// Copyright (C) 2002 IAIK
// https://sic.tech/
//
// Copyright (C) 2003 - 2025 Stiftung Secure Information and 
//                           Communication Technologies SIC
// https://sic.tech/
//
// All rights reserved.
//
// This source is provided for inspection purposes and recompilation only,
// unless specified differently in a contract with IAIK. This source has to
// be kept in strict confidence and must not be disclosed to any third party
// under any circumstances. Redistribution in source and binary forms, with
// or without modification, are <not> permitted in any case!
//
// THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
// ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
// ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
// FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
// DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
// OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
// HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
// LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
// OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
// SUCH DAMAGE.
//
// $Header: /IAIK-CMS/current/src/demo/smime/ecc/SMimeV4BrainpoolDemo.java 3     12.02.25 17:59 Dbratko $
// $Revision: 3 $
//

package demo.smime.ecc;

import java.security.PrivateKey;

import jakarta.activation.DataHandler;
import jakarta.mail.Session;

import demo.DemoSMimeUtil;
import demo.DemoUtil;
import demo.cms.ecc.ECCDemoUtil;
import demo.cms.ecc.keystore.CMSEccKeyStore;
import iaik.asn1.structures.AlgorithmID;
import iaik.cms.CMSAlgorithmID;
import iaik.utils.KeyAndCertificate;
import iaik.x509.X509Certificate;

/**
 * This class demonstrates the usage of the IAIK S/MIME implementation. It shows how to create
 * signed and/or (authenticated) encrypted S/MIMEv4 messages using ECC keys with Berainpool curves
 * and how to parse them and verify the signatures and decrypt the content, respectively.
 * <p>
 * Although Brainpool curves may not be widely used with S/MIME applications they are, e.g., recommended 
 * by the German Federal Office for Information Security (BSI) for their Technical Guideline BSI TR-03116
 * defining cryptographic requirements for projects of the Federal Government.
 * Note that whereas S/MIME in general uses AEAD cipher modes like GCM with the <code>AuthEnvelopedData</code>
 * content type, BSI TR-03116 specifies GCM for use with the <code>EnvelopedData</code> type. For that 
 * reason GCM is used with <code>EnvelopedData</code> in this demo (in difference to the parent 
 * {@link SMimeV4EccDemo SMimeV4EccDemo} which uses GCM with the <code>AuthEnvelopedData</code> type.
 *   
 * <p>
 * Additionally to <code>iaik_cms.jar</code> you also must have 
 * <code>iaik_jce_(full).jar</code> (IAIK-JCE, <a href =
 * "https://sic.tech/products/core-crypto-toolkits/jca-jce/" target="_blank">
 * https://sic.tech/products/core-crypto-toolkits/jca-jce/</a>),
 * and <code>iaik_eccelarate.jar</code> (IAIK-ECCelerate<sup><small>TM</small></sup>, <a href =
 * "https://sic.tech/products/core-crypto-toolkits/eccelerate/" target="_blank">
 * https://sic.tech/products/core-crypto-toolkits/eccelerate/</a>)
 * in your classpath.
 * <p>
 * To run this demo the following packages are required:
 * <ul>
 *    <li>
 *       <code>iaik_cms.jar</code>
 *    </li>
 *    <li>
 *       <code>iaik_jce(_full).jar</code> (<a href="https://sic.tech/products/core-crypto-toolkits/jca-jce/" target="_blank">IAIK-JCE Core Crypto Library</a>).
 *    </li>
 *    <li>
 *       <code>iaik_eccelerate.jar</code> (<a href="https://sic.tech/products/core-crypto-toolkits/eccelerate/" target="_blank">IAIK ECC Library</a>).
 *    </li>   
 *    <li>
 *       <a href="https://jakarta.ee/specifications/mail/" target="_blank">Jakarta</a>/<a href="https://eclipse-ee4j.github.io/angus-mail/" target="_blank">Angus</a> Mail
 *    </li>   
 *    <li>
 *       <a href="https://jakarta.ee/specifications/activation/" target="_blank">Jakarta Activation Framework</a>
 *    </li> 
 * </ul>
 * 
 * This demo requires Java 7 or later.
 */
public class SMimeV4BrainpoolDemo extends SMimeV4EccDemo {
    
