WIP: Add a concrete Kyber implementation

jchambers · jchambers · commit a56858decb36 · 2024-09-14T14:46:50.000-04:00
diff --git a/pom.xml b/pom.xml
@@ -14,13 +14,26 @@
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     </properties>
 
+    <repositories>
+        <repository>
+            <id>jitpack.io</id>
+            <url>https://jitpack.io</url>
+        </repository>
+    </repositories>
+
     <dependencies>
         <dependency>
             <groupId>com.google.code.findbugs</groupId>
             <artifactId>jsr305</artifactId>
             <version>3.0.2</version>
         </dependency>
 
+        <dependency>
+            <groupId>com.github.fisherstevenk</groupId>
+            <artifactId>kyberJCE</artifactId>
+            <version>v3.0.0</version>
+        </dependency>
+
         <dependency>
             <groupId>com.fasterxml.jackson.core</groupId>
             <artifactId>jackson-databind</artifactId>
diff --git a/src/main/java/com/eatthepath/noise/component/AbstractKyberKeyEncapsulationMechanism.java b/src/main/java/com/eatthepath/noise/component/AbstractKyberKeyEncapsulationMechanism.java
@@ -0,0 +1,90 @@
+package com.eatthepath.noise.component;
+
+import com.swiftcryptollc.crypto.interfaces.KyberPublicKey;
+import com.swiftcryptollc.crypto.provider.KyberCipherText;
+import com.swiftcryptollc.crypto.provider.KyberDecrypted;
+import com.swiftcryptollc.crypto.provider.KyberEncrypted;
+import com.swiftcryptollc.crypto.provider.KyberKeySize;
+import com.swiftcryptollc.crypto.provider.kyber.KyberParams;
+import com.swiftcryptollc.crypto.spec.KyberPublicKeySpec;
+
+import javax.crypto.KeyAgreement;
+import java.security.*;
+import java.security.spec.InvalidKeySpecException;
+
+abstract class AbstractKyberKeyEncapsulationMechanism implements NoiseKeyEncapsulationMechanism {
+
+  private final KeyAgreement keyAgreement;
+  private final KeyPairGenerator keyPairGenerator;
+  private final KeyFactory keyFactory;
+
+  AbstractKyberKeyEncapsulationMechanism(final KeyAgreement keyAgreement,
+                                         final KeyPairGenerator keyPairGenerator,
+                                         final KeyFactory keyFactory) {
+
+    this.keyAgreement = keyAgreement;
+    this.keyPairGenerator = keyPairGenerator;
+    this.keyFactory = keyFactory;
+  }
+
+  protected abstract KyberKeySize getKyberKeySize();
+
+  @Override
+  public KeyPair generateKeyPair() {
+    return keyPairGenerator.generateKeyPair();
+  }
+
+  @Override
+  public EncapsulatedKey encapsulate(final PrivateKey privateKey, final PublicKey publicKey) {
+    try {
+      keyAgreement.init(privateKey);
+    } catch (final InvalidKeyException e) {
+      throw new IllegalArgumentException("Invalid private key for encapsulation", e);
+    }
+
+    try {
+      final KyberEncrypted kyberEncrypted = (KyberEncrypted) keyAgreement.doPhase(publicKey, true);
+
+      return new EncapsulatedKey(kyberEncrypted.getSecretKey().getS(), kyberEncrypted.getCipherText().getC());
+    } catch (final InvalidKeyException e) {
+      throw new IllegalArgumentException("Invalid public key for encapsulation", e);
+    }
+  }
+
+  @Override
+  public byte[] decapsulate(final PrivateKey privateKey, final byte[] encapsulation) {
+    try {
+      keyAgreement.init(privateKey);
+    } catch (final InvalidKeyException e) {
+      throw new IllegalArgumentException("Invalid private key for decapsulation", e);
+    }
+
+    try {
+      final KyberCipherText kyberCiphertext =
+          new KyberCipherText(encapsulation, KyberParams.default_p, KyberParams.default_g);
+
+      return ((KyberDecrypted) keyAgreement.doPhase(kyberCiphertext, true)).getSecretKey().getS();
+    } catch (final InvalidKeyException e) {
+      throw new IllegalArgumentException("Invalid ciphertext for decapsulation", e);
+    }
+  }
+
+  @Override
+  public byte[] serializePublicKey(final PublicKey publicKey) {
+    if (publicKey instanceof final KyberPublicKey kyberPublicKey) {
+      return kyberPublicKey.getY();
+    }
+
+    throw new IllegalArgumentException("Illegal public key type: " + publicKey.getClass());
+  }
+
+  @Override
+  public PublicKey deserializePublicKey(final byte[] publicKeyBytes) {
+    try {
+      return keyFactory.generatePublic(
+          new KyberPublicKeySpec(publicKeyBytes, KyberParams.default_p, KyberParams.default_g, getKyberKeySize()));
+    } catch (final InvalidKeySpecException e) {
+      throw new IllegalArgumentException("Could not parse public key bytes as a Kyber public key", e);
+    }
+  }
+}
diff --git a/src/main/java/com/eatthepath/noise/component/AbstractXECKeyAgreement.java b/src/main/java/com/eatthepath/noise/component/AbstractXECKeyAgreement.java
@@ -14,8 +14,8 @@ abstract class AbstractXECKeyAgreement implements NoiseKeyAgreement {
   private final KeyFactory keyFactory;
 
