From a2f5316ad96b6e78844c371f8dd5483095cf4af3 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 12 Nov 2017 12:38:04 +0100
Subject: Introduce ECTesterStandalone.

---
 src/cz/crcs/ectester/standalone/ECTesterStandalone.java | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 src/cz/crcs/ectester/standalone/ECTesterStandalone.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
new file mode 100644
index 0000000..cae4bb9
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -0,0 +1,13 @@
+package cz.crcs.ectester.standalone;
+
+public class ECTesterStandalone {
+
+    private void run(String[] args) {
+
+    }
+
+    public static void main(String[] args) {
+        ECTesterStandalone app = new ECTesterStandalone();
+        app.run(args);
+    }
+}
-- 
cgit v1.2.3-70-g09d2


From e329190e496ecf847cfd7afa886ac08cacb2fc92 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 12 Nov 2017 17:23:04 +0100
Subject: Add BouncyCastle library. Sketch out ECTesterStandalone.

---
 docs/LIBS.md                                       |  16 ++++
 lib/bcprov-jdk15on-1.58.jar                        | Bin 0 -> 3955990 bytes
 nbproject/standalone/manifest.mf                   |   2 +-
 nbproject/standalone/project.properties            |   1 +
 src/cz/crcs/ectester/common/ec/EC_Data.java        |   8 +-
 src/cz/crcs/ectester/common/ec/EC_Params.java      |  43 +++++++++++
 src/cz/crcs/ectester/reader/ECTesterReader.java    |   2 +-
 .../crcs/ectester/reader/test/TestVectorSuite.java |   4 +-
 .../ectester/standalone/ECTesterStandalone.java    |  86 +++++++++++++++++++++
 .../ectester/standalone/libs/BouncyCastleLib.java  |  21 +++++
 10 files changed, 175 insertions(+), 8 deletions(-)
 create mode 100644 docs/LIBS.md
 create mode 100644 lib/bcprov-jdk15on-1.58.jar
 create mode 100644 src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/docs/LIBS.md b/docs/LIBS.md
new file mode 100644
index 0000000..97a80ec
--- /dev/null
+++ b/docs/LIBS.md
@@ -0,0 +1,16 @@
+# Libraries
+
+Libraries with at least some ECC support:
+
+ - [BouncyCastle](https://bouncycastle.org/java.html)
+ - [Botan](https://botan.randombit.net/)
+ - [Crypto++](https://cryptopp.com/)
+ - [libgcrypt](https://www.gnupg.org/related_software/libgcrypt/)
+ - [libtomcrypt](http://www.libtom.net/LibTomCrypt/)
+ - [mbedTLS](https://tls.mbed.org/)
+ - [Nettle](http://www.lysator.liu.se/~nisse/nettle/)
+ - [OpenSSL](https://www.openssl.org/)
+ - [OpenSSL (FIPS mode)](https://www.openssl.org/docs/fipsnotes.html)
+ - [Sun EC](https://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html#SunEC)
+ - [Microsoft CNG](https://msdn.microsoft.com/en-us/library/windows/desktop/aa376210(v=vs.85).aspx)
+ - [Microsoft .NET crypto](https://docs.microsoft.com/en-us/dotnet/standard/security/cryptography-model)
\ No newline at end of file
diff --git a/lib/bcprov-jdk15on-1.58.jar b/lib/bcprov-jdk15on-1.58.jar
new file mode 100644
index 0000000..dae02cb
Binary files /dev/null and b/lib/bcprov-jdk15on-1.58.jar differ
diff --git a/nbproject/standalone/manifest.mf b/nbproject/standalone/manifest.mf
index 316e308..02f1e3e 100644
--- a/nbproject/standalone/manifest.mf
+++ b/nbproject/standalone/manifest.mf
@@ -1,4 +1,4 @@
 Manifest-Version: 1.0
-Class-Path: lib/jcardsim-3.0.4-SNAPSHOT.jar lib/commons-cli-1.3.1.jar lib/snakeyaml-1.19.jar
+Class-Path: lib/bcprov-jdk15on-1.58.jar lib/jcardsim-3.0.4-SNAPSHOT.jar lib/commons-cli-1.3.1.jar lib/snakeyaml-1.19.jar
 Main-Class: cz.crcs.ectester.standalone.ECTesterStandalone
 
diff --git a/nbproject/standalone/project.properties b/nbproject/standalone/project.properties
index 1952f1d..367ec51 100644
--- a/nbproject/standalone/project.properties
+++ b/nbproject/standalone/project.properties
@@ -33,6 +33,7 @@ excludes=
 includes=**/common/**,**/standalone/**,**/data/**,**/applet/*
 jar.compress=false
 javac.classpath=\
+    lib/bcprov-jdk15on-1.58.jar:\
     lib/jcardsim-3.0.4-SNAPSHOT.jar:\
     lib/commons-cli-1.3.1.jar:\
     lib/snakeyaml-1.19.jar
diff --git a/src/cz/crcs/ectester/common/ec/EC_Data.java b/src/cz/crcs/ectester/common/ec/EC_Data.java
index d308261..acd282a 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Data.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Data.java
@@ -55,12 +55,12 @@ public abstract class EC_Data {
         return data;
     }
 
-    public boolean hasData() {
-        return data != null;
+    public byte[] getData(int index) {
+        return data[index];
     }
 
-    public byte[] getParam(int index) {
-        return data[index];
+    public boolean hasData() {
+        return data != null;
     }
 
     public byte[] flatten() {
diff --git a/src/cz/crcs/ectester/common/ec/EC_Params.java b/src/cz/crcs/ectester/common/ec/EC_Params.java
index d50ebb0..3fada93 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Params.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Params.java
@@ -44,6 +44,49 @@ public class EC_Params extends EC_Data {
         return params;
     }
 
+    public byte[][] getParam(short param) {
+        if (!hasParam(param)) {
+            return null;
+        }
+        if (Integer.bitCount(param) != 1) {
+            return null;
+        }
+        short paramMask = EC_Consts.PARAMETER_FP;
+        byte[][] result = null;
+        int i = 0;
+        while (paramMask <= EC_Consts.PARAMETER_S) {
+            short masked = (short) (this.params & param & paramMask);
+            short shallow = (short) (this.params & paramMask);
+            if (masked != 0) {
+                if (masked == EC_Consts.PARAMETER_F2M) {
+                    result = new byte[4][];
+                    result[0] = data[i].clone();
+                    result[1] = data[i+1].clone();
+                    result[2] = data[i+2].clone();
+                    result[3] = data[i+3].clone();
+                    break;
+                }
+                if (masked == EC_Consts.PARAMETER_G || masked == EC_Consts.PARAMETER_W) {
+                    result = new byte[2][];
+                    result[0] = data[i].clone();
+                    result[1] = data[i+1].clone();
+                    break;
+                }
+                result = new byte[1][];
+                result[0] = data[i].clone();
+            }
+            if (shallow == EC_Consts.PARAMETER_F2M) {
+                i += 4;
+            } else if (shallow == EC_Consts.PARAMETER_G || shallow == EC_Consts.PARAMETER_W) {
+                i += 2;
+            } else if (shallow != 0) {
+                i++;
+            }
+            paramMask = (short) (paramMask << 1);
+        }
+        return result;
+    }
+
     public boolean hasParam(short param) {
         return (params & param) != 0;
     }
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index e13a683..0bbe8f7 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -63,7 +63,7 @@ public class ECTesterReader {
 
     private Options opts = new Options();
     private static final String VERSION = "v0.1.0";
-    private static final String DESCRIPTION = "ECTesterReader " + VERSION + ", a javacard Elliptic Curve Cryptograhy support tester/utility.";
+    private static final String DESCRIPTION = "ECTesterReader " + VERSION + ", a javacard Elliptic Curve Cryptography support tester/utility.";
     private static final String LICENSE = "MIT Licensed\nCopyright (c) 2016-2017 Petr Svenda <petr@svenda.com>";
     private static final String CLI_HEADER = "\n" + DESCRIPTION + "\n\n";
     private static final String CLI_FOOTER = "\n" + LICENSE;
diff --git a/src/cz/crcs/ectester/reader/test/TestVectorSuite.java b/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
index 668056b..3f11a79 100644
--- a/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
+++ b/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
@@ -72,8 +72,8 @@ public class TestVectorSuite extends TestSuite {
                     return new Result(Value.FAILURE, "ECDH was unsuccessful.");
                 if (!dh.hasSecret())
                     return new Result(Value.FAILURE, "ECDH response did not contain the derived secret.");
-                if (!Util.compareBytes(dh.getSecret(), 0, result.getParam(0), 0, dh.secretLength())) {
-                    int firstDiff = Util.diffBytes(dh.getSecret(), 0, result.getParam(0), 0, dh.secretLength());
+                if (!Util.compareBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength())) {
+                    int firstDiff = Util.diffBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength());
                     return new Result(Value.FAILURE, "ECDH derived secret does not match the test, first difference was at byte " + String.valueOf(firstDiff) + ".");
                 }
                 return new Result(Value.SUCCESS);
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index cae4bb9..d2cbce1 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,8 +1,90 @@
 package cz.crcs.ectester.standalone;
 
+import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.data.EC_Store;
+import org.apache.commons.cli.*;
+
+import java.io.IOException;
+
+/**
+ * Standalone part of ECTester, a tool for testing Elliptic curve implementations in software libraries.
+ *
+ * @author Jan Jancar johny@neuromancer.sk
+ * @version v0.1.0
+ */
 public class ECTesterStandalone {
 
+    private EC_Store dataStore;
+    private Config cfg;
+
+    private Options opts = new Options();
+    private static final String VERSION = "v0.1.0";
+    private static final String DESCRIPTION = "ECTesterStandalone " + VERSION + ", an Elliptic Curve Cryptography support tester/utility.";
+    private static final String LICENSE = "MIT Licensed\nCopyright (c) 2016-2017 Petr Svenda <petr@svenda.com>";
+    private static final String CLI_HEADER = "\n" + DESCRIPTION + "\n\n";
+    private static final String CLI_FOOTER = "\n" + LICENSE;
+
     private void run(String[] args) {
+        try {
+            CommandLine cli = parseArgs(args);
+
+            if (cli.hasOption("help")) {
+                help();
+                return;
+            } else if (cli.hasOption("version")) {
+                version();
+                return;
+            }
+
+            cfg = new Config();
+            dataStore = new EC_Store();
+
+            if (cli.hasOption("generate")) {
+                generate();
+            }
+
+        } catch (ParseException | IOException ex) {
+            System.err.println(ex.getMessage());
+        }
+    }
+
+    private CommandLine parseArgs(String[] args) throws ParseException {
+        OptionGroup actions = new OptionGroup();
+        actions.setRequired(true);
+        actions.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
+        actions.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
+        actions.addOption(Option.builder("g").longOpt("generate").desc("Generate [amount] of EC keys.").hasArg().argName("amount").optionalArg(true).build());
+        opts.addOptionGroup(actions);
+
+        CommandLineParser parser = new DefaultParser();
+        return parser.parse(opts, args);
+    }
+
+    /**
+     * Prints help.
+     */
+    private void help() {
+        HelpFormatter help = new HelpFormatter();
+        help.setOptionComparator(null);
+        help.printHelp("ECTesterStandalone.jar", CLI_HEADER, opts, CLI_FOOTER, true);
+    }
+
+    /**
+     * Prints version info.
+     */
+    private void version() {
+        System.out.println(DESCRIPTION);
+        System.out.println(LICENSE);
+    }
+
+    /**
+     *
+     */
+    private void generate() {
+        EC_Curve curve = dataStore.getObject(EC_Curve.class, "secg/secp192r1");
+        byte[] fp = curve.getParam(EC_Consts.PARAMETER_FP)[0];
 
     }
 
@@ -10,4 +92,8 @@ public class ECTesterStandalone {
         ECTesterStandalone app = new ECTesterStandalone();
         app.run(args);
     }
+
+    public static class Config {
+
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
new file mode 100644
index 0000000..78da737
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
@@ -0,0 +1,21 @@
+package cz.crcs.ectester.standalone.libs;
+import org.bouncycastle.jce.provider.BouncyCastleProvider;
+
+import java.security.Security;
+
+public class BouncyCastleLib {
+
+    public BouncyCastleLib() {
+
+    }
+
+    public boolean setUp() {
+        try {
+            Security.addProvider(new BouncyCastleProvider());
+        } catch (NullPointerException | SecurityException ignored) {
+            return false;
+        }
+        return true;
+    }
+
+}
-- 
cgit v1.2.3-70-g09d2


From 9e615b101398bd4c8e2678bf86337e2756a8ee7a Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 12 Nov 2017 23:39:35 +0100
Subject: Implement collecting of supported KeyAgreement and Signature objects.

---
 .../ectester/standalone/ECTesterStandalone.java    | 26 ++++++-
 src/cz/crcs/ectester/standalone/consts/Ident.java  | 41 +++++++++++
 .../standalone/consts/KeyAgreementIdent.java       | 53 ++++++++++++++
 .../ectester/standalone/consts/SignatureIdent.java | 77 ++++++++++++++++++++
 .../ectester/standalone/libs/BouncyCastleLib.java  | 19 ++---
 .../crcs/ectester/standalone/libs/CECLibrary.java  | 31 ++++++++
 .../crcs/ectester/standalone/libs/ECLibrary.java   | 21 ++++++
 .../ectester/standalone/libs/JavaECLibrary.java    | 85 ++++++++++++++++++++++
 src/cz/crcs/ectester/standalone/libs/SunECLib.java | 14 ++++
 9 files changed, 353 insertions(+), 14 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/consts/Ident.java
 create mode 100644 src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
 create mode 100644 src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/CECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/ECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/SunECLib.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index d2cbce1..47b7121 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,12 +1,15 @@
 package cz.crcs.ectester.standalone;
 
-import cz.crcs.ectester.common.Util;
 import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
+import cz.crcs.ectester.standalone.libs.ECLibrary;
+import cz.crcs.ectester.standalone.libs.SunECLib;
 import org.apache.commons.cli.*;
 
 import java.io.IOException;
+import java.util.Arrays;
 
 /**
  * Standalone part of ECTester, a tool for testing Elliptic curve implementations in software libraries.
@@ -16,6 +19,7 @@ import java.io.IOException;
  */
 public class ECTesterStandalone {
 
+    private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib()};
     private EC_Store dataStore;
     private Config cfg;
 
@@ -40,9 +44,17 @@ public class ECTesterStandalone {
 
             cfg = new Config();
             dataStore = new EC_Store();
+            for (ECLibrary lib : libs) {
+                lib.initialize();
+                lib.getECKAs();
+                lib.getECSigs();
+            }
+            System.out.println(Arrays.toString(libs));
 
             if (cli.hasOption("generate")) {
                 generate();
+            } else if (cli.hasOption("libs")) {
+                listLibraries();
             }
 
         } catch (ParseException | IOException ex) {
@@ -56,6 +68,7 @@ public class ECTesterStandalone {
         actions.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
         actions.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
         actions.addOption(Option.builder("g").longOpt("generate").desc("Generate [amount] of EC keys.").hasArg().argName("amount").optionalArg(true).build());
+        actions.addOption(Option.builder("ls").longOpt("libs").desc("List supported libraries.").build());
         opts.addOptionGroup(actions);
 
         CommandLineParser parser = new DefaultParser();
@@ -88,6 +101,17 @@ public class ECTesterStandalone {
 
     }
 
+    /**
+     *
+     */
+    private void listLibraries() {
+        for (ECLibrary lib : libs) {
+            if (lib.isInitialized()) {
+                System.out.println(lib.name());
+            }
+        }
+    }
+
     public static void main(String[] args) {
         ECTesterStandalone app = new ECTesterStandalone();
         app.run(args);
diff --git a/src/cz/crcs/ectester/standalone/consts/Ident.java b/src/cz/crcs/ectester/standalone/consts/Ident.java
new file mode 100644
index 0000000..3228c37
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/consts/Ident.java
@@ -0,0 +1,41 @@
+package cz.crcs.ectester.standalone.consts;
+
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.Set;
+import java.util.TreeSet;
+
+public abstract class Ident {
+    private Set<String> idents;
+
+    public Ident(String... names) {
+        this.idents = new TreeSet<>(String.CASE_INSENSITIVE_ORDER);
+        this.idents.addAll(Arrays.asList(names));
+    }
+
+    public Set<String> getIdents() {
+        return Collections.unmodifiableSet(idents);
+    }
+
+    @Override
+    public boolean equals(Object obj) {
+        if (this == obj) {
+            return true;
+        }
+        if (!(obj instanceof Ident)) {
+            return false;
+        }
+        Ident other = (Ident) obj;
+        return idents.equals(other.getIdents());
+    }
+
+    @Override
+    public int hashCode() {
+        return idents.hashCode() + 37;
+    }
+
+    @Override
+    public String toString() {
+        return "(" + String.join("|", idents) + ")";
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
new file mode 100644
index 0000000..9dc9797
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
@@ -0,0 +1,53 @@
+package cz.crcs.ectester.standalone.consts;
+
+import java.util.LinkedList;
+import java.util.List;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class KeyAgreementIdent extends Ident {
+    private static final List<KeyAgreementIdent> ALL = new LinkedList<>();
+
+    static {
+        //https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html
+        // Basic ECDH and ECDHC (plain/raw)
+        ALL.add(new KeyAgreementIdent("ECDH"));
+        ALL.add(new KeyAgreementIdent("ECDHC", "ECCDH"));
+        // ECDH and ECDHC with SHA as KDF, OIDs from RFC 3278
+        ALL.add(new KeyAgreementIdent("ECDHwithSHA1KDF", "1.3.133.16.840.63.0.2"));
+        ALL.add(new KeyAgreementIdent("ECCDHwithSHA1KDF", "1.3.133.16.840.63.0.3"));
+        ALL.add(new KeyAgreementIdent("ECDHwithSHA224KDF", "1.3.132.1.11.0"));
+        ALL.add(new KeyAgreementIdent("ECCDHwithSHA224KDF", "1.3.132.1.14.0"));
+        ALL.add(new KeyAgreementIdent("ECDHwithSHA256KDF", "1.3.132.1.11.1"));
+        ALL.add(new KeyAgreementIdent("ECCDHwithSHA256KDF", "1.3.132.1.14.1"));
+        ALL.add(new KeyAgreementIdent("ECDHwithSHA384KDF", "1.3.132.1.11.2"));
+        ALL.add(new KeyAgreementIdent("ECCDHwithSHA384KDF", "1.3.132.1.14.2"));
+        ALL.add(new KeyAgreementIdent("ECDHwithSHA512KDF", "1.3.132.1.11.3"));
+        ALL.add(new KeyAgreementIdent("ECCDHwithSHA512KDF", "1.3.132.1.14.3"));
+        // ECMQV
+        ALL.add(new KeyAgreementIdent("ECMQV"));
+        ALL.add(new KeyAgreementIdent("ECMQVwithSHA1CKDF", "1.3.133.16.840.63.0.16"));
+        ALL.add(new KeyAgreementIdent("ECMQVwithSHA224CKDF", "1.3.132.1.15.0"));
+        ALL.add(new KeyAgreementIdent("ECMQVwithSHA256CKDF", "1.3.132.1.15.1"));
+        ALL.add(new KeyAgreementIdent("ECMQVwithSHA384CKDF", "1.3.132.1.15.2"));
+        ALL.add(new KeyAgreementIdent("ECMQVwithSHA512CKDF", "1.3.132.1.15.3"));
+        // ECVKO
+        ALL.add(new KeyAgreementIdent("ECVKO", "ECGOST3410", "1.2.643.2.2.19", "GOST-3410-2001", "1.2.643.2.2.96"));
+        ALL.add(new KeyAgreementIdent("ECVKO256", "ECGOST3410-2012-256", "1.2.643.7.1.1.6.1", "1.2.643.7.1.1.1.1"));
+        ALL.add(new KeyAgreementIdent("ECVKO512", "ECGOST3410-2012-512", "1.2.643.7.1.1.6.2", "1.2.643.7.1.1.1.2"));
+    }
+
+    public static KeyAgreementIdent get(String ident) {
+        for (KeyAgreementIdent ka : ALL) {
+            if (ka.getIdents().contains(ident)) {
+                return ka;
+            }
+        }
+        return null;
+    }
+
+    private KeyAgreementIdent(String... names) {
+        super(names);
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
new file mode 100644
index 0000000..b41e9e4
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
@@ -0,0 +1,77 @@
+package cz.crcs.ectester.standalone.consts;
+
+import java.util.LinkedList;
+import java.util.List;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class SignatureIdent extends Ident {
+    private static final List<SignatureIdent> ALL = new LinkedList<>();
+
+    static {
+        //https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html
+        // ECDSA
+        ALL.add(new SignatureIdent("ECDSA", "SHA1withECDSA", "ECDSAwithSHA1", "1.2.840.10045.4.1", "1.3.36.3.3.2.1"));
+        ALL.add(new SignatureIdent("NONEwithECDSA"));
+        ALL.add(new SignatureIdent("SHA224withECDSA", "SHA224/ECDSA", "1.2.840.10045.4.3.1"));
+        ALL.add(new SignatureIdent("SHA256withECDSA", "SHA256/ECDSA", "1.2.840.10045.4.3.2"));
+        ALL.add(new SignatureIdent("SHA384withECDSA", "SHA384/ECDSA", "1.2.840.10045.4.3.3"));
+        ALL.add(new SignatureIdent("SHA512withECDSA", "SHA512/ECDSA", "1.2.840.10045.4.3.4"));
+        ALL.add(new SignatureIdent("SHA3-224withECDSA", "SHA3-224/ECDSA", "2.16.840.1.101.3.4.3.9"));
+        ALL.add(new SignatureIdent("SHA3-256withECDSA", "SHA3-256/ECDSA", "2.16.840.1.101.3.4.3.10"));
+        ALL.add(new SignatureIdent("SHA3-384withECDSA", "SHA3-384/ECDSA", "2.16.840.1.101.3.4.3.11"));
+        ALL.add(new SignatureIdent("SHA3-512withECDSA", "SHA3-512/ECDSA", "2.16.840.1.101.3.4.3.12"));
+        ALL.add(new SignatureIdent("RIPEMD160withECDSA", "RIPEMD160/ECDSA", "1.3.36.3.3.2.2"));
+        // ECNR
+        ALL.add(new SignatureIdent("SHA1withECNR"));
+        ALL.add(new SignatureIdent("SHA224withECNR"));
+        ALL.add(new SignatureIdent("SHA256withECNR"));
+        ALL.add(new SignatureIdent("SHA512withECNR"));
+        // CVC-ECDSA
+        ALL.add(new SignatureIdent("SHA1withCVC-ECDSA", "SHA1/CVC-ECDSA", "0.4.0.127.0.7.2.2.2.2.1"));
+        ALL.add(new SignatureIdent("SHA224withCVC-ECDSA", "SHA224/CVC-ECDSA", "0.4.0.127.0.7.2.2.2.2.2"));
+        ALL.add(new SignatureIdent("SHA256withCVC-ECDSA", "SHA256/CVC-ECDSA", "0.4.0.127.0.7.2.2.2.2.3"));
+        ALL.add(new SignatureIdent("SHA384withCVC-ECDSA", "SHA384/CVC-ECDSA", "0.4.0.127.0.7.2.2.2.2.4"));
+        ALL.add(new SignatureIdent("SHA512withCVC-ECDSA", "SHA512/CVC-ECDSA", "0.4.0.127.0.7.2.2.2.2.5"));
+        // PLAIN-ECDSA
+        ALL.add(new SignatureIdent("SHA1withPLAIN-ECDSA", "SHA1/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.1"));
+        ALL.add(new SignatureIdent("SHA224withPLAIN-ECDSA", "SHA224/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.2"));
+        ALL.add(new SignatureIdent("SHA256withPLAIN-ECDSA", "SHA256/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.3"));
+        ALL.add(new SignatureIdent("SHA384withPLAIN-ECDSA", "SHA384/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.4"));
+        ALL.add(new SignatureIdent("SHA512withPLAIN-ECDSA", "SHA512/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.5"));
+        ALL.add(new SignatureIdent("RIPEMD160withPLAIN-ECDSA", "RIPEMD160/PLAIN-ECDSA", "0.4.0.127.0.7.1.1.4.1.6"));
+        // ECGOST
+        ALL.add(new SignatureIdent("ECGOST3410", "ECGOST-3410", "GOST-3410-2001"));
+        ALL.add(new SignatureIdent("GOST3411withECGOST3410", "GOST3411/ECGOST3410", "1.2.643.2.2.3"));
+        ALL.add(new SignatureIdent("ECGOST3410-2012-256", "GOST-3410-2012-256"));
+        ALL.add(new SignatureIdent("GOST3411-2012-256withECGOST3410-2012-256", "GOST3411-2012-256/ECGOST3410-2012-2560", "1.2.643.7.1.1.3.2"));
+        ALL.add(new SignatureIdent("ECGOST3410-2012-512", "GOST-3410-2012-512"));
+        ALL.add(new SignatureIdent("GOST3411-2012-512withECGOST3410-2012-512", "GOST3411-2012-512/ECGOST3410-2012-5120", "1.2.643.7.1.1.3.3"));
+        ALL.add(new SignatureIdent("SM3withSM2"));
+        // ECDDSA
+        ALL.add(new SignatureIdent("ECDDSA", "DETECDSA", "ECDETDSA"));
+        ALL.add(new SignatureIdent("SHA1withECDDSA", "SHA1withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA224withECDDSA", "SHA224withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA256withECDDSA", "SHA256withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA384withECDDSA", "SHA384withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA512withECDDSA", "SHA512withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA3-224withECDDSA", "SHA3-224withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA3-256withECDDSA", "SHA3-256withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA3-384withECDDSA", "SHA3-384withDETECDSA"));
+        ALL.add(new SignatureIdent("SHA3-512withECDDSA", "SHA3-512withDETECDSA"));
+    }
+
+    public static SignatureIdent get(String ident) {
+        for (SignatureIdent sig : ALL) {
+            if (sig.getIdents().contains(ident)) {
+                return sig;
+            }
+        }
+        return null;
+    }
+
+    private SignatureIdent(String... names) {
+        super(names);
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
index 78da737..73cd197 100644
--- a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
@@ -1,21 +1,14 @@
 package cz.crcs.ectester.standalone.libs;
-import org.bouncycastle.jce.provider.BouncyCastleProvider;
 
