io.baltoro.client.util.CryptoUtil Maven / Gradle / Ivy
package io.baltoro.client.util;
import java.math.BigInteger;
import java.security.Key;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.MessageDigest;
import java.security.SecureRandom;
import java.security.Security;
import java.security.interfaces.RSAPrivateKey;
import java.security.spec.ECFieldFp;
import java.security.spec.ECParameterSpec;
import java.security.spec.EllipticCurve;
import java.security.spec.KeySpec;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.Base64;
import java.util.UUID;
import java.util.logging.Logger;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.PBEKeySpec;
import javax.crypto.spec.SecretKeySpec;
import org.bouncycastle.jcajce.provider.config.ConfigurableProvider;
import org.bouncycastle.jce.ECPointUtil;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.util.encoders.Hex;
import io.baltoro.to.Keys;
public class CryptoUtil
{
private static String digits = "0123456789abcdef";
private static Logger log = Logger.getLogger(CryptoUtil.class.getName());
static
{
Security.addProvider(new BouncyCastleProvider());
EllipticCurve curve = new EllipticCurve(
new ECFieldFp(new BigInteger("883423532389192164791648750360308885314476597252960362792450860609699839")), // q
new BigInteger("7fffffffffffffffffffffff7fffffffffff8000000000007ffffffffffc", 16), // a
new BigInteger("6b016c3bdcf18941d0d654921475ca71a9db2fb27d1d37796185c2942c0a", 16)); // b
ECParameterSpec ecSpec = new java.security.spec.ECParameterSpec(
curve,
ECPointUtil.decodePoint(curve, Hex.decode("020ffa963cdca8816ccc33b8642bedf905c3d358573d3f27fbbd3b3cb9aaaf")), // G
new BigInteger("883423532389192164791648750360308884807550341691627752275345424702807307"), // n
1); // h
ConfigurableProvider config = (ConfigurableProvider)Security.getProvider("BC");
config.setParameter(ConfigurableProvider.EC_IMPLICITLY_CA, ecSpec);
}
public static String genAESKey() throws RuntimeException
{
try
{
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");
generator.init(2048);
Key key = generator.generateKey();
String str = Base64.getEncoder().encodeToString(key.getEncoded());
return str;
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static Keys generateKeys()
throws RuntimeException
{
KeyPair pair = getKeyPair();
byte[] privateBytes = pair.getPrivate().getEncoded();
byte[] publicBytes = pair.getPublic().getEncoded();
String privateKey = Base64.getEncoder().encodeToString(privateBytes);
String publicKey = Base64.getEncoder().encodeToString(publicBytes);
Keys keys = new Keys(privateKey, publicKey);
keys.keypair = pair;
return keys;
}
public static Keys generateECKeys()
throws RuntimeException
{
KeyPair pair = getKeyPairEC();
byte[] privateBytes = pair.getPrivate().getEncoded();
byte[] publicBytes = pair.getPublic().getEncoded();
//KeyFactory fact = KeyFactory.getInstance("ECDSA", "BC");
//PublicKey pub = fact.generatePublic(new X509EncodedKeySpec(pair.getPublic().getEncoded()));
//PrivateKey prv = fact.generatePrivate(new PKCS8EncodedKeySpec(pair.getPrivate().getEncoded()));
String privateKey = Base64.getEncoder().encodeToString(privateBytes);
String publicKey = Base64.getEncoder().encodeToString(publicBytes);
Keys keys = new Keys(privateKey, publicKey);
keys.keypair = pair;
return keys;
}
private static KeyPair getKeyPairEC() throws RuntimeException
{
KeyPairGenerator g = null;
try
{
g = KeyPairGenerator.getInstance("ECDSA", "BC");
g.initialize(null, new SecureRandom());
}
catch (Exception e)
{
e.printStackTrace();
}
KeyPair p = g.generateKeyPair();
//ECPrivateKey sKey = (ECPrivateKey)p.getPrivate();
//ECPublicKey vKey = (ECPublicKey)p.getPublic();
return p;
}
private static KeyPair getKeyPair()
throws RuntimeException
{
KeyPairGenerator gen = null;
try
{
gen = KeyPairGenerator.getInstance("RSA", "BC");
}
catch (Exception e)
{
throw new RuntimeException(e);
}
SecureRandom random = null;
try
{
random = new SecureRandom();//.getInstance("SHA1PRNG", "SUN");
}
catch(Exception e)
{
random = new SecureRandom();
}
gen.initialize(2048, random);
KeyPair pair = gen.generateKeyPair();
return pair;
}
public static String encrypt(String encodedKey, byte[] bytes)
throws RuntimeException
{
try
{
byte[] keyBytes = Base64.getDecoder().decode(encodedKey);
int size = keyBytes.length;
//SecretKey key = new SecretKeySpec(keyBytes, 0, keyBytes.length, "RSA");
Key key = null;
if(size < 600)
{
key = KeyFactory.getInstance("RSA","BC").generatePublic(new X509EncodedKeySpec(keyBytes));
}
else
{
//key = new PrivateKeyFactory().
PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(keyBytes);
KeyFactory rsaFact = KeyFactory.getInstance("RSA","BC");
RSAPrivateKey _pk = (RSAPrivateKey) rsaFact.generatePrivate(spec);
key = _pk;
}
Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding","BC");
//Cipher cipher = Cipher.getInstance("RSA/None/NoPadding", "BC");
cipher.init(Cipher.ENCRYPT_MODE, key);
//byte[] bytes = Base64.getDecoder().decode(encodedInput);
byte[] encBytes = cipher.doFinal(bytes);
String encStr = Base64.getEncoder().encodeToString(encBytes);
return encStr;
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static String encryptWithPassword(String password, String input)
throws RuntimeException
{
try
{
SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
KeySpec spec = new PBEKeySpec(password.toCharArray(), "fat".getBytes(), 65536, 256);
SecretKey tmp = factory.generateSecret(spec);
SecretKey secret = new SecretKeySpec(tmp.getEncoded(), "AES");
Cipher cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, secret);
//byte[] iv = cipher.getParameters().getParameterSpec(IvParameterSpec.class).getIV();
byte[] ciphertext = cipher.doFinal(input.getBytes());
String encStr = Base64.getEncoder().encodeToString(ciphertext);
return encStr;
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static String decryptWithPassword(String password, String input)
throws RuntimeException
{
try
{
SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
KeySpec spec = new PBEKeySpec(password.toCharArray(), "fat".getBytes(), 65536, 256);
SecretKey tmp = factory.generateSecret(spec);
SecretKey secret = new SecretKeySpec(tmp.getEncoded(), "AES");
Cipher cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE, secret);
//byte[] iv = cipher.getParameters().getParameterSpec(IvParameterSpec.class).getIV();
byte[] inbytes = Base64.getDecoder().decode(input.getBytes());
byte[] ciphertext = cipher.doFinal(inbytes);
return new String(ciphertext);
}
catch (Exception e)
{
e.printStackTrace();
throw new RuntimeException(e);
}
}
public static String decrypt(String encodedKey, String encodedInput)
throws RuntimeException
{
try
{
byte[] keyBytes = StringUtil.decode(encodedKey);
int size = keyBytes.length;
Key key = null;
if(size < 600)
{
key = KeyFactory.getInstance("RSA","BC").generatePublic(new X509EncodedKeySpec(keyBytes));
}
else
{
PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(keyBytes);
KeyFactory rsaFact = KeyFactory.getInstance("RSA","BC");
RSAPrivateKey _pk = (RSAPrivateKey) rsaFact.generatePrivate(spec);
key = _pk;
}
Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding","BC");
cipher.init(Cipher.DECRYPT_MODE, key);
byte[] _input = Base64.getDecoder().decode(encodedInput);
byte[] bytes = cipher.doFinal(_input);
String encodedStr = StringUtil.encode(bytes);
return encodedStr;
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static String hash(String str)
throws RuntimeException
{
try
{
byte[] bytes = MessageDigest.getInstance("SHA-256").digest(str.getBytes());
return Base64.getEncoder().encodeToString(bytes);
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static String md5(byte[] bytes)
throws RuntimeException
{
try
{
MessageDigest md = MessageDigest.getInstance("MD5");
md.update(bytes);
byte[] digest = md.digest();
//String myHash = DatatypeConverter.printHexBinary(digest);
final String result = new String(Hex.encode(digest));
return result;
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
public static String hash(byte[] contentBytes)
throws RuntimeException
{
try
{
byte[] bytes = MessageDigest.getInstance("SHA-256").digest(contentBytes);
return Base64.getEncoder().encodeToString(bytes);
}
catch (Exception e)
{
throw new RuntimeException(e);
}
}
private static byte[] checkPadding(byte[] input)
{
if(input.length >= 16)
return input;
byte[] _input = new byte[16];
int i = 0;
for (; i < input.length; i++)
{
_input[i] = input[i];
}
for(;i<_input.length;i++)
{
_input[i] = 20;
}
return _input;
}
public static String toHex(byte[] data, int length)
{
StringBuffer buf = new StringBuffer();
for (int i = 0; i != length; i++)
{
int v = data[i] & 0xff;
buf.append(digits.charAt(v >> 4));
buf.append(digits.charAt(v & 0xf));
}
return buf.toString();
}
public static String toHex(byte[] data)
{
return toHex(data, data.length);
}
public static String makeBlankString(int len)
{
char[] buf = new char[len];
for (int i = 0; i != buf.length; i++)
{
buf[i] = ' ';
}
return new String(buf);
}
public static String genSalt(int len)
{
return UUID.randomUUID().toString().substring(0, len).toUpperCase();
}
/*
public static void sign(ReqTO to, String privateKey)
{
StringBuilder json = new StringBuilder(2000);
json.append("{\"processor-data\":{ ");
for (ReqTOField field : to.getFieldList())
{
json.append("\""+field+"\"");
json.append(':');
json.append("\""+to.getFieldValueMap().get(field)+"\"");
json.append(",");
}
json.delete(json.length()-1,json.length());
if(!to.getTxUuidList().isEmpty())
{
json.append(",\"tx\":[\n");
for (String txUuid : to.getTxUuidList())
{
json.append("{\"uuid\":");
json.append("\""+txUuid+"\"");
json.append(",");
json.append("\"tx-hash\":");
json.append("\""+to.getTxHashMap().get(txUuid)+"\"");
json.append("}\n");
}
json.append("]\n");
}
json.append("}}");
to.setJson(json.toString());
String hash = hash(to.getJson());
to.setHash(hash);
String encHash = encrypt(privateKey, hash);
to.setSignature(encHash);
}
*/
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy