session-android/src/org/thoughtcrime/securesms/crypto/IdentityKeyUtil.java

/** 
 * Copyright (C) 2011 Whisper Systems
 * Copyright (C) 2013 Open Whisper Systems
 * 
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */
package org.thoughtcrime.securesms.crypto;

import android.content.Context;
import android.content.SharedPreferences;
import android.content.SharedPreferences.Editor;
import android.util.Log;

import org.thoughtcrime.securesms.util.Base64;
import org.whispersystems.libaxolotl.IdentityKey;
import org.whispersystems.libaxolotl.IdentityKeyPair;
import org.whispersystems.libaxolotl.InvalidKeyException;
import org.whispersystems.libaxolotl.ecc.Curve;
import org.whispersystems.libaxolotl.ecc.ECKeyPair;
import org.whispersystems.libaxolotl.ecc.ECPrivateKey;

import java.io.IOException;

/**
 * Utility class for working with identity keys.
 * 
 * @author Moxie Marlinspike
 */

public class IdentityKeyUtil {

  private static final String IDENTITY_PUBLIC_KEY_DJB_PREF  = "pref_identity_public_curve25519";
  private static final String IDENTITY_PRIVATE_KEY_DJB_PREF = "pref_identity_private_curve25519";

  public static boolean hasIdentityKey(Context context) {
    SharedPreferences preferences = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);

    return
        preferences.contains(IDENTITY_PUBLIC_KEY_DJB_PREF) &&
        preferences.contains(IDENTITY_PRIVATE_KEY_DJB_PREF);
  }

  public static IdentityKey getIdentityKey(Context context) {
    if (!hasIdentityKey(context)) return null;

    try {
      byte[] publicKeyBytes = Base64.decode(retrieve(context, IDENTITY_PUBLIC_KEY_DJB_PREF));
      return new IdentityKey(publicKeyBytes, 0);
    } catch (IOException ioe) {
      Log.w("IdentityKeyUtil", ioe);
      return null;
    } catch (InvalidKeyException e) {
      Log.w("IdentityKeyUtil", e);
      return null;
    }
  }

  public static IdentityKeyPair getIdentityKeyPair(Context context,
                                                   MasterSecret masterSecret)
  {
    if (!hasIdentityKey(context))
      return null;

    try {
      MasterCipher masterCipher = new MasterCipher(masterSecret);
      IdentityKey  publicKey    = getIdentityKey(context);
      ECPrivateKey privateKey   = masterCipher.decryptKey(Base64.decode(retrieve(context, IDENTITY_PRIVATE_KEY_DJB_PREF)));

      return new IdentityKeyPair(publicKey, privateKey);
    } catch (IOException | InvalidKeyException e) {
      throw new AssertionError(e);
    }
  }

  public static void generateIdentityKeys(Context context, MasterSecret masterSecret) {
    ECKeyPair    djbKeyPair     = Curve.generateKeyPair();

    MasterCipher masterCipher   = new MasterCipher(masterSecret);
    IdentityKey  djbIdentityKey = new IdentityKey(djbKeyPair.getPublicKey());
    byte[]       djbPrivateKey  = masterCipher.encryptKey(djbKeyPair.getPrivateKey());

    save(context, IDENTITY_PUBLIC_KEY_DJB_PREF, Base64.encodeBytes(djbIdentityKey.serialize()));
    save(context, IDENTITY_PRIVATE_KEY_DJB_PREF, Base64.encodeBytes(djbPrivateKey));
  }

  public static boolean hasCurve25519IdentityKeys(Context context) {
    return
        retrieve(context, IDENTITY_PUBLIC_KEY_DJB_PREF) != null &&
        retrieve(context, IDENTITY_PRIVATE_KEY_DJB_PREF) != null;
  }

  public static void generateCurve25519IdentityKeys(Context context, MasterSecret masterSecret) {
    MasterCipher masterCipher    = new MasterCipher(masterSecret);
    ECKeyPair    djbKeyPair      = Curve.generateKeyPair();
    IdentityKey  djbIdentityKey  = new IdentityKey(djbKeyPair.getPublicKey());
    byte[]       djbPrivateKey   = masterCipher.encryptKey(djbKeyPair.getPrivateKey());

    save(context, IDENTITY_PUBLIC_KEY_DJB_PREF, Base64.encodeBytes(djbIdentityKey.serialize()));
    save(context, IDENTITY_PRIVATE_KEY_DJB_PREF, Base64.encodeBytes(djbPrivateKey));
  }

  public static String retrieve(Context context, String key) {
    SharedPreferences preferences = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);
    return preferences.getString(key, null);
  }

  public static void save(Context context, String key, String value) {
    SharedPreferences preferences   = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);
    Editor preferencesEditor        = preferences.edit();

    preferencesEditor.putString(key, value);
    if (!preferencesEditor.commit()) throw new AssertionError("failed to save identity key/value to shared preferences");
  }
}
Initial Project Import 2011-12-20 19:20:44 +01:00			`/**`
			`* Copyright (C) 2011 Whisper Systems`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`* Copyright (C) 2013 Open Whisper Systems`
Initial Project Import 2011-12-20 19:20:44 +01:00			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`
			`package org.thoughtcrime.securesms.crypto;`

			`import android.content.Context;`
			`import android.content.SharedPreferences;`
			`import android.content.SharedPreferences.Editor;`
			`import android.util.Log;`

Split out Util functions. 2014-11-12 20:15:05 +01:00			`import org.thoughtcrime.securesms.util.Base64;`
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI. 2014-04-21 17:40:19 +02:00			`import org.whispersystems.libaxolotl.IdentityKey;`
			`import org.whispersystems.libaxolotl.IdentityKeyPair;`
			`import org.whispersystems.libaxolotl.InvalidKeyException;`
			`import org.whispersystems.libaxolotl.ecc.Curve;`
			`import org.whispersystems.libaxolotl.ecc.ECKeyPair;`
			`import org.whispersystems.libaxolotl.ecc.ECPrivateKey;`
Move common crypto classes into TextSecureLibrary. 1) Move all the crypto classes from securesms.crypto. 2) Move all the crypto storage from securesms.database.keys 3) Replace the old imported BC code with spongycastle. 2013-08-18 03:37:18 +02:00
			`import java.io.IOException;`

Initial Project Import 2011-12-20 19:20:44 +01:00			`/**`
			`* Utility class for working with identity keys.`
			`*`
			`* @author Moxie Marlinspike`
			`*/`

			`public class IdentityKeyUtil {`

Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`private static final String IDENTITY_PUBLIC_KEY_DJB_PREF = "pref_identity_public_curve25519";`
			`private static final String IDENTITY_PRIVATE_KEY_DJB_PREF = "pref_identity_private_curve25519";`
whitespace cleanup //FREEBIE Closes #1779 2014-12-01 18:45:37 +01:00
Remove V1 code. 2014-04-10 05:02:46 +02:00			`public static boolean hasIdentityKey(Context context) {`
Initial Project Import 2011-12-20 19:20:44 +01:00			`SharedPreferences preferences = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00
Remove V1 code. 2014-04-10 05:02:46 +02:00			`return`
			`preferences.contains(IDENTITY_PUBLIC_KEY_DJB_PREF) &&`
			`preferences.contains(IDENTITY_PRIVATE_KEY_DJB_PREF);`
Initial Project Import 2011-12-20 19:20:44 +01:00			`}`
whitespace cleanup //FREEBIE Closes #1779 2014-12-01 18:45:37 +01:00
Remove V1 code. 2014-04-10 05:02:46 +02:00			`public static IdentityKey getIdentityKey(Context context) {`
			`if (!hasIdentityKey(context)) return null;`
whitespace cleanup //FREEBIE Closes #1779 2014-12-01 18:45:37 +01:00
Initial Project Import 2011-12-20 19:20:44 +01:00			`try {`
Remove V1 code. 2014-04-10 05:02:46 +02:00			`byte[] publicKeyBytes = Base64.decode(retrieve(context, IDENTITY_PUBLIC_KEY_DJB_PREF));`
Initial Project Import 2011-12-20 19:20:44 +01:00			`return new IdentityKey(publicKeyBytes, 0);`
			`} catch (IOException ioe) {`
			`Log.w("IdentityKeyUtil", ioe);`
			`return null;`
			`} catch (InvalidKeyException e) {`
			`Log.w("IdentityKeyUtil", e);`
			`return null;`
			`}`
			`}`
Basic support for prekeybundle message delivery and receipt. 2013-08-22 02:25:19 +02:00
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`public static IdentityKeyPair getIdentityKeyPair(Context context,`
Remove V1 code. 2014-04-10 05:02:46 +02:00			`MasterSecret masterSecret)`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`{`
Remove V1 code. 2014-04-10 05:02:46 +02:00			`if (!hasIdentityKey(context))`
Basic support for prekeybundle message delivery and receipt. 2013-08-22 02:25:19 +02:00			`return null;`