-import java.security.Security;
+import org.bouncycastle.jce.provider.BouncyCastleProvider;
 
-public class BouncyCastleLib {
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class BouncyCastleLib extends JavaECLibrary {
 
     public BouncyCastleLib() {
-
-    }
-
-    public boolean setUp() {
-        try {
-            Security.addProvider(new BouncyCastleProvider());
-        } catch (NullPointerException | SecurityException ignored) {
-            return false;
-        }
-        return true;
+        super(new BouncyCastleProvider());
     }
 
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/CECLibrary.java b/src/cz/crcs/ectester/standalone/libs/CECLibrary.java
new file mode 100644
index 0000000..82a4555
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/CECLibrary.java
@@ -0,0 +1,31 @@
+package cz.crcs.ectester.standalone.libs;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class CECLibrary implements ECLibrary {
+
+    private String resourcePath;
+    private String libname;
+
+    public CECLibrary(String resourcePath, String libname) {
+        this.resourcePath = resourcePath;
+        this.libname = libname;
+    }
+
+    @Override
+    public boolean initialize() {
+        // load the library here.
+        return false;
+    }
+
+    @Override
+    public String name() {
+        return libname;
+    }
+
+    @Override
+    public String toString() {
+        return name();
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
new file mode 100644
index 0000000..b2792bd
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
@@ -0,0 +1,21 @@
+package cz.crcs.ectester.standalone.libs;
+
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
+
+import java.util.Set;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public interface ECLibrary {
+    boolean initialize();
+
+    boolean isInitialized();
+
+    Set<KeyAgreementIdent> getECKAs();
+
+    Set<SignatureIdent> getECSigs();
+
+    String name();
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java b/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
new file mode 100644
index 0000000..f8848da
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
@@ -0,0 +1,85 @@
+package cz.crcs.ectester.standalone.libs;
+
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
+
+import java.security.Provider;
+import java.security.Security;
+import java.util.HashSet;
+import java.util.Set;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class JavaECLibrary implements ECLibrary {
+    private Provider provider;
+    private boolean initialized;
+
+    public JavaECLibrary(Provider provider) {
+        this.provider = provider;
+        this.initialized = false;
+    }
+
+    @Override
+    public boolean initialize() {
+        try {
+            int result = Security.addProvider(provider);
+            if (result == -1) {
+                provider = Security.getProvider(provider.getName());
+            }
+            initialized = true;
+        } catch (NullPointerException | SecurityException ignored) {
+            initialized = false;
+        }
+        return initialized;
+    }
+
+    @Override
+    public boolean isInitialized() {
+        return initialized;
+    }
+
+    @Override
+    public Set<KeyAgreementIdent> getECKAs() {
+        Set<KeyAgreementIdent> results = new HashSet<>();
+        for (Provider.Service service : provider.getServices()) {
+            if (service.getType().equals("KeyAgreement")) {
+                KeyAgreementIdent id = KeyAgreementIdent.get(service.getAlgorithm());
+                if (id != null) {
+                    results.add(id);
+                }
+            }
+        }
+        System.out.println(results);
+        return results;
+    }
+
+    @Override
+    public Set<SignatureIdent> getECSigs() {
+        Set<SignatureIdent> results = new HashSet<>();
+        for (Provider.Service service : provider.getServices()) {
+            if (service.getType().equals("Signature")) {
+                SignatureIdent id = SignatureIdent.get(service.getAlgorithm());
+                if (id != null) {
+                    results.add(id);
+                }
+            }
+        }
+        System.out.println(results);
+        return results;
+    }
+
+    @Override
+    public String name() {
+        return provider.getInfo();
+    }
+
+    public Provider getProvider() {
+        return provider;
+    }
+
+    @Override
+    public String toString() {
+        return name();
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/SunECLib.java b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
new file mode 100644
index 0000000..408908e
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
@@ -0,0 +1,14 @@
+package cz.crcs.ectester.standalone.libs;
+
+import sun.security.ec.SunEC;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class SunECLib extends JavaECLibrary {
+
+    public SunECLib() {
+        super(new SunEC());
+    }
+
+}
-- 
cgit v1.2.3-70-g09d2


From 80e14c7d3f9eeec34f0236bfb8c595033142756a Mon Sep 17 00:00:00 2001
From: J08nY
Date: Mon, 13 Nov 2017 23:18:35 +0100
Subject: Add KeyPairGenerator idents.

---
 .../ectester/standalone/ECTesterStandalone.java    | 25 +++++++++++++--
 .../standalone/consts/KeyPairGeneratorIdent.java   | 36 ++++++++++++++++++++++
 .../crcs/ectester/standalone/libs/ECLibrary.java   |  3 ++
 .../ectester/standalone/libs/JavaECLibrary.java    | 35 +++++++++++----------
 4 files changed, 79 insertions(+), 20 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 47b7121..016d095 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -3,12 +3,17 @@ package cz.crcs.ectester.standalone;
 import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
 import cz.crcs.ectester.standalone.libs.ECLibrary;
+import cz.crcs.ectester.standalone.libs.JavaECLibrary;
 import cz.crcs.ectester.standalone.libs.SunECLib;
 import org.apache.commons.cli.*;
 
 import java.io.IOException;
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
 import java.util.Arrays;
 
 /**
@@ -45,9 +50,23 @@ public class ECTesterStandalone {
             cfg = new Config();
             dataStore = new EC_Store();
             for (ECLibrary lib : libs) {
-                lib.initialize();
-                lib.getECKAs();
-                lib.getECSigs();
+                if (lib instanceof JavaECLibrary) {
+                    JavaECLibrary jlib = (JavaECLibrary) lib;
+                    lib.initialize();
+                    lib.getECKAs();
+                    lib.getECSigs();
+                    for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
+                        try {
+                            KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                            kpg.initialize(192);
+                            KeyPair kp = kpg.genKeyPair();
+                            System.out.println(kp);
+                        } catch (NoSuchAlgorithmException e) {
+                            e.printStackTrace();
+                        }
+                    }
+                }
+
             }
             System.out.println(Arrays.toString(libs));
 
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
new file mode 100644
index 0000000..f806282
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
@@ -0,0 +1,36 @@
+package cz.crcs.ectester.standalone.consts;
+
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+import java.security.Provider;
+import java.util.LinkedList;
+import java.util.List;
+
+public class KeyPairGeneratorIdent extends Ident {
+    private static final List<KeyPairGeneratorIdent> ALL = new LinkedList<>();
+
+    static {
+        ALL.add(new KeyPairGeneratorIdent("EC"));
+        ALL.add(new KeyPairGeneratorIdent("ECDH"));
+        ALL.add(new KeyPairGeneratorIdent("ECDSA"));
+        ALL.add(new KeyPairGeneratorIdent("ECDHC"));
+        ALL.add(new KeyPairGeneratorIdent("ECMQV"));
+    }
+
+    public static KeyPairGeneratorIdent get(String ident) {
+        for (KeyPairGeneratorIdent kg : ALL) {
+            if (kg.getIdents().contains(ident)) {
+                return kg;
+            }
+        }
+        return null;
+    }
+
+    public KeyPairGeneratorIdent(String name, String... aliases) {
+        super(name, aliases);
+    }
+
+    public KeyPairGenerator getInstance(Provider provider) throws NoSuchAlgorithmException {
+        return KeyPairGenerator.getInstance(name, provider);
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
index b2792bd..7e26dbe 100644
--- a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
@@ -1,6 +1,7 @@
 package cz.crcs.ectester.standalone.libs;
 
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 
 import java.util.Set;
@@ -17,5 +18,7 @@ public interface ECLibrary {
 
     Set<SignatureIdent> getECSigs();
 
+    Set<KeyPairGeneratorIdent> getKPGs();
+
     String name();
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java b/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
index f8848da..5689b2b 100644
--- a/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
@@ -1,12 +1,15 @@
 package cz.crcs.ectester.standalone.libs;
 
+import cz.crcs.ectester.standalone.consts.Ident;
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 
 import java.security.Provider;
 import java.security.Security;
 import java.util.HashSet;
 import java.util.Set;
+import java.util.function.Function;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
@@ -39,34 +42,32 @@ public abstract class JavaECLibrary implements ECLibrary {
         return initialized;
     }
 
-    @Override
-    public Set<KeyAgreementIdent> getECKAs() {
-        Set<KeyAgreementIdent> results = new HashSet<>();
+    private <T extends Ident> Set<T> getIdents(String type, Function<String, T> getter) {
+        Set<T> results = new HashSet<>();
         for (Provider.Service service : provider.getServices()) {
-            if (service.getType().equals("KeyAgreement")) {
-                KeyAgreementIdent id = KeyAgreementIdent.get(service.getAlgorithm());
+            if (service.getType().equals(type)) {
+                T id = getter.apply(service.getAlgorithm());
                 if (id != null) {
                     results.add(id);
                 }
             }
         }
-        System.out.println(results);
         return results;
     }
 
+    @Override
+    public Set<KeyAgreementIdent> getECKAs() {
+        return getIdents("KeyAgreement", KeyAgreementIdent::get);
+    }
+
     @Override
     public Set<SignatureIdent> getECSigs() {
-        Set<SignatureIdent> results = new HashSet<>();
-        for (Provider.Service service : provider.getServices()) {
-            if (service.getType().equals("Signature")) {
-                SignatureIdent id = SignatureIdent.get(service.getAlgorithm());
-                if (id != null) {
-                    results.add(id);
-                }
-            }
-        }
-        System.out.println(results);
-        return results;
+        return getIdents("Signature", SignatureIdent::get);
+    }
+
+    @Override
+    public Set<KeyPairGeneratorIdent> getKPGs() {
+        return getIdents("KeyPairGenerator", KeyPairGeneratorIdent::get);
     }
 
     @Override
-- 
cgit v1.2.3-70-g09d2


From 82a0399051d3bc059deb6923512092b31971d352 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Tue, 14 Nov 2017 03:04:10 +0100
Subject: Extract common CLI methods to CLITools.

---
 src/cz/crcs/ectester/common/CLITools.java          | 56 ++++++++++++++++++++++
 src/cz/crcs/ectester/reader/ECTesterReader.java    | 41 ++--------------
 .../ectester/standalone/ECTesterStandalone.java    | 38 +++++++--------
 .../standalone/test/KeyGenerationTestable.java     |  6 +--
 4 files changed, 80 insertions(+), 61 deletions(-)
 create mode 100644 src/cz/crcs/ectester/common/CLITools.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/CLITools.java b/src/cz/crcs/ectester/common/CLITools.java
new file mode 100644
index 0000000..57cea64
--- /dev/null
+++ b/src/cz/crcs/ectester/common/CLITools.java
@@ -0,0 +1,56 @@
+package cz.crcs.ectester.common;
+
+import cz.crcs.ectester.common.ec.EC_Category;
+import cz.crcs.ectester.common.ec.EC_Data;
+import cz.crcs.ectester.data.EC_Store;
+import org.apache.commons.cli.HelpFormatter;
+import org.apache.commons.cli.Options;
+
+import java.util.Map;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class CLITools {
+
+    /**
+     * Print help.
+     */
+    public static void help(String prog, String header, Options options, String footer, boolean usage) {
+        HelpFormatter help = new HelpFormatter();
+        help.setOptionComparator(null);
+        help.printHelp(prog, header, options, footer, usage);
+    }
+
+    /**
+     * Print version info.
+     */
+    public static void version(String description, String license) {
+        System.out.println(description);
+        System.out.println(license);
+    }
+
+    /**
+     * List categories and named curves.
+     */
+    public static void listNamed(EC_Store dataStore, String named) {
+        Map<String, EC_Category> categories = dataStore.getCategories();
+        if (named == null) {
+            // print all categories, briefly
+            for (EC_Category cat : categories.values()) {
+                System.out.println(cat);
+            }
+        } else if (categories.containsKey(named)) {
+            // print given category
+            System.out.println(categories.get(named));
+        } else {
+            // print given object
+            EC_Data object = dataStore.getObject(EC_Data.class, named);
+            if (object != null) {
+                System.out.println(object);
+            } else {
+                System.err.println("Named object " + named + " not found!");
+            }
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index 0bbe8f7..c51430d 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -23,6 +23,7 @@ package cz.crcs.ectester.reader;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.CLITools;
 import cz.crcs.ectester.common.Util;
 import cz.crcs.ectester.common.ec.EC_Category;
 import cz.crcs.ectester.common.ec.EC_Data;
@@ -79,11 +80,10 @@ public class ECTesterReader {
 
             //if help, print and quit
             if (cli.hasOption("help")) {
-                help();
+                CLITools.help("ECTesterReader.jar", CLI_HEADER, opts, CLI_FOOTER, true);
                 return;
             } else if (cli.hasOption("version")) {
-                System.out.println(DESCRIPTION);
-                System.out.println(LICENSE);
+                CLITools.version(DESCRIPTION, LICENSE);
                 return;
             }
             cfg = new Config();
@@ -96,7 +96,7 @@ public class ECTesterReader {
             dataStore = new EC_Store();
             //if list, print and quit
             if (cli.hasOption("list-named")) {
-                list();
+                CLITools.listNamed(dataStore, cli.getOptionValue("list-named"));
                 return;
             }
 
@@ -311,39 +311,6 @@ public class ECTesterReader {
         return parser.parse(opts, args);
     }
 
-    /**
-     * Prints help.
-     */
-    private void help() {
-        HelpFormatter help = new HelpFormatter();
-        help.setOptionComparator(null);
-        help.printHelp("ECTesterReader.jar", CLI_HEADER, opts, CLI_FOOTER, true);
-    }
-
-    /**
-     * List categories and named curves.
-     */
-    private void list() {
-        Map<String, EC_Category> categories = dataStore.getCategories();
-        if (cfg.listNamed == null) {
-            // print all categories, briefly
-            for (EC_Category cat : categories.values()) {
-                System.out.println(cat);
-            }
-        } else if (categories.containsKey(cfg.listNamed)) {
-            // print given category
-            System.out.println(categories.get(cfg.listNamed));
-        } else {
-            // print given object
-            EC_Data object = dataStore.getObject(EC_Data.class, cfg.listNamed);
-            if (object != null) {
-                System.out.println(object);
-            } else {
-                System.err.println("Named object " + cfg.listNamed + " not found!");
-            }
-        }
-    }
-
     /**
      * Exports default card/simulation EC domain parameters to output file.
      *
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 016d095..e8998ff 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,6 +1,7 @@
 package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.CLITools;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
@@ -40,15 +41,21 @@ public class ECTesterStandalone {
             CommandLine cli = parseArgs(args);
 
             if (cli.hasOption("help")) {
-                help();
+                CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, CLI_FOOTER, true);
                 return;
             } else if (cli.hasOption("version")) {
-                version();
+                CLITools.version(DESCRIPTION, LICENSE);
                 return;
             }
 
             cfg = new Config();
             dataStore = new EC_Store();
+
+            if (cli.hasOption("list-named")) {
+                CLITools.listNamed(dataStore, cli.getOptionValue("list-named"));
+                return;
+            }
+
             for (ECLibrary lib : libs) {
                 if (lib instanceof JavaECLibrary) {
                     JavaECLibrary jlib = (JavaECLibrary) lib;
@@ -72,7 +79,7 @@ public class ECTesterStandalone {
 
             if (cli.hasOption("generate")) {
                 generate();
-            } else if (cli.hasOption("libs")) {
+            } else if (cli.hasOption("list-libs")) {
                 listLibraries();
             }
 
@@ -86,31 +93,20 @@ public class ECTesterStandalone {
         actions.setRequired(true);
         actions.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
         actions.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
+        actions.addOption(Option.builder("e").longOpt("export").desc("Export the defaut curve parameters of the card(if any).").build());
         actions.addOption(Option.builder("g").longOpt("generate").desc("Generate [amount] of EC keys.").hasArg().argName("amount").optionalArg(true).build());
-        actions.addOption(Option.builder("ls").longOpt("libs").desc("List supported libraries.").build());
+        actions.addOption(Option.builder("t").longOpt("test").desc("Test ECC support. [test_suite]:\n- default:\n- invalid:\n- wrong:\n- composite:\n- test-vectors:").hasArg().argName("test_suite").optionalArg(true).build());
+        actions.addOption(Option.builder("dh").longOpt("ecdh").desc("Do ECDH, [count] times.").hasArg().argName("count").optionalArg(true).build());
+        actions.addOption(Option.builder("dhc").longOpt("ecdhc").desc("Do ECDHC, [count] times.").hasArg().argName("count").optionalArg(true).build());
+        actions.addOption(Option.builder("dsa").longOpt("ecdsa").desc("Sign data with ECDSA, [count] times.").hasArg().argName("count").optionalArg(true).build());
+        actions.addOption(Option.builder("ln").longOpt("list-named").desc("Print the list of supported named curves and keys.").hasArg().argName("what").optionalArg(true).build());
+        actions.addOption(Option.builder("ls").longOpt("list-libs").desc("List supported libraries.").build());
         opts.addOptionGroup(actions);
 
         CommandLineParser parser = new DefaultParser();
         return parser.parse(opts, args);
     }
 
-    /**
-     * Prints help.
-     */
-    private void help() {
-        HelpFormatter help = new HelpFormatter();
-        help.setOptionComparator(null);
-        help.printHelp("ECTesterStandalone.jar", CLI_HEADER, opts, CLI_FOOTER, true);
-    }
-
-    /**
-     * Prints version info.
-     */
-    private void version() {
-        System.out.println(DESCRIPTION);
-        System.out.println(LICENSE);
-    }
-
     /**
      *
      */
diff --git a/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java b/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
index 10d02cb..8ad425b 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
@@ -6,14 +6,14 @@ import cz.crcs.ectester.common.test.Testable;
 import java.security.InvalidAlgorithmParameterException;
 import java.security.KeyPair;
 import java.security.KeyPairGenerator;
-import java.security.spec.AlgorithmParameterSpec;
+import java.security.spec.ECParameterSpec;
 
 public class KeyGenerationTestable implements Testable {
 
     private KeyPair kp;
     private KeyPairGenerator kpg;
     private int keysize;
-    private AlgorithmParameterSpec spec;
+    private ECParameterSpec spec;
     private boolean hasRun;
     private boolean error = false;
     private boolean ok;
@@ -23,7 +23,7 @@ public class KeyGenerationTestable implements Testable {
         this.keysize = keysize;
     }
 
-    public KeyGenerationTestable(KeyPairGenerator kpg, AlgorithmParameterSpec spec) {
+    public KeyGenerationTestable(KeyPairGenerator kpg, ECParameterSpec spec) {
         this.kpg = kpg;
         this.spec = spec;
     }
-- 
cgit v1.2.3-70-g09d2


From 7758239163e6c81f985fa4e33ad1c0cb57627f0e Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 15 Nov 2017 01:00:13 +0100
Subject: Add Tree-like CLI parsing utilities.

