ECDSAKeyGenerator.java

  1. /*
  2.  * @copyright defined in LICENSE.txt
  3.  */


  6. package hera.util.pki;

  8. import static java.security.Security.addProvider;
  9. import static java.security.Security.getProvider;
  10. import static org.bouncycastle.jce.ECNamedCurveTable.getParameterSpec;
  11. import static org.bouncycastle.jce.provider.BouncyCastleProvider.PROVIDER_NAME;
  12. import static org.slf4j.LoggerFactory.getLogger;

  14. import hera.util.Sha256Utils;
  15. import java.math.BigInteger;
  16. import java.security.InvalidAlgorithmParameterException;
  17. import java.security.KeyFactory;
  18. import java.security.KeyPair;
  19. import java.security.KeyPairGenerator;
  20. import java.security.NoSuchAlgorithmException;
  21. import java.security.NoSuchProviderException;
  22. import java.security.PrivateKey;
  23. import java.security.PublicKey;
  24. import java.security.SecureRandom;
  25. import java.security.Security;
  26. import java.security.spec.PKCS8EncodedKeySpec;
  27. import org.bouncycastle.crypto.params.ECDomainParameters;
  28. import org.bouncycastle.crypto.prng.FixedSecureRandom;
  29. import org.bouncycastle.jce.provider.BouncyCastleProvider;
  30. import org.bouncycastle.jce.spec.ECNamedCurveParameterSpec;
  31. import org.bouncycastle.jce.spec.ECPrivateKeySpec;
  32. import org.bouncycastle.jce.spec.ECPublicKeySpec;
  33. import org.bouncycastle.math.ec.ECPoint;
  34. import org.slf4j.Logger;

  36. public class ECDSAKeyGenerator implements KeyGenerator<ECDSAKey> {

  38.   protected static final String KEY_ALGORITHM = "ECDSA";

  40.   protected static final String CURVE_NAME = "secp256k1";

  42.   protected static final ECNamedCurveParameterSpec ecSpec;

  44.   public static final ECDomainParameters ecParams;

  46.   static {
  47.     java.security.Provider provider = getProvider(PROVIDER_NAME);
  48.     if (provider != null) {
  49.       Security.removeProvider(PROVIDER_NAME);
  50.     }
  51.     addProvider(new BouncyCastleProvider());
  52.     ecSpec = getParameterSpec(CURVE_NAME);
  53.     ecParams = new ECDomainParameters(ecSpec.getCurve(), ecSpec.getG(), ecSpec.getN(),
  54.         ecSpec.getH(), ecSpec.getSeed());
  55.   }

  57.   protected final transient Logger logger = getLogger(getClass());

  59.   protected ECDSAKey generateKey(final SecureRandom secureRandom)
  60.       throws NoSuchProviderException, NoSuchAlgorithmException, InvalidAlgorithmParameterException {
  61.     final KeyPairGenerator generator = getKeyPairGenerator(secureRandom);
  62.     final KeyPair pair = generator.generateKeyPair();
  63.     final PrivateKey privateKey = pair.getPrivate();
  64.     final PublicKey publicKey = pair.getPublic();
  65.     logger.trace("Public key: {}", publicKey);
  66.     return new ECDSAKey(privateKey, publicKey, ecParams);
  67.   }

  69.   protected KeyPairGenerator getKeyPairGenerator(final SecureRandom secureRandom)
  70.       throws NoSuchProviderException, NoSuchAlgorithmException, InvalidAlgorithmParameterException {
  71.     final KeyPairGenerator keyPairGenerator =
  72.         KeyPairGenerator.getInstance(KEY_ALGORITHM, PROVIDER_NAME);
  73.     keyPairGenerator.initialize(ecSpec, secureRandom);
  74.     logger.debug("Generator: {}", keyPairGenerator);
  75.     return keyPairGenerator;
  76.   }

  78.   @Override
  79.   public ECDSAKey create() throws Exception {
  80.     return generateKey(new SecureRandom());
  81.   }

