Home Explore Help
Sign In
iang
/
circuit-oram-docker
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 73a0b7da3e
Branches Tags
circuit-oram...
/
ObliVMGC
/
com
/
oblivm
/
backend
/
ot
/
Cipher.java

Cipher.java 2.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. //Copyright (C) 2014 by Yan Huang <yhuang@virginia.edu>
    2. 

  2. 

  3. package com.oblivm.backend.ot;
    4. 

  4. 

  5. import java.math.BigInteger;
    6. 

  6. import java.nio.ByteBuffer;
    7. 

  7. import java.security.MessageDigest;
    8. 

  8. 

  9. import com.oblivm.backend.gc.GCSignal;
    10. 

  10. 

  11. public final class Cipher {
    12. 

  12. 	private static final int unitLength = 160; // SHA-1 has 160-bit output.
    13. 

  13. 	private static final int bytesPerUnit = (unitLength - 1) / 8 + 1; // SHA-1
    14. 

  14. 																		// has
    15. 

  15. 																		// 20
    16. 

  16. 																		// bytes.
    17. 

  17. 

  18. 	private MessageDigest sha1;
    19. 

  19. 

  20. 	public Cipher() {
    21. 

  21. 		try {
    22. 

  22. 			sha1 = MessageDigest.getInstance("SHA-1");
    23. 

  23. 		} catch (Exception e) {
    24. 

  24. 			e.printStackTrace();
    25. 

  25. 			System.exit(1);
    26. 

  26. 		}
    27. 

  27. 	}
    28. 

  28. 

  29. 	BigInteger a = BigInteger.ONE;
    30. 

  30. 

  31. 	public BigInteger encrypt(byte[] key, BigInteger msg, int msgLength) {
    32. 

  32. 		assert (msgLength <= unitLength) : "Message longer than hash block width.";
    33. 

  33. 		return msg.xor(getPaddingOfLength(key, msgLength));
    34. 

  34. 	}
    35. 

  35. 

  36. 	public BigInteger decrypt(byte[] key, BigInteger cph, int cphLength) {
    37. 

  37. 		assert (cphLength > unitLength) : "Ciphertext longer than hash block width.";
    38. 

  38. 		return cph.xor(getPaddingOfLength(key, cphLength));
    39. 

  39. 	}
    40. 

  40. 

  41. 	private BigInteger getPaddingOfLength(byte[] key, int padLength) {
    42. 

  42. 

  43. 		byte[] pad = new byte[(padLength - 1) / 8 + 1];
    44. 

  44. 		byte[] tmp;
    45. 

  45. 		int i;
    46. 

  46. 		for (i = 0; i < (pad.length - 1) / bytesPerUnit; i++) {
    47. 

  47. 			assert (i < 128) : "Padding is unexpectedly long.";
    48. 

  48. 			sha1.update(key);
    49. 

  49. 			sha1.update((byte) i);
    50. 

  50. 			tmp = sha1.digest();
    51. 

  51. 			System.arraycopy(tmp, 0, pad, i * bytesPerUnit, bytesPerUnit);
    52. 

  52. 		}
    53. 

  53. 

  54. 		return new BigInteger(1, pad);
    55. 

  55. 	}
    56. 

  56. 

  57. 	public BigInteger encrypt(int j, byte[] key, BigInteger msg, int msgLength) {
    58. 

  58. 		return msg.xor(getPaddingOfLength(j, key, msgLength));
    59. 

  59. 	}
    60. 

  60. 

  61. 	public BigInteger decrypt(int j, byte[] key, BigInteger cph, int cphLength) {
    62. 

  62. 		return cph.xor(getPaddingOfLength(j, key, cphLength));
    63. 

  63. 	}
    64. 

  64. 

  65. 	private BigInteger getPaddingOfLength(int j, byte[] key, int padLength) {
    66. 

  66. 		sha1.update(ByteBuffer.allocate(4).putInt(j).array());
    67. 

  67. 		sha1.update(key);
    68. 

  68. 

  69. 		byte[] pad = new byte[(padLength - 1) / 8 + 1];
    70. 

  70. 		byte[] tmp;
    71. 

  71. 		tmp = sha1.digest();
    72. 

  72. 		int i;
    73. 

  73. 		for (i = 0; i < (pad.length - 1) / bytesPerUnit; i++) {
    74. 

  74. 			System.arraycopy(tmp, 0, pad, i * bytesPerUnit, bytesPerUnit);
    75. 

  75. 			sha1.update(tmp);
    76. 

  76. 			tmp = sha1.digest();
    77. 

  77. 		}
    78. 

  78. 		System.arraycopy(tmp, 0, pad, i * bytesPerUnit, pad.length - i * bytesPerUnit);
    79. 

  79. 

  80. 		return new BigInteger(1, pad);
    81. 

  81. 	}
    82. 

  82. 

  83. 	public GCSignal enc(GCSignal key, GCSignal m, int k) {
    84. 

  84. 		return getPadding(key, k).xor(m);
    85. 

  85. 	}
    86. 

  86. 

  87. 	public GCSignal dec(GCSignal key, GCSignal c, int k) {
    88. 

  88. 		return getPadding(key, k).xor(c);
    89. 

  89. 	}
    90. 

  90. 

  91. 	private GCSignal getPadding(GCSignal key, int k) {
    92. 

  92. 		sha1.update(key.bytes);
    93. 

  93. 		sha1.update(ByteBuffer.allocate(4).putInt(k).array());
    94. 

  94. 		GCSignal ret = GCSignal.newInstance(sha1.digest());
    95. 

  95. 		return ret;
    96. 

  96. 	}
    97. 

  97. }
    98.