whyoleg
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesCbc.kt‎
Lines changed: 11 additions & 37 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesCbc.kt‎
Lines changed: 11 additions & 37 deletions
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesCtr.kt‎
Lines changed: 14 additions & 34 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesCtr.kt‎
Lines changed: 14 additions & 34 deletions
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesEcb.kt‎
Lines changed: 30 additions & 20 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesEcb.kt‎
Lines changed: 30 additions & 20 deletions
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesGcm.kt‎
Lines changed: 40 additions & 30 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesGcm.kt‎
Lines changed: 40 additions & 30 deletions
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesIvCipher.kt‎
Lines changed: 45 additions & 0 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkAesIvCipher.kt‎
Lines changed: 45 additions & 0 deletions
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkDigest.kt‎
Lines changed: 1 addition & 1 deletion b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkDigest.kt‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkEcdsa.kt‎
Lines changed: 1 addition & 0 deletions b/‎cryptography-providers/jdk/src/jvmMain/kotlin/algorithms/JdkEcdsa.kt‎
Lines changed: 1 addition & 0 deletions
@@ -7,24 +7,13 @@ package dev.whyoleg.cryptography.providers.jdk.algorithms
 import dev.whyoleg.cryptography.*
 import dev.whyoleg.cryptography.algorithms.*
 import dev.whyoleg.cryptography.materials.key.*
-import dev.whyoleg.cryptography.operations.signature.*
 import dev.whyoleg.cryptography.providers.jdk.*
 import dev.whyoleg.cryptography.providers.jdk.materials.*
-import dev.whyoleg.cryptography.providers.jdk.operations.*
-import javax.crypto.spec.*
 
 internal class JdkAesCbc(
     private val state: JdkCryptographyState,
 ) : AES.CBC {
-    private val keyWrapper: (JSecretKey) -> AES.CBC.Key = { key ->
-        object : AES.CBC.Key, JdkEncodableKey<AES.Key.Format>(key) {
-            override fun cipher(padding: Boolean): AES.IvCipher = AesCbcCipher(state, key, padding)
-            override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
-                AES.Key.Format.JWK -> error("$format is not supported")
-                AES.Key.Format.RAW -> encodeToRaw()
-            }
-        }
-    }
+    private val keyWrapper: (JSecretKey) -> AES.CBC.Key = { key -> JdkAesCbcKey(state, key) }
     private val keyDecoder = JdkSecretKeyDecoder<AES.Key.Format, _>("AES", keyWrapper)
 
     override fun keyDecoder(): KeyDecoder<AES.Key.Format, AES.CBC.Key> = keyDecoder
@@ -33,37 +22,22 @@ internal class JdkAesCbc(
     }
 }
 
-private const val ivSizeBytes = 16 //bytes for CBC
-
-private class AesCbcCipher(
+private class JdkAesCbcKey(
     private val state: JdkCryptographyState,
     private val key: JSecretKey,
-    padding: Boolean,
-) : AES.IvCipher {
-    private val cipher = state.cipher(
-        when {
+) : AES.CBC.Key, JdkEncodableKey<AES.Key.Format>(key) {
+    override fun cipher(padding: Boolean): AES.IvCipher = JdkAesIvCipher(
+        state = state,
+        key = key,
+        ivSize = 16,
+        algorithm = when {
             padding -> "AES/CBC/PKCS5Padding"
             else    -> "AES/CBC/NoPadding"
         }
     )
 
-    override fun encryptBlocking(plaintext: ByteArray): ByteArray {
-        val iv = ByteArray(ivSizeBytes).also(state.secureRandom::nextBytes)
-        return iv + encryptWithIvBlocking(iv, plaintext)
-    }
-
-    override fun encryptWithIvBlocking(iv: ByteArray, plaintext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.ENCRYPT_MODE, key, IvParameterSpec(iv), state.secureRandom)
-        cipher.doFinal(plaintext)
-    }
-
-    override fun decryptBlocking(ciphertext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, IvParameterSpec(ciphertext, 0, ivSizeBytes), state.secureRandom)
-        cipher.doFinal(ciphertext, ivSizeBytes, ciphertext.size - ivSizeBytes)
-    }
-
-    override fun decryptWithIvBlocking(iv: ByteArray, ciphertext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, IvParameterSpec(iv), state.secureRandom)
-        cipher.doFinal(ciphertext)
+    override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
+        AES.Key.Format.JWK -> error("$format is not supported")
+        AES.Key.Format.RAW -> encodeToRaw()
     }
 }
@@ -14,15 +14,7 @@ import javax.crypto.spec.*
 internal class JdkAesCtr(
     private val state: JdkCryptographyState,
 ) : AES.CTR {
-    private val keyWrapper: (JSecretKey) -> AES.CTR.Key = { key ->
-        object : AES.CTR.Key, JdkEncodableKey<AES.Key.Format>(key) {
-            override fun cipher(): AES.IvCipher = AesCtrCipher(state, key)
-            override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
-                AES.Key.Format.JWK -> error("$format is not supported")
-                AES.Key.Format.RAW -> encodeToRaw()
-            }
-        }
-    }
+    private val keyWrapper: (JSecretKey) -> AES.CTR.Key = { key -> JdkAesCtrKey(state, key) }
     private val keyDecoder = JdkSecretKeyDecoder<AES.Key.Format, _>("AES", keyWrapper)
 
