASAPException e) {
                     System.out.println(this.getLogStart() + " cannot verify message");

src/net/sharksystem/asap/protocol/AssimilationPDU_Impl.java

@@ -57,7 +57,7 @@ static void sendPDU(CharSequence peer, CharSequence recipientPeer, CharSequence
         // create parameter bytes
         int flags = 0;
         flags = PDU_Impl.setFlag(peer, flags, SENDER_BIT_POSITION);
-        flags = PDU_Impl.setFlag(recipientPeer, flags, RECIPIENT_PEER_BIT_POSITION);
+        flags = PDU_Impl.setFlag(recipientPeer, flags, RECIPIENT_BIT_POSITION);
         flags = PDU_Impl.setFlag(channel, flags, CHANNEL_BIT_POSITION);
         flags = PDU_Impl.setFlag(era, flags, ERA_BIT_POSITION);
         flags = PDU_Impl.setFlag(offsets, flags, OFFSETS_BIT_POSITION);

src/net/sharksystem/asap/protocol/CryptoSession.java

@@ -12,6 +12,7 @@
 import java.security.*;
 
 class CryptoSession {
+    public static final int MAX_ENCRYPTION_BLOCK_SIZE = 240;
     private Signature signature;
     private CharSequence recipient;
     private ASAPReadonlyKeyStorage keyStorage;
@@ -22,6 +23,7 @@ class CryptoSession {
     private OutputStream effectivOS;
     private OutputStream realOS;
     private ByteArrayOutputStream asapMessageOS;
+    private InputStreamCopy verifyStream;
 
     CryptoSession(ASAPReadonlyKeyStorage keyStorage) {
         this.keyStorage = keyStorage;
@@ -157,7 +159,18 @@ public void finish() throws ASAPSecurityException {
             try {
                 // encrypted asap message
                 byte[] asapMessageAsBytes = this.asapMessageOS.toByteArray();
-                byte[] encryptedBytes = this.cipher.doFinal(asapMessageAsBytes);
+
+                // TODO: create AES key, encrypt with RSA, send and encrypt rest with that AES key
+
+                // that stuff will not work.
+                int i = 0;
+                while(i +  MAX_ENCRYPTION_BLOCK_SIZE < asapMessageAsBytes.length) {
+                    this.cipher.update(asapMessageAsBytes, i, MAX_ENCRYPTION_BLOCK_SIZE);
+                    i += MAX_ENCRYPTION_BLOCK_SIZE;
+                }
+
+                int lastStepLen = asapMessageAsBytes.length - i;
+                byte[] encryptedBytes = this.cipher.doFinal(asapMessageAsBytes, i, lastStepLen);
 
                 this.writeByteArray(encryptedBytes, this.realOS);
                 this.realOS.write(encryptedBytes);
@@ -168,6 +181,39 @@ public void finish() throws ASAPSecurityException {
     }
 
     ////////////////////////////////// verify
+    private class InputStreamCopy extends InputStream {
+        private final InputStream is;
+        ByteArrayOutputStream copy = new ByteArrayOutputStream();
+
+        InputStreamCopy(byte[] bytes, InputStream is) throws IOException {
+            // add byte if any
+            if(bytes != null && bytes.length > 0) {
+                copy.write(bytes);
+            }
+
+            this.is = is;
+        }
+
+        @Override
+        public int read() throws IOException {
+            int read = is.read();
+            copy.write(read);
+            return read;
+        }
+
+        byte[] getCopy() {
+            return copy.toByteArray();
+        }
+    }
+
+    public InputStream setupInputStreamListener(InputStream is, int flagsInt) throws IOException {
+        ByteArrayOutputStream baos = new ByteArrayOutputStream();
+        PDU_Impl.sendFlags(flagsInt, baos);
+
+        this.verifyStream = new InputStreamCopy(baos.toByteArray(), is);
+
+        return this.verifyStream;
+    }
 
     public boolean verify(String sender, InputStream is) throws IOException, ASAPException {
         // try to get senders' public key
@@ -177,6 +223,9 @@ public boolean verify(String sender, InputStream is) throws IOException, ASAPExc
         try {
             this.signature = Signature.getInstance(this.keyStorage.getRSASigningAlgorithm());
             this.signature.initVerify(publicKey);
+            // get data which are to be verified
+            byte[] signedData = this.verifyStream.getCopy();
+            this.signature.update(signedData);
             byte[] signatureBytes = this.readByteArray(is);
             boolean wasVerified = this.signature.verify(signatureBytes);
             return wasVerified;
@@ -221,5 +270,4 @@ private InputStream decrypt(InputStream is, PrivateKey privateKey) throws ASAPSe
     private String getLogStart() {
         return this.getClass().getSimpleName() + ": ";
     }
-
 }

