ReFLeXive007
ReFLeXive007
/ ephemeral keys
Created
November 26, 2019 18:27
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public static List<SecretKeyRequestModel> createEphSessionKeys(List<Certificate> recipientCertificate) throws KomandorException { | |
| List<SecretKeyRequestModel> result = new ArrayList<>(); | |
| try { | |
| for (Certificate certificate : recipientCertificate) { | |
| // 1. Сертификат получателя. | |
| //получаем параметры публичного ключа получателя. На его основании создадим ключ шифрования | |
| X509Certificate recipientCert = decodeBase64Certificate(certificate.getBase64()); | |
| PublicKey recipientPubicKey = recipientCert.getPublicKey(); | |
| String recipientPubicKeyAlgorithm = recipientPubicKey.getAlgorithm(); |
ReFLeXive007
/ android eph
Created
October 17, 2019 18:57
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public static List<SecretKeyRequestModel> createEphemeralSessionKeys(List<Certificate> recipientCertificate) throws KomandorException { | |
| List<SecretKeyRequestModel> result = new ArrayList<>(); | |
| try { | |
| Log.i(LOG_TAG, "Encrypt Session ephemeral key"); | |
| for (Certificate certificate : recipientCertificate) { | |
| //генерируем симметричный ключ шифрования сообщений | |
| final KeyGenerator keyGen = KeyGenerator.getInstance(CIPHER_ALG, PROVIDER); | |
| final SecretKey symmetricKey = keyGen.generateKey(); |
ReFLeXive007
/ Ephem Import
Created
October 15, 2019 09:29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| char * cppImportSessionKeyEphem(const char * containerName, const char * containerPin, const char * sessionKey) { | |
| HCRYPTPROV hProv = 0; | |
| bool isPinOk = false; | |
| HCRYPTKEY hResKey = 0; | |
| size_t sessionDataSize = 0; | |
| unsigned char * sessionData = NULL; | |
| BYTE *pData = NULL; | |
| DWORD dwEphemKeyBlobLen= 0; | |
| BYTE *pbEphemKeyBlob = NULL; | |
| HCRYPTKEY hAgreeKey = 0; |
ReFLeXive007
/ Ephem Export
Created
October 15, 2019 09:28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| SessionKeyData * cppExportSessionKeyEphem(const char *keyId, const char * cert) { | |
| // | |
| SessionKeyData * keyData = NULL; | |
| ProvKeyInfo pkInfo = ProvKeyInfoFromB64(keyId); | |
| HCRYPTPROV hCryptProv = 0; | |
| size_t certDataSize = 0; | |
| unsigned char * certData = NULL; | |
| HCRYPTKEY hCertPubKey = 0; | |
| BYTE *pbBlob = NULL; | |
| DWORD dwBlobLen = 0; |
ReFLeXive007
/ gist:86ce458506b826d4d790a274600bac4e
Created
August 13, 2019 07:43
komandor key exception
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2019-08-13 12:39:40.571 23598-24351/app.komandor.messenger E/ERROR: java.lang.IllegalArgumentException: MSCAPI ERROR: 0x8009000a | |
| 2019-08-13 12:39:40.572 23598-24351/app.komandor.messenger W/System.err: app.komandor.messenger.utils.KomandorException: java.lang.IllegalArgumentException: MSCAPI ERROR: 0x8009000a | |
| 2019-08-13 12:39:40.573 23598-24351/app.komandor.messenger W/System.err: at app.komandor.messenger.utils.CryptoUtils.sign(CryptoUtils.java:152) | |
| 2019-08-13 12:39:40.574 23598-24351/app.komandor.messenger W/System.err: at app.komandor.messenger.data.temporary.CryptoStorage.sign(CryptoStorage.java:64) | |
| 2019-08-13 12:39:40.575 23598-24351/app.komandor.messenger W/System.err: at app.komandor.messenger.data.temporary.CryptoStorage.signSelectedCertificate(CryptoStorage.java:149) | |
| 2019-08-13 12:39:40.576 23598-24351/app.komandor.messenger W/System.err: at app.komandor.messenger.ui.auth.cert_validation.CertValidationViewModel.lambda$validateCertificate$1$CertValidationViewModel(CertValidationViewMod |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public static DecryptedSessionKey decryptSessionKey(PrivateKey pk, EncryptedSessionKey encryptedSessionKey) throws KomandorException { | |
| SecretKey key_ = null; | |
| byte[] iv = null; | |
| try { | |
| int sizeLength = 4; | |
| byte[] bKey = Base64.decode(encryptedSessionKey.getEncryptedKey(), Base64.NO_WRAP); | |
| byte[] bBlobLength = SystemUtils.reverseByteArray(Arrays.copyOfRange(bKey, 0, sizeLength)); | |
| int blobLength = ByteBuffer.wrap(bBlobLength).getInt(); | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public static List<SecretKeyRequestModel> createSessionKeys(PrivateKey pk, List<Certificate> certificates) throws KomandorException { | |
| List<SecretKeyRequestModel> keys = new ArrayList<>(); | |
| try { | |
| /* Генерирование симметричного ключа с параметрами шифрования из контрольной панели*/ | |
| final KeyGenerator keyGen = KeyGenerator.getInstance(CIPHER_ALG, JCSP.PROVIDER_NAME); | |
| final SecretKey simm = keyGen.generateKey(); | |
| final byte[] iv = new byte[RND_LENGTH]; | |
| final SecureRandom random = SecureRandom.getInstance(RANDOM_ALG, JCSP.PROVIDER_NAME); | |
| random.nextBytes(iv); |