Merge pull request #19 from lgoldstein/master

Added EdDSASecurityProvider that can be registered in the JCE

Author: str4d

pom.xml

@@ -8,6 +8,9 @@
   <packaging>bundle</packaging>
   <description>Implementation of EdDSA in Java</description>
   <url>https://github.com/str4d/ed25519-java</url>
+  <properties>
+    <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+  </properties>
   <licenses>
     <license>
       <name>CC0 1.0 Universal</name>
@@ -100,6 +103,9 @@
             <goals>
               <goal>jar</goal>
             </goals>
+            <configuration> <!-- There are some malformed javadoc comments -->
+                <failOnError>false</failOnError>
+            </configuration>
           </execution>
         </executions>
       </plugin>

src/net/i2p/crypto/eddsa/EdDSAKey.java

@@ -16,12 +16,16 @@
 /**
  * Common interface for all EdDSA keys.
  * @author str4d
- *
  */
 public interface EdDSAKey {
+    /**
+     * The reported key algorithm for all EdDSA keys
+     */
+    String KEY_ALGORITHM = "EdDSA";
+
     /**
      * return a parameter specification representing the EdDSA domain
      * parameters for the key.
      */
-    public EdDSAParameterSpec getParams();
+    EdDSAParameterSpec getParams();
 }

src/net/i2p/crypto/eddsa/EdDSAPrivateKey.java

@@ -56,10 +56,12 @@ public EdDSAPrivateKey(PKCS8EncodedKeySpec spec) throws InvalidKeySpecException
                                      EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512)));
     }
 
+    @Override
     public String getAlgorithm() {
-        return "EdDSA";
+        return KEY_ALGORITHM;
     }
 
+    @Override
     public String getFormat() {
         return "PKCS#8";
     }
@@ -101,6 +103,7 @@ public String getFormat() {
      *
      *  @return 49 bytes for Ed25519, null for other curves
      */
+    @Override
     public byte[] getEncoded() {
         if (!edDsaSpec.equals(EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512)))
             return null;
@@ -177,6 +180,7 @@ private static byte[] decode(byte[] d) throws InvalidKeySpecException {
         }
     }
 
+    @Override
     public EdDSAParameterSpec getParams() {
         return edDsaSpec;
     }

src/net/i2p/crypto/eddsa/EdDSAPublicKey.java

@@ -51,10 +51,12 @@ public EdDSAPublicKey(X509EncodedKeySpec spec) throws InvalidKeySpecException {
                                     EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512)));
     }
 
+    @Override
     public String getAlgorithm() {
-        return "EdDSA";
+        return KEY_ALGORITHM;
     }
 
+    @Override
     public String getFormat() {
         return "X.509";
     }
@@ -82,6 +84,7 @@ public String getFormat() {
      *
      *  @return 47 bytes for Ed25519, null for other curves
      */
+    @Override
     public byte[] getEncoded() {
         if (!edDsaSpec.equals(EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512)))
             return null;
@@ -148,6 +151,7 @@ private static byte[] decode(byte[] d) throws InvalidKeySpecException {
         }
     }
 
+    @Override
     public EdDSAParameterSpec getParams() {
         return edDsaSpec;
     }

src/net/i2p/crypto/eddsa/EdDSASecurityProvider.java

@@ -0,0 +1,48 @@
+/**
+ * EdDSA-Java by str4d
+ *
+ * To the extent possible under law, the person who associated CC0 with
+ * EdDSA-Java has waived all copyright and related or neighboring rights
+ * to EdDSA-Java.
+ *
+ * You should have received a copy of the CC0 legalcode along with this
+ * work. If not, see <https://creativecommons.org/publicdomain/zero/1.0/>.
+ *
+ */
+package net.i2p.crypto.eddsa;
+
+import java.security.AccessController;
+import java.security.PrivilegedAction;
+import java.security.Provider;
+import java.security.Security;
+
+import net.i2p.crypto.eddsa.spec.EdDSANamedCurveTable;
+
+/**
+ * A security {@link Provider} that can be registered via {@link Security#addProvider(Provider)}
+ *
+ * @author str4d
+ */
+public class EdDSASecurityProvider extends Provider {
+    private static final long serialVersionUID = 1210027906682292307L;
+    public static final String PROVIDER_NAME = "EdDSA";
+
+    public EdDSASecurityProvider() {
+        super(PROVIDER_NAME, 0.1 /* should match POM major.minor version */, "str4d " + PROVIDER_NAME + " security provider wrapper");
+
+        AccessController.doPrivileged(new PrivilegedAction<Object>() {
+            @Override
+            public Object run() {
+                setup();
+                return null;
+            }
+        });
+    }
+
+    protected void setup() {
+        // see https://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/HowToImplAProvider.html
+        put("KeyPairGenerator." + EdDSAKey.KEY_ALGORITHM, "net.i2p.crypto.eddsa.KeyPairGenerator");
+        put("KeyFactory." + EdDSAKey.KEY_ALGORITHM, "net.i2p.crypto.eddsa.KeyFactory");
+        put("Signature." + EdDSANamedCurveTable.CURVE_ED25519_SHA512, "net.i2p.crypto.eddsa.EdDSAEngine");
+    }
+}