src/net/sharksystem/asap/protocol/InterestPDU_Impl.java

@@ -47,7 +47,7 @@ static void sendPDUWithoutCmd(CharSequence sender, CharSequence recipient, CharS
         // create parameter bytes
         int flags = 0;
         flags = PDU_Impl.setFlag(sender, flags, SENDER_BIT_POSITION);
-        flags = PDU_Impl.setFlag(recipient, flags, RECIPIENT_PEER_BIT_POSITION);
+        flags = PDU_Impl.setFlag(recipient, flags, RECIPIENT_BIT_POSITION);
         flags = PDU_Impl.setFlag(channel, flags, CHANNEL_BIT_POSITION);
         flags = PDU_Impl.setFlag(eraFrom, flags, ERA_FROM_BIT_POSITION);
         flags = PDU_Impl.setFlag(eraTo, flags, ERA_TO_BIT_POSITION);

src/net/sharksystem/asap/protocol/PDU_Impl.java

@@ -1,7 +1,6 @@
 package net.sharksystem.asap.protocol;
 
 import net.sharksystem.asap.ASAPException;
-import net.sharksystem.asap.ASAPSecurityException;
 
 import java.io.IOException;
 import java.io.InputStream;
@@ -12,7 +11,7 @@
 
 abstract class PDU_Impl implements ASAP_PDU_1_0, ASAP_PDU_Management {
     public static final int SENDER_BIT_POSITION = 0;
-    public static final int RECIPIENT_PEER_BIT_POSITION = 1;
+    public static final int RECIPIENT_BIT_POSITION = 1;
     public static final int CHANNEL_BIT_POSITION = 2;
     public static final int ERA_BIT_POSITION = 3;
     public static final int ERA_FROM_BIT_POSITION = 4;
@@ -99,6 +98,16 @@ protected static void sendCmd(byte cmd, OutputStream os) throws IOException {
     }
 
     protected void evaluateFlags(int flag) {
+        this.senderSet = flagSet(SENDER_BIT_POSITION, flag);
+        this.recipientSet = flagSet(RECIPIENT_BIT_POSITION, flag);
+        this.channelSet = flagSet(CHANNEL_BIT_POSITION, flag);
+        this.eraSet = flagSet(ERA_BIT_POSITION, flag);
+        this.eraFrom = flagSet(ERA_FROM_BIT_POSITION, flag);
+        this.eraTo = flagSet(ERA_TO_BIT_POSITION, flag);
+        this.offsetsSet = flagSet(OFFSETS_BIT_POSITION, flag);
+        this.signed = flagSet(SIGNED_TO_BIT_POSITION, flag);
+
+        /*
         // sender parameter set ?
         int testFlag = 1;
         testFlag = testFlag << SENDER_BIT_POSITION;
@@ -107,10 +116,11 @@ protected void evaluateFlags(int flag) {
 
         // recipient peer parameter set ?
         testFlag = 1;
-        testFlag = testFlag << RECIPIENT_PEER_BIT_POSITION;
+        testFlag = testFlag << RECIPIENT_BIT_POSITION;
         result = flag & testFlag;
         recipientSet = result != 0;
 
+
         // channel parameter set ?
         testFlag = 1;
         testFlag = testFlag << CHANNEL_BIT_POSITION;
@@ -146,6 +156,14 @@ protected void evaluateFlags(int flag) {
         testFlag = testFlag << SIGNED_TO_BIT_POSITION;
         result = flag & testFlag;
         this.signed = result != 0;
+         */
+
+    }
+
+    static boolean flagSet(int bitPosition, int flags) {
+        int flagMask = 1;
+        flagMask = flagMask << bitPosition;
+        return (flags & flagMask) != 0;
     }
 
     @Override

test/net/sharksystem/asap/protocol/PDUTests.java

@@ -114,11 +114,11 @@ public void sendAndReceiveInterest2() throws IOException, ASAPException {
 
     @Test
     public void sendAndReceiveInterestEncrypted() throws IOException, ASAPException {
-        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage();
+        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage(ALICE_ID);
 
         // add Bob
         KeyPair bobKeyPair = keyStorageAlice.createTestPeer(BOB_ID);
-        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(bobKeyPair);
+        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(BOB_ID, bobKeyPair);
 
         ASAP_1_0 asapModemAlice = new ASAP_Modem_Impl(keyStorageAlice);
         ASAP_1_0 asapModemBob = new ASAP_Modem_Impl(keyStorageBob);
@@ -146,6 +146,42 @@ public void sendAndReceiveInterestEncrypted() throws IOException, ASAPException
         Assert.assertTrue(interestPDU.getRecipient().equalsIgnoreCase(recipient));
     }
 