     override fun keyDecoder(): KeyDecoder<AES.Key.Format, AES.CTR.Key> = keyDecoder
@@ -31,31 +23,19 @@ internal class JdkAesCtr(
     }
 }
 
-private const val ivSizeBytes = 16 //bytes for CTR
-
-private class AesCtrCipher(
+private class JdkAesCtrKey(
     private val state: JdkCryptographyState,
     private val key: JSecretKey,
-) : AES.IvCipher {
-    private val cipher = state.cipher("AES/CTR/NoPadding")
-
-    override fun encryptBlocking(plaintext: ByteArray): ByteArray {
-        val iv = ByteArray(ivSizeBytes).also(state.secureRandom::nextBytes)
-        return iv + encryptWithIvBlocking(iv, plaintext)
-    }
-
-    override fun encryptWithIvBlocking(iv: ByteArray, plaintext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.ENCRYPT_MODE, key, IvParameterSpec(iv), state.secureRandom)
-        cipher.doFinal(plaintext)
+) : AES.CTR.Key, JdkEncodableKey<AES.Key.Format>(key) {
+    override fun cipher(): AES.IvCipher = JdkAesIvCipher(
+        state = state,
+        key = key,
+        ivSize = 16,
+        algorithm = "AES/CTR/NoPadding"
+    )
+
+    override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
+        AES.Key.Format.JWK -> error("$format is not supported")
+        AES.Key.Format.RAW -> encodeToRaw()
     }
-
-    override fun decryptBlocking(ciphertext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, IvParameterSpec(ciphertext, 0, ivSizeBytes), state.secureRandom)
-        cipher.doFinal(ciphertext, ivSizeBytes, ciphertext.size - ivSizeBytes)
-    }
-
-    override fun decryptWithIvBlocking(iv: ByteArray, ciphertext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, IvParameterSpec(iv), state.secureRandom)
-        cipher.doFinal(ciphertext)
-    }
-}
+}
@@ -8,22 +8,16 @@ import dev.whyoleg.cryptography.*
 import dev.whyoleg.cryptography.algorithms.*
 import dev.whyoleg.cryptography.materials.key.*
 import dev.whyoleg.cryptography.operations.*
+import dev.whyoleg.cryptography.providers.base.operations.*
 import dev.whyoleg.cryptography.providers.jdk.*
 import dev.whyoleg.cryptography.providers.jdk.materials.*
+import dev.whyoleg.cryptography.providers.jdk.operations.*
 import javax.crypto.spec.*
 
 internal class JdkAesEcb(
     private val state: JdkCryptographyState,
 ) : AES.ECB {
-    private val keyWrapper: (JSecretKey) -> AES.ECB.Key = { key ->
-        object : AES.ECB.Key, JdkEncodableKey<AES.Key.Format>(key) {
-            override fun cipher(padding: Boolean): Cipher = AesEcbCipher(state, key, padding)
-            override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
-                AES.Key.Format.JWK -> error("$format is not supported")
-                AES.Key.Format.RAW -> encodeToRaw()
-            }
-        }
-    }
+    private val keyWrapper: (JSecretKey) -> AES.ECB.Key = { key -> JdkAesEcbKey(state, key) }
     private val keyDecoder = JdkSecretKeyDecoder<AES.Key.Format, _>("AES", keyWrapper)
 
     override fun keyDecoder(): KeyDecoder<AES.Key.Format, AES.ECB.Key> = keyDecoder
@@ -32,25 +26,41 @@ internal class JdkAesEcb(
     }
 }
 
-private class AesEcbCipher(
+private class JdkAesEcbKey(
     private val state: JdkCryptographyState,
     private val key: JSecretKey,
-    padding: Boolean,
-) : Cipher {
-    private val cipher = state.cipher(
-        when {
+) : AES.ECB.Key, JdkEncodableKey<AES.Key.Format>(key) {
+    override fun cipher(padding: Boolean): Cipher = JdkAesEcbCipher(
+        state = state,
+        key = key,
+        algorithm = when {
             padding -> "AES/ECB/PKCS5Padding"
             else    -> "AES/ECB/NoPadding"
         }
     )
 