---
 src/cz/crcs/ectester/common/CLITools.java          |  56 ---------
 src/cz/crcs/ectester/common/cli/CLITools.java      |  90 ++++++++++++++
 src/cz/crcs/ectester/common/cli/ParserOptions.java |  25 ++++
 .../crcs/ectester/common/cli/TreeCommandLine.java  | 134 +++++++++++++++++++++
 src/cz/crcs/ectester/common/cli/TreeParser.java    |  75 ++++++++++++
 src/cz/crcs/ectester/reader/ECTesterReader.java    |   4 +-
 .../ectester/standalone/ECTesterStandalone.java    |   5 +-
 7 files changed, 327 insertions(+), 62 deletions(-)
 delete mode 100644 src/cz/crcs/ectester/common/CLITools.java
 create mode 100644 src/cz/crcs/ectester/common/cli/CLITools.java
 create mode 100644 src/cz/crcs/ectester/common/cli/ParserOptions.java
 create mode 100644 src/cz/crcs/ectester/common/cli/TreeCommandLine.java
 create mode 100644 src/cz/crcs/ectester/common/cli/TreeParser.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/CLITools.java b/src/cz/crcs/ectester/common/CLITools.java
deleted file mode 100644
index 57cea64..0000000
--- a/src/cz/crcs/ectester/common/CLITools.java
+++ /dev/null
@@ -1,56 +0,0 @@
-package cz.crcs.ectester.common;
-
-import cz.crcs.ectester.common.ec.EC_Category;
-import cz.crcs.ectester.common.ec.EC_Data;
-import cz.crcs.ectester.data.EC_Store;
-import org.apache.commons.cli.HelpFormatter;
-import org.apache.commons.cli.Options;
-
-import java.util.Map;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class CLITools {
-
-    /**
-     * Print help.
-     */
-    public static void help(String prog, String header, Options options, String footer, boolean usage) {
-        HelpFormatter help = new HelpFormatter();
-        help.setOptionComparator(null);
-        help.printHelp(prog, header, options, footer, usage);
-    }
-
-    /**
-     * Print version info.
-     */
-    public static void version(String description, String license) {
-        System.out.println(description);
-        System.out.println(license);
-    }
-
-    /**
-     * List categories and named curves.
-     */
-    public static void listNamed(EC_Store dataStore, String named) {
-        Map<String, EC_Category> categories = dataStore.getCategories();
-        if (named == null) {
-            // print all categories, briefly
-            for (EC_Category cat : categories.values()) {
-                System.out.println(cat);
-            }
-        } else if (categories.containsKey(named)) {
-            // print given category
-            System.out.println(categories.get(named));
-        } else {
-            // print given object
-            EC_Data object = dataStore.getObject(EC_Data.class, named);
-            if (object != null) {
-                System.out.println(object);
-            } else {
-                System.err.println("Named object " + named + " not found!");
-            }
-        }
-    }
-}
diff --git a/src/cz/crcs/ectester/common/cli/CLITools.java b/src/cz/crcs/ectester/common/cli/CLITools.java
new file mode 100644
index 0000000..8f34f62
--- /dev/null
+++ b/src/cz/crcs/ectester/common/cli/CLITools.java
@@ -0,0 +1,90 @@
+package cz.crcs.ectester.common.cli;
+
+import cz.crcs.ectester.common.ec.EC_Category;
+import cz.crcs.ectester.common.ec.EC_Data;
+import cz.crcs.ectester.data.EC_Store;
+import org.apache.commons.cli.CommandLineParser;
+import org.apache.commons.cli.HelpFormatter;
+import org.apache.commons.cli.Options;
+
+import java.io.PrintWriter;
+import java.io.StringWriter;
+import java.util.Map;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class CLITools {
+
+    /**
+     * Print help.
+     */
+    public static void help(String prog, String header, Options options, String footer, boolean usage) {
+        HelpFormatter help = new HelpFormatter();
+        help.setOptionComparator(null);
+        help.printHelp(prog, header, options, footer, usage);
+    }
+
+    private static void help(HelpFormatter help, PrintWriter pw, CommandLineParser cli, int depth) {
+        if (cli instanceof TreeParser) {
+            TreeParser tp = (TreeParser) cli;
+            tp.getParsers().forEach((key, value) -> {
+                help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, String.format("%" + String.valueOf(depth) + "s" + key + ":", " "));
+                help.printOptions(pw, HelpFormatter.DEFAULT_WIDTH, value.getOptions(), HelpFormatter.DEFAULT_LEFT_PAD + depth, HelpFormatter.DEFAULT_DESC_PAD);
+                pw.println();
+                CLITools.help(help, pw, value.getParser(), depth + 1);
+            });
+        }
+    }
+
+    /**
+     * Print tree help.
+     */
+    public static void help(String prog, String header, Options baseOpts, TreeParser baseParser, String footer, boolean usage) {
+        HelpFormatter help = new HelpFormatter();
+        help.setOptionComparator(null);
+        StringWriter sw = new StringWriter();
+        PrintWriter pw = new PrintWriter(sw);
+        if (usage) {
+            help.printUsage(pw, HelpFormatter.DEFAULT_WIDTH, prog, baseOpts);
+        }
+        help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, header);
+        help.printOptions(pw, HelpFormatter.DEFAULT_WIDTH, baseOpts, HelpFormatter.DEFAULT_LEFT_PAD, HelpFormatter.DEFAULT_DESC_PAD);
+        pw.println();
+        help(help, pw, baseParser, 1);
+        help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, footer);
+        System.out.println(sw.toString());
+    }
+
+    /**
+     * Print version info.
+     */
+    public static void version(String description, String license) {
+        System.out.println(description);
+        System.out.println(license);
+    }
+
+    /**
+     * List categories and named curves.
+     */
+    public static void listNamed(EC_Store dataStore, String named) {
+        Map<String, EC_Category> categories = dataStore.getCategories();
+        if (named == null) {
+            // print all categories, briefly
+            for (EC_Category cat : categories.values()) {
+                System.out.println(cat);
+            }
+        } else if (categories.containsKey(named)) {
+            // print given category
+            System.out.println(categories.get(named));
+        } else {
+            // print given object
+            EC_Data object = dataStore.getObject(EC_Data.class, named);
+            if (object != null) {
+                System.out.println(object);
+            } else {
+                System.err.println("Named object " + named + " not found!");
+            }
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/common/cli/ParserOptions.java b/src/cz/crcs/ectester/common/cli/ParserOptions.java
new file mode 100644
index 0000000..4216ce3
--- /dev/null
+++ b/src/cz/crcs/ectester/common/cli/ParserOptions.java
@@ -0,0 +1,25 @@
+package cz.crcs.ectester.common.cli;
+
+import org.apache.commons.cli.CommandLineParser;
+import org.apache.commons.cli.Options;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class ParserOptions {
+    private CommandLineParser parser;
+    private Options options;
+
+    public ParserOptions(CommandLineParser parser, Options options) {
+        this.parser = parser;
+        this.options = options;
+    }
+
+    public CommandLineParser getParser() {
+        return parser;
+    }
+
+    public Options getOptions() {
+        return options;
+    }
+}
diff --git a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
new file mode 100644
index 0000000..ef6079e
--- /dev/null
+++ b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
@@ -0,0 +1,134 @@
+package cz.crcs.ectester.common.cli;
+
+import org.apache.commons.cli.CommandLine;
+import org.apache.commons.cli.Option;
+import org.apache.commons.cli.ParseException;
+
+import java.util.Iterator;
+import java.util.Properties;
+import java.util.function.BiFunction;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class TreeCommandLine extends CommandLine {
+    private String name = "";
+    private TreeCommandLine next;
+    private CommandLine cli;
+
+    public TreeCommandLine(CommandLine cli, TreeCommandLine next) {
+        this.cli = cli;
+        this.next = next;
+    }
+
+    public TreeCommandLine(String name, CommandLine cli, TreeCommandLine next) {
+        this(cli, next);
+        this.name = name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public String getNextName() {
+        if (next != null) {
+            return next.getName();
+        }
+        return null;
+    }
+
+    public TreeCommandLine getNext() {
+        return next;
+    }
+
+    public CommandLine getThis() {
+        return cli;
+    }
+
+    private <T> T getOption(String opt, BiFunction<CommandLine, String, T> getter, T defaultValue) {
+        if (opt.contains(".")) {
+            String[] parts = opt.split(".", 2);
+            if (next != null && parts[0].equals(next.getName())) {
+                return getter.apply(next, parts[1]);
+            }
+            return defaultValue;
+        }
+        return getter.apply(cli, opt);
+    }
+
+    @Override
+    public boolean hasOption(String opt) {
+        return getOption(opt, CommandLine::hasOption, false);
+    }
+
+    @Override
+    public boolean hasOption(char opt) {
+        return cli.hasOption(opt);
+    }
+
+    @Override
+    public Object getParsedOptionValue(String opt) throws ParseException {
+        if (opt.contains(".")) {
+            String[] parts = opt.split(".", 2);
+            if (next != null && parts[0].equals(next.getName())) {
+                return next.getParsedOptionValue(parts[1]);
+            }
+            return null;
+        }
+        return cli.getParsedOptionValue(opt);
+    }
+
+    @Override
+    public Object getOptionObject(char opt) {
+        return cli.getOptionObject(opt);
+    }
+
+    @Override
+    public String getOptionValue(String opt) {
+        return getOption(opt, CommandLine::getOptionValue, null);
+    }
+
+    @Override
+    public String getOptionValue(char opt) {
+        return cli.getOptionValue(opt);
+    }
+
+    @Override
+    public String[] getOptionValues(String opt) {
+        return getOption(opt, CommandLine::getOptionValues, null);
+    }
+
+    @Override
+    public String[] getOptionValues(char opt) {
+        return cli.getOptionValues(opt);
+    }
+
+    @Override
+    public String getOptionValue(String opt, String defaultValue) {
+        return getOption(opt, CommandLine::getOptionValue, defaultValue);
+    }
+
+    @Override
+    public String getOptionValue(char opt, String defaultValue) {
+        return cli.getOptionValue(opt, defaultValue);
+    }
+
+    @Override
+    public Properties getOptionProperties(String opt) {
+        return getOption(opt, CommandLine::getOptionProperties, new Properties());
+    }
+
+    @Override
+    public Iterator<Option> iterator() {
+        return cli.iterator();
+    }
+
+    @Override
+    public Option[] getOptions() {
+        return cli.getOptions();
+    }
+}
diff --git a/src/cz/crcs/ectester/common/cli/TreeParser.java b/src/cz/crcs/ectester/common/cli/TreeParser.java
new file mode 100644
index 0000000..079760e
--- /dev/null
+++ b/src/cz/crcs/ectester/common/cli/TreeParser.java
@@ -0,0 +1,75 @@
+package cz.crcs.ectester.common.cli;
+
+import org.apache.commons.cli.*;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.Map;
+import java.util.Properties;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class TreeParser implements CommandLineParser {
+    private Map<String, ParserOptions> parsers;
+    private boolean required;
+
+    public TreeParser(Map<String, ParserOptions> parsers, boolean required) {
+        this.parsers = parsers;
+        this.required = required;
+    }
+
+    public Map<String, ParserOptions> getParsers() {
+        return Collections.unmodifiableMap(parsers);
+    }
+
+    public boolean isRequired() {
+        return required;
+    }
+
+    @Override
+    public CommandLine parse(Options options, String[] arguments) throws ParseException {
+        return this.parse(options, arguments, null);
+    }
+
+    public CommandLine parse(Options options, String[] arguments, Properties properties) throws ParseException {
+        return this.parse(options, arguments, properties, false);
+    }
+
+    @Override
+    public CommandLine parse(Options options, String[] arguments, boolean stopAtNonOption) throws ParseException {
+        return this.parse(options, arguments, null, stopAtNonOption);
+    }
+
+    public CommandLine parse(Options options, String[] arguments, Properties properties, boolean stopAtNonOption) throws ParseException {
+        DefaultParser thisParser = new DefaultParser();
+        CommandLine cli = thisParser.parse(options, arguments, properties, true);
+
+        CommandLine subCli = null;
+        String[] args = cli.getArgs();
+        String sub = null;
+        if (args.length != 0) {
+            sub = args[0];
+            ParserOptions subparser = parsers.get(sub);
+            if (subparser != null) {
+                String[] remainingArgs = new String[args.length - 1];
+                System.arraycopy(args, 1, remainingArgs, 0, args.length - 1);
+                subCli = subparser.getParser().parse(subparser.getOptions(), remainingArgs, true);
+            }
+        } else {
+            if (required) {
+                throw new MissingOptionException(new ArrayList(parsers.keySet()));
+            }
+        }
+        if (subCli instanceof TreeCommandLine) {
+            TreeCommandLine subTreeCli = (TreeCommandLine) subCli;
+            subTreeCli.setName(sub);
+            return new TreeCommandLine(cli, subTreeCli);
+        } else if (subCli != null) {
+            TreeCommandLine subTreeCli = new TreeCommandLine(sub, subCli, null);
+            return new TreeCommandLine(cli, subTreeCli);
+        } else {
+            return new TreeCommandLine(cli, null);
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index c51430d..2c57107 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -23,10 +23,8 @@ package cz.crcs.ectester.reader;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.CLITools;
+import cz.crcs.ectester.common.cli.CLITools;
 import cz.crcs.ectester.common.Util;
-import cz.crcs.ectester.common.ec.EC_Category;
-import cz.crcs.ectester.common.ec.EC_Data;
 import cz.crcs.ectester.common.ec.EC_Params;
 import cz.crcs.ectester.common.output.OutputLogger;
 import cz.crcs.ectester.common.test.TestException;
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index e8998ff..99253cc 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,8 +1,7 @@
 package cz.crcs.ectester.standalone;
 
-import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.CLITools;
-import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.cli.CLITools;
+import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
-- 
cgit v1.2.3-70-g09d2


From fa6cea35cb6899f802d24951bf5e12639a251eb6 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sat, 18 Nov 2017 15:16:05 +0100
Subject: Finish tree parsing of CLI args.

---
 src/cz/crcs/ectester/common/cli/Argument.java      |  29 +++++
 src/cz/crcs/ectester/common/cli/CLITools.java      |  52 ++++++---
 .../crcs/ectester/common/cli/TreeCommandLine.java  |  23 ++++
 src/cz/crcs/ectester/common/cli/TreeParser.java    |  20 +++-
 .../ectester/standalone/ECTesterStandalone.java    | 129 +++++++++++++--------
 5 files changed, 185 insertions(+), 68 deletions(-)
 create mode 100644 src/cz/crcs/ectester/common/cli/Argument.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/cli/Argument.java b/src/cz/crcs/ectester/common/cli/Argument.java
new file mode 100644
index 0000000..e9b6688
--- /dev/null
+++ b/src/cz/crcs/ectester/common/cli/Argument.java
@@ -0,0 +1,29 @@
+package cz.crcs.ectester.common.cli;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class Argument {
+    private String name;
+    private String desc;
+    private boolean required;
+
+    public Argument(String name, String desc, boolean isRequired) {
+        this.name = name;
+        this.desc = desc;
+        this.required = isRequired;
+    }
+
+
+    public String getName() {
+        return name;
+    }
+
+    public String getDesc() {
+        return desc;
+    }
+
+    public boolean isRequired() {
+        return required;
+    }
+}
diff --git a/src/cz/crcs/ectester/common/cli/CLITools.java b/src/cz/crcs/ectester/common/cli/CLITools.java
index 1b73207..77b3794 100644
--- a/src/cz/crcs/ectester/common/cli/CLITools.java
+++ b/src/cz/crcs/ectester/common/cli/CLITools.java
@@ -25,14 +25,20 @@ public class CLITools {
         help.printHelp(prog, header, options, footer, usage);
     }
 
-    private static void help(HelpFormatter help, PrintWriter pw, CommandLineParser cli, int depth) {
+    private static void help(HelpFormatter help, PrintWriter pw, CommandLineParser cli, Options opts, int depth) {
+        if (opts.getOptions().size() > 0) {
+            help.printOptions(pw, HelpFormatter.DEFAULT_WIDTH, opts, HelpFormatter.DEFAULT_LEFT_PAD + depth, HelpFormatter.DEFAULT_DESC_PAD);
+        }
         if (cli instanceof TreeParser) {
             TreeParser tp = (TreeParser) cli;
+            for (Argument arg : tp.getArgs()) {
+                String argname = arg.isRequired() ? "<" + arg.getName() + ">" : "[" + arg.getName() + "]";
+                help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, String.format("%" + (depth + 1) + "s" + argname + "   " + arg.getDesc(), " "));
+            }
             tp.getParsers().forEach((key, value) -> {
-                help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, String.format("%" + String.valueOf(depth) + "s" + key + ":", " "));
-                help.printOptions(pw, HelpFormatter.DEFAULT_WIDTH, value.getOptions(), HelpFormatter.DEFAULT_LEFT_PAD + depth, HelpFormatter.DEFAULT_DESC_PAD);
                 pw.println();
-                CLITools.help(help, pw, value.getParser(), depth + 1);
+                help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, String.format("%" + depth + "s" + key + ":", " "));
+                CLITools.help(help, pw, value.getParser(), value.getOptions(), depth + 1);
             });
         }
     }
@@ -41,22 +47,37 @@ public class CLITools {
         StringWriter sw = new StringWriter();
         PrintWriter upw = new PrintWriter(sw);
         help.printUsage(upw, HelpFormatter.DEFAULT_WIDTH, "", opts);
-        upw.print(" ");
         if (cli instanceof TreeParser) {
+            upw.print(" ");
             TreeParser tp = (TreeParser) cli;
-            if (!tp.isRequired()) {
+            String[] keys = tp.getParsers().keySet().toArray(new String[tp.getParsers().size()]);
+            if (keys.length > 0 && !tp.isRequired()) {
                 upw.print("[ ");
             }
-            tp.getParsers().forEach((key, value) -> {
-                upw.print("( " + key + " ");
+
+            for (int i = 0; i < keys.length; ++i) {
+                String key = keys[i];
+                ParserOptions value = tp.getParsers().get(key);
+                upw.print("(" + key);
                 usage(help, upw, value.getParser(), value.getOptions());
                 upw.print(")");
-            });
-            if (!tp.isRequired()) {
+                if (i != keys.length - 1) {
+                    upw.print(" | ");
+                }
+            }
+            Argument[] args = tp.getArgs().toArray(new Argument[tp.getArgs().size()]);
+            String[] argss = new String[tp.getArgs().size()];
+            for (int i = 0; i < args.length; ++i) {
+                Argument arg = args[i];
+                argss[i] = arg.isRequired() ? "<" + arg.getName() + ">" : "[" + arg.getName() + "]";
+            }
+            upw.print(String.join(" ", argss));
+
+            if (keys.length > 0 && !tp.isRequired()) {
                 upw.print(" ]");
             }
         }
-        pw.println(sw.toString().substring(8).replace("\n", ""));
+        pw.println(sw.toString().replaceAll("usage:( )?", "").replace("\n", ""));
     }
 
     /**
@@ -67,18 +88,17 @@ public class CLITools {
         help.setOptionComparator(null);
         StringWriter sw = new StringWriter();
         PrintWriter pw = new PrintWriter(sw);
+        help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, header);
         if (printUsage) {
             StringWriter uw = new StringWriter();
             PrintWriter upw = new PrintWriter(uw);
             usage(help, upw, baseParser, baseOpts);
-            pw.print(prog + " usage: ");
+            pw.print("usage: " + prog);
             help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, uw.toString());
             upw.close();
+            pw.println();
         }
-        help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, header);
-        help.printOptions(pw, HelpFormatter.DEFAULT_WIDTH, baseOpts, HelpFormatter.DEFAULT_LEFT_PAD, HelpFormatter.DEFAULT_DESC_PAD);
-        pw.println();
-        help(help, pw, baseParser, 1);
+        help(help, pw, baseParser, baseOpts, 1);
         help.printWrapped(pw, HelpFormatter.DEFAULT_WIDTH, footer);
         System.out.println(sw.toString());
     }
diff --git a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
index ef6079e..e0927fa 100644
--- a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
+++ b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
@@ -5,6 +5,8 @@ import org.apache.commons.cli.Option;
 import org.apache.commons.cli.ParseException;
 
 import java.util.Iterator;
+import java.util.List;
+import java.util.Objects;
 import java.util.Properties;
 import java.util.function.BiFunction;
 
@@ -45,6 +47,10 @@ public class TreeCommandLine extends CommandLine {
         return next;
     }
 
+    public boolean isNext(String next) {
+        return Objects.equals(getNextName(), next);
+    }
+
     public CommandLine getThis() {
         return cli;
     }
@@ -131,4 +137,21 @@ public class TreeCommandLine extends CommandLine {
     public Option[] getOptions() {
         return cli.getOptions();
     }
+
+    public String getArg(int index) {
+        if (index < 0 || index >= cli.getArgs().length) {
+            return null;
+        }
+        return cli.getArgs()[index];
+    }
+
+    @Override
+    public String[] getArgs() {
+        return cli.getArgs();
+    }
+
+    @Override
+    public List<String> getArgList() {
+        return cli.getArgList();
+    }
 }
diff --git a/src/cz/crcs/ectester/common/cli/TreeParser.java b/src/cz/crcs/ectester/common/cli/TreeParser.java
index 8e7edb4..9b197a5 100644
--- a/src/cz/crcs/ectester/common/cli/TreeParser.java
+++ b/src/cz/crcs/ectester/common/cli/TreeParser.java
@@ -10,12 +10,18 @@ import java.util.*;
 public class TreeParser implements CommandLineParser {
     private Map<String, ParserOptions> parsers;
     private boolean required;
+    private List<Argument> args = Collections.emptyList();
 
     public TreeParser(Map<String, ParserOptions> parsers, boolean required) {
         this.parsers = parsers;
         this.required = required;
     }
 
+    public TreeParser(Map<String, ParserOptions> parsers, boolean required, List<Argument> args) {
+        this(parsers, required);
+        this.args = args;
+    }
+
     public Map<String, ParserOptions> getParsers() {
         return Collections.unmodifiableMap(parsers);
     }
@@ -24,21 +30,25 @@ public class TreeParser implements CommandLineParser {
         return required;
     }
 
+    public List<Argument> getArgs() {
+        return Collections.unmodifiableList(args);
+    }
+
     @Override
-    public CommandLine parse(Options options, String[] arguments) throws ParseException {
+    public TreeCommandLine parse(Options options, String[] arguments) throws ParseException {
         return this.parse(options, arguments, null);
     }
 
-    public CommandLine parse(Options options, String[] arguments, Properties properties) throws ParseException {
+    public TreeCommandLine parse(Options options, String[] arguments, Properties properties) throws ParseException {
         return this.parse(options, arguments, properties, false);
     }
 
     @Override
-    public CommandLine parse(Options options, String[] arguments, boolean stopAtNonOption) throws ParseException {
+    public TreeCommandLine parse(Options options, String[] arguments, boolean stopAtNonOption) throws ParseException {
         return this.parse(options, arguments, null, stopAtNonOption);
     }
 
-    public CommandLine parse(Options options, String[] arguments, Properties properties, boolean stopAtNonOption) throws ParseException {
+    public TreeCommandLine parse(Options options, String[] arguments, Properties properties, boolean stopAtNonOption) throws ParseException {
         DefaultParser thisParser = new DefaultParser();
         CommandLine cli = thisParser.parse(options, arguments, properties, true);
 
@@ -67,7 +77,7 @@ public class TreeParser implements CommandLineParser {
                 System.arraycopy(args, 1, remainingArgs, 0, args.length - 1);
                 subCli = subparser.getParser().parse(subparser.getOptions(), remainingArgs, true);
             } else if (matches.size() > 1) {
-                throw new UnrecognizedOptionException("Ambiguous option: " + sub + ", couldn't match. Partially matches: " + String.join(",", matches.toArray(new String[0])) + ".", sub);
+                throw new AmbiguousOptionException(sub, matches);
             }
         } else {
             if (required) {
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 99253cc..3736e12 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,6 +1,6 @@
 package cz.crcs.ectester.standalone;
 
-import cz.crcs.ectester.common.cli.CLITools;
+import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
@@ -8,13 +8,17 @@ import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
 import cz.crcs.ectester.standalone.libs.ECLibrary;
 import cz.crcs.ectester.standalone.libs.JavaECLibrary;
 import cz.crcs.ectester.standalone.libs.SunECLib;
-import org.apache.commons.cli.*;
+import cz.crcs.ectester.standalone.test.KeyGenerationTest;
+import cz.crcs.ectester.standalone.test.KeyGenerationTestable;
+import org.apache.commons.cli.DefaultParser;
+import org.apache.commons.cli.Option;
+import org.apache.commons.cli.Options;
+import org.apache.commons.cli.ParseException;
 
 import java.io.IOException;
-import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
-import java.util.Arrays;
+import java.util.*;
 
 /**
  * Standalone part of ECTester, a tool for testing Elliptic curve implementations in software libraries.
@@ -29,6 +33,7 @@ public class ECTesterStandalone {
     private Config cfg;
 
     private Options opts = new Options();
+    private TreeParser optParser;
     private static final String VERSION = "v0.1.0";
     private static final String DESCRIPTION = "ECTesterStandalone " + VERSION + ", an Elliptic Curve Cryptography support tester/utility.";
     private static final String LICENSE = "MIT Licensed\nCopyright (c) 2016-2017 Petr Svenda <petr@svenda.com>";
@@ -37,10 +42,10 @@ public class ECTesterStandalone {
 
     private void run(String[] args) {
         try {
-            CommandLine cli = parseArgs(args);
+            TreeCommandLine cli = parseArgs(args);
 
             if (cli.hasOption("help")) {
-                CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, CLI_FOOTER, true);
+                CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, optParser, CLI_FOOTER, true);
                 return;
             } else if (cli.hasOption("version")) {
                 CLITools.version(DESCRIPTION, LICENSE);
@@ -56,30 +61,23 @@ public class ECTesterStandalone {
             }
 
             for (ECLibrary lib : libs) {
-                if (lib instanceof JavaECLibrary) {
-                    JavaECLibrary jlib = (JavaECLibrary) lib;
-                    lib.initialize();
-                    lib.getECKAs();
-                    lib.getECSigs();
-                    for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
-                        try {
-                            KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
-                            kpg.initialize(192);
-                            KeyPair kp = kpg.genKeyPair();
-                            System.out.println(kp);
-                        } catch (NoSuchAlgorithmException e) {
-                            e.printStackTrace();
-                        }
-                    }
-                }
-
+                lib.initialize();
             }
-            System.out.println(Arrays.toString(libs));
 
