Smack/smack-experimental/src/main/java/org/jivesoftware/smackx/jet/component/JetSecurity.java

/**
 *
 * Copyright 2017 Paul Schaub
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.jivesoftware.smackx.jet.component;

import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.util.logging.Level;
import java.util.logging.Logger;
import javax.crypto.NoSuchPaddingException;

import org.jivesoftware.smack.SmackException;
import org.jivesoftware.smack.XMPPConnection;
import org.jivesoftware.smack.XMPPException;
import org.jivesoftware.smack.packet.ExtensionElement;
import org.jivesoftware.smackx.bytestreams.BytestreamSession;
import org.jivesoftware.smackx.ciphers.AesGcmNoPadding;
import org.jivesoftware.smackx.jet.JetManager;
import org.jivesoftware.smackx.jet.JingleEnvelopeManager;
import org.jivesoftware.smackx.jet.element.JetSecurityElement;
import org.jivesoftware.smackx.jingle.callbacks.JingleSecurityCallback;
import org.jivesoftware.smackx.jingle.component.JingleSecurity;
import org.jivesoftware.smackx.jingle.element.JingleContentSecurityInfoElement;
import org.jivesoftware.smackx.jingle.element.JingleElement;

import org.jxmpp.jid.FullJid;

/**
 * Created by vanitas on 22.07.17.
 */
public class JetSecurity extends JingleSecurity<JetSecurityElement> {
    private static final Logger LOGGER = Logger.getLogger(JetSecurity.class.getName());

    public static final String NAMESPACE_V0 = "urn:xmpp:jingle:jet:0";
    public static final String NAMESPACE = NAMESPACE_V0;

    private final String envelopeNamespace;

    private AesGcmNoPadding aesKey;
    private final ExtensionElement child;
    private final String cipherName;
    private final String contentName;

    public JetSecurity(JetSecurityElement element) {
        super();
        this.child = element.getChild();
        this.envelopeNamespace = element.getEnvelopeNamespace();
        this.contentName = element.getContentName();
        this.cipherName = element.getCipherName();
    }

    public JetSecurity(JingleEnvelopeManager envelopeManager, FullJid recipient, String contentName, String cipherName)
            throws NoSuchAlgorithmException, NoSuchProviderException, NoSuchPaddingException,
            InvalidAlgorithmParameterException, InvalidKeyException, InterruptedException,
            JingleEnvelopeManager.JingleEncryptionException, SmackException.NotConnectedException,
            SmackException.NoResponseException {

        this.envelopeNamespace = envelopeManager.getJingleEnvelopeNamespace();
        this.aesKey = AesGcmNoPadding.createEncryptionKey(cipherName);
        this.child = envelopeManager.encryptJingleTransfer(recipient, aesKey.getKeyAndIv());
        this.contentName = contentName;
        this.cipherName = cipherName;
    }

    private void decryptEncryptionKey(JingleEnvelopeManager method, FullJid sender)
            throws InterruptedException, JingleEnvelopeManager.JingleEncryptionException, XMPPException.XMPPErrorException,
            SmackException.NotConnectedException, SmackException.NoResponseException, NoSuchAlgorithmException,
            InvalidAlgorithmParameterException, NoSuchProviderException, InvalidKeyException, NoSuchPaddingException {
        byte[] keyAndIv = method.decryptJingleTransfer(sender, child);
        aesKey = AesGcmNoPadding.createDecryptionKey(cipherName, keyAndIv);
    }

    @Override
    public JetSecurityElement getElement() {
        return new JetSecurityElement(contentName, cipherName, child);
    }

    @Override
    public JingleElement handleSecurityInfo(JingleContentSecurityInfoElement element, JingleElement wrapping) {
        return null;
    }

    @Override
    public void decryptIncomingBytestream(BytestreamSession bytestreamSession, JingleSecurityCallback callback) {
        if (aesKey == null) {
            throw new IllegalStateException("Encryption key has not yet been decrypted.");
        }
        JetSecurityBytestreamSession securityBytestreamSession = new JetSecurityBytestreamSession(bytestreamSession, aesKey.getCipher());
        callback.onSecurityReady(securityBytestreamSession);
    }

    @Override
    public void encryptOutgoingBytestream(BytestreamSession bytestreamSession, JingleSecurityCallback callback) {
        JetSecurityBytestreamSession securityBytestreamSession = new JetSecurityBytestreamSession(bytestreamSession, aesKey.getCipher());
        callback.onSecurityReady(securityBytestreamSession);
    }

