mirror of
https://code.briarproject.org/briar/briar.git
synced 2026-02-12 18:59:06 +01:00
56 lines
1.7 KiB
Java
56 lines
1.7 KiB
Java
package net.sf.briar.transport;
|
|
|
|
import java.io.InputStream;
|
|
|
|
import javax.crypto.Cipher;
|
|
import javax.crypto.Mac;
|
|
|
|
import net.sf.briar.api.crypto.CryptoComponent;
|
|
import net.sf.briar.api.crypto.ErasableKey;
|
|
import net.sf.briar.api.transport.ConnectionReader;
|
|
import net.sf.briar.api.transport.ConnectionReaderFactory;
|
|
import net.sf.briar.util.ByteUtils;
|
|
|
|
import com.google.inject.Inject;
|
|
|
|
class ConnectionReaderFactoryImpl implements ConnectionReaderFactory {
|
|
|
|
private final CryptoComponent crypto;
|
|
|
|
@Inject
|
|
ConnectionReaderFactoryImpl(CryptoComponent crypto) {
|
|
this.crypto = crypto;
|
|
}
|
|
|
|
public ConnectionReader createConnectionReader(InputStream in,
|
|
byte[] secret, byte[] tag) {
|
|
// Validate the tag
|
|
Cipher tagCipher = crypto.getTagCipher();
|
|
ErasableKey tagKey = crypto.deriveTagKey(secret, true);
|
|
boolean valid = TagEncoder.validateTag(tag, 0, tagCipher, tagKey);
|
|
tagKey.erase();
|
|
if(!valid) throw new IllegalArgumentException();
|
|
return createConnectionReader(in, true, secret);
|
|
}
|
|
|
|
public ConnectionReader createConnectionReader(InputStream in,
|
|
byte[] secret) {
|
|
return createConnectionReader(in, false, secret);
|
|
}
|
|
|
|
private ConnectionReader createConnectionReader(InputStream in,
|
|
boolean initiator, byte[] secret) {
|
|
// Derive the keys and erase the secret
|
|
ErasableKey frameKey = crypto.deriveFrameKey(secret, initiator);
|
|
ErasableKey macKey = crypto.deriveMacKey(secret, initiator);
|
|
ByteUtils.erase(secret);
|
|
// Create the decrypter
|
|
Cipher frameCipher = crypto.getFrameCipher();
|
|
ConnectionDecrypter decrypter = new ConnectionDecrypterImpl(in,
|
|
frameCipher, frameKey);
|
|
// Create the reader
|
|
Mac mac = crypto.getMac();
|
|
return new ConnectionReaderImpl(decrypter, mac, macKey);
|
|
}
|
|
}
|