-            if (cli.hasOption("generate")) {
-                generate();
-            } else if (cli.hasOption("list-libs")) {
+            if (cli.isNext("list-libs")) {
                 listLibraries();
+            } else if (cli.isNext("list-data")) {
+                CLITools.listNamed(dataStore, cli.getNext().getArg(0));
+            } else if (cli.isNext("ecdh")) {
+
+            } else if (cli.isNext("ecdsa")) {
+
+            } else if (cli.isNext("generate")) {
+                generate();
+            } else if (cli.isNext("test")) {
+
+            } else if (cli.isNext("export")) {
+
             }
 
         } catch (ParseException | IOException ex) {
@@ -87,32 +85,69 @@ public class ECTesterStandalone {
         }
     }
 
-    private CommandLine parseArgs(String[] args) throws ParseException {
-        OptionGroup actions = new OptionGroup();
-        actions.setRequired(true);
-        actions.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
-        actions.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
-        actions.addOption(Option.builder("e").longOpt("export").desc("Export the defaut curve parameters of the card(if any).").build());
-        actions.addOption(Option.builder("g").longOpt("generate").desc("Generate [amount] of EC keys.").hasArg().argName("amount").optionalArg(true).build());
-        actions.addOption(Option.builder("t").longOpt("test").desc("Test ECC support. [test_suite]:\n- default:\n- invalid:\n- wrong:\n- composite:\n- test-vectors:").hasArg().argName("test_suite").optionalArg(true).build());
-        actions.addOption(Option.builder("dh").longOpt("ecdh").desc("Do ECDH, [count] times.").hasArg().argName("count").optionalArg(true).build());
-        actions.addOption(Option.builder("dhc").longOpt("ecdhc").desc("Do ECDHC, [count] times.").hasArg().argName("count").optionalArg(true).build());
-        actions.addOption(Option.builder("dsa").longOpt("ecdsa").desc("Sign data with ECDSA, [count] times.").hasArg().argName("count").optionalArg(true).build());
-        actions.addOption(Option.builder("ln").longOpt("list-named").desc("Print the list of supported named curves and keys.").hasArg().argName("what").optionalArg(true).build());
-        actions.addOption(Option.builder("ls").longOpt("list-libs").desc("List supported libraries.").build());
-        opts.addOptionGroup(actions);
-
-        CommandLineParser parser = new DefaultParser();
-        return parser.parse(opts, args);
+    private TreeCommandLine parseArgs(String[] args) throws ParseException {
+        Map<String, ParserOptions> actions = new TreeMap<>();
+
+        Options testOpts = new Options();
+        ParserOptions test = new ParserOptions(new DefaultParser(), testOpts);
+        actions.put("test", test);
+
+        Options ecdhOpts = new Options();
+        ecdhOpts.addOption(Option.builder("t").longOpt("type").desc("Set KeyAgreement object [type].").hasArg().argName("type").optionalArg(false).build());
+        ParserOptions ecdh = new ParserOptions(new DefaultParser(), ecdhOpts);
+        actions.put("ecdh", ecdh);
+
+        Options ecdsaOpts = new Options();
+        ecdsaOpts.addOption(Option.builder("t").longOpt("type").desc("Set Signature object [type].").hasArg().argName("type").optionalArg(false).build());
+        ParserOptions ecdsa = new ParserOptions(new DefaultParser(), ecdsaOpts);
+        actions.put("ecdsa", ecdsa);
+
+        Options generateOpts = new Options();
+        generateOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Generate [amount] of EC keys.").build());
+        ParserOptions generate = new ParserOptions(new DefaultParser(), generateOpts);
+        actions.put("generate", generate);
+
+        Options exportOpts = new Options();
+        ParserOptions export = new ParserOptions(new DefaultParser(), exportOpts);
+        actions.put("export", export);
+
+        Options listDataOpts = new Options();
+        List<Argument> listDataArgs = new LinkedList<>();
+        listDataArgs.add(new Argument("what", "what to list.", false));
+        ParserOptions listData = new ParserOptions(new TreeParser(Collections.emptyMap(), false, listDataArgs), listDataOpts);
+        actions.put("list-data", listData);
+
+        Options listLibsOpts = new Options();
+        ParserOptions listLibs = new ParserOptions(new DefaultParser(), listLibsOpts);
+        actions.put("list-libs", listLibs);
+
+        optParser = new TreeParser(actions, false);
+
+        opts.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
+        opts.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
+
+        return optParser.parse(opts, args);
     }
 
     /**
      *
      */
     private void generate() {
-        EC_Curve curve = dataStore.getObject(EC_Curve.class, "secg/secp192r1");
-        byte[] fp = curve.getParam(EC_Consts.PARAMETER_FP)[0];
-
+        for (ECLibrary lib : libs) {
+            if (lib instanceof JavaECLibrary) {
+                JavaECLibrary jlib = (JavaECLibrary) lib;
+                for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
+                    try {
+                        KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                        KeyGenerationTestable kgt = new KeyGenerationTestable(kpg, 192);
+                        KeyGenerationTest kt = KeyGenerationTest.expect(kgt, Result.ExpectedValue.SUCCESS);
+                        System.out.println(kt);
+                    } catch (NoSuchAlgorithmException e) {
+                        e.printStackTrace();
+                    }
+                }
+            }
+        }
     }
 
     /**
-- 
cgit v1.2.3-70-g09d2


From 0fdfe31112924f51ca503c0ec0fff62ec20403c1 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Thu, 23 Nov 2017 01:32:41 +0100
Subject: Sketch out KeyPairGeneration in standalone.

---
 src/cz/crcs/ectester/common/cli/ParserOptions.java | 13 +++++
 .../crcs/ectester/common/cli/TreeCommandLine.java  | 27 ++++++++-
 src/cz/crcs/ectester/common/cli/TreeParser.java    | 32 ++++++++--
 .../ectester/standalone/ECTesterStandalone.java    | 68 ++++++++++++++++++----
 src/cz/crcs/ectester/standalone/consts/Ident.java  |  4 ++
 5 files changed, 124 insertions(+), 20 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/cli/ParserOptions.java b/src/cz/crcs/ectester/common/cli/ParserOptions.java
index 4216ce3..ee2097e 100644
--- a/src/cz/crcs/ectester/common/cli/ParserOptions.java
+++ b/src/cz/crcs/ectester/common/cli/ParserOptions.java
@@ -3,18 +3,27 @@ package cz.crcs.ectester.common.cli;
 import org.apache.commons.cli.CommandLineParser;
 import org.apache.commons.cli.Options;
 
+import java.util.Collections;
+import java.util.List;
+
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
 public class ParserOptions {
     private CommandLineParser parser;
     private Options options;
+    private List<Argument> arguments;
 
     public ParserOptions(CommandLineParser parser, Options options) {
         this.parser = parser;
         this.options = options;
     }
 
+    public ParserOptions(CommandLineParser parser, Options options, List<Argument> arguments) {
+        this(parser, options);
+        this.arguments = arguments;
+    }
+
     public CommandLineParser getParser() {
         return parser;
     }
@@ -22,4 +31,8 @@ public class ParserOptions {
     public Options getOptions() {
         return options;
     }
+
+    public List<Argument> getArguments() {
+        return Collections.unmodifiableList(arguments);
+    }
 }
diff --git a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
index 82d1e15..39607dc 100644
--- a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
+++ b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
@@ -3,6 +3,7 @@ package cz.crcs.ectester.common.cli;
 import org.apache.commons.cli.CommandLine;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.ParseException;
+import sun.reflect.generics.tree.Tree;
 
 import java.util.Iterator;
 import java.util.List;
@@ -55,11 +56,21 @@ public class TreeCommandLine extends CommandLine {
         return cli;
     }
 
+    public int getDepth() {
+        if (next == null) {
+            return 0;
+        }
+        return next.getDepth() + 1;
+    }
+
     private <T> T getOption(String opt, BiFunction<CommandLine, String, T> getter, T defaultValue) {
         if (opt.contains(".")) {
             String[] parts = opt.split("\\.", 2);
             if (next != null && parts[0].equals(next.getName())) {
-                return getter.apply(next, parts[1]);
+                T result = getter.apply(next, parts[1]);
+                if (result != null)
+                    return result;
+                return defaultValue;
             }
             return defaultValue;
         }
@@ -138,11 +149,21 @@ public class TreeCommandLine extends CommandLine {
         return cli.getOptions();
     }
 
+    public boolean hasArg(int index) {
+        if (next != null) {
+            return next.hasArg(index);
+        }
+        return Math.abs(index) < cli.getArgs().length;
+    }
+
     public String getArg(int index) {
-        if (index < 0 || index >= cli.getArgs().length) {
+        if (next != null) {
+            return next.getArg(index);
+        }
+        if (index >= cli.getArgs().length) {
             return null;
         }
-        return cli.getArgs()[index];
+        return index < 0 ? cli.getArgs()[cli.getArgs().length + index] : cli.getArgs()[index];
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/common/cli/TreeParser.java b/src/cz/crcs/ectester/common/cli/TreeParser.java
index 9b197a5..77cce30 100644
--- a/src/cz/crcs/ectester/common/cli/TreeParser.java
+++ b/src/cz/crcs/ectester/common/cli/TreeParser.java
@@ -3,6 +3,7 @@ package cz.crcs.ectester.common.cli;
 import org.apache.commons.cli.*;
 
 import java.util.*;
+import java.util.stream.Collectors;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
@@ -53,10 +54,10 @@ public class TreeParser implements CommandLineParser {
         CommandLine cli = thisParser.parse(options, arguments, properties, true);
 
         CommandLine subCli = null;
-        String[] args = cli.getArgs();
+        String[] cliArgs = cli.getArgs();
         String sub = null;
-        if (args.length != 0) {
-            sub = args[0];
+        if (cliArgs.length != 0) {
+            sub = cliArgs[0];
 
             List<String> matches = new LinkedList<>();
             String finalSub = sub;
@@ -73,8 +74,8 @@ public class TreeParser implements CommandLineParser {
             if (matches.size() == 1) {
                 sub = matches.get(0);
                 ParserOptions subparser = parsers.get(sub);
-                String[] remainingArgs = new String[args.length - 1];
-                System.arraycopy(args, 1, remainingArgs, 0, args.length - 1);
+                String[] remainingArgs = new String[cliArgs.length - 1];
+                System.arraycopy(cliArgs, 1, remainingArgs, 0, cliArgs.length - 1);
                 subCli = subparser.getParser().parse(subparser.getOptions(), remainingArgs, true);
             } else if (matches.size() > 1) {
                 throw new AmbiguousOptionException(sub, matches);
@@ -84,14 +85,35 @@ public class TreeParser implements CommandLineParser {
                 throw new MissingOptionException(new ArrayList(parsers.keySet()));
             }
         }
+
+        long requiredArgs = args.stream().filter(Argument::isRequired).count();
+        String reqArgs = String.join(" ", args.stream().filter(Argument::isRequired).map(Argument::getName).collect(Collectors.toList()));
+
         if (subCli instanceof TreeCommandLine) {
             TreeCommandLine subTreeCli = (TreeCommandLine) subCli;
+
+            TreeCommandLine lastCli = subTreeCli;
+            while (lastCli.getNext() != null) {
+                lastCli = lastCli.getNext();
+            }
+
+            if (lastCli.getArgs().length < requiredArgs) {
+                throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            }
+
             subTreeCli.setName(sub);
             return new TreeCommandLine(cli, subTreeCli);
         } else if (subCli != null) {
+            if (subCli.getArgs().length < requiredArgs) {
+                throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            }
+
             TreeCommandLine subTreeCli = new TreeCommandLine(sub, subCli, null);
             return new TreeCommandLine(cli, subTreeCli);
         } else {
+            if (cliArgs.length < requiredArgs) {
+                throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            }
             return new TreeCommandLine(cli, null);
         }
     }
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 3736e12..dc65856 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,24 +1,26 @@
 package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
-import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
 import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
 import cz.crcs.ectester.standalone.libs.ECLibrary;
 import cz.crcs.ectester.standalone.libs.JavaECLibrary;
 import cz.crcs.ectester.standalone.libs.SunECLib;
-import cz.crcs.ectester.standalone.test.KeyGenerationTest;
-import cz.crcs.ectester.standalone.test.KeyGenerationTestable;
 import org.apache.commons.cli.DefaultParser;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.Options;
 import org.apache.commons.cli.ParseException;
+import sun.reflect.generics.tree.Tree;
 
 import java.io.IOException;
+import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
 import java.util.*;
+import java.util.stream.Collectors;
 
 /**
  * Standalone part of ECTester, a tool for testing Elliptic curve implementations in software libraries.
@@ -30,10 +32,11 @@ public class ECTesterStandalone {
 
     private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib()};
     private EC_Store dataStore;
-    private Config cfg;
+    private Config cfg = new Config();
 
     private Options opts = new Options();
     private TreeParser optParser;
+    private TreeCommandLine cli;
     private static final String VERSION = "v0.1.0";
     private static final String DESCRIPTION = "ECTesterStandalone " + VERSION + ", an Elliptic Curve Cryptography support tester/utility.";
     private static final String LICENSE = "MIT Licensed\nCopyright (c) 2016-2017 Petr Svenda <petr@svenda.com>";
@@ -42,9 +45,9 @@ public class ECTesterStandalone {
 
     private void run(String[] args) {
         try {
-            TreeCommandLine cli = parseArgs(args);
+            cli = parseArgs(args);
 
-            if (cli.hasOption("help")) {
+            if (cli.hasOption("help") || cli.getNext() == null) {
                 CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, optParser, CLI_FOOTER, true);
                 return;
             } else if (cli.hasOption("version")) {
@@ -52,7 +55,7 @@ public class ECTesterStandalone {
                 return;
             }
 
-            cfg = new Config();
+            cfg.readOptions(cli);
             dataStore = new EC_Store();
 
             if (cli.hasOption("list-named")) {
@@ -104,6 +107,8 @@ public class ECTesterStandalone {
 
         Options generateOpts = new Options();
         generateOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Generate [amount] of EC keys.").build());
+        generateOpts.addOption(Option.builder("t").longOpt("type").hasArg().argName("type").optionalArg(false).desc("Set KeyPairGenerator object [type].").build());
+        generateOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
         ParserOptions generate = new ParserOptions(new DefaultParser(), generateOpts);
         actions.put("generate", generate);
 
@@ -121,7 +126,9 @@ public class ECTesterStandalone {
         ParserOptions listLibs = new ParserOptions(new DefaultParser(), listLibsOpts);
         actions.put("list-libs", listLibs);
 
-        optParser = new TreeParser(actions, false);
+        List<Argument> baseArgs = new LinkedList<>();
+        baseArgs.add(new Argument("lib", "What library to use.", false));
+        optParser = new TreeParser(actions, false, baseArgs);
 
         opts.addOption(Option.builder("V").longOpt("version").desc("Print version info.").build());
         opts.addOption(Option.builder("h").longOpt("help").desc("Print help.").build());
@@ -133,15 +140,35 @@ public class ECTesterStandalone {
      *
      */
     private void generate() {
+        if (!cli.hasArg(0)) {
+            System.err.println("Missing library name argument.");
+            return;
+        }
+        String libraryName = cli.getArg(0);
+
+        List<ECLibrary> matchedLibs = new LinkedList<>();
         for (ECLibrary lib : libs) {
+            if (lib.name().toLowerCase().contains(libraryName.toLowerCase())) {
+                matchedLibs.add(lib);
+            }
+        }
+        if (matchedLibs.size() == 0) {
+            System.err.println("No library found.");
+        } else if (matchedLibs.size() > 1) {
+            System.err.println("Multiple matching libraries found: " + String.join(",", matchedLibs.stream().map(ECLibrary::name).collect(Collectors.toList())));
+        } else {
+            ECLibrary lib = matchedLibs.get(0);
             if (lib instanceof JavaECLibrary) {
                 JavaECLibrary jlib = (JavaECLibrary) lib;
                 for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
+                    if (!ident.contains(cli.getOptionValue("generate.type", "EC"))) {
+                        continue;
+                    }
                     try {
                         KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
-                        KeyGenerationTestable kgt = new KeyGenerationTestable(kpg, 192);
-                        KeyGenerationTest kt = KeyGenerationTest.expect(kgt, Result.ExpectedValue.SUCCESS);
-                        System.out.println(kt);
+                        kpg.initialize(Integer.parseInt(cli.getOptionValue("generate.bits", "256")));
+                        KeyPair kp = kpg.genKeyPair();
+                        System.out.println(kp.getPrivate());
                     } catch (NoSuchAlgorithmException e) {
                         e.printStackTrace();
                     }
@@ -156,7 +183,19 @@ public class ECTesterStandalone {
     private void listLibraries() {
         for (ECLibrary lib : libs) {
             if (lib.isInitialized()) {
-                System.out.println(lib.name());
+                System.out.println("\t- " + lib.name());
+                Set<KeyPairGeneratorIdent> kpgs = lib.getKPGs();
+                if (!kpgs.isEmpty()) {
+                    System.out.println("\t\t- KeyPairGenerators: " + String.join(",", kpgs.stream().map(KeyPairGeneratorIdent::getName).collect(Collectors.toList())));
+                }
+                Set<KeyAgreementIdent> eckas = lib.getECKAs();
+                if (!eckas.isEmpty()) {
+                    System.out.println("\t\t- KeyAgreements: " + String.join(",", eckas.stream().map(KeyAgreementIdent::getName).collect(Collectors.toList())));
+                }
+                Set<SignatureIdent> sigs = lib.getECSigs();
+                if (!eckas.isEmpty()) {
+                    System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
+                }
             }
         }
     }
@@ -167,6 +206,11 @@ public class ECTesterStandalone {
     }
 
     public static class Config {
+        public ECLibrary selected;
 
+        boolean readOptions(TreeCommandLine cli) {
+
+            return true;
+        }
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/consts/Ident.java b/src/cz/crcs/ectester/standalone/consts/Ident.java
index eaea0e3..84cce2d 100644
--- a/src/cz/crcs/ectester/standalone/consts/Ident.java
+++ b/src/cz/crcs/ectester/standalone/consts/Ident.java
@@ -24,6 +24,10 @@ public abstract class Ident {
         return Collections.unmodifiableSet(idents);
     }
 
+    public boolean contains(String other) {
+        return name.equals(other) || idents.contains(other);
+    }
+
     @Override
     public boolean equals(Object obj) {
         if (this == obj) {
-- 
cgit v1.2.3-70-g09d2


From 942c287dc46227c87e8683a389d01006e23cb52a Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 26 Nov 2017 19:03:51 +0100
Subject: Finish first keygen implementation.

---
 .../crcs/ectester/common/cli/TreeCommandLine.java  |  14 +--
 src/cz/crcs/ectester/common/ec/EC_Curve.java       |  35 ++++++
 .../ectester/standalone/ECTesterStandalone.java    | 127 +++++++++++++++------
 3 files changed, 131 insertions(+), 45 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
index 39607dc..7de6ef1 100644
--- a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
+++ b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
@@ -3,7 +3,6 @@ package cz.crcs.ectester.common.cli;
 import org.apache.commons.cli.CommandLine;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.ParseException;
-import sun.reflect.generics.tree.Tree;
 
 import java.util.Iterator;
 import java.util.List;
@@ -150,20 +149,21 @@ public class TreeCommandLine extends CommandLine {
     }
 
     public boolean hasArg(int index) {
-        if (next != null) {
-            return next.hasArg(index);
-        }
-        return Math.abs(index) < cli.getArgs().length;
+        return getArg(index) != null;
     }
 
     public String getArg(int index) {
         if (next != null) {
             return next.getArg(index);
         }
-        if (index >= cli.getArgs().length) {
+        String[] args = cli.getArgs();
+        if (index >= args.length) {
+            return null;
+        }
+        if (index < 0 && -index > args.length) {
             return null;
         }
-        return index < 0 ? cli.getArgs()[cli.getArgs().length + index] : cli.getArgs()[index];
+        return index < 0 ? args[args.length + index] : args[index];
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/common/ec/EC_Curve.java b/src/cz/crcs/ectester/common/ec/EC_Curve.java
index 19cfe2d..478ce7d 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Curve.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Curve.java
@@ -1,8 +1,12 @@
 package cz.crcs.ectester.common.ec;
 
 import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.Util;
 import javacard.security.KeyPair;
 
+import java.math.BigInteger;
+import java.security.spec.*;
+
 /**
  * An Elliptic curve, contains parameters Fp/F2M, A, B, G, R, (K)?.
  *
@@ -49,4 +53,35 @@ public class EC_Curve extends EC_Params {
     public String toString() {
         return "<" + getId() + "> " + (field == KeyPair.ALG_EC_FP ? "Prime" : "Binary") + " field Elliptic curve (" + String.valueOf(bits) + "b)" + (desc == null ? "" : ": " + desc);
     }
+
+    public ECParameterSpec toSpec() {
+        ECField field;
+        if (this.field == KeyPair.ALG_EC_FP) {
+            field = new ECFieldFp(new BigInteger(1, getData(0)));
+        } else {
+            byte[][] fieldData = getParam(EC_Consts.PARAMETER_F2M);
+            int m = Util.getShort(fieldData[0], 0);
+            int e1 = Util.getShort(fieldData[1], 0);
+            int e2 = Util.getShort(fieldData[2], 0);
+            int e3 = Util.getShort(fieldData[3], 0);
+            int[] powers = new int[]{e1, e2, e3};
+            field = new ECFieldF2m(m, powers);
+        }
+
+        BigInteger a = new BigInteger(1, getParam(EC_Consts.PARAMETER_A)[0]);
+        BigInteger b = new BigInteger(1, getParam(EC_Consts.PARAMETER_B)[0]);
+
+        EllipticCurve curve = new EllipticCurve(field, a, b);
+
+        byte[][] G = getParam(EC_Consts.PARAMETER_G);
+        BigInteger gx = new BigInteger(1, G[0]);
+        BigInteger gy = new BigInteger(1, G[1]);
+        ECPoint generator = new ECPoint(gx, gy);
+
+        BigInteger n = new BigInteger(1, getParam(EC_Consts.PARAMETER_R)[0]);
+
+        int h = Util.getShort(getParam(EC_Consts.PARAMETER_K)[0], 0);
+
+        return new ECParameterSpec(curve, generator, n, h);
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index dc65856..a2c52fc 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -1,6 +1,7 @@
 package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
+import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
@@ -13,12 +14,14 @@ import org.apache.commons.cli.DefaultParser;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.Options;
 import org.apache.commons.cli.ParseException;
-import sun.reflect.generics.tree.Tree;
 
 import java.io.IOException;
+import java.security.InvalidAlgorithmParameterException;
 import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
+import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.ECPublicKey;
 import java.util.*;
 import java.util.stream.Collectors;
 
@@ -29,10 +32,9 @@ import java.util.stream.Collectors;
  * @version v0.1.0
  */
 public class ECTesterStandalone {
-
     private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib()};
     private EC_Store dataStore;
-    private Config cfg = new Config();
+    private Config cfg;
 
     private Options opts = new Options();
     private TreeParser optParser;
@@ -55,7 +57,11 @@ public class ECTesterStandalone {
                 return;
             }
 
