Migrate to RocksDB

Author: satiracode

build.gradle

@@ -30,7 +30,7 @@ dependencies {
     implementation 'io.quarkus:quarkus-kotlin'
     implementation 'org.jetbrains.kotlin:kotlin-stdlib-jdk8'
     implementation 'io.quarkus:quarkus-arc'
-    implementation 'org.mapdb:mapdb:3.1.0'
+    implementation 'org.rocksdb:rocksdbjni:10.2.1'
     implementation 'com.github.ben-manes.caffeine:caffeine:3.2.0'
 
     implementation 'io.projectreactor:reactor-core:3.7.5'

src/main/kotlin/org/exploit/keeper/db/LMKDB.kt

@@ -1,80 +1,108 @@
 package org.exploit.keeper.db
 
 import org.exploit.keeper.service.key.KeyOps
-import org.mapdb.DB
-import org.mapdb.DBMaker
-import org.mapdb.HTreeMap
-import org.mapdb.Serializer
-import org.slf4j.Logger
-import org.slf4j.LoggerFactory
+import org.rocksdb.*
 import java.io.Closeable
-import java.io.File
+import java.nio.charset.StandardCharsets
 
 class LMKDB(dbPath: String, private var opsProvider: () -> KeyOps) : Closeable {
-    private val db: DB = DBMaker.fileDB(File(dbPath))
-        .fileMmapEnable()
-        .transactionEnable()
-        .make()
-
-    val private : KeyStore = KeyStore(PRIVATE_KEY_MAP)
-    val public: KeyStore = NoOpsKeyStore(PUBLIC_KEY_MAP)
+    private val db: TransactionDB
+    private val cfHandles: List<ColumnFamilyHandle>
+    private val writeOpts: WriteOptions
+    val private: KeyStore
+    val public: KeyStore
+
+    init {
+        RocksDB.loadLibrary()
+
+        writeOpts = WriteOptions()
+
+        val options = DBOptions()
+            .setCreateIfMissing(true)
+            .setCreateMissingColumnFamilies(true)
+
+        val txnOptions = TransactionDBOptions()
+
+        val cfDescs = listOf(
+            ColumnFamilyDescriptor(RocksDB.DEFAULT_COLUMN_FAMILY),
+            ColumnFamilyDescriptor(PRIVATE_KEY_MAP.toByteArray()),
+            ColumnFamilyDescriptor(PUBLIC_KEY_MAP.toByteArray())
+        )
+
+        val handles = ArrayList<ColumnFamilyHandle>()
+        db = TransactionDB.open(options, txnOptions, dbPath, cfDescs, handles)
+
+        cfHandles = handles
+        val cfMap = mapOf(
+            PRIVATE_KEY_MAP to cfHandles[1],
+            PUBLIC_KEY_MAP to cfHandles[2]
+        )
+        private = KeyStore(PRIVATE_KEY_MAP, cfMap[PRIVATE_KEY_MAP]!!)
+        public = NoOpsKeyStore(PUBLIC_KEY_MAP, cfMap[PUBLIC_KEY_MAP]!!)
+    }
 
     fun isInitialized(): Boolean = private.hasKey(SENTINEL_KEY)
 
     fun writeSentinel(ops: KeyOps) = private.saveRaw(SENTINEL_KEY, ops.encrypt(SENTINEL_VAL))
 
     fun checkValidKey(ops: KeyOps): Boolean =
-        private.getRaw(SENTINEL_KEY)?.let { ops.decrypt(it).contentEquals(SENTINEL_VAL) }
-            ?: false
+        private.getRaw(SENTINEL_KEY)?.let { ops.decrypt(it).contentEquals(SENTINEL_VAL) } ?: false
 
-    override fun close() = db.close()
-
-    open inner class KeyStore(val mapName: String) {
-        private val map: HTreeMap<String, ByteArray> by lazy {
-            db.hashMap(mapName, Serializer.STRING, Serializer.BYTE_ARRAY).createOrOpen()
-        }
+    override fun close() {
+        cfHandles.forEach { it.close() }
+        db.close()
+    }
 
