Package org.kocakosm.pitaya.security

Source Code of org.kocakosm.pitaya.security.HKDF

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
/*----------------------------------------------------------------------------*
* This file is part of Pitaya.                                               *
* Copyright (C) 2012-2014 Osman KOCAK <kocakosm@gmail.com>                   *
*                                                                            *
* This program is free software: you can redistribute it and/or modify it    *
* under the terms of the GNU Lesser General Public License as published by   *
* the Free Software Foundation, either version 3 of the License, or (at your *
* option) any later version.                                                 *
* This program is distributed in the hope that it will be useful, but        *
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY *
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public     *
* License for more details.                                                  *
* You should have received a copy of the GNU Lesser General Public License   *
* along with this program. If not, see <http://www.gnu.org/licenses/>.       *
*----------------------------------------------------------------------------*/

package org.kocakosm.pitaya.security;

import org.kocakosm.pitaya.util.Base16;
import org.kocakosm.pitaya.util.ByteBuffer;
import org.kocakosm.pitaya.util.Parameters;
import org.kocakosm.pitaya.util.XArrays;
import org.kocakosm.pitaya.util.XObjects;

/**
* HMAC-based Key Derivation Function (RFC 5869). Instances of this class are
* immutable.
*
* @author Osman KOCAK
*/
final class HKDF implements KDF
{
  private final int dkLen;
  private final byte[] info;
  private final Algorithm<MAC> algorithm;

  /**
   * Creates a new {@code HKDF} instance.
   *
   * @param algorithm the MAC algorithm to use.
   * @param info optional context and application specific information,
   *  may be {@code null} or empty.
   * @param dkLen the desired length for derived keys, in bytes.
   *
   * @throws NullPointerException if {@code algorithm} is {@code null}.
   * @throws IllegalArgumentException if {@code dkLen} is negative, or if
   *  the MAC algorithm is unknown, or if {@code dkLen} is greater
   *  than 255 * MAC algorithm's output length.
   */
  HKDF(Algorithm<MAC> algorithm, byte[] info, int dkLen)
  {
    Parameters.checkCondition(dkLen > 0);
    MAC mac = Factory.getMAC(algorithm, new byte[0]);
    Parameters.checkCondition(dkLen <= 255 * mac.length());
    this.algorithm = algorithm;
    this.dkLen = dkLen;
    this.info = info == null ? new byte[0] : XArrays.copyOf(info);
  }

  @Override
  public byte[] deriveKey(byte[] secret, byte[] salt)
  {
    return expand(extract(secret, salt));
  }

  @Override
  public String toString()
  {
    return XObjects.toStringBuilder("HKDF").append("MAC", algorithm)
      .append("info", "0x" + Base16.encode(info))
      .append("dkLen", dkLen).toString();
  }

  private byte[] extract(byte[] key, byte[] salt)
  {
    return Factory.getMAC(algorithm, salt).mac(key);
  }

  private byte[] expand(byte[] key)
  {
    MAC mac = Factory.getMAC(algorithm, key);
    ByteBuffer t = new ByteBuffer(dkLen + mac.length());
    int n = (int) Math.ceil((double) dkLen / mac.length());
    byte[] u = new byte[0];
    for (int i = 1; i <= n; i++) {
      u = mac.update(u).update(info).mac((byte) i);
      t.append(u);
    }
    return t.toByteArray(0, dkLen);
  }
}
TOP

Related Classes of org.kocakosm.pitaya.security.HKDF

  • org.kocakosm.pitaya.util.ByteBuffer
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.