Search in sources :

Example 6 with HKDFParameters

use of org.bouncycastle.crypto.params.HKDFParameters in project vsDiaryWriter by shilongdai.

the class StreamCipherTransformer method encryptData.

@Override
protected String encryptData(byte[] bytes) {
    byte[] randomSource = new byte[16];
    rand.nextBytes(randomSource);
    int keysize = StreamCipherEncryptors.INSTANCE.getKeySize(algName) / 8;
    int ivsize = StreamCipherEncryptors.INSTANCE.getIVSize(algName) / 8;
    byte[] keyCombo = new byte[keysize + ivsize];
    hkdf.init(new HKDFParameters(masterKey, randomSource, "Encryption Key".getBytes()));
    hkdf.generateBytes(keyCombo, 0, keyCombo.length);
    byte[] key = new byte[keysize];
    byte[] iv = new byte[ivsize];
    System.arraycopy(keyCombo, 0, key, 0, keysize);
    System.arraycopy(keyCombo, keysize, iv, 0, ivsize);
    StreamCipherEncryptor enc = StreamCipherEncryptors.INSTANCE.getEncryptor(algName);
    byte[] ecrypted = enc.encrypt(bytes, key, iv);
    ByteParameterPair pair = new ByteParameterPair(randomSource, ecrypted);
    return pair.toString();
}
Also used : ByteParameterPair(net.viperfish.framework.ByteParameterPair) HKDFParameters(org.bouncycastle.crypto.params.HKDFParameters) StreamCipherEncryptor(net.viperfish.journal.streamCipher.StreamCipherEncryptor)

Example 7 with HKDFParameters

use of org.bouncycastle.crypto.params.HKDFParameters in project vsDiaryWriter by shilongdai.

the class BlockCipherMacTransformer method setPassword.

/**
 * derive the key from the password
 *
 * @throws FailToSyncCipherDataException
 */
@Override
public void setPassword(String string) throws FailToSyncCipherDataException {
    try {
        String saltRaw = salts.read(StandardCharsets.US_ASCII);
        if (saltRaw.length() > 0) {
            saltPair = ByteParameterPair.valueOf(saltRaw);
        } else {
            byte[] encSalt = new byte[8];
            byte[] macSalt = new byte[8];
            rand.nextBytes(encSalt);
            rand.nextBytes(macSalt);
            saltPair = new ByteParameterPair(encSalt, macSalt);
            salts.write(saltPair.toString(), StandardCharsets.US_ASCII);
        }
    } catch (IOException e) {
        FailToSyncCipherDataException fc = new FailToSyncCipherDataException("Cannot load encryption and mac salt from file");
        fc.initCause(e);
        throw fc;
    }
    this.key = generateKey(string);
    hkdf.init(new HKDFParameters(key, saltPair.getFirst(), "Encryption Key".getBytes()));
    cryptKey = new byte[enc.getKeySize() / 8];
    hkdf.generateBytes(cryptKey, 0, cryptKey.length);
    byte[] macKey = new byte[getMacKeySize() / 8];
    hkdf.init(new HKDFParameters(key, saltPair.getSecond(), "Mac Key".getBytes()));
    hkdf.generateBytes(macKey, 0, macKey.length);
    initMac(macKey);
}
Also used : ByteParameterPair(net.viperfish.framework.ByteParameterPair) FailToSyncCipherDataException(net.viperfish.journal.framework.errors.FailToSyncCipherDataException) HKDFParameters(org.bouncycastle.crypto.params.HKDFParameters) IOException(java.io.IOException)

Aggregations

HKDFParameters (org.bouncycastle.crypto.params.HKDFParameters)7 ByteParameterPair (net.viperfish.framework.ByteParameterPair)4 HKDFBytesGenerator (org.bouncycastle.crypto.generators.HKDFBytesGenerator)3 IOException (java.io.IOException)2 FailToSyncCipherDataException (net.viperfish.journal.framework.errors.FailToSyncCipherDataException)2 StreamCipherEncryptor (net.viperfish.journal.streamCipher.StreamCipherEncryptor)2 SHA256Digest (org.bouncycastle.crypto.digests.SHA256Digest)2 MessageDigest (java.security.MessageDigest)1 Digest (org.bouncycastle.crypto.Digest)1