src/net/i2p/crypto/eddsa/spec/EdDSANamedCurveTable.java

@@ -25,7 +25,7 @@
  *
  */
 public class EdDSANamedCurveTable {
-    public static final String CURVE_ED25519_SHA512 = "ed25519-sha-512";
+    public static final String CURVE_ED25519_SHA512 = "SHA512withEd25519";
 
     private static final Field ed25519field = new Field(
                     256, // b

src/net/i2p/crypto/eddsa/spec/package.html

@@ -1,6 +1,6 @@
 <html><body>
 <p>
    Specifications for curves and keys, and a table for named curves,
-   initially containing only the 25519 curve "ed25519-sha-512".
+   initially containing only the EdDSA curve "SHA512withEd25519".
 </p>
 </body></html>

test/net/i2p/crypto/eddsa/EdDSAEngineTest.java

@@ -11,8 +11,9 @@
  */
 package net.i2p.crypto.eddsa;
 
-import static org.hamcrest.Matchers.*;
-import static org.junit.Assert.*;
+import static org.hamcrest.Matchers.equalTo;
+import static org.hamcrest.Matchers.is;
+import static org.junit.Assert.assertThat;
 
 import java.nio.charset.Charset;
 import java.security.MessageDigest;
@@ -45,9 +46,9 @@ public class EdDSAEngineTest {
 
     @Test
     public void testSign() throws Exception {
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
         //Signature sgr = Signature.getInstance("EdDSA", "I2P");
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
 
         for (Ed25519TestVectors.TestTuple testCase : Ed25519TestVectors.testCases) {
             EdDSAPrivateKeySpec privKey = new EdDSAPrivateKeySpec(testCase.seed, spec);
@@ -63,10 +64,9 @@ public void testSign() throws Exception {
 
     @Test
     public void testVerify() throws Exception {
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
         //Signature sgr = Signature.getInstance("EdDSA", "I2P");
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
-
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         for (Ed25519TestVectors.TestTuple testCase : Ed25519TestVectors.testCases) {
             EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(testCase.pk, spec);
             PublicKey vKey = new EdDSAPublicKey(pubKey);
@@ -84,11 +84,10 @@ public void testVerify() throws Exception {
      */
     @Test
     public void testVerifyWrongSigLength() throws Exception {
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
         //Signature sgr = Signature.getInstance("EdDSA", "I2P");
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-
-        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK,
-                EdDSANamedCurveTable.getByName("ed25519-sha-512"));
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
+        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK, spec);
         PublicKey vKey = new EdDSAPublicKey(pubKey);
         sgr.initVerify(vKey);
 
@@ -101,9 +100,8 @@ public void testVerifyWrongSigLength() throws Exception {
 
     @Test
     public void testSignResetsForReuse() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
-
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         EdDSAPrivateKeySpec privKey = new EdDSAPrivateKeySpec(TEST_SEED, spec);
         PrivateKey sKey = new EdDSAPrivateKey(privKey);
         sgr.initSign(sKey);
@@ -119,10 +117,9 @@ public void testSignResetsForReuse() throws Exception {
 
     @Test
     public void testVerifyResetsForReuse() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-
-        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK,
-                EdDSANamedCurveTable.getByName("ed25519-sha-512"));
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
+        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK, spec);
         PublicKey vKey = new EdDSAPublicKey(pubKey);
         sgr.initVerify(vKey);
 
@@ -137,9 +134,8 @@ public void testVerifyResetsForReuse() throws Exception {
 
     @Test
     public void testSignOneShotMode() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
-
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         EdDSAPrivateKeySpec privKey = new EdDSAPrivateKeySpec(TEST_SEED, spec);
         PrivateKey sKey = new EdDSAPrivateKey(privKey);
         sgr.initSign(sKey);
@@ -152,10 +148,9 @@ public void testSignOneShotMode() throws Exception {
 
     @Test
     public void testVerifyOneShotMode() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-
-        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK,
-                EdDSANamedCurveTable.getByName("ed25519-sha-512"));
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
+        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK, spec);
         PublicKey vKey = new EdDSAPublicKey(pubKey);
         sgr.initVerify(vKey);
         sgr.setParameter(EdDSAEngine.ONE_SHOT_MODE);
@@ -167,9 +162,8 @@ public void testVerifyOneShotMode() throws Exception {
 