 
  /**
   * Default constructor.
   */
  public SMimeV4BrainpoolDemo() {
    
    System.out.println();
    System.out.println("********************************************************************************************");
    System.out.println("*                                SMimeV4EccDemo demo                                       *");
    System.out.println("* (shows how to create and parse (verify, decrypt) signed and encrypted S/MIMEv4 messages) *");
    System.out.println("********************************************************************************************");
    System.out.println();

  }
  
   
  /**
   * Starts the demo.
   *
   * @throws Exception if an error occurs
   */
  public void start() throws Exception {
    
    // get the default Session
    Session session = DemoSMimeUtil.getSession();

    // Create a demo Multipart
    DataHandler multipart = createMultipart();
    
    // get signer key and certs
    KeyAndCertificate[] signerKeyAndCerts = {
        // Brainpool P-224
        new KeyAndCertificate(
            CMSEccKeyStore.getPrivateKey(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_224_BRAINPOOL_SIGN),
            CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_224_BRAINPOOL_SIGN)),

        // Brainpool P-256
        new KeyAndCertificate(
            CMSEccKeyStore.getPrivateKey(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_256_BRAINPOOL_SIGN),
            CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_256_BRAINPOOL_SIGN)),
        // Brainpool P-384
        new KeyAndCertificate(
            CMSEccKeyStore.getPrivateKey(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_384_BRAINPOOL_SIGN),
            CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_384_BRAINPOOL_SIGN)),
        // Brainpool P-512
        new KeyAndCertificate(
            CMSEccKeyStore.getPrivateKey(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_512_BRAINPOOL_SIGN),
            CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDSA,
                CMSEccKeyStore.SZ_512_BRAINPOOL_SIGN)),

     };
     
     // the digest and signature algorithms to be used
     AlgorithmID[][] digestAndSignatureAlgorithms = new AlgorithmID[][] {
       { CMSAlgorithmID.sha224, CMSAlgorithmID.ecdsa_With_SHA224 },
       { CMSAlgorithmID.sha256, CMSAlgorithmID.ecdsa_With_SHA256 },
       { CMSAlgorithmID.sha384, CMSAlgorithmID.ecdsa_With_SHA384 },
       { CMSAlgorithmID.sha512, CMSAlgorithmID.ecdsa_With_SHA512 },
     };

    
     /**************************************************************************/
     /*                                                                        */
     /*                               Signing Demo                             */
     /*                                                                        */
     /**************************************************************************/
     
     final int DIGEST_ALG = 0;
     final int SIGNATURE_ALG = 1;
     for (int i = 0; i < digestAndSignatureAlgorithms.length; i++) {
       AlgorithmID digestAlg = digestAndSignatureAlgorithms[i][DIGEST_ALG];
       AlgorithmID signatureAlg = digestAndSignatureAlgorithms[i][SIGNATURE_ALG];
       PrivateKey signerKey = signerKeyAndCerts[i].getPrivateKey();
       X509Certificate[] signerCerts = signerKeyAndCerts[i].getCertificateChain();
       System.out.println("Running signing demo for " + signatureAlg.getName());
       startSigningDemo(session, 
                        multipart, 
                        digestAlg, 
                        signatureAlg, 
                        signerKey,
                        signerCerts);
    }
     
    // (authenticated) encryption demos
     
    // get recipient certs
    X509Certificate[] recipientCerts = {
        // Brainpool P-224
        CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
                CMSEccKeyStore.SZ_224_BRAINPOOL_CRYPT_1)[0],
        CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
            CMSEccKeyStore.SZ_224_BRAINPOOL_CRYPT_2)[0],
       // Brainpool P-256
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_256_BRAINPOOL_CRYPT_1)[0],
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_256_BRAINPOOL_CRYPT_2)[0],
       // Brainpool P-384
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_384_BRAINPOOL_CRYPT_1)[0],
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_384_BRAINPOOL_CRYPT_2)[0],
       //Brainpool P-512
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_512_BRAINPOOL_CRYPT_1)[0],
       CMSEccKeyStore.getCertificateChain(CMSEccKeyStore.ECDH,
               CMSEccKeyStore.SZ_512_BRAINPOOL_CRYPT_2)[0],
       
    };
     