    @Override
    public String getNamespace() {
        return NAMESPACE;
    }

    @Override
    public void prepare(XMPPConnection connection, FullJid sender) {
        if (getParent().getParent().isInitiator()) {
            return;
        }

        if (aesKey != null) {
            return;
        }

        JingleEnvelopeManager method = JetManager.getInstanceFor(connection).getEnvelopeManager(getEnvelopeNamespace());
        if (method == null) {
            throw new AssertionError("No JingleEncryptionMethodManager found for " + getEnvelopeNamespace());
        }
        try {
            decryptEncryptionKey(method, sender);
        } catch (InterruptedException | NoSuchPaddingException | InvalidKeyException | NoSuchProviderException | InvalidAlgorithmParameterException | NoSuchAlgorithmException | SmackException.NoResponseException | SmackException.NotConnectedException | XMPPException.XMPPErrorException | JingleEnvelopeManager.JingleEncryptionException e) {
            LOGGER.log(Level.SEVERE, "Could not decrypt security key: " + e, e);
        }
    }

    public String getEnvelopeNamespace() {
        return envelopeNamespace;
    }
}
Fix checkstyle issues 2017-07-27 23:31:04 +02:00			`/**`
			`*`
			`* Copyright 2017 Paul Schaub`
			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`
Refactoring 2017-08-04 23:05:59 +02:00			`package org.jivesoftware.smackx.jet.component;`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`import java.security.InvalidAlgorithmParameterException;`
			`import java.security.InvalidKeyException;`
			`import java.security.NoSuchAlgorithmException;`
			`import java.security.NoSuchProviderException;`
JET is close to working 2017-07-31 12:08:18 +02:00			`import java.util.logging.Level;`
			`import java.util.logging.Logger;`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`import javax.crypto.NoSuchPaddingException;`

More progress on JET 2017-07-30 22:31:29 +02:00			`import org.jivesoftware.smack.SmackException;`
JET is close to working 2017-07-31 12:08:18 +02:00			`import org.jivesoftware.smack.XMPPConnection;`
More progress on JET 2017-07-30 22:31:29 +02:00			`import org.jivesoftware.smack.XMPPException;`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`import org.jivesoftware.smack.packet.ExtensionElement;`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`import org.jivesoftware.smackx.bytestreams.BytestreamSession;`
More progress on JET 2017-07-30 22:31:29 +02:00			`import org.jivesoftware.smackx.ciphers.AesGcmNoPadding;`
JET is close to working 2017-07-31 12:08:18 +02:00			`import org.jivesoftware.smackx.jet.JetManager;`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`import org.jivesoftware.smackx.jet.JingleEnvelopeManager;`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`import org.jivesoftware.smackx.jet.element.JetSecurityElement;`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`import org.jivesoftware.smackx.jingle.callbacks.JingleSecurityCallback;`
Refactoring 2017-08-04 23:05:59 +02:00			`import org.jivesoftware.smackx.jingle.component.JingleSecurity;`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`import org.jivesoftware.smackx.jingle.element.JingleContentSecurityInfoElement;`
			`import org.jivesoftware.smackx.jingle.element.JingleElement;`

More progress on JET 2017-07-30 22:31:29 +02:00			`import org.jxmpp.jid.FullJid;`

Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`/**`
			`* Created by vanitas on 22.07.17.`
			`*/`
			`public class JetSecurity extends JingleSecurity<JetSecurityElement> {`
JET is close to working 2017-07-31 12:08:18 +02:00			`private static final Logger LOGGER = Logger.getLogger(JetSecurity.class.getName());`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00
			`public static final String NAMESPACE_V0 = "urn:xmpp:jingle:jet:0";`
			`public static final String NAMESPACE = NAMESPACE_V0;`

Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`private final String envelopeNamespace;`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00
More progress on JET 2017-07-30 22:31:29 +02:00			`private AesGcmNoPadding aesKey;`
Cleanup code 2017-08-16 15:36:49 +02:00			`private final ExtensionElement child;`
			`private final String cipherName;`
			`private final String contentName;`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00
More progress on JET 2017-07-30 22:31:29 +02:00			`public JetSecurity(JetSecurityElement element) {`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`super();`
More progress on JET 2017-07-30 22:31:29 +02:00			`this.child = element.getChild();`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`this.envelopeNamespace = element.getEnvelopeNamespace();`
Cleanup code 2017-08-16 15:36:49 +02:00			`this.contentName = element.getContentName();`
Allow AES agility 2017-08-04 15:08:16 +02:00			`this.cipherName = element.getCipherName();`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`}`

Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`public JetSecurity(JingleEnvelopeManager envelopeManager, FullJid recipient, String contentName, String cipherName)`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`throws NoSuchAlgorithmException, NoSuchProviderException, NoSuchPaddingException,`
More progress on JET 2017-07-30 22:31:29 +02:00			`InvalidAlgorithmParameterException, InvalidKeyException, InterruptedException,`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`JingleEnvelopeManager.JingleEncryptionException, SmackException.NotConnectedException,`
More progress on JET 2017-07-30 22:31:29 +02:00			`SmackException.NoResponseException {`

Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`this.envelopeNamespace = envelopeManager.getJingleEnvelopeNamespace();`
Add cipher test 2017-08-05 15:29:01 +02:00			`this.aesKey = AesGcmNoPadding.createEncryptionKey(cipherName);`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`this.child = envelopeManager.encryptJingleTransfer(recipient, aesKey.getKeyAndIv());`
Cleanup code 2017-08-16 15:36:49 +02:00			`this.contentName = contentName;`
Allow AES agility 2017-08-04 15:08:16 +02:00			`this.cipherName = cipherName;`
More progress on JET 2017-07-30 22:31:29 +02:00			`}`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`private void decryptEncryptionKey(JingleEnvelopeManager method, FullJid sender)`
			`throws InterruptedException, JingleEnvelopeManager.JingleEncryptionException, XMPPException.XMPPErrorException,`
More progress on JET 2017-07-30 22:31:29 +02:00			`SmackException.NotConnectedException, SmackException.NoResponseException, NoSuchAlgorithmException,`
			`InvalidAlgorithmParameterException, NoSuchProviderException, InvalidKeyException, NoSuchPaddingException {`
			`byte[] keyAndIv = method.decryptJingleTransfer(sender, child);`
Add cipher test 2017-08-05 15:29:01 +02:00			`aesKey = AesGcmNoPadding.createDecryptionKey(cipherName, keyAndIv);`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`}`

Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`@Override`
			`public JetSecurityElement getElement() {`
Cleanup code 2017-08-16 15:36:49 +02:00			`return new JetSecurityElement(contentName, cipherName, child);`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`}`

			`@Override`
			`public JingleElement handleSecurityInfo(JingleContentSecurityInfoElement element, JingleElement wrapping) {`
			`return null;`
			`}`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00
			`@Override`
			`public void decryptIncomingBytestream(BytestreamSession bytestreamSession, JingleSecurityCallback callback) {`
More progress on JET 2017-07-30 22:31:29 +02:00			`if (aesKey == null) {`
			`throw new IllegalStateException("Encryption key has not yet been decrypted.");`
			`}`
			`JetSecurityBytestreamSession securityBytestreamSession = new JetSecurityBytestreamSession(bytestreamSession, aesKey.getCipher());`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`callback.onSecurityReady(securityBytestreamSession);`
			`}`

			`@Override`
More progress on JET 2017-07-30 22:31:29 +02:00			`public void encryptOutgoingBytestream(BytestreamSession bytestreamSession, JingleSecurityCallback callback) {`
			`JetSecurityBytestreamSession securityBytestreamSession = new JetSecurityBytestreamSession(bytestreamSession, aesKey.getCipher());`
Work on Jingle Encrypted Transfers 2017-07-30 15:40:04 +02:00			`callback.onSecurityReady(securityBytestreamSession);`
			`}`
More progress on JET 2017-07-30 22:31:29 +02:00
JET is close to working 2017-07-31 12:08:18 +02:00			`@Override`
			`public String getNamespace() {`
			`return NAMESPACE;`
			`}`

			`@Override`
			`public void prepare(XMPPConnection connection, FullJid sender) {`
			`if (getParent().getParent().isInitiator()) {`
			`return;`
			`}`

			`if (aesKey != null) {`
			`return;`
			`}`

Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`JingleEnvelopeManager method = JetManager.getInstanceFor(connection).getEnvelopeManager(getEnvelopeNamespace());`
JET is close to working 2017-07-31 12:08:18 +02:00			`if (method == null) {`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`throw new AssertionError("No JingleEncryptionMethodManager found for " + getEnvelopeNamespace());`
JET is close to working 2017-07-31 12:08:18 +02:00			`}`
			`try {`
			`decryptEncryptionKey(method, sender);`
Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`} catch (InterruptedException \| NoSuchPaddingException \| InvalidKeyException \| NoSuchProviderException \| InvalidAlgorithmParameterException \| NoSuchAlgorithmException \| SmackException.NoResponseException \| SmackException.NotConnectedException \| XMPPException.XMPPErrorException \| JingleEnvelopeManager.JingleEncryptionException e) {`
JET is close to working 2017-07-31 12:08:18 +02:00			`LOGGER.log(Level.SEVERE, "Could not decrypt security key: " + e, e);`
			`}`
			`}`

Refactor JET in order to match spec 2017-08-16 16:42:11 +02:00			`public String getEnvelopeNamespace() {`
			`return envelopeNamespace;`
More progress on JET 2017-07-30 22:31:29 +02:00			`}`
Start reworking JFT and JET code 2017-07-22 01:01:50 +02:00			`}`