+    open inner class KeyStore(private val mapName: String, private val cf: ColumnFamilyHandle) {
         open fun save(id: String, raw: ByteArray) {
             val enc = opsProvider().encrypt(raw)
-            map[id] = enc
-            db.commit()
+            db.beginTransaction(writeOpts).use { tx ->
+                tx.put(cf, id.toByteArray(StandardCharsets.UTF_8), enc)
+                tx.commit()
+            }
         }
 
         open fun saveRaw(id: String, raw: ByteArray) {
-            map[id] = raw
-            db.commit()
+            db.beginTransaction(writeOpts).use { tx ->
+                tx.put(cf, id.toByteArray(StandardCharsets.UTF_8), raw)
+                tx.commit()
+            }
         }
 
         open fun get(id: String): ByteArray? =
-            map[id]?.let { opsProvider().decrypt(it) }
+            db.get(cf, id.toByteArray(StandardCharsets.UTF_8))?.let { opsProvider().decrypt(it) }
 
         open fun getRaw(id: String): ByteArray? =
-            map[id]
+            db.get(cf, id.toByteArray(StandardCharsets.UTF_8))
 
         open fun hasKey(id: String): Boolean =
-            map.containsKey(id)
+            db.get(cf, id.toByteArray(StandardCharsets.UTF_8)) != null
 
         open fun delete(id: String) {
-            map.remove(id); db.commit()
+            db.beginTransaction(writeOpts).use { tx ->
+                tx.delete(cf, id.toByteArray(StandardCharsets.UTF_8))
+                tx.commit()
+            }
         }
     }
 
-    inner class NoOpsKeyStore(mapName: String): KeyStore(mapName) {
+    inner class NoOpsKeyStore(mapName: String, private val cf: ColumnFamilyHandle) : KeyStore(mapName, cf) {
         override fun save(id: String, raw: ByteArray) {
-            db.hashMap(mapName, Serializer.STRING, Serializer.BYTE_ARRAY)
-                .createOrOpen()[id] = raw ; db.commit()
+            db.beginTransaction(writeOpts).use { tx ->
+                tx.put(cf, id.toByteArray(StandardCharsets.UTF_8), raw)
+                tx.commit()
+            }
         }
+
         override fun get(id: String): ByteArray? =
-            db.hashMap(mapName, Serializer.STRING, Serializer.BYTE_ARRAY)
-                .createOrOpen()[id]
+            db.get(cf, id.toByteArray(StandardCharsets.UTF_8))
     }
 
     private companion object {
-        val LOGGER: Logger = LoggerFactory.getLogger(LMKDB::class.java)
-        const val SENTINEL_KEY = "__meta__"
         val SENTINEL_VAL = "BK-v1".toByteArray()
 
+        const val SENTINEL_KEY = "__meta__"
         const val PRIVATE_KEY_MAP = "privateKey"
-        private const val PUBLIC_KEY_MAP = "publicKey"
+        const val PUBLIC_KEY_MAP = "publicKey"
     }
 }

src/main/kotlin/org/exploit/keeper/service/signature/gg20/GG20SessionFactory.kt

@@ -26,8 +26,6 @@ import org.exploit.threshield.ecdsa.context.crypto.CryptoContext
 import org.exploit.threshield.ecdsa.context.init.InitContext
 import org.exploit.threshield.ecdsa.context.integrity.InMemoryIntegrityContext
 import org.exploit.threshield.ecdsa.context.mta.MtAContext
-import org.slf4j.Logger
-import org.slf4j.LoggerFactory
 import java.util.concurrent.TimeUnit
 
 @Singleton
@@ -104,20 +102,11 @@ class GG20SessionFactory(
         sessionMap.remove(sessionId)
     }
 
-    override fun type(): SessionType {
-        return SessionType.GG20
-    }
+    override fun type(): SessionType =
+        SessionType.GG20
 
     @PreDestroy
     private fun destroy() {
         sessionMap.close()
     }
-
-    private fun ByteArray.toPointOps(curveParams: ECCurveParams): ECPointOps {
-        return ECPointOps(curveParams.x9ECParameters.curve.decodePoint(this))
-    }
-
-    private companion object {
-        val LOGGER: Logger = LoggerFactory.getLogger(GG20SessionFactory::class.java)
-    }
 }

src/main/resources/application.yaml

@@ -5,6 +5,11 @@
       host-enabled: false
       ssl-port: -1
 
+quarkus:
+  banner:
+    enabled: true
+    path: banner.txt
+
 vault:
   url: ${VAULT_URL}
   token: ${VAULT_TOKEN}

src/main/resources/banner.txt

@@ -0,0 +1,5 @@
+  ________ __ ________________  __________
+ /_  __/ //_// ____/ ____/ __ \/ ____/ __ \
+  / / / ,<  / __/ / __/ / /_/ / __/ / /_/ /
+ / / / /| |/ /___/ /___/ ____/ /___/ _, _/
+/_/ /_/ |_/_____/_____/_/   /_____/_/ |_|