-            cfg.readOptions(cli);
+
+            cfg = new Config(libs);
+            if (!cfg.readOptions(cli)) {
+                return;
+            }
             dataStore = new EC_Store();
 
             if (cli.hasOption("list-named")) {
@@ -83,8 +89,10 @@ public class ECTesterStandalone {
 
             }
 
-        } catch (ParseException | IOException ex) {
+        } catch (ParseException | NoSuchAlgorithmException | IOException ex) {
             System.err.println(ex.getMessage());
+        } catch (InvalidAlgorithmParameterException e) {
+            e.printStackTrace();
         }
     }
 
@@ -106,6 +114,7 @@ public class ECTesterStandalone {
         actions.put("ecdsa", ecdsa);
 
         Options generateOpts = new Options();
+        generateOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         generateOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Generate [amount] of EC keys.").build());
         generateOpts.addOption(Option.builder("t").longOpt("type").hasArg().argName("type").optionalArg(false).desc("Set KeyPairGenerator object [type].").build());
         generateOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
@@ -139,39 +148,42 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void generate() {
-        if (!cli.hasArg(0)) {
-            System.err.println("Missing library name argument.");
-            return;
-        }
-        String libraryName = cli.getArg(0);
-
-        List<ECLibrary> matchedLibs = new LinkedList<>();
-        for (ECLibrary lib : libs) {
-            if (lib.name().toLowerCase().contains(libraryName.toLowerCase())) {
-                matchedLibs.add(lib);
+    private void generate() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException {
+        if (cfg.selected instanceof JavaECLibrary) {
+            JavaECLibrary jlib = (JavaECLibrary) cfg.selected;
+            KeyPairGeneratorIdent ident = null;
+            String algo = cli.getOptionValue("generate.type", "EC");
+            for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
+                if (kpIdent.contains(algo)) {
+                    ident = kpIdent;
+                    break;
+                }
             }
-        }
-        if (matchedLibs.size() == 0) {
-            System.err.println("No library found.");
-        } else if (matchedLibs.size() > 1) {
-            System.err.println("Multiple matching libraries found: " + String.join(",", matchedLibs.stream().map(ECLibrary::name).collect(Collectors.toList())));
-        } else {
-            ECLibrary lib = matchedLibs.get(0);
-            if (lib instanceof JavaECLibrary) {
-                JavaECLibrary jlib = (JavaECLibrary) lib;
-                for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
-                    if (!ident.contains(cli.getOptionValue("generate.type", "EC"))) {
-                        continue;
-                    }
-                    try {
-                        KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
-                        kpg.initialize(Integer.parseInt(cli.getOptionValue("generate.bits", "256")));
-                        KeyPair kp = kpg.genKeyPair();
-                        System.out.println(kp.getPrivate());
-                    } catch (NoSuchAlgorithmException e) {
-                        e.printStackTrace();
+            if (ident == null) {
+                throw new NoSuchAlgorithmException(algo);
+            } else {
+                KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                if (cli.hasOption("generate.bits")) {
+                    int bits = Integer.parseInt(cli.getOptionValue("generate.bits", "256"));
+                    kpg.initialize(bits);
+                } else if (cli.hasOption("generate.named-curve")) {
+                    String curveName = cli.getOptionValue("generate.named-curve");
+                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                    if (curve == null) {
+                        System.err.println("Curve not found: " + curveName);
+                        return;
                     }
+                    kpg.initialize(curve.toSpec());
+                } else {
+                    kpg.initialize(256);
+                }
+
+                int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
+                for (int i = 0; i < amount; ++i) {
+                    KeyPair kp = kpg.genKeyPair();
+                    ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
+                    ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
+                    System.out.println(privateKey);
                 }
             }
         }
@@ -182,7 +194,7 @@ public class ECTesterStandalone {
      */
     private void listLibraries() {
         for (ECLibrary lib : libs) {
-            if (lib.isInitialized()) {
+            if (lib.isInitialized() && (cfg.selected == null || lib == cfg.selected)) {
                 System.out.println("\t- " + lib.name());
                 Set<KeyPairGeneratorIdent> kpgs = lib.getKPGs();
                 if (!kpgs.isEmpty()) {
@@ -205,10 +217,49 @@ public class ECTesterStandalone {
         app.run(args);
     }
 
+
+    /**
+     *
+     */
     public static class Config {
-        public ECLibrary selected;
+        private ECLibrary[] libs;
+        public ECLibrary selected = null;
+
+        public Config(ECLibrary[] libs) {
+            this.libs = libs;
+        }
 
         boolean readOptions(TreeCommandLine cli) {
+            if (cli.isNext("generate")) {
+                if (!cli.hasArg(-1)) {
+                    System.err.println("Missing library name argument.");
+                    return false;
+                }
+
+                if (cli.hasOption("generate.bits") && cli.hasOption("generate.named-curve")) {
+                    System.err.println("");
+                    return false;
+                }
+            }
+
+            String libraryName = cli.getArg(-1);
+            if (libraryName != null) {
+                List<ECLibrary> matchedLibs = new LinkedList<>();
+                for (ECLibrary lib : libs) {
+                    if (lib.name().toLowerCase().contains(libraryName.toLowerCase())) {
+                        matchedLibs.add(lib);
+                    }
+                }
+                if (matchedLibs.size() == 0) {
+                    System.err.println("No library " + libraryName + " found.");
+                    return false;
+                } else if (matchedLibs.size() > 1) {
+                    System.err.println("Multiple matching libraries found: " + String.join(",", matchedLibs.stream().map(ECLibrary::name).collect(Collectors.toList())));
+                    return false;
+                } else {
+                    selected = matchedLibs.get(0);
+                }
+            }
 
             return true;
         }
-- 
cgit v1.2.3-70-g09d2


From 2279aef8b7c00ba2bb71fdedae77ae4a47b00fc6 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 26 Nov 2017 19:19:40 +0100
Subject: Make sure the SPI by the intended provider is always used.

 - JCA implements failover in its Delegates(classes between a Service
   and its SPI), which catches RuntimeExceptions and changes to another
   SPI by possibly another provider, we do not want this to happen.
   There is no public API for disabling this, however calling
   .getProvider() on a Service fixates the provider to the returned
   one.
---
 .../crcs/ectester/common/cli/TreeCommandLine.java  |  2 +-
 .../ectester/standalone/ECTesterStandalone.java    | 77 ++++++++++++++--------
 .../standalone/consts/KeyAgreementIdent.java       |  4 +-
 .../standalone/consts/KeyPairGeneratorIdent.java   |  4 +-
 .../ectester/standalone/consts/SignatureIdent.java |  4 +-
 5 files changed, 60 insertions(+), 31 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
index 7de6ef1..6a044d2 100644
--- a/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
+++ b/src/cz/crcs/ectester/common/cli/TreeCommandLine.java
@@ -89,7 +89,7 @@ public class TreeCommandLine extends CommandLine {
     @Override
     public Object getParsedOptionValue(String opt) throws ParseException {
         if (opt.contains(".")) {
-            String[] parts = opt.split(".", 2);
+            String[] parts = opt.split("\\.", 2);
             if (next != null && parts[0].equals(next.getName())) {
                 return next.getParsedOptionValue(parts[1]);
             }
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index a2c52fc..741d81e 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -64,11 +64,6 @@ public class ECTesterStandalone {
             }
             dataStore = new EC_Store();
 
-            if (cli.hasOption("list-named")) {
-                CLITools.listNamed(dataStore, cli.getOptionValue("list-named"));
-                return;
-            }
-
             for (ECLibrary lib : libs) {
                 lib.initialize();
             }
@@ -78,15 +73,15 @@ public class ECTesterStandalone {
             } else if (cli.isNext("list-data")) {
                 CLITools.listNamed(dataStore, cli.getNext().getArg(0));
             } else if (cli.isNext("ecdh")) {
-
+                ecdh();
             } else if (cli.isNext("ecdsa")) {
-
+                ecdsa();
             } else if (cli.isNext("generate")) {
                 generate();
             } else if (cli.isNext("test")) {
-
+                test();
             } else if (cli.isNext("export")) {
-
+                export();
             }
 
         } catch (ParseException | NoSuchAlgorithmException | IOException ex) {
@@ -145,6 +140,43 @@ public class ECTesterStandalone {
         return optParser.parse(opts, args);
     }
 
+    /**
+     *
+     */
+    private void listLibraries() {
+        for (ECLibrary lib : libs) {
+            if (lib.isInitialized() && (cfg.selected == null || lib == cfg.selected)) {
+                System.out.println("\t- " + lib.name());
+                Set<KeyPairGeneratorIdent> kpgs = lib.getKPGs();
+                if (!kpgs.isEmpty()) {
+                    System.out.println("\t\t- KeyPairGenerators: " + String.join(",", kpgs.stream().map(KeyPairGeneratorIdent::getName).collect(Collectors.toList())));
+                }
+                Set<KeyAgreementIdent> eckas = lib.getECKAs();
+                if (!eckas.isEmpty()) {
+                    System.out.println("\t\t- KeyAgreements: " + String.join(",", eckas.stream().map(KeyAgreementIdent::getName).collect(Collectors.toList())));
+                }
+                Set<SignatureIdent> sigs = lib.getECSigs();
+                if (!eckas.isEmpty()) {
+                    System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
+                }
+            }
+        }
+    }
+
+    /**
+     *
+     */
+    private void ecdh() {
+
+    }
+
+    /**
+     *
+     */
+    private void ecdsa() {
+
+    }
+
     /**
      *
      */
@@ -192,24 +224,15 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void listLibraries() {
-        for (ECLibrary lib : libs) {
-            if (lib.isInitialized() && (cfg.selected == null || lib == cfg.selected)) {
-                System.out.println("\t- " + lib.name());
-                Set<KeyPairGeneratorIdent> kpgs = lib.getKPGs();
-                if (!kpgs.isEmpty()) {
-                    System.out.println("\t\t- KeyPairGenerators: " + String.join(",", kpgs.stream().map(KeyPairGeneratorIdent::getName).collect(Collectors.toList())));
-                }
-                Set<KeyAgreementIdent> eckas = lib.getECKAs();
-                if (!eckas.isEmpty()) {
-                    System.out.println("\t\t- KeyAgreements: " + String.join(",", eckas.stream().map(KeyAgreementIdent::getName).collect(Collectors.toList())));
-                }
-                Set<SignatureIdent> sigs = lib.getECSigs();
-                if (!eckas.isEmpty()) {
-                    System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
-                }
-            }
-        }
+    private void test() {
+
+    }
+
+    /**
+     *
+     */
+    private void export() {
+
     }
 
     public static void main(String[] args) {
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
index 22b03a4..c0d1e27 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
@@ -55,6 +55,8 @@ public class KeyAgreementIdent extends Ident {
     }
 
     public KeyAgreement getInstance(Provider provider) throws NoSuchAlgorithmException {
-        return KeyAgreement.getInstance(name, provider);
+        KeyAgreement instance = KeyAgreement.getInstance(name, provider);
+        instance.getProvider();
+        return instance;
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
index f806282..d0526f7 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
@@ -31,6 +31,8 @@ public class KeyPairGeneratorIdent extends Ident {
     }
 
     public KeyPairGenerator getInstance(Provider provider) throws NoSuchAlgorithmException {
-        return KeyPairGenerator.getInstance(name, provider);
+        KeyPairGenerator instance = KeyPairGenerator.getInstance(name, provider);
+        instance.getProvider();
+        return instance;
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
index dc554e2..c027bf1 100644
--- a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
@@ -79,6 +79,8 @@ public class SignatureIdent extends Ident {
     }
 
     public Signature getInstance(Provider provider) throws NoSuchAlgorithmException {
-        return Signature.getInstance(name, provider);
+        Signature instance = Signature.getInstance(name, provider);
+        instance.getProvider();
+        return instance;
     }
 }
-- 
cgit v1.2.3-70-g09d2


From c7cffa5d408b0df4276bc27cc9206825ad81ddfa Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 26 Nov 2017 19:39:57 +0100
Subject: Add export of default standalone lib params.

---
 .../ectester/standalone/ECTesterStandalone.java    | 48 ++++++++++++++++++----
 1 file changed, 40 insertions(+), 8 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 741d81e..049626e 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -21,7 +21,7 @@ import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
 import java.security.interfaces.ECPrivateKey;
-import java.security.interfaces.ECPublicKey;
+import java.security.spec.ECParameterSpec;
 import java.util.*;
 import java.util.stream.Collectors;
 
@@ -117,6 +117,8 @@ public class ECTesterStandalone {
         actions.put("generate", generate);
 
         Options exportOpts = new Options();
+        exportOpts.addOption(Option.builder("t").longOpt("type").hasArg().argName("type").optionalArg(false).desc("Set KeyPair object [type].").build());
+        exportOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
         ParserOptions export = new ParserOptions(new DefaultParser(), exportOpts);
         actions.put("export", export);
 
@@ -196,7 +198,7 @@ public class ECTesterStandalone {
             } else {
                 KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
                 if (cli.hasOption("generate.bits")) {
-                    int bits = Integer.parseInt(cli.getOptionValue("generate.bits", "256"));
+                    int bits = Integer.parseInt(cli.getOptionValue("generate.bits"));
                     kpg.initialize(bits);
                 } else if (cli.hasOption("generate.named-curve")) {
                     String curveName = cli.getOptionValue("generate.named-curve");
@@ -206,15 +208,12 @@ public class ECTesterStandalone {
                         return;
                     }
                     kpg.initialize(curve.toSpec());
-                } else {
-                    kpg.initialize(256);
                 }
 
                 int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
                 for (int i = 0; i < amount; ++i) {
                     KeyPair kp = kpg.genKeyPair();
                     ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
-                    ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
                     System.out.println(privateKey);
                 }
             }
@@ -231,8 +230,31 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void export() {
-
+    private void export() throws NoSuchAlgorithmException {
+        if (cfg.selected instanceof JavaECLibrary) {
+            JavaECLibrary jlib = (JavaECLibrary) cfg.selected;
+            KeyPairGeneratorIdent ident = null;
+            String algo = cli.getOptionValue("export.type", "EC");
+            for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
+                if (kpIdent.contains(algo)) {
+                    ident = kpIdent;
+                    break;
+                }
+            }
+            if (ident == null) {
+                throw new NoSuchAlgorithmException(algo);
+            } else {
+                KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                if (cli.hasOption("export.bits")) {
+                    int bits = Integer.parseInt(cli.getOptionValue("export.bits"));
+                    kpg.initialize(bits);
+                }
+                KeyPair kp = kpg.genKeyPair();
+                ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
+                ECParameterSpec params = privateKey.getParams();
+                System.out.println(params);
+            }
+        }
     }
 
     public static void main(String[] args) {
@@ -260,7 +282,17 @@ public class ECTesterStandalone {
                 }
 
                 if (cli.hasOption("generate.bits") && cli.hasOption("generate.named-curve")) {
-                    System.err.println("");
+                    System.err.println("You can only specify bitsize or a named curve, nor both.");
+                    return false;
+                }
+            } else if (cli.isNext("export")) {
+                if (!cli.hasArg(-1)) {
+                    System.err.println("Missing library name argument.");
+                    return false;
+                }
+
+                if (cli.hasOption("export.bits") && cli.hasOption("export.named-curve")) {
+                    System.err.println("You can only specify bitsize or a named curve, nor both.");
                     return false;
                 }
             }
-- 
cgit v1.2.3-70-g09d2


From 83943c809c56c1856038b21fd91f50cc709310aa Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 26 Nov 2017 23:27:07 +0100
Subject: Split Util class into a package.

---
 src/cz/crcs/ectester/common/Util.java              | 375 ---------------------
 src/cz/crcs/ectester/common/ec/EC_Curve.java       |  54 ++-
 src/cz/crcs/ectester/common/ec/EC_Data.java        |  31 +-
 src/cz/crcs/ectester/common/ec/EC_KAResult.java    |   4 +-
 src/cz/crcs/ectester/common/ec/EC_Params.java      |  24 +-
 src/cz/crcs/ectester/common/util/ByteUtil.java     | 122 +++++++
 src/cz/crcs/ectester/common/util/CardUtil.java     | 255 ++++++++++++++
 src/cz/crcs/ectester/reader/CardMngr.java          |  16 +-
 src/cz/crcs/ectester/reader/ECTesterReader.java    |  10 +-
 src/cz/crcs/ectester/reader/command/Command.java   |  18 +-
 .../ectester/reader/output/ResponseWriter.java     |   6 +-
 .../crcs/ectester/reader/output/XMLTestWriter.java |   6 +-
 .../ectester/reader/output/YAMLTestWriter.java     |   6 +-
 src/cz/crcs/ectester/reader/response/Response.java |  15 +-
 .../crcs/ectester/reader/test/TestVectorSuite.java |   6 +-
 .../ectester/standalone/ECTesterStandalone.java    |  21 +-
 .../standalone/test/KeyGenerationTestable.java     |  10 +-
 17 files changed, 528 insertions(+), 451 deletions(-)
 delete mode 100644 src/cz/crcs/ectester/common/Util.java
 create mode 100644 src/cz/crcs/ectester/common/util/ByteUtil.java
 create mode 100644 src/cz/crcs/ectester/common/util/CardUtil.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/Util.java b/src/cz/crcs/ectester/common/Util.java
deleted file mode 100644
index 0136493..0000000
--- a/src/cz/crcs/ectester/common/Util.java
+++ /dev/null
@@ -1,375 +0,0 @@
-package cz.crcs.ectester.common;
-
-import cz.crcs.ectester.applet.ECTesterApplet;
-import cz.crcs.ectester.applet.EC_Consts;
-import javacard.framework.ISO7816;
-import javacard.security.CryptoException;
-
-import static cz.crcs.ectester.applet.ECTesterApplet.*;
-
-/**
- * Utility class, some byte/hex manipulation, convenient byte[] methods.
- *
- * @author Petr Svenda petr@svenda.com
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class Util {
-
-    public static short getShort(byte[] array, int offset) {
-        return (short) (((array[offset] & 0xFF) << 8) | (array[offset + 1] & 0xFF));
-    }
-
-    public static void setShort(byte[] array, int offset, short value) {
-        array[offset + 1] = (byte) (value & 0xFF);
-        array[offset] = (byte) ((value >> 8) & 0xFF);
-    }
-
-    public static int diffBytes(byte[] one, int oneOffset, byte[] other, int otherOffset, int length) {
-        for (int i = 0; i < length; ++i) {
-            byte a = one[i + oneOffset];
-            byte b = other[i + otherOffset];
-            if (a != b) {
-                return i;
-            }
-        }
-        return length;
-    }
-
-    public static boolean compareBytes(byte[] one, int oneOffset, byte[] other, int otherOffset, int length) {
-        return diffBytes(one, oneOffset, other, otherOffset, length) == length;
-    }
-
-    public static boolean allValue(byte[] array, byte value) {
-        for (byte a : array) {
-            if (a != value)
-                return false;
-        }
-        return true;
-    }
-
-    public static byte[] hexToBytes(String hex) {
-        return hexToBytes(hex, true);
-    }
-
-    public static byte[] hexToBytes(String hex, boolean bigEndian) {
-        hex = hex.replace(" ", "");
-        int len = hex.length();
-        StringBuilder sb = new StringBuilder();
-
-        if (len % 2 == 1) {
-            sb.append("0");
-            ++len;
-        }
-
-        if (bigEndian) {
-            sb.append(hex);
-        } else {
-            for (int i = 0; i < len / 2; ++i) {
-                if (sb.length() >= 2) {
-                    sb.insert(sb.length() - 2, hex.substring(2 * i, 2 * i + 2));
-                } else {
-                    sb.append(hex.substring(2 * i, 2 * i + 2));
-                }
-
-            }
-        }
-
-        String data = sb.toString();
-        byte[] result = new byte[len / 2];
-        for (int i = 0; i < len; i += 2) {
-            result[i / 2] = (byte) ((Character.digit(data.charAt(i), 16) << 4)
-                    + (Character.digit(data.charAt(i + 1), 16)));
-        }
-        return result;
-    }
-
-    public static String byteToHex(byte data) {
-        return String.format("%02x", data);
-    }
-
-    public static String bytesToHex(byte[] data) {
-        return bytesToHex(data, true);
-    }
-
-    public static String bytesToHex(byte[] data, boolean addSpace) {
-        return bytesToHex(data, 0, data.length, addSpace);
-    }
-
-    public static String bytesToHex(byte[] data, int offset, int len) {
-        return bytesToHex(data, offset, len, true);
-    }
-
-    public static String bytesToHex(byte[] data, int offset, int len, boolean addSpace) {
-        StringBuilder buf = new StringBuilder();
-        for (int i = offset; i < (offset + len); i++) {
-            buf.append(byteToHex(data[i]));
-            if (addSpace && i != (offset + len - 1)) {
-                buf.append(" ");
-            }
-        }
-        return (buf.toString());
-    }
-
-    public static byte[] concatenate(byte[]... arrays) {
-        int len = 0;
-        for (byte[] array : arrays) {
-            if (array == null)
-                continue;
-            len += array.length;
-        }
-        byte[] out = new byte[len];
-        int offset = 0;
-        for (byte[] array : arrays) {
-            if (array == null || array.length == 0)
-                continue;
-            System.arraycopy(array, 0, out, offset, array.length);
-            offset += array.length;
-        }
-        return out;
-    }
-
-    public static String getSWSource(short sw) {
-        switch (sw) {
-            case ISO7816.SW_NO_ERROR:
-            case ISO7816.SW_APPLET_SELECT_FAILED:
-            case ISO7816.SW_BYTES_REMAINING_00:
-            case ISO7816.SW_CLA_NOT_SUPPORTED:
-            case ISO7816.SW_COMMAND_NOT_ALLOWED:
-            case ISO7816.SW_CONDITIONS_NOT_SATISFIED:
-            case ISO7816.SW_CORRECT_LENGTH_00:
-            case ISO7816.SW_DATA_INVALID:
-            case ISO7816.SW_FILE_FULL:
-            case ISO7816.SW_FILE_INVALID:
-            case ISO7816.SW_FILE_NOT_FOUND:
-            case ISO7816.SW_FUNC_NOT_SUPPORTED:
-            case ISO7816.SW_INCORRECT_P1P2:
-            case ISO7816.SW_INS_NOT_SUPPORTED:
-            case ISO7816.SW_LOGICAL_CHANNEL_NOT_SUPPORTED:
-            case ISO7816.SW_RECORD_NOT_FOUND:
-            case ISO7816.SW_SECURE_MESSAGING_NOT_SUPPORTED:
-            case ISO7816.SW_SECURITY_STATUS_NOT_SATISFIED:
-            case ISO7816.SW_UNKNOWN:
-            case ISO7816.SW_WARNING_STATE_UNCHANGED:
-            case ISO7816.SW_WRONG_DATA:
-            case ISO7816.SW_WRONG_LENGTH:
-            case ISO7816.SW_WRONG_P1P2:
-                return "ISO";
-            case CryptoException.ILLEGAL_VALUE:
-            case CryptoException.UNINITIALIZED_KEY:
-            case CryptoException.NO_SUCH_ALGORITHM:
-            case CryptoException.INVALID_INIT:
-            case CryptoException.ILLEGAL_USE:
-                return "CryptoException";
-            case ECTesterApplet.SW_SIG_VERIFY_FAIL:
-            case ECTesterApplet.SW_DH_DHC_MISMATCH:
-            case ECTesterApplet.SW_KEYPAIR_NULL:
-            case ECTesterApplet.SW_KA_NULL:
-            case ECTesterApplet.SW_SIGNATURE_NULL:
-            case ECTesterApplet.SW_OBJECT_NULL:
-                return "ECTesterApplet";
-            default:
-                return "?";
-        }
-    }
-
-    public static String getSW(short sw) {
-        String str;
-        switch (sw) {
-            case ISO7816.SW_APPLET_SELECT_FAILED:
-                str = "APPLET_SELECT_FAILED";
-                break;
-            case ISO7816.SW_BYTES_REMAINING_00:
-                str = "BYTES_REMAINING";
-                break;
-            case ISO7816.SW_CLA_NOT_SUPPORTED:
-                str = "CLA_NOT_SUPPORTED";
-                break;
-            case ISO7816.SW_COMMAND_NOT_ALLOWED:
-                str = "COMMAND_NOT_ALLOWED";
-                break;
-            case ISO7816.SW_CONDITIONS_NOT_SATISFIED:
-                str = "CONDITIONS_NOT_SATISFIED";
-                break;
-            case ISO7816.SW_CORRECT_LENGTH_00:
-                str = "CORRECT_LENGTH";
-                break;
-            case ISO7816.SW_DATA_INVALID:
-                str = "DATA_INVALID";
-                break;
-            case ISO7816.SW_FILE_FULL:
-                str = "FILE_FULL";
-                break;
-            case ISO7816.SW_FILE_INVALID:
-                str = "FILE_INVALID";
-                break;
-            case ISO7816.SW_FILE_NOT_FOUND:
-                str = "FILE_NOT_FOUND";
-                break;
-            case ISO7816.SW_FUNC_NOT_SUPPORTED:
-                str = "FUNC_NOT_SUPPORTED";
-                break;
-            case ISO7816.SW_INCORRECT_P1P2:
-                str = "INCORRECT_P1P2";
-                break;
-            case ISO7816.SW_INS_NOT_SUPPORTED:
-                str = "INS_NOT_SUPPORTED";
-                break;
-            case ISO7816.SW_LOGICAL_CHANNEL_NOT_SUPPORTED:
-                str = "LOGICAL_CHANNEL_NOT_SUPPORTED";
-                break;
-            case ISO7816.SW_RECORD_NOT_FOUND:
-                str = "RECORD_NOT_FOUND";
-                break;
-            case ISO7816.SW_SECURE_MESSAGING_NOT_SUPPORTED:
-                str = "SECURE_MESSAGING_NOT_SUPPORTED";
-                break;
-            case ISO7816.SW_SECURITY_STATUS_NOT_SATISFIED:
-                str = "SECURITY_STATUS_NOT_SATISFIED";
-                break;
-            case ISO7816.SW_UNKNOWN:
-                str = "UNKNOWN";
-                break;
-            case ISO7816.SW_WARNING_STATE_UNCHANGED:
-                str = "WARNING_STATE_UNCHANGED";
-                break;
-            case ISO7816.SW_WRONG_DATA:
-                str = "WRONG_DATA";
-                break;
-            case ISO7816.SW_WRONG_LENGTH:
-                str = "WRONG_LENGTH";
-                break;
-            case ISO7816.SW_WRONG_P1P2:
-                str = "WRONG_P1P2";
-                break;
-            case CryptoException.ILLEGAL_VALUE:
-                str = "ILLEGAL_VALUE";
-                break;
-            case CryptoException.UNINITIALIZED_KEY:
-                str = "UNINITIALIZED_KEY";
-                break;
-            case CryptoException.NO_SUCH_ALGORITHM:
-                str = "NO_SUCH_ALG";
-                break;
-            case CryptoException.INVALID_INIT:
-                str = "INVALID_INIT";
-                break;
-            case CryptoException.ILLEGAL_USE:
-                str = "ILLEGAL_USE";
-                break;
-            case ECTesterApplet.SW_SIG_VERIFY_FAIL:
-                str = "SIG_VERIFY_FAIL";
-                break;
-            case ECTesterApplet.SW_DH_DHC_MISMATCH:
-                str = "DH_DHC_MISMATCH";
-                break;
-            case ECTesterApplet.SW_KEYPAIR_NULL:
-                str = "KEYPAIR_NULL";
-                break;
-            case ECTesterApplet.SW_KA_NULL:
-                str = "KA_NULL";
-                break;
-            case ECTesterApplet.SW_SIGNATURE_NULL:
-                str = "SIGNATURE_NULL";
-                break;
-            case ECTesterApplet.SW_OBJECT_NULL:
-                str = "OBJECT_NULL";
-                break;
-            default:
-                str = "unknown";
-                break;
-        }
-        return str;
-    }
-
-    public static String getSWString(short sw) {
-        if (sw == ISO7816.SW_NO_ERROR) {
-            return "OK   (0x9000)";
-        } else {
-            String str = getSW(sw);
-            return String.format("fail (%s, 0x%04x)", str, sw);
-        }
-    }
-
-    public static String getCorruption(short corruptionType) {
-        String corrupt;
-        switch (corruptionType) {
-            case EC_Consts.CORRUPTION_NONE:
-                corrupt = "NONE";
-                break;
-            case EC_Consts.CORRUPTION_FIXED:
-                corrupt = "FIXED";
-                break;
-            case EC_Consts.CORRUPTION_ONE:
-                corrupt = "ONE";
-                break;
-            case EC_Consts.CORRUPTION_ZERO:
-                corrupt = "ZERO";
-                break;
-            case EC_Consts.CORRUPTION_ONEBYTERANDOM:
-                corrupt = "ONE_BYTE_RANDOM";
-                break;
-            case EC_Consts.CORRUPTION_FULLRANDOM:
-                corrupt = "FULL_RANDOM";
-                break;
-            case EC_Consts.CORRUPTION_INCREMENT:
-                corrupt = "INCREMENT";
-                break;
-            case EC_Consts.CORRUPTION_INFINITY:
-                corrupt = "INFINITY";
-                break;
-            case EC_Consts.CORRUPTION_COMPRESS:
-                corrupt = "COMPRESSED";
-                break;
-            case EC_Consts.CORRUPTION_MAX:
-                corrupt = "MAX";
-                break;
-            default:
-                corrupt = "unknown";
-                break;
-        }
-        return corrupt;
-    }
-
-    public static String getKA(byte ka) {
-        String algo = "";
-        if ((ka & EC_Consts.KA_ECDH) != 0 || ka == EC_Consts.KA_ANY) {
-            algo += "ECDH";
-        }
-        if (ka == EC_Consts.KA_BOTH) {
-            algo += "+";
-        } else if (ka == EC_Consts.KA_ANY) {
-            algo += "/";
-        }
-        if ((ka & EC_Consts.KA_ECDHC) != 0 || ka == EC_Consts.KA_ANY) {
-            algo += "ECDHC";
-        }
-        return algo;
-    }
-
-    public static String getKATypeString(byte kaType) {
-        String kaTypeString;
-        switch (kaType) {
-            case KeyAgreement_ALG_EC_SVDP_DH:
-                kaTypeString = "ALG_EC_SVDP_DH";
-                break;
-            case KeyAgreement_ALG_EC_SVDP_DH_PLAIN:
-                kaTypeString = "ALG_EC_SVDP_DH_PLAIN";
-                break;
-            case KeyAgreement_ALG_EC_PACE_GM:
-                kaTypeString = "ALG_EC_PACE_GM";
-                break;
-            case KeyAgreement_ALG_EC_SVDP_DH_PLAIN_XY:
-                kaTypeString = "ALG_EC_SVDP_DH_PLAIN_XY";
-                break;
-            case KeyAgreement_ALG_EC_SVDP_DHC:
-                kaTypeString = "ALG_EC_SVDP_DHC";
-                break;
-            case KeyAgreement_ALG_EC_SVDP_DHC_PLAIN:
-                kaTypeString = "ALG_EC_SVDP_DHC_PLAIN";
-                break;
-            default:
-                kaTypeString = "unknown";
-        }
-        return kaTypeString;
-    }
-}
diff --git a/src/cz/crcs/ectester/common/ec/EC_Curve.java b/src/cz/crcs/ectester/common/ec/EC_Curve.java
index 478ce7d..19228dc 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Curve.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Curve.java
@@ -1,7 +1,7 @@
 package cz.crcs.ectester.common.ec;
 