			`try {`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`MasterCipher masterCipher = new MasterCipher(masterSecret);`
Remove V1 code. 2014-04-10 05:02:46 +02:00			`IdentityKey publicKey = getIdentityKey(context);`
			`ECPrivateKey privateKey = masterCipher.decryptKey(Base64.decode(retrieve(context, IDENTITY_PRIVATE_KEY_DJB_PREF)));`
Basic support for prekeybundle message delivery and receipt. 2013-08-22 02:25:19 +02:00
			`return new IdentityKeyPair(publicKey, privateKey);`
Split out Util functions. 2014-11-12 20:15:05 +01:00			`} catch (IOException \| InvalidKeyException e) {`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`throw new AssertionError(e);`
Basic support for prekeybundle message delivery and receipt. 2013-08-22 02:25:19 +02:00			`}`
			`}`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00
Remove V1 code. 2014-04-10 05:02:46 +02:00			`public static void generateIdentityKeys(Context context, MasterSecret masterSecret) {`
Remove 1 mod 8. 2014-07-26 22:29:40 +02:00			`ECKeyPair djbKeyPair = Curve.generateKeyPair();`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00
Remove V1 code. 2014-04-10 05:02:46 +02:00			`MasterCipher masterCipher = new MasterCipher(masterSecret);`
			`IdentityKey djbIdentityKey = new IdentityKey(djbKeyPair.getPublicKey());`
			`byte[] djbPrivateKey = masterCipher.encryptKey(djbKeyPair.getPrivateKey());`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00
			`save(context, IDENTITY_PUBLIC_KEY_DJB_PREF, Base64.encodeBytes(djbIdentityKey.serialize()));`
			`save(context, IDENTITY_PRIVATE_KEY_DJB_PREF, Base64.encodeBytes(djbPrivateKey));`
			`}`

			`public static boolean hasCurve25519IdentityKeys(Context context) {`
			`return`
			`retrieve(context, IDENTITY_PUBLIC_KEY_DJB_PREF) != null &&`
			`retrieve(context, IDENTITY_PRIVATE_KEY_DJB_PREF) != null;`
			`}`

			`public static void generateCurve25519IdentityKeys(Context context, MasterSecret masterSecret) {`
			`MasterCipher masterCipher = new MasterCipher(masterSecret);`
Remove 1 mod 8. 2014-07-26 22:29:40 +02:00			`ECKeyPair djbKeyPair = Curve.generateKeyPair();`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00			`IdentityKey djbIdentityKey = new IdentityKey(djbKeyPair.getPublicKey());`
			`byte[] djbPrivateKey = masterCipher.encryptKey(djbKeyPair.getPrivateKey());`

			`save(context, IDENTITY_PUBLIC_KEY_DJB_PREF, Base64.encodeBytes(djbIdentityKey.serialize()));`
			`save(context, IDENTITY_PRIVATE_KEY_DJB_PREF, Base64.encodeBytes(djbPrivateKey));`
Initial Project Import 2011-12-20 19:20:44 +01:00			`}`
Migrate to Curve25519. 1) Generate a Curve25519 identity key. 2) Use Curve25519 ephemerals and identities for v2 3DHE agreements. 3) Initiate v2 key exchange messages. 4) Accept v1 key exchange messages. 5) TOFU Curve25519 identities. 2013-11-10 13:15:29 +01:00
Initial Project Import 2011-12-20 19:20:44 +01:00			`public static String retrieve(Context context, String key) {`
			`SharedPreferences preferences = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);`
			`return preferences.getString(key, null);`
			`}`
whitespace cleanup //FREEBIE Closes #1779 2014-12-01 18:45:37 +01:00
Initial Project Import 2011-12-20 19:20:44 +01:00			`public static void save(Context context, String key, String value) {`
			`SharedPreferences preferences = context.getSharedPreferences(MasterSecretUtil.PREFERENCES_NAME, 0);`
			`Editor preferencesEditor = preferences.edit();`
whitespace cleanup //FREEBIE Closes #1779 2014-12-01 18:45:37 +01:00
Initial Project Import 2011-12-20 19:20:44 +01:00			`preferencesEditor.putString(key, value);`
use apply for preferences instead of commit // FREEBIE 2014-05-05 20:48:26 +02:00			`if (!preferencesEditor.commit()) throw new AssertionError("failed to save identity key/value to shared preferences");`
Initial Project Import 2011-12-20 19:20:44 +01:00			`}`
			`}`