-    override fun encryptBlocking(plaintext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.ENCRYPT_MODE, key, state.secureRandom)
-        cipher.doFinal(plaintext)
+    override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
+        AES.Key.Format.JWK -> error("$format is not supported")
+        AES.Key.Format.RAW -> encodeToRaw()
+    }
+}
+
+private class JdkAesEcbCipher(
+    private val state: JdkCryptographyState,
+    private val key: JSecretKey,
+    algorithm: String,
+) : BaseCipher {
+    private val cipher = state.cipher(algorithm)
+
+    override fun createEncryptFunction(): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.ENCRYPT_MODE, key, state.secureRandom)
+        })
     }
 
-    override fun decryptBlocking(ciphertext: ByteArray): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, state.secureRandom)
-        cipher.doFinal(ciphertext)
+    override fun createDecryptFunction(): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.DECRYPT_MODE, key, state.secureRandom)
+        })
     }
 }
@@ -8,25 +8,18 @@ import dev.whyoleg.cryptography.*
 import dev.whyoleg.cryptography.algorithms.*
 import dev.whyoleg.cryptography.materials.key.*
 import dev.whyoleg.cryptography.operations.*
+import dev.whyoleg.cryptography.providers.base.algorithms.*
+import dev.whyoleg.cryptography.providers.base.operations.*
 import dev.whyoleg.cryptography.providers.jdk.*
 import dev.whyoleg.cryptography.providers.jdk.algorithms.*
 import dev.whyoleg.cryptography.providers.jdk.materials.*
+import dev.whyoleg.cryptography.providers.jdk.operations.*
 import javax.crypto.spec.*
 
 internal class JdkAesGcm(
     private val state: JdkCryptographyState,
 ) : AES.GCM {
-    private val keyWrapper: (JSecretKey) -> AES.GCM.Key = { key ->
-        object : AES.GCM.Key, JdkEncodableKey<AES.Key.Format>(key) {
-            override fun cipher(tagSize: BinarySize): AES.IvAuthenticatedCipher = AesGcmCipher(state, key, tagSize)
-
-            override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
-                AES.Key.Format.JWK -> error("$format is not supported")
-                AES.Key.Format.RAW -> encodeToRaw()
-            }
-        }
-    }
-
+    private val keyWrapper: (JSecretKey) -> AES.GCM.Key = { key -> JdkAesGcmKey(state, key) }
     private val keyDecoder = JdkSecretKeyDecoder<AES.Key.Format, _>("AES", keyWrapper)
 
     override fun keyDecoder(): KeyDecoder<AES.Key.Format, AES.GCM.Key> = keyDecoder
@@ -36,35 +29,52 @@ internal class JdkAesGcm(
     }
 }
 
-private const val ivSizeBytes = 12 // bytes for GCM
+private class JdkAesGcmKey(
+    private val state: JdkCryptographyState,
+    private val key: JSecretKey,
+) : AES.GCM.Key, JdkEncodableKey<AES.Key.Format>(key) {
+    override fun cipher(tagSize: BinarySize): AES.IvAuthenticatedCipher = JdkAesGcmCipher(state, key, tagSize.inBits)
+
+    override fun encodeToByteArrayBlocking(format: AES.Key.Format): ByteArray = when (format) {
+        AES.Key.Format.JWK -> error("$format is not supported")
+        AES.Key.Format.RAW -> encodeToRaw()
+    }
+}
 
-private class AesGcmCipher(
+private class JdkAesGcmCipher(
     private val state: JdkCryptographyState,
     private val key: JSecretKey,
-    private val tagSize: BinarySize,
-) : AES.IvAuthenticatedCipher {
+    private val tagSizeBits: Int,
+) : BaseAesIvAuthenticatedCipher {
+    private val ivSize: Int get() = 12
     private val cipher = state.cipher("AES/GCM/NoPadding")
 
-    override fun encryptBlocking(plaintext: ByteArray, associatedData: ByteArray?): ByteArray {
-        val iv = ByteArray(ivSizeBytes).also(state.secureRandom::nextBytes)
-        return iv + encryptWithIvBlocking(iv, plaintext, associatedData)
+    override fun createEncryptFunction(associatedData: ByteArray?): CipherFunction {
+        val iv = ByteArray(ivSize).also(state.secureRandom::nextBytes)
+        return BaseAesImplicitIvEncryptFunction(iv, createEncryptFunctionWithIv(iv, associatedData))
+    }
+
+    override fun createDecryptFunction(associatedData: ByteArray?): CipherFunction {
+        return BaseAesImplicitIvDecryptFunction(ivSize) { iv, startIndex ->
+            createDecryptFunctionWithIv(iv, startIndex, associatedData)
+        }
     }
 