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 import javacard.security.KeyPair;
 
 import java.math.BigInteger;
@@ -60,10 +60,10 @@ public class EC_Curve extends EC_Params {
             field = new ECFieldFp(new BigInteger(1, getData(0)));
         } else {
             byte[][] fieldData = getParam(EC_Consts.PARAMETER_F2M);
-            int m = Util.getShort(fieldData[0], 0);
-            int e1 = Util.getShort(fieldData[1], 0);
-            int e2 = Util.getShort(fieldData[2], 0);
-            int e3 = Util.getShort(fieldData[3], 0);
+            int m = ByteUtil.getShort(fieldData[0], 0);
+            int e1 = ByteUtil.getShort(fieldData[1], 0);
+            int e2 = ByteUtil.getShort(fieldData[2], 0);
+            int e3 = ByteUtil.getShort(fieldData[3], 0);
             int[] powers = new int[]{e1, e2, e3};
             field = new ECFieldF2m(m, powers);
         }
@@ -80,8 +80,50 @@ public class EC_Curve extends EC_Params {
 
         BigInteger n = new BigInteger(1, getParam(EC_Consts.PARAMETER_R)[0]);
 
-        int h = Util.getShort(getParam(EC_Consts.PARAMETER_K)[0], 0);
+        int h = ByteUtil.getShort(getParam(EC_Consts.PARAMETER_K)[0], 0);
 
         return new ECParameterSpec(curve, generator, n, h);
     }
+
+    public static EC_Curve fromSpec(ECParameterSpec spec) {
+        EllipticCurve curve = spec.getCurve();
+        ECField field = curve.getField();
+
+        short bits = (short) field.getFieldSize();
+        byte[][] params;
+        int paramIndex = 0;
+        byte fieldType;
+        if (field instanceof ECFieldFp) {
+            ECFieldFp primeField = (ECFieldFp) field;
+            params = new byte[5][];
+            params[paramIndex++] = primeField.getP().toByteArray();
+            fieldType = KeyPair.ALG_EC_FP;
+        } else if (field instanceof ECFieldF2m) {
+            ECFieldF2m binaryField = (ECFieldF2m) field;
+            params = new byte[8][];
+            params[paramIndex] = new byte[2];
+            ByteUtil.setShort(params[paramIndex++], 0, (short) binaryField.getM());
+            int[] powers = binaryField.getMidTermsOfReductionPolynomial();
+            for (int i = 0; i < 3; ++i) {
+                params[paramIndex] = new byte[2];
+                ByteUtil.setShort(params[paramIndex++], 0, (short) powers[i]);
+            }
+            fieldType = KeyPair.ALG_EC_F2M;
+        } else {
+            throw new IllegalArgumentException("ECParameterSpec with an unknnown field.");
+        }
+
+        ECPoint generator = spec.getGenerator();
+
+        params[paramIndex++] = generator.getAffineX().toByteArray();
+        params[paramIndex++] = generator.getAffineY().toByteArray();
+
+        params[paramIndex++] = spec.getOrder().toByteArray();
+        params[paramIndex] = new byte[2];
+        ByteUtil.setShort(params[paramIndex], 0, (short) spec.getCofactor());
+
+        EC_Curve result = new EC_Curve(bits, fieldType);
+        result.readByteArray(params);
+        return result;
+    }
 }
diff --git a/src/cz/crcs/ectester/common/ec/EC_Data.java b/src/cz/crcs/ectester/common/ec/EC_Data.java
index acd282a..c048ef7 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Data.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Data.java
@@ -1,6 +1,6 @@
 package cz.crcs.ectester.common.ec;
 
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 
 import java.io.*;
 import java.util.*;
@@ -8,9 +8,10 @@ import java.util.regex.Pattern;
 
 /**
  * A list of byte arrays for holding EC data.
- *
+ * <p>
  * The data can be read from a byte array via <code>readBytes()</code>, from a CSV via <code>readCSV()</code>.
  * The data can be exported to a byte array via <code>flatten()</code> or to a string array via <code>expand()</code>.
+ *
  * @author Jan Jancar johny@neuromancer.sk
  */
 public abstract class EC_Data {
@@ -67,7 +68,7 @@ public abstract class EC_Data {
         ByteArrayOutputStream out = new ByteArrayOutputStream();
         for (byte[] param : data) {
             byte[] length = new byte[2];
-            Util.setShort(length, 0, (short) param.length);
+            ByteUtil.setShort(length, 0, (short) param.length);
 
             out.write(length, 0, 2);
             out.write(param, 0, param.length);
@@ -79,7 +80,7 @@ public abstract class EC_Data {
     public String[] expand() {
         List<String> out = new ArrayList<>(count);
         for (byte[] param : data) {
-            out.add(Util.bytesToHex(param, false));
+            out.add(ByteUtil.bytesToHex(param, false));
         }
 
         return out.toArray(new String[out.size()]);
@@ -97,9 +98,9 @@ public abstract class EC_Data {
     private static byte[] parse(String param) {
         byte[] data;
         if (param.startsWith("0x") || param.startsWith("0X")) {
-            data = Util.hexToBytes(param.substring(2));
+            data = ByteUtil.hexToBytes(param.substring(2));
         } else {
-            data = Util.hexToBytes(param);
+            data = ByteUtil.hexToBytes(param);
         }
         if (data == null)
             return new byte[0];
@@ -141,12 +142,16 @@ public abstract class EC_Data {
     }
 
     public boolean readBytes(byte[] bytes) {
+        if (bytes == null) {
+            return false;
+        }
+
         int offset = 0;
         for (int i = 0; i < count; i++) {
             if (bytes.length - offset < 2) {
                 return false;
             }
-            short paramLength = Util.getShort(bytes, offset);
+            short paramLength = ByteUtil.getShort(bytes, offset);
             offset += 2;
             if (bytes.length < offset + paramLength) {
                 return false;
@@ -158,6 +163,18 @@ public abstract class EC_Data {
         return true;
     }
 
+    public boolean readByteArray(byte[][] bytes) {
+        if (bytes == null || count != bytes.length) {
+            return false;
+        }
+
+        for (int i = 0; i < count; ++i) {
+            data[i] = new byte[bytes[i].length];
+            System.arraycopy(bytes[i], 0, data[i], 0, bytes[i].length);
+        }
+        return true;
+    }
+
     public void writeCSV(OutputStream out) throws IOException {
         Writer w = new OutputStreamWriter(out);
         w.write(String.join(",", expand()));
diff --git a/src/cz/crcs/ectester/common/ec/EC_KAResult.java b/src/cz/crcs/ectester/common/ec/EC_KAResult.java
index 3b74c57..a7b3cd5 100644
--- a/src/cz/crcs/ectester/common/ec/EC_KAResult.java
+++ b/src/cz/crcs/ectester/common/ec/EC_KAResult.java
@@ -1,6 +1,6 @@
 package cz.crcs.ectester.common.ec;
 
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.CardUtil;
 
 /**
  * A result of EC based Key agreement operation.
@@ -56,7 +56,7 @@ public class EC_KAResult extends EC_Data {
 
     @Override
     public String toString() {
-        String algo = Util.getKA(ka);
+        String algo = CardUtil.getKA(ka);
         return "<" + getId() + "> " + algo + " result over " + curve + ", " + oneKey + " + " + otherKey + (desc == null ? "" : ": " + desc);
     }
 
diff --git a/src/cz/crcs/ectester/common/ec/EC_Params.java b/src/cz/crcs/ectester/common/ec/EC_Params.java
index 3fada93..1c066e7 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Params.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Params.java
@@ -1,7 +1,7 @@
 package cz.crcs.ectester.common.ec;
 
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 
 import java.io.ByteArrayOutputStream;
 import java.util.ArrayList;
@@ -125,12 +125,12 @@ public class EC_Params extends EC_Data {
                 byte[] param = data[i];
                 if (masked == EC_Consts.PARAMETER_F2M) {
                     //add m, e_1, e_2, e_3
-                    param = Util.concatenate(param, data[i + 1]);
-                    if (!Util.allValue(data[i + 2], (byte) 0)) {
-                        param = Util.concatenate(param, data[i + 2]);
+                    param = ByteUtil.concatenate(param, data[i + 1]);
+                    if (!ByteUtil.allValue(data[i + 2], (byte) 0)) {
+                        param = ByteUtil.concatenate(param, data[i + 2]);
                     }
-                    if (!Util.allValue(data[i + 3], (byte) 0)) {
-                        param = Util.concatenate(param, data[i + 3]);
+                    if (!ByteUtil.allValue(data[i + 3], (byte) 0)) {
+                        param = ByteUtil.concatenate(param, data[i + 3]);
                     }
                     if (!(param.length == 4 || param.length == 8))
                         throw new RuntimeException("PARAMETER_F2M length is not 8.(should be)");
@@ -138,14 +138,14 @@ public class EC_Params extends EC_Data {
                 if (masked == EC_Consts.PARAMETER_G || masked == EC_Consts.PARAMETER_W) {
                     //read another param (the y coord) and put into X962 format.
                     byte[] y = data[i + 1];
-                    param = Util.concatenate(new byte[]{4}, param, y); //<- ugly but works!
+                    param = ByteUtil.concatenate(new byte[]{4}, param, y); //<- ugly but works!
                 }
                 if (param.length == 0)
                     throw new RuntimeException("Empty parameter read?");
 