   protected AbstractXECKeyAgreement(final KeyAgreement keyAgreement,
-                          final KeyPairGenerator keyPairGenerator,
-                          final KeyFactory keyFactory) {
+                                    final KeyPairGenerator keyPairGenerator,
+                                    final KeyFactory keyFactory) {
 
     this.keyAgreement = keyAgreement;
     this.keyPairGenerator = keyPairGenerator;
diff --git a/src/main/java/com/eatthepath/noise/component/EncapsulatedKey.java b/src/main/java/com/eatthepath/noise/component/EncapsulatedKey.java
@@ -1,4 +1,6 @@
 package com.eatthepath.noise.component;
 
+import java.security.Key;
+
 public record EncapsulatedKey(byte[] sharedSecret, byte[] encapsulation) {
 }
diff --git a/src/main/java/com/eatthepath/noise/component/Kyber1024KeyEncapsulationMechanism.java b/src/main/java/com/eatthepath/noise/component/Kyber1024KeyEncapsulationMechanism.java
@@ -0,0 +1,38 @@
+package com.eatthepath.noise.component;
+
+import com.swiftcryptollc.crypto.provider.KyberKeySize;
+import com.swiftcryptollc.crypto.provider.kyber.KyberParams;
+
+import javax.crypto.KeyAgreement;
+import java.security.KeyFactory;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+
+public class Kyber1024KeyEncapsulationMechanism extends AbstractKyberKeyEncapsulationMechanism {
+
+  private static final String ALGORITHM = "Kyber1024";
+
+  public Kyber1024KeyEncapsulationMechanism() throws NoSuchAlgorithmException {
+    super(KeyAgreement.getInstance(ALGORITHM), KeyPairGenerator.getInstance(ALGORITHM), KeyFactory.getInstance(ALGORITHM));
+  }
+
+  @Override
+  protected KyberKeySize getKyberKeySize() {
+    return KyberKeySize.KEY_1024;
+  }
+
+  @Override
+  public String getName() {
+    return "Kyber1024";
+  }
+
+  @Override
+  public int getPublicKeyLength() {
+    return KyberParams.Kyber1024PKBytes;
+  }
+
+  @Override
+  public int getEncapsulationLength() {
+    return KyberParams.Kyber1024CTBytes;
+  }
+}
diff --git a/src/main/java/com/eatthepath/noise/component/Kyber512KeyEncapsulationMechanism.java b/src/main/java/com/eatthepath/noise/component/Kyber512KeyEncapsulationMechanism.java
@@ -0,0 +1,38 @@
+package com.eatthepath.noise.component;
+
+import com.swiftcryptollc.crypto.provider.KyberKeySize;
+import com.swiftcryptollc.crypto.provider.kyber.KyberParams;
+
+import javax.crypto.KeyAgreement;
+import java.security.KeyFactory;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+
+class Kyber512KeyEncapsulationMechanism extends AbstractKyberKeyEncapsulationMechanism {
+
+  private static final String ALGORITHM = "Kyber512";
+
+  public Kyber512KeyEncapsulationMechanism() throws NoSuchAlgorithmException {
+    super(KeyAgreement.getInstance(ALGORITHM), KeyPairGenerator.getInstance(ALGORITHM), KeyFactory.getInstance(ALGORITHM));
+  }
+
+  @Override
+  protected KyberKeySize getKyberKeySize() {
+    return KyberKeySize.KEY_512;
+  }
+
+  @Override
+  public String getName() {
+    return "Kyber512";
+  }
+
+  @Override
+  public int getPublicKeyLength() {
+    return KyberParams.Kyber512PKBytes;
+  }
+
+  @Override
+  public int getEncapsulationLength() {
+    return KyberParams.Kyber512CTBytes;
+  }
+}
diff --git a/src/main/java/com/eatthepath/noise/component/Kyber768KeyEncapsulationMechanism.java b/src/main/java/com/eatthepath/noise/component/Kyber768KeyEncapsulationMechanism.java
@@ -0,0 +1,37 @@
+package com.eatthepath.noise.component;
+
+import com.swiftcryptollc.crypto.provider.KyberKeySize;
+import com.swiftcryptollc.crypto.provider.kyber.KyberParams;
+
+import javax.crypto.KeyAgreement;
+import java.security.KeyFactory;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+
+class Kyber768KeyEncapsulationMechanism extends AbstractKyberKeyEncapsulationMechanism {
+  private static final String ALGORITHM = "Kyber768";
+
+  public Kyber768KeyEncapsulationMechanism() throws NoSuchAlgorithmException {
+    super(KeyAgreement.getInstance(ALGORITHM), KeyPairGenerator.getInstance(ALGORITHM), KeyFactory.getInstance(ALGORITHM));
+  }
+
+  @Override
+  protected KyberKeySize getKyberKeySize() {
+    return KyberKeySize.KEY_768;
+  }
+
+  @Override
+  public String getName() {
+    return "Kyber768";
+  }
+
+  @Override
+  public int getPublicKeyLength() {
+    return KyberParams.Kyber768PKBytes;
+  }
+
+  @Override
+  public int getEncapsulationLength() {
+    return KyberParams.Kyber768CTBytes;
+  }
+}
diff --git a/src/main/java/com/eatthepath/noise/component/NoiseKeyEncapsulationMechanism.java b/src/main/java/com/eatthepath/noise/component/NoiseKeyEncapsulationMechanism.java
@@ -1,13 +1,16 @@
 package com.eatthepath.noise.component;
 