-    override fun encryptWithIvBlocking(iv: ByteArray, plaintext: ByteArray, associatedData: ByteArray?): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.ENCRYPT_MODE, key, GCMParameterSpec(tagSize.inBits, iv), state.secureRandom)
-        associatedData?.let(cipher::updateAAD)
-        cipher.doFinal(plaintext)
+    override fun createEncryptFunctionWithIv(iv: ByteArray, associatedData: ByteArray?): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.ENCRYPT_MODE, key, GCMParameterSpec(tagSizeBits, iv), state.secureRandom)
+            associatedData?.let(this::updateAAD)
+        })
     }
 
-    override fun decryptBlocking(ciphertext: ByteArray, associatedData: ByteArray?): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, GCMParameterSpec(tagSize.inBits, ciphertext, 0, ivSizeBytes), state.secureRandom)
-        associatedData?.let(cipher::updateAAD)
-        cipher.doFinal(ciphertext, ivSizeBytes, ciphertext.size - ivSizeBytes)
+    private fun createDecryptFunctionWithIv(iv: ByteArray, startIndex: Int, associatedData: ByteArray?): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.DECRYPT_MODE, key, GCMParameterSpec(tagSizeBits, iv, startIndex, ivSize), state.secureRandom)
+            associatedData?.let(this::updateAAD)
+        })
     }
 
-    override fun decryptWithIvBlocking(iv: ByteArray, ciphertext: ByteArray, associatedData: ByteArray?): ByteArray = cipher.use { cipher ->
-        cipher.init(JCipher.DECRYPT_MODE, key, GCMParameterSpec(tagSize.inBits, iv), state.secureRandom)
-        associatedData?.let(cipher::updateAAD)
-        cipher.doFinal(ciphertext)
+    override fun createDecryptFunctionWithIv(iv: ByteArray, associatedData: ByteArray?): CipherFunction {
+        return createDecryptFunctionWithIv(iv, 0, associatedData)
     }
 }
@@ -0,0 +1,45 @@
+/*
+ * Copyright (c) 2024 Oleg Yukhnevich. Use of this source code is governed by the Apache 2.0 license.
+ */
+
+package dev.whyoleg.cryptography.providers.jdk.algorithms
+
+import dev.whyoleg.cryptography.providers.base.algorithms.*
+import dev.whyoleg.cryptography.providers.base.operations.*
+import dev.whyoleg.cryptography.providers.jdk.*
+import dev.whyoleg.cryptography.providers.jdk.operations.*
+import javax.crypto.spec.*
+
+internal class JdkAesIvCipher(
+    private val state: JdkCryptographyState,
+    private val key: JSecretKey,
+    private val ivSize: Int,
+    algorithm: String,
+) : BaseAesIvCipher {
+    private val cipher = state.cipher(algorithm)
+
+    override fun createEncryptFunction(): CipherFunction {
+        val iv = ByteArray(ivSize).also(state.secureRandom::nextBytes)
+        return BaseAesImplicitIvEncryptFunction(iv, createEncryptFunctionWithIv(iv))
+    }
+
+    override fun createDecryptFunction(): CipherFunction {
+        return BaseAesImplicitIvDecryptFunction(ivSize, ::createDecryptFunctionWithIv)
+    }
+
+    override fun createEncryptFunctionWithIv(iv: ByteArray): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.ENCRYPT_MODE, key, IvParameterSpec(iv), state.secureRandom)
+        })
+    }
+
+    private fun createDecryptFunctionWithIv(iv: ByteArray, startIndex: Int): CipherFunction {
+        return JdkCipherFunction(cipher.borrowResource {
+            init(JCipher.DECRYPT_MODE, key, IvParameterSpec(iv, startIndex, ivSize), state.secureRandom)
+        })
+    }
+
+    override fun createDecryptFunctionWithIv(iv: ByteArray): CipherFunction {
+        return createDecryptFunctionWithIv(iv, 0)
+    }
+}
@@ -7,8 +7,8 @@ package dev.whyoleg.cryptography.providers.jdk.algorithms
 import dev.whyoleg.cryptography.*
 import dev.whyoleg.cryptography.algorithms.*
 import dev.whyoleg.cryptography.operations.*
+import dev.whyoleg.cryptography.providers.base.*
 import dev.whyoleg.cryptography.providers.jdk.*
-import dev.whyoleg.cryptography.providers.jdk.internal.*
 
 internal class JdkDigest(
     state: JdkCryptographyState,
 
@@ -8,6 +8,7 @@ import dev.whyoleg.cryptography.*
 import dev.whyoleg.cryptography.algorithms.*
 import dev.whyoleg.cryptography.bigint.*
 import dev.whyoleg.cryptography.operations.*
+import dev.whyoleg.cryptography.providers.base.*
 import dev.whyoleg.cryptography.providers.jdk.*
 import dev.whyoleg.cryptography.providers.jdk.internal.*
 import dev.whyoleg.cryptography.providers.jdk.operations.*