     @Test
     public void testSignOneShotModeMultipleUpdates() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
-
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         EdDSAPrivateKeySpec privKey = new EdDSAPrivateKeySpec(TEST_SEED, spec);
         PrivateKey sKey = new EdDSAPrivateKey(privKey);
         sgr.initSign(sKey);
@@ -184,10 +178,9 @@ public void testSignOneShotModeMultipleUpdates() throws Exception {
 
     @Test
     public void testVerifyOneShotModeMultipleUpdates() throws Exception {
-        Signature sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-
-        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK,
-                EdDSANamedCurveTable.getByName("ed25519-sha-512"));
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK, spec);
+        Signature sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         PublicKey vKey = new EdDSAPublicKey(pubKey);
         sgr.initVerify(vKey);
         sgr.setParameter(EdDSAEngine.ONE_SHOT_MODE);
@@ -201,10 +194,9 @@ public void testVerifyOneShotModeMultipleUpdates() throws Exception {
 
     @Test
     public void testSignOneShot() throws Exception {
-        EdDSAEngine sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName("ed25519-sha-512");
-
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
         EdDSAPrivateKeySpec privKey = new EdDSAPrivateKeySpec(TEST_SEED, spec);
+        EdDSAEngine sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         PrivateKey sKey = new EdDSAPrivateKey(privKey);
         sgr.initSign(sKey);
 
@@ -213,10 +205,9 @@ public void testSignOneShot() throws Exception {
 
     @Test
     public void testVerifyOneShot() throws Exception {
-        EdDSAEngine sgr = new EdDSAEngine(MessageDigest.getInstance("SHA-512"));
-
-        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK,
-                EdDSANamedCurveTable.getByName("ed25519-sha-512"));
+        EdDSAParameterSpec spec = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
+        EdDSAPublicKeySpec pubKey = new EdDSAPublicKeySpec(TEST_PK, spec);
+        EdDSAEngine sgr = new EdDSAEngine(MessageDigest.getInstance(spec.getHashAlgorithm()));
         PublicKey vKey = new EdDSAPublicKey(pubKey);
         sgr.initVerify(vKey);
 

test/net/i2p/crypto/eddsa/EdDSASecurityProviderTest.java

@@ -0,0 +1,51 @@
+/**
+ * EdDSA-Java by str4d
+ *
+ * To the extent possible under law, the person who associated CC0 with
+ * EdDSA-Java has waived all copyright and related or neighboring rights
+ * to EdDSA-Java.
+ *
+ * You should have received a copy of the CC0 legalcode along with this
+ * work. If not, see <https://creativecommons.org/publicdomain/zero/1.0/>.
+ *
+ */
+package net.i2p.crypto.eddsa;
+
+import java.security.KeyFactory;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchProviderException;
+import java.security.Security;
+import java.security.Signature;
+
+import net.i2p.crypto.eddsa.EdDSASecurityProvider;
+
+import org.junit.Rule;
+import org.junit.Test;
+import org.junit.rules.ExpectedException;
+
+/**
+ * @author str4d
+ *
+ */
+public class EdDSASecurityProviderTest {
+
+    @Rule
+    public ExpectedException exception = ExpectedException.none();
+
+    @Test
+    public void canGetInstancesWhenProviderIsPresent() throws Exception {
+        Security.addProvider(new EdDSASecurityProvider());
+
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("EdDSA", "EdDSA");
+        KeyFactory keyFac = KeyFactory.getInstance("EdDSA", "EdDSA");
+        Signature sgr = Signature.getInstance("SHA512withEd25519", "EdDSA");
+
+        Security.removeProvider("EdDSA");
+    }
+
+    @Test
+    public void cannotGetInstancesWhenProviderIsNotPresent() throws Exception {
+        exception.expect(NoSuchProviderException.class);
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("EdDSA", "EdDSA");
+    }
+}

test/net/i2p/crypto/eddsa/math/ConstantsTest.java

@@ -11,8 +11,11 @@
  */
 package net.i2p.crypto.eddsa.math;
 
-import static org.hamcrest.Matchers.*;
-import static org.junit.Assert.*;
+import static org.hamcrest.Matchers.equalTo;
+import static org.hamcrest.Matchers.greaterThanOrEqualTo;
+import static org.hamcrest.Matchers.is;
+import static org.junit.Assert.assertThat;
+import static org.junit.Assert.fail;
 
 import java.security.MessageDigest;
 import java.security.NoSuchAlgorithmException;
@@ -28,7 +31,7 @@
  *
  */
 public class ConstantsTest {
-    static final EdDSANamedCurveSpec ed25519 = EdDSANamedCurveTable.getByName("ed25519-sha-512");
+    static final EdDSANamedCurveSpec ed25519 = EdDSANamedCurveTable.getByName(EdDSANamedCurveTable.CURVE_ED25519_SHA512);
     static final Curve curve = ed25519.getCurve();
 
     static final FieldElement ZERO = curve.getField().ZERO;