+    @Test
+    public void sendAndReceiveInterestSigned() throws IOException, ASAPException {
+        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage(ALICE_ID);
+
+        // add Bob
+        KeyPair bobKeyPair = keyStorageAlice.createTestPeer(BOB_ID);
+        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(BOB_ID, bobKeyPair);
+        keyStorageBob.addKeyPair(ALICE_ID, keyStorageAlice.getKeyPair());
+
+        ASAP_1_0 asapModemAlice = new ASAP_Modem_Impl(keyStorageAlice);
+        ASAP_1_0 asapModemBob = new ASAP_Modem_Impl(keyStorageBob);
+
+        String sender = ALICE_ID;
+        String recipient = BOB_ID;
+        String channel = "AliceURI";
+        String format = "format";
+
+        ByteArrayOutputStream os = new ByteArrayOutputStream();
+
+        /////////////////////// encrypted
+        asapModemAlice.interest(sender, recipient, format, channel, os,true, false);
+
+        // try t read output
+        InputStream is = new ByteArrayInputStream(os.toByteArray());
+
+        ASAP_PDU_1_0 asap_pdu_1_0 = asapModemBob.readPDU(is);
+
+        ASAP_Interest_PDU_1_0 interestPDU = (ASAP_Interest_PDU_1_0) asap_pdu_1_0;
+
+        Assert.assertTrue(interestPDU.getChannelUri().equalsIgnoreCase(channel));
+        Assert.assertTrue(interestPDU.getFormat().equalsIgnoreCase(format));
+        Assert.assertTrue(interestPDU.getSender().equalsIgnoreCase(sender));
+        Assert.assertTrue(interestPDU.getRecipient().equalsIgnoreCase(recipient));
+        Assert.assertTrue(interestPDU.verified());
+    }
+
     ////////////////////           assimilate          /////////////////////////////////////////
     @Test
     public void sendAndReceiveAssimilate() throws IOException, ASAPException {

test/net/sharksystem/asap/protocol/TestASAPKeyStorage.java

@@ -8,20 +8,23 @@
 
 public class TestASAPKeyStorage implements ASAPReadonlyKeyStorage {
     private final KeyPair keyPair;
+    private final String name;
     private long timeInMillis = 0;
 
     public static final String DEFAULT_RSA_ENCRYPTION_ALGORITHM = "RSA/ECB/PKCS1Padding";
     public static final String DEFAULT_SIGNATURE_METHOD = "SHA256withRSA";
 
     private HashMap<String, KeyPair> peerKeyPairs = new HashMap<>();
 
-    TestASAPKeyStorage() throws ASAPSecurityException {
+    TestASAPKeyStorage(String name) throws ASAPSecurityException {
         // generate owners key pair;
+        this.name = name;
         this.keyPair = this.generateKeyPair();
         this.timeInMillis = System.currentTimeMillis();
     }
 
-    public TestASAPKeyStorage(KeyPair ownerKeyPair) {
+    public TestASAPKeyStorage(String name, KeyPair ownerKeyPair) {
+        this.name = name;
         this.keyPair = ownerKeyPair;
     }
 

test/net/sharksystem/asap/protocol/Workbench.java

@@ -14,49 +14,14 @@ public class Workbench {
     public static final String ALICE_ID = "Alice";
     public static final String BOB_ID = "Bob";
 
-    @Test
-    public void sendAndReceiveInterestSigned() throws IOException, ASAPException {
-        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage();
-
-        // add Bob
-        KeyPair bobKeyPair = keyStorageAlice.createTestPeer(BOB_ID);
-        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(bobKeyPair);
-        keyStorageBob.addKeyPair(ALICE_ID, keyStorageAlice.getKeyPair());
-
-        ASAP_1_0 asapModemAlice = new ASAP_Modem_Impl(keyStorageAlice);
-        ASAP_1_0 asapModemBob = new ASAP_Modem_Impl(keyStorageBob);
-
-        String sender = ALICE_ID;
-        String recipient = BOB_ID;
-        String channel = "AliceURI";
-        String format = "format";
-
-        ByteArrayOutputStream os = new ByteArrayOutputStream();
-
-        /////////////////////// encrypted
-        asapModemAlice.interest(sender, recipient, format, channel, os,true, false);
-
-        // try t read output
-        InputStream is = new ByteArrayInputStream(os.toByteArray());
-
-        ASAP_PDU_1_0 asap_pdu_1_0 = asapModemBob.readPDU(is);
-
-        ASAP_Interest_PDU_1_0 interestPDU = (ASAP_Interest_PDU_1_0) asap_pdu_1_0;
-
-        Assert.assertTrue(interestPDU.getChannelUri().equalsIgnoreCase(channel));
-        Assert.assertTrue(interestPDU.getFormat().equalsIgnoreCase(format));
-        Assert.assertTrue(interestPDU.getSender().equalsIgnoreCase(sender));
-        Assert.assertTrue(interestPDU.getRecipient().equalsIgnoreCase(recipient));
-        Assert.assertTrue(interestPDU.verified());
-    }
 
     @Test
     public void sendAndReceiveInterestSignedAndEncrypted() throws IOException, ASAPException {
-        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage();
+        TestASAPKeyStorage keyStorageAlice = new TestASAPKeyStorage(ALICE_ID);
 
         // add Bob
         KeyPair bobKeyPair = keyStorageAlice.createTestPeer(BOB_ID);
-        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(bobKeyPair);
+        TestASAPKeyStorage keyStorageBob = new TestASAPKeyStorage(BOB_ID,bobKeyPair);
         keyStorageBob.addKeyPair(ALICE_ID, keyStorageAlice.getKeyPair());
 
         ASAP_1_0 asapModemAlice = new ASAP_Modem_Impl(keyStorageAlice);