  83.   @Override
  84.   public ECDSAKey create(final String seed) throws Exception {
  85.     final byte[] digested = Sha256Utils.digest(seed.getBytes());
  86.     final SecureRandom secureRandom = new FixedSecureRandom(digested);
  87.     return generateKey(secureRandom);
  88.   }

  90.   /**
  91.    * Create key-pair from encoded private key.
  92.    *
  93.    * @param encodedPrivateKey PKCS #8 encoded private key
  94.    * @return key pair to be recovered
  95.    * @throws Exception On failure of recovery
  96.    */
  97.   public ECDSAKey create(final byte[] encodedPrivateKey) throws Exception {
  98.     final KeyFactory factory = KeyFactory.getInstance(KEY_ALGORITHM);
  99.     final PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(encodedPrivateKey);
  100.     return create(factory.generatePrivate(spec));
  101.   }

  103.   /**
  104.    * Create key-pair from encoded private key.
  105.    *
  106.    * @param d d value of private key
  107.    * @return key pair to be recovered
  108.    * @throws Exception On failure of recovery
  109.    */
  110.   public ECDSAKey create(final BigInteger d) throws Exception {
  111.     return create(createPrivateKey(d));
  112.   }

  114.   /**
  115.    * Create key-pair from a private key.
  116.    *
  117.    * @param privateKey a private key
  118.    * @return key pair to be recovered
  119.    * @throws Exception On failure of recovery
  120.    */
  121.   public ECDSAKey create(final PrivateKey privateKey) throws Exception {
  122.     final KeyFactory factory = KeyFactory.getInstance(KEY_ALGORITHM);
  123.     final ECPoint Q = ecSpec.getG()
  124.         .multiply(((org.bouncycastle.jce.interfaces.ECPrivateKey) privateKey).getD());
  125.     final ECPublicKeySpec ecPublicKeySpec = new ECPublicKeySpec(Q, ecSpec);
  126.     final PublicKey publicKey = factory.generatePublic(ecPublicKeySpec);
  127.     return new ECDSAKey(privateKey, publicKey, ecParams);
  128.   }

  130.   /**
  131.    * Create private key from d value.
  132.    *
  133.    * @param d d value of private key
  134.    * @return a generated private key
  135.    * @throws Exception on failure of create
  136.    */
  137.   public PrivateKey createPrivateKey(final BigInteger d) throws Exception {
  138.     final KeyFactory factory = KeyFactory.getInstance(KEY_ALGORITHM);
  139.     final ECPrivateKeySpec spec = new ECPrivateKeySpec(d, ecSpec);
  140.     return factory.generatePrivate(spec);
  141.   }

  143.   /**
  144.    * Create public key from compressed one. The compression format is <code>F<sub>p</sub></code>(
  145.    * X9.62 s 4.2.1).
  146.    *
  147.    * @param compressed an compressed
  148.    * @return a generated public key
  149.    * @throws Exception on failure of create
  150.    */

  152.   public PublicKey createPublicKey(final byte[] compressed) throws Exception {
  153.     return createPublicKey(ecParams.getCurve().decodePoint(compressed));
  154.   }

  156.   /**
  157.    * Create public key from ECPoint x, y value.
  158.    *
  159.    * @param x x value of public key
  160.    * @param y y value of public key
  161.    * @return a generated public key
  162.    * @throws Exception on failure of create
  163.    */
  164.   public PublicKey createPublicKey(final BigInteger x, final BigInteger y) throws Exception {
  165.     return createPublicKey(ecParams.getCurve().createPoint(x, y));
  166.   }

  168.   protected PublicKey createPublicKey(final ECPoint ecPoint) throws Exception {
  169.     final KeyFactory factory = KeyFactory.getInstance(KEY_ALGORITHM);
  170.     final ECPublicKeySpec spec = new ECPublicKeySpec(ecPoint, ecSpec);
  171.     return factory.generatePublic(spec);
  172.   }

  174. }
Created with JaCoCo 0.8.2.201808211720