                 //write length
                 byte[] length = new byte[2];
-                Util.setShort(length, 0, (short) param.length);
+                ByteUtil.setShort(length, 0, (short) param.length);
                 out.write(length, 0, 2);
                 //write data
                 out.write(param, 0, param.length);
@@ -175,15 +175,15 @@ public class EC_Params extends EC_Data {
                 byte[] param = data[index];
                 if (masked == EC_Consts.PARAMETER_F2M) {
                     for (int i = 0; i < 4; ++i) {
-                        out.add(Util.bytesToHex(data[index + i], false));
+                        out.add(ByteUtil.bytesToHex(data[index + i], false));
                     }
                     index += 4;
                 } else if (masked == EC_Consts.PARAMETER_G || masked == EC_Consts.PARAMETER_W) {
-                    out.add(Util.bytesToHex(param, false));
-                    out.add(Util.bytesToHex(data[index + 1], false));
+                    out.add(ByteUtil.bytesToHex(param, false));
+                    out.add(ByteUtil.bytesToHex(data[index + 1], false));
                     index += 2;
                 } else {
-                    out.add(Util.bytesToHex(param, false));
+                    out.add(ByteUtil.bytesToHex(param, false));
                     index++;
                 }
             }
diff --git a/src/cz/crcs/ectester/common/util/ByteUtil.java b/src/cz/crcs/ectester/common/util/ByteUtil.java
new file mode 100644
index 0000000..939e487
--- /dev/null
+++ b/src/cz/crcs/ectester/common/util/ByteUtil.java
@@ -0,0 +1,122 @@
+package cz.crcs.ectester.common.util;
+
+/**
+ * Utility class, some byte/hex manipulation, convenient byte[] methods.
+ *
+ * @author Petr Svenda petr@svenda.com
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class ByteUtil {
+    public static short getShort(byte[] array, int offset) {
+        return (short) (((array[offset] & 0xFF) << 8) | (array[offset + 1] & 0xFF));
+    }
+
+    public static void setShort(byte[] array, int offset, short value) {
+        array[offset + 1] = (byte) (value & 0xFF);
+        array[offset] = (byte) ((value >> 8) & 0xFF);
+    }
+
+    public static int diffBytes(byte[] one, int oneOffset, byte[] other, int otherOffset, int length) {
+        for (int i = 0; i < length; ++i) {
+            byte a = one[i + oneOffset];
+            byte b = other[i + otherOffset];
+            if (a != b) {
+                return i;
+            }
+        }
+        return length;
+    }
+
+    public static boolean compareBytes(byte[] one, int oneOffset, byte[] other, int otherOffset, int length) {
+        return diffBytes(one, oneOffset, other, otherOffset, length) == length;
+    }
+
+    public static boolean allValue(byte[] array, byte value) {
+        for (byte a : array) {
+            if (a != value)
+                return false;
+        }
+        return true;
+    }
+
+    public static byte[] hexToBytes(String hex) {
+        return hexToBytes(hex, true);
+    }
+
+    public static byte[] hexToBytes(String hex, boolean bigEndian) {
+        hex = hex.replace(" ", "");
+        int len = hex.length();
+        StringBuilder sb = new StringBuilder();
+
+        if (len % 2 == 1) {
+            sb.append("0");
+            ++len;
+        }
+
+        if (bigEndian) {
+            sb.append(hex);
+        } else {
+            for (int i = 0; i < len / 2; ++i) {
+                if (sb.length() >= 2) {
+                    sb.insert(sb.length() - 2, hex.substring(2 * i, 2 * i + 2));
+                } else {
+                    sb.append(hex.substring(2 * i, 2 * i + 2));
+                }
+
+            }
+        }
+
+        String data = sb.toString();
+        byte[] result = new byte[len / 2];
+        for (int i = 0; i < len; i += 2) {
+            result[i / 2] = (byte) ((Character.digit(data.charAt(i), 16) << 4)
+                    + (Character.digit(data.charAt(i + 1), 16)));
+        }
+        return result;
+    }
+
+    public static String byteToHex(byte data) {
+        return String.format("%02x", data);
+    }
+
+    public static String bytesToHex(byte[] data) {
+        return bytesToHex(data, true);
+    }
+
+    public static String bytesToHex(byte[] data, boolean addSpace) {
+        return bytesToHex(data, 0, data.length, addSpace);
+    }
+
+    public static String bytesToHex(byte[] data, int offset, int len) {
+        return bytesToHex(data, offset, len, true);
+    }
+
+    public static String bytesToHex(byte[] data, int offset, int len, boolean addSpace) {
+        StringBuilder buf = new StringBuilder();
+        for (int i = offset; i < (offset + len); i++) {
+            buf.append(byteToHex(data[i]));
+            if (addSpace && i != (offset + len - 1)) {
+                buf.append(" ");
+            }
+        }
+        return (buf.toString());
+    }
+
+    public static byte[] concatenate(byte[]... arrays) {
+        int len = 0;
+        for (byte[] array : arrays) {
+            if (array == null)
+                continue;
+            len += array.length;
+        }
+        byte[] out = new byte[len];
+        int offset = 0;
+        for (byte[] array : arrays) {
+            if (array == null || array.length == 0)
+                continue;
+            System.arraycopy(array, 0, out, offset, array.length);
+            offset += array.length;
+        }
+        return out;
+    }
+}
diff --git a/src/cz/crcs/ectester/common/util/CardUtil.java b/src/cz/crcs/ectester/common/util/CardUtil.java
new file mode 100644
index 0000000..a94c773
--- /dev/null
+++ b/src/cz/crcs/ectester/common/util/CardUtil.java
@@ -0,0 +1,255 @@
+package cz.crcs.ectester.common.util;
+
+import cz.crcs.ectester.applet.ECTesterApplet;
+import cz.crcs.ectester.applet.EC_Consts;
+import javacard.framework.ISO7816;
+import javacard.security.CryptoException;
+
+import static cz.crcs.ectester.applet.ECTesterApplet.*;
+
+public class CardUtil {
+    public static String getSWSource(short sw) {
+        switch (sw) {
+            case ISO7816.SW_NO_ERROR:
+            case ISO7816.SW_APPLET_SELECT_FAILED:
+            case ISO7816.SW_BYTES_REMAINING_00:
+            case ISO7816.SW_CLA_NOT_SUPPORTED:
+            case ISO7816.SW_COMMAND_NOT_ALLOWED:
+            case ISO7816.SW_CONDITIONS_NOT_SATISFIED:
+            case ISO7816.SW_CORRECT_LENGTH_00:
+            case ISO7816.SW_DATA_INVALID:
+            case ISO7816.SW_FILE_FULL:
+            case ISO7816.SW_FILE_INVALID:
+            case ISO7816.SW_FILE_NOT_FOUND:
+            case ISO7816.SW_FUNC_NOT_SUPPORTED:
+            case ISO7816.SW_INCORRECT_P1P2:
+            case ISO7816.SW_INS_NOT_SUPPORTED:
+            case ISO7816.SW_LOGICAL_CHANNEL_NOT_SUPPORTED:
+            case ISO7816.SW_RECORD_NOT_FOUND:
+            case ISO7816.SW_SECURE_MESSAGING_NOT_SUPPORTED:
+            case ISO7816.SW_SECURITY_STATUS_NOT_SATISFIED:
+            case ISO7816.SW_UNKNOWN:
+            case ISO7816.SW_WARNING_STATE_UNCHANGED:
+            case ISO7816.SW_WRONG_DATA:
+            case ISO7816.SW_WRONG_LENGTH:
+            case ISO7816.SW_WRONG_P1P2:
+                return "ISO";
+            case CryptoException.ILLEGAL_VALUE:
+            case CryptoException.UNINITIALIZED_KEY:
+            case CryptoException.NO_SUCH_ALGORITHM:
+            case CryptoException.INVALID_INIT:
+            case CryptoException.ILLEGAL_USE:
+                return "CryptoException";
+            case ECTesterApplet.SW_SIG_VERIFY_FAIL:
+            case ECTesterApplet.SW_DH_DHC_MISMATCH:
+            case ECTesterApplet.SW_KEYPAIR_NULL:
+            case ECTesterApplet.SW_KA_NULL:
+            case ECTesterApplet.SW_SIGNATURE_NULL:
+            case ECTesterApplet.SW_OBJECT_NULL:
+                return "ECTesterApplet";
+            default:
+                return "?";
+        }
+    }
+
+    public static String getSW(short sw) {
+        String str;
+        switch (sw) {
+            case ISO7816.SW_APPLET_SELECT_FAILED:
+                str = "APPLET_SELECT_FAILED";
+                break;
+            case ISO7816.SW_BYTES_REMAINING_00:
+                str = "BYTES_REMAINING";
+                break;
+            case ISO7816.SW_CLA_NOT_SUPPORTED:
+                str = "CLA_NOT_SUPPORTED";
+                break;
+            case ISO7816.SW_COMMAND_NOT_ALLOWED:
+                str = "COMMAND_NOT_ALLOWED";
+                break;
+            case ISO7816.SW_CONDITIONS_NOT_SATISFIED:
+                str = "CONDITIONS_NOT_SATISFIED";
+                break;
+            case ISO7816.SW_CORRECT_LENGTH_00:
+                str = "CORRECT_LENGTH";
+                break;
+            case ISO7816.SW_DATA_INVALID:
+                str = "DATA_INVALID";
+                break;
+            case ISO7816.SW_FILE_FULL:
+                str = "FILE_FULL";
+                break;
+            case ISO7816.SW_FILE_INVALID:
+                str = "FILE_INVALID";
+                break;
+            case ISO7816.SW_FILE_NOT_FOUND:
+                str = "FILE_NOT_FOUND";
+                break;
+            case ISO7816.SW_FUNC_NOT_SUPPORTED:
+                str = "FUNC_NOT_SUPPORTED";
+                break;
+            case ISO7816.SW_INCORRECT_P1P2:
+                str = "INCORRECT_P1P2";
+                break;
+            case ISO7816.SW_INS_NOT_SUPPORTED:
+                str = "INS_NOT_SUPPORTED";
+                break;
+            case ISO7816.SW_LOGICAL_CHANNEL_NOT_SUPPORTED:
+                str = "LOGICAL_CHANNEL_NOT_SUPPORTED";
+                break;
+            case ISO7816.SW_RECORD_NOT_FOUND:
+                str = "RECORD_NOT_FOUND";
+                break;
+            case ISO7816.SW_SECURE_MESSAGING_NOT_SUPPORTED:
+                str = "SECURE_MESSAGING_NOT_SUPPORTED";
+                break;
+            case ISO7816.SW_SECURITY_STATUS_NOT_SATISFIED:
+                str = "SECURITY_STATUS_NOT_SATISFIED";
+                break;
+            case ISO7816.SW_UNKNOWN:
+                str = "UNKNOWN";
+                break;
+            case ISO7816.SW_WARNING_STATE_UNCHANGED:
+                str = "WARNING_STATE_UNCHANGED";
+                break;
+            case ISO7816.SW_WRONG_DATA:
+                str = "WRONG_DATA";
+                break;
+            case ISO7816.SW_WRONG_LENGTH:
+                str = "WRONG_LENGTH";
+                break;
+            case ISO7816.SW_WRONG_P1P2:
+                str = "WRONG_P1P2";
+                break;
+            case CryptoException.ILLEGAL_VALUE:
+                str = "ILLEGAL_VALUE";
+                break;
+            case CryptoException.UNINITIALIZED_KEY:
+                str = "UNINITIALIZED_KEY";
+                break;
+            case CryptoException.NO_SUCH_ALGORITHM:
+                str = "NO_SUCH_ALG";
+                break;
+            case CryptoException.INVALID_INIT:
+                str = "INVALID_INIT";
+                break;
+            case CryptoException.ILLEGAL_USE:
+                str = "ILLEGAL_USE";
+                break;
+            case ECTesterApplet.SW_SIG_VERIFY_FAIL:
+                str = "SIG_VERIFY_FAIL";
+                break;
+            case ECTesterApplet.SW_DH_DHC_MISMATCH:
+                str = "DH_DHC_MISMATCH";
+                break;
+            case ECTesterApplet.SW_KEYPAIR_NULL:
+                str = "KEYPAIR_NULL";
+                break;
+            case ECTesterApplet.SW_KA_NULL:
+                str = "KA_NULL";
+                break;
+            case ECTesterApplet.SW_SIGNATURE_NULL:
+                str = "SIGNATURE_NULL";
+                break;
+            case ECTesterApplet.SW_OBJECT_NULL:
+                str = "OBJECT_NULL";
+                break;
+            default:
+                str = "unknown";
+                break;
+        }
+        return str;
+    }
+
+    public static String getSWString(short sw) {
+        if (sw == ISO7816.SW_NO_ERROR) {
+            return "OK   (0x9000)";
+        } else {
+            String str = getSW(sw);
+            return String.format("fail (%s, 0x%04x)", str, sw);
+        }
+    }
+
+    public static String getCorruption(short corruptionType) {
+        String corrupt;
+        switch (corruptionType) {
+            case EC_Consts.CORRUPTION_NONE:
+                corrupt = "NONE";
+                break;
+            case EC_Consts.CORRUPTION_FIXED:
+                corrupt = "FIXED";
+                break;
+            case EC_Consts.CORRUPTION_ONE:
+                corrupt = "ONE";
+                break;
+            case EC_Consts.CORRUPTION_ZERO:
+                corrupt = "ZERO";
+                break;
+            case EC_Consts.CORRUPTION_ONEBYTERANDOM:
+                corrupt = "ONE_BYTE_RANDOM";
+                break;
+            case EC_Consts.CORRUPTION_FULLRANDOM:
+                corrupt = "FULL_RANDOM";
+                break;
+            case EC_Consts.CORRUPTION_INCREMENT:
+                corrupt = "INCREMENT";
+                break;
+            case EC_Consts.CORRUPTION_INFINITY:
+                corrupt = "INFINITY";
+                break;
+            case EC_Consts.CORRUPTION_COMPRESS:
+                corrupt = "COMPRESSED";
+                break;
+            case EC_Consts.CORRUPTION_MAX:
+                corrupt = "MAX";
+                break;
+            default:
+                corrupt = "unknown";
+                break;
+        }
+        return corrupt;
+    }
+
+    public static String getKA(byte ka) {
+        String algo = "";
+        if ((ka & EC_Consts.KA_ECDH) != 0 || ka == EC_Consts.KA_ANY) {
+            algo += "ECDH";
+        }
+        if (ka == EC_Consts.KA_BOTH) {
+            algo += "+";
+        } else if (ka == EC_Consts.KA_ANY) {
+            algo += "/";
+        }
+        if ((ka & EC_Consts.KA_ECDHC) != 0 || ka == EC_Consts.KA_ANY) {
+            algo += "ECDHC";
+        }
+        return algo;
+    }
+
+    public static String getKATypeString(byte kaType) {
+        String kaTypeString;
+        switch (kaType) {
+            case KeyAgreement_ALG_EC_SVDP_DH:
+                kaTypeString = "ALG_EC_SVDP_DH";
+                break;
+            case KeyAgreement_ALG_EC_SVDP_DH_PLAIN:
+                kaTypeString = "ALG_EC_SVDP_DH_PLAIN";
+                break;
+            case KeyAgreement_ALG_EC_PACE_GM:
+                kaTypeString = "ALG_EC_PACE_GM";
+                break;
+            case KeyAgreement_ALG_EC_SVDP_DH_PLAIN_XY:
+                kaTypeString = "ALG_EC_SVDP_DH_PLAIN_XY";
+                break;
+            case KeyAgreement_ALG_EC_SVDP_DHC:
+                kaTypeString = "ALG_EC_SVDP_DHC";
+                break;
+            case KeyAgreement_ALG_EC_SVDP_DHC_PLAIN:
+                kaTypeString = "ALG_EC_SVDP_DHC_PLAIN";
+                break;
+            default:
+                kaTypeString = "unknown";
+        }
+        return kaTypeString;
+    }
+}
diff --git a/src/cz/crcs/ectester/reader/CardMngr.java b/src/cz/crcs/ectester/reader/CardMngr.java
index ad5b368..cea46bc 100644
--- a/src/cz/crcs/ectester/reader/CardMngr.java
+++ b/src/cz/crcs/ectester/reader/CardMngr.java
@@ -2,7 +2,7 @@ package cz.crcs.ectester.reader;
 
 import com.licel.jcardsim.io.CAD;
 import com.licel.jcardsim.io.JavaxSmartCardInterface;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 import javacard.framework.AID;
 
 import javax.smartcardio.*;
@@ -80,7 +80,7 @@ public class CardMngr {
 
                 //reset the card
                 if (verbose)
-                    System.out.println(Util.bytesToHex(card.getATR().getBytes()));
+                    System.out.println(ByteUtil.bytesToHex(card.getATR().getBytes()));
 
                 cardFound = true;
             }
@@ -109,7 +109,7 @@ public class CardMngr {
                     try {
                         card = terminal.connect("*");
                         ATR atr = card.getATR();
-                        System.out.println(terminalIndex + " : " + terminal.getName() + " - " + Util.bytesToHex(atr.getBytes()));
+                        System.out.println(terminalIndex + " : " + terminal.getName() + " - " + ByteUtil.bytesToHex(atr.getBytes()));
                         terminalIndex++;
                     } catch (CardException ex) {
                         ex.printStackTrace(System.out);
@@ -227,7 +227,7 @@ public class CardMngr {
             System.out.println(">>>>");
             System.out.println(apdu);
 
-            System.out.println(Util.bytesToHex(apdu.getBytes()));
+            System.out.println(ByteUtil.bytesToHex(apdu.getBytes()));
         }
 
         long elapsed = -System.nanoTime();
@@ -238,7 +238,7 @@ public class CardMngr {
 
         if (verbose) {
             System.out.println(responseAPDU);
-            System.out.println(Util.bytesToHex(responseAPDU.getBytes()));
+            System.out.println(ByteUtil.bytesToHex(responseAPDU.getBytes()));
         }
 
         if (responseAPDU.getSW1() == (byte) 0x61) {
@@ -248,7 +248,7 @@ public class CardMngr {
 
             responseAPDU = channel.transmit(apduToSend);
             if (verbose)
-                System.out.println(Util.bytesToHex(responseAPDU.getBytes()));
+                System.out.println(ByteUtil.bytesToHex(responseAPDU.getBytes()));
         }
 
         if (verbose) {
@@ -277,7 +277,7 @@ public class CardMngr {
         if (verbose) {
             System.out.println(">>>>");
             System.out.println(apdu);
-            System.out.println(Util.bytesToHex(apdu.getBytes()));
+            System.out.println(ByteUtil.bytesToHex(apdu.getBytes()));
         }
 
         ResponseAPDU response = simulator.transmitCommand(apdu);
@@ -285,7 +285,7 @@ public class CardMngr {
 
         if (verbose) {
             System.out.println(response);
-            System.out.println(Util.bytesToHex(responseBytes));
+            System.out.println(ByteUtil.bytesToHex(responseBytes));
             System.out.println("<<<<");
         }
 
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index 2c57107..d32d9d8 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -24,10 +24,10 @@ package cz.crcs.ectester.reader;
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.cli.CLITools;
-import cz.crcs.ectester.common.Util;
 import cz.crcs.ectester.common.ec.EC_Params;
 import cz.crcs.ectester.common.output.OutputLogger;
 import cz.crcs.ectester.common.test.TestException;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.command.Command;
 import cz.crcs.ectester.reader.output.*;
@@ -385,8 +385,8 @@ public class ECTesterReader {
             }
             respWriter.outputResponse(response);
 
-            String pub = Util.bytesToHex(export.getParameter(ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.PARAMETER_W), false);
-            String priv = Util.bytesToHex(export.getParameter(ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.PARAMETER_S), false);
+            String pub = ByteUtil.bytesToHex(export.getParameter(ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.PARAMETER_W), false);
+            String priv = ByteUtil.bytesToHex(export.getParameter(ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.PARAMETER_S), false);
             String line = String.format("%d;%d;%s;%s\n", generated, elapsed / 1000000, pub, priv);
             keysFile.write(line);
             keysFile.flush();
@@ -507,7 +507,7 @@ public class ECTesterReader {
             }
 
             if (out != null) {
-                out.write(String.format("%d;%d;%s\n", done, perform.getDuration() / 1000000, Util.bytesToHex(perform.getSecret(), false)));
+                out.write(String.format("%d;%d;%s\n", done, perform.getDuration() / 1000000, ByteUtil.bytesToHex(perform.getSecret(), false)));
             }
 
             ++done;
@@ -584,7 +584,7 @@ public class ECTesterReader {
             }
 
             if (out != null) {
-                out.write(String.format("%d;%d;%s\n", done, perform.getDuration() / 1000000, Util.bytesToHex(perform.getSignature(), false)));
+                out.write(String.format("%d;%d;%s\n", done, perform.getDuration() / 1000000, ByteUtil.bytesToHex(perform.getSignature(), false)));
             }
 
             ++done;
diff --git a/src/cz/crcs/ectester/reader/command/Command.java b/src/cz/crcs/ectester/reader/command/Command.java
index 9d23322..b60db53 100644
--- a/src/cz/crcs/ectester/reader/command/Command.java
+++ b/src/cz/crcs/ectester/reader/command/Command.java
@@ -2,11 +2,11 @@ package cz.crcs.ectester.reader.command;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.response.Response;
-import cz.crcs.ectester.common.Util;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.common.ec.EC_Key;
 import cz.crcs.ectester.common.ec.EC_Keypair;
@@ -174,7 +174,7 @@ public abstract class Command {
             if (privkey == null) {
                 throw new IOException("Couldn't read the private key file correctly.");
             }
-            data = Util.concatenate(data, privkey);
+            data = ByteUtil.concatenate(data, privkey);
         }
         return new Command.Set(cardManager, keyPair, EC_Consts.CURVE_external, params, data);
     }
@@ -203,7 +203,7 @@ public abstract class Command {
             this.keyClass = keyClass;
 
             byte[] data = new byte[]{0, 0, keyClass};
-            Util.setShort(data, 0, keyLength);
+            ByteUtil.setShort(data, 0, keyLength);
             this.cmd = new CommandAPDU(ECTesterApplet.CLA_ECTESTERAPPLET, ECTesterApplet.INS_ALLOCATE, keyPair, 0x00, data);
         }
 
@@ -296,7 +296,7 @@ public abstract class Command {
 
             int len = external != null ? 2 + external.length : 2;
             byte[] data = new byte[len];
-            Util.setShort(data, 0, params);
+            ByteUtil.setShort(data, 0, params);
             if (external != null) {
                 System.arraycopy(external, 0, data, 2, external.length);
             }
@@ -337,7 +337,7 @@ public abstract class Command {
             this.corruption = corruption;
 
             byte[] data = new byte[3];
-            Util.setShort(data, 0, params);
+            ByteUtil.setShort(data, 0, params);
             data[2] = corruption;
 
             this.cmd = new CommandAPDU(ECTesterApplet.CLA_ECTESTERAPPLET, ECTesterApplet.INS_CORRUPT, keyPair, key, data);
@@ -403,7 +403,7 @@ public abstract class Command {
             this.params = params;
 
             byte[] data = new byte[2];
-            Util.setShort(data, 0, params);
+            ByteUtil.setShort(data, 0, params);
 
             this.cmd = new CommandAPDU(ECTesterApplet.CLA_ECTESTERAPPLET, ECTesterApplet.INS_EXPORT, keyPair, key, data);
         }
@@ -446,7 +446,7 @@ public abstract class Command {
             this.type = type;
 
             byte[] data = new byte[]{export, 0,0, type};
-            Util.setShort(data, 1, corruption);
+            ByteUtil.setShort(data, 1, corruption);
 
             this.cmd = new CommandAPDU(ECTesterApplet.CLA_ECTESTERAPPLET, ECTesterApplet.INS_ECDH, pubkey, privkey, data);
         }
@@ -489,7 +489,7 @@ public abstract class Command {
             this.pubkey = pubkey;
 
             byte[] data = new byte[3 + pubkey.length];
-            Util.setShort(data, 0, corruption);
+            ByteUtil.setShort(data, 0, corruption);
             data[2] = type;
             System.arraycopy(pubkey, 0, data, 3, pubkey.length);
 
@@ -526,7 +526,7 @@ public abstract class Command {
 
             int len = raw != null ? raw.length : 0;
             byte[] data = new byte[2 + len];
-            Util.setShort(data, 0, (short) len);
+            ByteUtil.setShort(data, 0, (short) len);
             if (raw != null) {
                 System.arraycopy(raw, 0, data, 2, len);
             }
diff --git a/src/cz/crcs/ectester/reader/output/ResponseWriter.java b/src/cz/crcs/ectester/reader/output/ResponseWriter.java
index 0f5b6e8..1dbfdfa 100644
--- a/src/cz/crcs/ectester/reader/output/ResponseWriter.java
+++ b/src/cz/crcs/ectester/reader/output/ResponseWriter.java
@@ -1,6 +1,6 @@
 package cz.crcs.ectester.reader.output;
 
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.CardUtil;
 import cz.crcs.ectester.reader.response.Response;
 
 import java.io.PrintStream;
@@ -20,11 +20,11 @@ public class ResponseWriter {
         for (int j = 0; j < r.getNumSW(); ++j) {
             short sw = r.getSW(j);
             if (sw != 0) {
-                suffix.append(" ").append(Util.getSWString(sw));
+                suffix.append(" ").append(CardUtil.getSWString(sw));
             }
         }
         if (suffix.length() == 0) {
-            suffix.append(" [").append(Util.getSW(r.getNaturalSW())).append("]");
+            suffix.append(" [").append(CardUtil.getSW(r.getNaturalSW())).append("]");
         }
         return String.format("%4d ms ┃ %s", r.getDuration() / 1000000, suffix);
     }
diff --git a/src/cz/crcs/ectester/reader/output/XMLTestWriter.java b/src/cz/crcs/ectester/reader/output/XMLTestWriter.java
index 0a5155b..ebc93ac 100644
--- a/src/cz/crcs/ectester/reader/output/XMLTestWriter.java
+++ b/src/cz/crcs/ectester/reader/output/XMLTestWriter.java
@@ -1,7 +1,7 @@
 package cz.crcs.ectester.reader.output;
 
 import cz.crcs.ectester.common.test.CompoundTest;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.reader.command.Command;
 import cz.crcs.ectester.reader.response.Response;
 import cz.crcs.ectester.common.test.Test;
@@ -51,7 +51,7 @@ public class XMLTestWriter implements TestWriter {
         Element commandElem = doc.createElement("command");
 
         Element apdu = doc.createElement("apdu");
-        apdu.setTextContent(Util.bytesToHex(c.getAPDU().getBytes()));
+        apdu.setTextContent(ByteUtil.bytesToHex(c.getAPDU().getBytes()));
         commandElem.appendChild(apdu);
 
         return commandElem;
@@ -62,7 +62,7 @@ public class XMLTestWriter implements TestWriter {
         responseElem.setAttribute("successful", r.successful() ? "true" : "false");
 
         Element apdu = doc.createElement("apdu");
-        apdu.setTextContent(Util.bytesToHex(r.getAPDU().getBytes()));
+        apdu.setTextContent(ByteUtil.bytesToHex(r.getAPDU().getBytes()));
         responseElem.appendChild(apdu);
 
         Element naturalSW = doc.createElement("natural-sw");
diff --git a/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java b/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
index 84f1eac..d8350ac 100644
--- a/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
+++ b/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
@@ -1,7 +1,7 @@
 package cz.crcs.ectester.reader.output;
 
 import cz.crcs.ectester.common.test.CompoundTest;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.reader.command.Command;
 import cz.crcs.ectester.reader.response.Response;
 import cz.crcs.ectester.common.test.Test;
@@ -44,14 +44,14 @@ public class YAMLTestWriter implements TestWriter {
 
     private Map<String, Object> commandObject(Command c) {
         Map<String, Object> commandObj = new HashMap<>();
-        commandObj.put("apdu", Util.bytesToHex(c.getAPDU().getBytes()));
+        commandObj.put("apdu", ByteUtil.bytesToHex(c.getAPDU().getBytes()));
         return commandObj;
     }
 
     private Map<String, Object> responseObject(Response r) {
         Map<String, Object> responseObj = new HashMap<>();
         responseObj.put("successful", r.successful());
-        responseObj.put("apdu", Util.bytesToHex(r.getAPDU().getBytes()));
+        responseObj.put("apdu", ByteUtil.bytesToHex(r.getAPDU().getBytes()));
         responseObj.put("natural_sw", Short.toUnsignedInt(r.getNaturalSW()));
         List<Integer> sws = new LinkedList<>();
         for (int i = 0; i < r.getNumSW(); ++i) {
diff --git a/src/cz/crcs/ectester/reader/response/Response.java b/src/cz/crcs/ectester/reader/response/Response.java
index 4158ac3..d8edf9e 100644
--- a/src/cz/crcs/ectester/reader/response/Response.java
+++ b/src/cz/crcs/ectester/reader/response/Response.java
@@ -2,7 +2,8 @@ package cz.crcs.ectester.reader.response;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.Util;
+import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.common.util.CardUtil;
 import javacard.framework.ISO7816;
 import javacard.security.KeyPair;
 
@@ -36,7 +37,7 @@ public abstract class Response {
         //parse SWs in response
         for (int i = 0; i < numSW; ++i) {
             if (getLength() >= (offset + 2)) {
-                short sw = Util.getShort(data, offset);
+                short sw = ByteUtil.getShort(data, offset);
                 offset += 2;
                 sws[i] = sw;
                 if (sw != ISO7816.SW_NO_ERROR) {
@@ -62,7 +63,7 @@ public abstract class Response {
                 error = true;
                 break;
             }
-            short paramLength = Util.getShort(data, offset);
+            short paramLength = ByteUtil.getShort(data, offset);
             offset += 2;
             if (data.length < offset + paramLength) {
                 error = true;
@@ -140,7 +141,7 @@ public abstract class Response {
 
         @Override
         public String getDescription() {
-            return String.format("Allocated KeyAgreement(%s) object", Util.getKATypeString(this.kaType));
+            return String.format("Allocated KeyAgreement(%s) object", CardUtil.getKATypeString(this.kaType));
         }
 