    //  the key encryption algorithms to be used
    AlgorithmID[] keyEAs = {
        AlgorithmID.dhSinglePass_stdDH_sha224kdf_scheme, 
        AlgorithmID.dhSinglePass_stdDH_sha256kdf_scheme, 
        AlgorithmID.dhSinglePass_stdDH_sha384kdf_scheme, 
        AlgorithmID.dhSinglePass_stdDH_hkdf_sha256_scheme, 
        AlgorithmID.dhSinglePass_stdDH_hkdf_sha384_scheme,
        AlgorithmID.dhSinglePass_stdDH_hkdf_sha512_scheme, 
    };
    // key wrap algorithms
    AlgorithmID[] keyWrapAlgs = {
        CMSAlgorithmID.cms_aes128_wrap, 
        CMSAlgorithmID.cms_aes192_wrap, 
        CMSAlgorithmID.cms_aes256_wrap, 
    };
    // whether to encrypt or authenticated encrypt
    boolean[] doAuthEncrypt = { false, true };
    for (int i = 0; i < keyEAs.length; i++) {
      AlgorithmID[] contentEAs;
      AlgorithmID keyEA = keyEAs[i];
      for (int j = 0; j < keyWrapAlgs.length; j++) {
        AlgorithmID keyWrapAlg = keyWrapAlgs[j];
        int kekLength;
        int keyLength;
        if (keyWrapAlg.equals(CMSAlgorithmID.cms_aes192_wrap)) {
          kekLength = 192;
          keyLength = 192;
          contentEAs = new AlgorithmID[]  { AlgorithmID.aes192_GCM, AlgorithmID.aes192_CCM };
        } else if (keyWrapAlg.equals(CMSAlgorithmID.cms_aes128_wrap)) {
          kekLength = 128;
          keyLength = 128;
          contentEAs = new AlgorithmID[]  { AlgorithmID.aes128_GCM, AlgorithmID.aes128_CCM  };
        } else {
          kekLength = 256;
          keyLength = 256;
          contentEAs = new AlgorithmID[]  { AlgorithmID.aes256_GCM, AlgorithmID.aes256_CCM, AlgorithmID.chacha20Poly1305 };
        }
        
        for (int k = 0; k < contentEAs.length; k++) {
          
          /**************************************************************************/
          /*                                                                        */
          /*                  (Authenticated) Encryption Demo                       */
          /*                                                                        */
          /**************************************************************************/
          
          AlgorithmID contentEA = contentEAs[k];
          // in practice we may not create one message for recipients with different strength;
          // however, for simplicity we use all recipients here
          System.out.println("Running encryption demo for " + 
                              keyEA.getName() + " with " + keyWrapAlg.getName() +" and " + contentEA.getName());
          startEncryptionDemo(session,
                              contentEA, 
                              keyLength, 
                              keyEA,
                              keyWrapAlg,
                              kekLength,
                              false, 
                              recipientCerts);
          
          
          /**************************************************************************/
          /*                                                                        */
          /*             Signing and (Authenticated) Encryption Demo                */
          /*                                                                        */
          /**************************************************************************/
          
          for (int l = 0; l < digestAndSignatureAlgorithms.length; l++) {
            AlgorithmID digestAlg = digestAndSignatureAlgorithms[l][DIGEST_ALG];
            AlgorithmID signatureAlg = digestAndSignatureAlgorithms[l][SIGNATURE_ALG];
            PrivateKey signerKey = signerKeyAndCerts[l].getPrivateKey();
            X509Certificate[] signerCerts = signerKeyAndCerts[l].getCertificateChain();
            System.out.println("Running signing and encryption and demo for " + signatureAlg.getName());
            startSigningAndEncryptionDemo(session,
                multipart,
                digestAlg,
                signatureAlg,
                contentEA, 
                keyLength, 
                keyEA,
                keyWrapAlg,
                kekLength,
                false,  
                signerKey, 
                signerCerts,
                recipientCerts);
          }
        }
      }
    }
     
  } 
 
  /**
   * The main method.
   */
  public static void main(String[] argv) throws Exception {
    
    String jdkVersion = (String) System.getProperty("java.version");
    if (jdkVersion.compareTo("1.7") >= 0) {
      DemoSMimeUtil.initDemos();
      //  add ECC provider    
      ECCDemoUtil.installIaikEccProvider();
      
        (new SMimeV4BrainpoolDemo()).start();
      System.out.println("\nReady!");
    } else {
      System.err.println("This demo requires Java 7 or later!");
    }
    DemoUtil.waitKey();
  }
}