-import java.security.KeyPair;
-import java.security.PrivateKey;
-import java.security.PublicKey;
+import java.security.*;
 
 public interface NoiseKeyEncapsulationMechanism {
 
-  static NoiseKeyEncapsulationMechanism getInstance(final String name) {
-    throw new IllegalArgumentException("Unrecognized key encapsulation method name: " + name);
+  static NoiseKeyEncapsulationMechanism getInstance(final String name) throws NoSuchAlgorithmException {
+    return switch (name) {
+      case "Kyber512" -> new Kyber512KeyEncapsulationMechanism();
+      case "Kyber768" -> new Kyber768KeyEncapsulationMechanism();
+      case "Kyber1024" -> new Kyber1024KeyEncapsulationMechanism();
+      default -> throw new IllegalArgumentException("Unrecognized key encapsulation method name: " + name);
+    };
   }
 
   String getName();
diff --git a/src/test/java/com/eatthepath/noise/KyberSandbox.java b/src/test/java/com/eatthepath/noise/KyberSandbox.java
@@ -0,0 +1,28 @@
+package com.eatthepath.noise;
+
+import com.swiftcryptollc.crypto.provider.KyberJCE;
+import com.swiftcryptollc.crypto.provider.kyber.KyberParams;
+
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+import java.security.Security;
+import java.util.HexFormat;
+
+public class KyberSandbox {
+
+  public static void main(final String... args) throws NoSuchAlgorithmException {
+    // Security.setProperty("crypto.policy", "unlimited");
+    Security.addProvider(new KyberJCE());
+
+    KeyPairGenerator keyGen = KeyPairGenerator.getInstance("Kyber1024");
+    KeyPair keyPair = keyGen.generateKeyPair();
+
+    System.out.println(keyPair.getPublic().getEncoded().length);
+    System.out.println(KyberParams.Kyber1024PKBytes);
+
+    for (int i = 0; i < 10; i++) {
+      System.out.println(HexFormat.of().formatHex(keyGen.generateKeyPair().getPublic().getEncoded(), 0, 168));
+    }
+  }
+}

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,6 @@`
`1`	`1`	`package com.eatthepath.noise.component;`
`2`	`2`
	`3`	`+import java.security.Key;`
	`4`	`+`
`3`	`5`	`public record EncapsulatedKey(byte[] sharedSecret, byte[] encapsulation) {`
`4`	`6`	`}`