     }
@@ -289,7 +290,7 @@ public abstract class Response {
 
         @Override
         public String getDescription() {
-            String corrupt = Util.getCorruption(corruption);
+            String corrupt = CardUtil.getCorruption(corruption);
 
             String pair;
             if (keyPair == ECTesterApplet.KEYPAIR_BOTH) {
@@ -476,7 +477,7 @@ public abstract class Response {
 
         @Override
         public String getDescription() {
-            String algo = Util.getKA(type);
+            String algo = CardUtil.getKA(type);
 
             String pub = pubkey == ECTesterApplet.KEYPAIR_LOCAL ? "local" : "remote";
             String priv = privkey == ECTesterApplet.KEYPAIR_LOCAL ? "local" : "remote";
@@ -485,7 +486,7 @@ public abstract class Response {
             if (corruption == EC_Consts.CORRUPTION_NONE) {
                 validity = "unchanged";
             } else {
-                validity = Util.getCorruption(corruption);
+                validity = CardUtil.getCorruption(corruption);
             }
             return String.format("%s of %s pubkey and %s privkey(%s point)", algo, pub, priv, validity);
         }
diff --git a/src/cz/crcs/ectester/reader/test/TestVectorSuite.java b/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
index 77653d1..98172f3 100644
--- a/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
+++ b/src/cz/crcs/ectester/reader/test/TestVectorSuite.java
@@ -5,10 +5,10 @@ import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.test.CompoundTest;
 import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.common.test.Test;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
-import cz.crcs.ectester.common.Util;
 import cz.crcs.ectester.reader.command.Command;
 import cz.crcs.ectester.common.ec.*;
 import cz.crcs.ectester.reader.response.Response;
@@ -72,8 +72,8 @@ public class TestVectorSuite extends TestSuite {
                     return new Result(Value.FAILURE, "ECDH was unsuccessful.");
                 if (!dh.hasSecret())
                     return new Result(Value.FAILURE, "ECDH response did not contain the derived secret.");
-                if (!Util.compareBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength())) {
-                    int firstDiff = Util.diffBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength());
+                if (!ByteUtil.compareBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength())) {
+                    int firstDiff = ByteUtil.diffBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength());
                     return new Result(Value.FAILURE, "ECDH derived secret does not match the test, first difference was at byte " + String.valueOf(firstDiff) + ".");
                 }
                 return new Result(Value.SUCCESS);
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 049626e..9f100d0 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -2,6 +2,7 @@ package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
@@ -21,6 +22,7 @@ import java.security.KeyPair;
 import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
 import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.ECPublicKey;
 import java.security.spec.ECParameterSpec;
 import java.util.*;
 import java.util.stream.Collectors;
@@ -49,12 +51,12 @@ public class ECTesterStandalone {
         try {
             cli = parseArgs(args);
 
-            if (cli.hasOption("help") || cli.getNext() == null) {
-                CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, optParser, CLI_FOOTER, true);
-                return;
-            } else if (cli.hasOption("version")) {
+            if (cli.hasOption("version")) {
                 CLITools.version(DESCRIPTION, LICENSE);
                 return;
+            } else if (cli.hasOption("help") || cli.getNext() == null) {
+                CLITools.help("ECTesterStandalone.jar", CLI_HEADER, opts, optParser, CLI_FOOTER, true);
+                return;
             }
 
 
@@ -209,12 +211,19 @@ public class ECTesterStandalone {
                     }
                     kpg.initialize(curve.toSpec());
                 }
+                System.out.println("index;time;pubW;privS");
 
                 int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
                 for (int i = 0; i < amount; ++i) {
+                    long elapsed = -System.nanoTime();
                     KeyPair kp = kpg.genKeyPair();
+                    elapsed += System.nanoTime();
+                    ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
                     ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
-                    System.out.println(privateKey);
+
+                    String pub = ByteUtil.bytesToHex(publicKey.getEncoded(), false);
+                    String priv = ByteUtil.bytesToHex(privateKey.getEncoded(), false);
+                    System.out.println(String.format("%d;%d;%s;%s", i, elapsed / 1000000, pub, priv));
                 }
             }
         }
@@ -253,6 +262,8 @@ public class ECTesterStandalone {
                 ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
                 ECParameterSpec params = privateKey.getParams();
                 System.out.println(params);
+                EC_Curve curve = EC_Curve.fromSpec(params);
+                System.out.println(curve);
             }
         }
     }
diff --git a/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java b/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
index 8ad425b..381ce70 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyGenerationTestable.java
@@ -12,12 +12,16 @@ public class KeyGenerationTestable implements Testable {
 
     private KeyPair kp;
     private KeyPairGenerator kpg;
-    private int keysize;
-    private ECParameterSpec spec;
+    private int keysize = 0;
+    private ECParameterSpec spec = null;
     private boolean hasRun;
     private boolean error = false;
     private boolean ok;
 
+    public KeyGenerationTestable(KeyPairGenerator kpg) {
+        this.kpg = kpg;
+    }
+
     public KeyGenerationTestable(KeyPairGenerator kpg, int keysize) {
         this.kpg = kpg;
         this.keysize = keysize;
@@ -42,7 +46,7 @@ public class KeyGenerationTestable implements Testable {
         try {
             if (spec != null) {
                 kpg.initialize(spec);
-            } else {
+            } else if (keysize != 0) {
                 kpg.initialize(keysize);
             }
         } catch (InvalidAlgorithmParameterException e) {
-- 
cgit v1.2.3-70-g09d2


From 7737039d8c1ad743ed1f5dc5e40224e297acd08d Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sun, 26 Nov 2017 23:50:00 +0100
Subject: Export generated keys in ANSI X9.62 uncompressed format.

---
 src/cz/crcs/ectester/common/util/CardUtil.java     |  4 +++
 src/cz/crcs/ectester/common/util/ECUtil.java       | 37 ++++++++++++++++++++++
 .../ectester/standalone/ECTesterStandalone.java    |  5 +--
 3 files changed, 44 insertions(+), 2 deletions(-)
 create mode 100644 src/cz/crcs/ectester/common/util/ECUtil.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/util/CardUtil.java b/src/cz/crcs/ectester/common/util/CardUtil.java
index a94c773..edcb510 100644
--- a/src/cz/crcs/ectester/common/util/CardUtil.java
+++ b/src/cz/crcs/ectester/common/util/CardUtil.java
@@ -7,6 +7,10 @@ import javacard.security.CryptoException;
 
 import static cz.crcs.ectester.applet.ECTesterApplet.*;
 
+/**
+ * @author Petr Svenda petr@svenda.com
+ * @author Jan Jancar johny@neuromancer.sk
+ */
 public class CardUtil {
     public static String getSWSource(short sw) {
         switch (sw) {
diff --git a/src/cz/crcs/ectester/common/util/ECUtil.java b/src/cz/crcs/ectester/common/util/ECUtil.java
new file mode 100644
index 0000000..713effe
--- /dev/null
+++ b/src/cz/crcs/ectester/common/util/ECUtil.java
@@ -0,0 +1,37 @@
+package cz.crcs.ectester.common.util;
+
+import java.math.BigInteger;
+import java.security.spec.ECPoint;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class ECUtil {
+    public static byte[] toX962Compressed(ECPoint point) {
+        if (point.equals(ECPoint.POINT_INFINITY)) {
+            return new byte[]{0};
+        }
+        byte[] x = point.getAffineX().toByteArray();
+        byte marker = (byte) (0x02 | point.getAffineY().mod(BigInteger.valueOf(2)).byteValue());
+        return ByteUtil.concatenate(new byte[]{marker}, x);
+    }
+
+    public static byte[] toX962Uncompressed(ECPoint point) {
+        if (point.equals(ECPoint.POINT_INFINITY)) {
+            return new byte[]{0};
+        }
+        byte[] x = point.getAffineX().toByteArray();
+        byte[] y = point.getAffineY().toByteArray();
+        return ByteUtil.concatenate(new byte[]{0x04}, x, y);
+    }
+
+    public static byte[] toX962Hybrid(ECPoint point) {
+        if (point.equals(ECPoint.POINT_INFINITY)) {
+            return new byte[]{0};
+        }
+        byte[] x = point.getAffineX().toByteArray();
+        byte[] y = point.getAffineY().toByteArray();
+        byte marker = (byte) (0x06 | point.getAffineY().mod(BigInteger.valueOf(2)).byteValue());
+        return ByteUtil.concatenate(new byte[]{marker}, x, y);
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 9f100d0..af01a46 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -3,6 +3,7 @@ package cz.crcs.ectester.standalone;
 import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.common.util.ECUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
@@ -221,8 +222,8 @@ public class ECTesterStandalone {
                     ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
                     ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
 
-                    String pub = ByteUtil.bytesToHex(publicKey.getEncoded(), false);
-                    String priv = ByteUtil.bytesToHex(privateKey.getEncoded(), false);
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW()), false);
+                    String priv = ByteUtil.bytesToHex(privateKey.getS().toByteArray(), false);
                     System.out.println(String.format("%d;%d;%s;%s", i, elapsed / 1000000, pub, priv));
                 }
             }
-- 
cgit v1.2.3-70-g09d2


From 6841b6bbbbbed114cd4f5444d10181439cadba8e Mon Sep 17 00:00:00 2001
From: J08nY
Date: Mon, 27 Nov 2017 00:09:05 +0100
Subject: Export default lib curves in CSV.

---
 src/cz/crcs/ectester/common/ec/EC_Curve.java            | 9 ++++++---
 src/cz/crcs/ectester/standalone/ECTesterStandalone.java | 4 ++--
 2 files changed, 8 insertions(+), 5 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/ec/EC_Curve.java b/src/cz/crcs/ectester/common/ec/EC_Curve.java
index 19228dc..173fd29 100644
--- a/src/cz/crcs/ectester/common/ec/EC_Curve.java
+++ b/src/cz/crcs/ectester/common/ec/EC_Curve.java
@@ -95,12 +95,12 @@ public class EC_Curve extends EC_Params {
         byte fieldType;
         if (field instanceof ECFieldFp) {
             ECFieldFp primeField = (ECFieldFp) field;
-            params = new byte[5][];
+            params = new byte[7][];
             params[paramIndex++] = primeField.getP().toByteArray();
             fieldType = KeyPair.ALG_EC_FP;
         } else if (field instanceof ECFieldF2m) {
             ECFieldF2m binaryField = (ECFieldF2m) field;
-            params = new byte[8][];
+            params = new byte[10][];
             params[paramIndex] = new byte[2];
             ByteUtil.setShort(params[paramIndex++], 0, (short) binaryField.getM());
             int[] powers = binaryField.getMidTermsOfReductionPolynomial();
@@ -110,11 +110,14 @@ public class EC_Curve extends EC_Params {
             }
             fieldType = KeyPair.ALG_EC_F2M;
         } else {
-            throw new IllegalArgumentException("ECParameterSpec with an unknnown field.");
+            throw new IllegalArgumentException("ECParameterSpec with an unknown field.");
         }
 
         ECPoint generator = spec.getGenerator();
 
+        params[paramIndex++] = curve.getA().toByteArray();
+        params[paramIndex++] = curve.getB().toByteArray();
+
         params[paramIndex++] = generator.getAffineX().toByteArray();
         params[paramIndex++] = generator.getAffineY().toByteArray();
 
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index af01a46..76b98ce 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -240,7 +240,7 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void export() throws NoSuchAlgorithmException {
+    private void export() throws NoSuchAlgorithmException, IOException {
         if (cfg.selected instanceof JavaECLibrary) {
             JavaECLibrary jlib = (JavaECLibrary) cfg.selected;
             KeyPairGeneratorIdent ident = null;
@@ -264,7 +264,7 @@ public class ECTesterStandalone {
                 ECParameterSpec params = privateKey.getParams();
                 System.out.println(params);
                 EC_Curve curve = EC_Curve.fromSpec(params);
-                System.out.println(curve);
+                curve.writeCSV(System.out);
             }
         }
     }
-- 
cgit v1.2.3-70-g09d2


From 9bce1e13ec136c06650868acf3438e789e366d5f Mon Sep 17 00:00:00 2001
From: J08nY
Date: Mon, 27 Nov 2017 23:19:48 +0100
Subject: Add a basic NativeECLibrary interface.

---
 build-standalone.xml                               |   5 +
 nbproject/reader/project.properties                |   2 +-
 nbproject/standalone/project.properties            |   2 +-
 .../ectester/standalone/ECTesterStandalone.java    |  10 +-
 .../ectester/standalone/libs/BouncyCastleLib.java  |   2 +-
 .../crcs/ectester/standalone/libs/CECLibrary.java  |  31 -----
 .../ectester/standalone/libs/JavaECLibrary.java    |  86 --------------
 .../ectester/standalone/libs/NativeECLibrary.java  | 131 +++++++++++++++++++++
 .../standalone/libs/ProviderECLibrary.java         |  90 ++++++++++++++
 src/cz/crcs/ectester/standalone/libs/SunECLib.java |   2 +-
 .../crcs/ectester/standalone/libs/TomcryptLib.java |  16 +++
 src/cz/crcs/ectester/standalone/libs/native.h      |  21 ++++
 12 files changed, 272 insertions(+), 126 deletions(-)
 delete mode 100644 src/cz/crcs/ectester/standalone/libs/CECLibrary.java
 delete mode 100644 src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/native.h

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/build-standalone.xml b/build-standalone.xml
index 0ba7f93..05dc174 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -75,4 +75,9 @@
         <property name="store.jar.name" value="ECTesterStandalone-dist"/>
         <antcall target="dist-build.package"/>
     </target>
+    <target name="headers" depends="compile">
+        <javah classpath="${build.classes.dir}" outputfile="src/cz/crcs/ectester/standalone/libs/native.h">
+            <class name="cz.crcs.ectester.standalone.libs.TomcryptLib"/>
+        </javah>
+    </target>
 </project>
diff --git a/nbproject/reader/project.properties b/nbproject/reader/project.properties
index 6cd1760..ac98170 100644
--- a/nbproject/reader/project.properties
+++ b/nbproject/reader/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterReader
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/nbproject/standalone/project.properties b/nbproject/standalone/project.properties
index 367ec51..868bcfa 100644
--- a/nbproject/standalone/project.properties
+++ b/nbproject/standalone/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterStandalone
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 76b98ce..e36ffcd 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -10,7 +10,7 @@ import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
 import cz.crcs.ectester.standalone.libs.ECLibrary;
-import cz.crcs.ectester.standalone.libs.JavaECLibrary;
+import cz.crcs.ectester.standalone.libs.ProviderECLibrary;
 import cz.crcs.ectester.standalone.libs.SunECLib;
 import org.apache.commons.cli.DefaultParser;
 import org.apache.commons.cli.Option;
@@ -186,8 +186,8 @@ public class ECTesterStandalone {
      *
      */
     private void generate() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException {
-        if (cfg.selected instanceof JavaECLibrary) {
-            JavaECLibrary jlib = (JavaECLibrary) cfg.selected;
+        if (cfg.selected instanceof ProviderECLibrary) {
+            ProviderECLibrary jlib = (ProviderECLibrary) cfg.selected;
             KeyPairGeneratorIdent ident = null;
             String algo = cli.getOptionValue("generate.type", "EC");
             for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
@@ -241,8 +241,8 @@ public class ECTesterStandalone {
      *
      */
     private void export() throws NoSuchAlgorithmException, IOException {
-        if (cfg.selected instanceof JavaECLibrary) {
-            JavaECLibrary jlib = (JavaECLibrary) cfg.selected;
+        if (cfg.selected instanceof ProviderECLibrary) {
+            ProviderECLibrary jlib = (ProviderECLibrary) cfg.selected;
             KeyPairGeneratorIdent ident = null;
             String algo = cli.getOptionValue("export.type", "EC");
             for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
diff --git a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
index 73cd197..aaf76be 100644
--- a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
@@ -5,7 +5,7 @@ import org.bouncycastle.jce.provider.BouncyCastleProvider;
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
-public class BouncyCastleLib extends JavaECLibrary {
+public class BouncyCastleLib extends ProviderECLibrary {
 
     public BouncyCastleLib() {
         super(new BouncyCastleProvider());
diff --git a/src/cz/crcs/ectester/standalone/libs/CECLibrary.java b/src/cz/crcs/ectester/standalone/libs/CECLibrary.java
deleted file mode 100644
index 82a4555..0000000
--- a/src/cz/crcs/ectester/standalone/libs/CECLibrary.java
+++ /dev/null
@@ -1,31 +0,0 @@
-package cz.crcs.ectester.standalone.libs;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public abstract class CECLibrary implements ECLibrary {
-
-    private String resourcePath;
-    private String libname;
-
-    public CECLibrary(String resourcePath, String libname) {
-        this.resourcePath = resourcePath;
-        this.libname = libname;
-    }
-
-    @Override
-    public boolean initialize() {
-        // load the library here.
-        return false;
-    }
-
-    @Override
-    public String name() {
-        return libname;
-    }
-
-    @Override
-    public String toString() {
-        return name();
-    }
-}
diff --git a/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java b/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
deleted file mode 100644
index 5689b2b..0000000
--- a/src/cz/crcs/ectester/standalone/libs/JavaECLibrary.java
+++ /dev/null
@@ -1,86 +0,0 @@
-package cz.crcs.ectester.standalone.libs;
-
-import cz.crcs.ectester.standalone.consts.Ident;
-import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
-import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
-import cz.crcs.ectester.standalone.consts.SignatureIdent;
-
-import java.security.Provider;
-import java.security.Security;
-import java.util.HashSet;
-import java.util.Set;
-import java.util.function.Function;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public abstract class JavaECLibrary implements ECLibrary {
-    private Provider provider;
-    private boolean initialized;
-
-    public JavaECLibrary(Provider provider) {
-        this.provider = provider;
-        this.initialized = false;
-    }
-
-    @Override
-    public boolean initialize() {
-        try {
-            int result = Security.addProvider(provider);
-            if (result == -1) {
-                provider = Security.getProvider(provider.getName());
-            }
-            initialized = true;
-        } catch (NullPointerException | SecurityException ignored) {
-            initialized = false;
-        }
-        return initialized;
-    }
-
-    @Override
-    public boolean isInitialized() {
-        return initialized;
-    }
-
-    private <T extends Ident> Set<T> getIdents(String type, Function<String, T> getter) {
-        Set<T> results = new HashSet<>();
-        for (Provider.Service service : provider.getServices()) {
-            if (service.getType().equals(type)) {
-                T id = getter.apply(service.getAlgorithm());
-                if (id != null) {
-                    results.add(id);
-                }
-            }
-        }
-        return results;
-    }
-
-    @Override
-    public Set<KeyAgreementIdent> getECKAs() {
-        return getIdents("KeyAgreement", KeyAgreementIdent::get);
-    }
-
-    @Override
-    public Set<SignatureIdent> getECSigs() {
-        return getIdents("Signature", SignatureIdent::get);
-    }
-
-    @Override
-    public Set<KeyPairGeneratorIdent> getKPGs() {
-        return getIdents("KeyPairGenerator", KeyPairGeneratorIdent::get);
-    }
-
-    @Override
-    public String name() {
-        return provider.getInfo();
-    }
-
-    public Provider getProvider() {
-        return provider;
-    }
-
-    @Override
-    public String toString() {
-        return name();
-    }
-}
diff --git a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
new file mode 100644
index 0000000..40691e6
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
@@ -0,0 +1,131 @@
+package cz.crcs.ectester.standalone.libs;
+
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
+
+import java.io.File;
+import java.io.IOException;
+import java.net.URL;
+import java.net.URLConnection;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.nio.file.Paths;
+import java.nio.file.StandardCopyOption;
+import java.security.Provider;
+import java.util.Collections;
+import java.util.Set;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeECLibrary implements ECLibrary {
+    private ProviderECLibrary loaded;
+    private String resource;
+    private String libname;
+
+    public NativeECLibrary(String resource, String libname) {
+        this.resource = resource;
+        this.libname = libname;
+    }
+
+    @Override
+    public boolean initialize() {
+        try {
+            String suffix;
+            Path appData;
+            if (System.getProperty("os.name").startsWith("Windows")) {
+                suffix = "dll";
+                appData = Paths.get(System.getenv("AppData"));
+            } else {
+                suffix = "so";
+                if (System.getProperty("os.name").startsWith("Linux")) {
+                    appData = Paths.get(System.getenv("XDG_DATA_HOME"));
+                    if (appData == null) {
+                        appData = Paths.get(System.getProperty("user.home"), ".local", "share");
+                    }
+                } else {
+                    appData = Paths.get(System.getProperty("user.home"), ".local", "share");
+                }
+            }
+            Path libDir = appData.resolve("ECTesterStandalone");
+            File libDirFile = libDir.toFile();
+            Path libPath = libDir.resolve(libname + "." + suffix);
+            File libFile = libPath.toFile();
+
+            URL jarURL = NativeECLibrary.class.getResource("/cz/crcs/ectester/standalone/libs/" + resource + "." + suffix);
+            if (jarURL == null) {
+                return false;
+            }
+            URLConnection jarConnection = jarURL.openConnection();
+
+            boolean write = false;
+            if (libDirFile.isDirectory() && libFile.isFile()) {
+                long jarModified = jarConnection.getLastModified();
+
+                long libModified = Files.getLastModifiedTime(libPath).toMillis();
+                if (jarModified > libModified) {
+                    write = true;
+                }
+            } else {
+                libDir.toFile().mkdirs();
+                libFile.createNewFile();
+                write = true;
+            }
+
+            if (write) {
+                Files.copy(jarConnection.getInputStream(), libPath, StandardCopyOption.REPLACE_EXISTING);
+            }
+            jarConnection.getInputStream().close();
+
+            System.load(libPath.toString());
+
+            loaded = new ProviderECLibrary(getProvider());
+            return true;
+        } catch (IOException ignored) {
+
+        }
+        return false;
+    }
+
+    public abstract Provider getProvider();
+
+    @Override
+    public boolean isInitialized() {
+        return loaded != null && loaded.isInitialized();
+    }
+
+    @Override
+    public Set<KeyAgreementIdent> getECKAs() {
+        if (!isInitialized()) {
+            return Collections.emptySet();
+        }
+        return loaded.getECKAs();
+    }
+
+    @Override
+    public Set<SignatureIdent> getECSigs() {
+        if (!isInitialized()) {
+            return Collections.emptySet();
+        }
+        return loaded.getECSigs();
+    }
+
+    @Override
+    public Set<KeyPairGeneratorIdent> getKPGs() {
+        if (!isInitialized()) {
+            return Collections.emptySet();
+        }
+        return loaded.getKPGs();
+    }
+
+    @Override
+    public String name() {
+        return loaded.name();
+    }
+
+    @Override
+    public String toString() {
+        return name();
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
new file mode 100644
index 0000000..879cc16
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
@@ -0,0 +1,90 @@
+package cz.crcs.ectester.standalone.libs;
+
+import cz.crcs.ectester.standalone.consts.Ident;
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
+
+import java.security.Provider;
+import java.security.Security;
+import java.util.HashSet;
+import java.util.Set;
+import java.util.function.Function;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class ProviderECLibrary implements ECLibrary {
+    private Provider provider;
+    private boolean initialized;
+
+    public ProviderECLibrary(Provider provider) {
+        this.provider = provider;
+        this.initialized = false;
+    }
+
+    @Override
+    public boolean initialize() {
+        try {
+            int result = Security.addProvider(provider);
+            if (result == -1) {
+                provider = Security.getProvider(provider.getName());
+            }
+            initialized = true;
+        } catch (NullPointerException | SecurityException ignored) {
+            initialized = false;
+        }
+        return initialized;
+    }
+
+    @Override
+    public boolean isInitialized() {
+        return initialized;
+    }
+
+    private <T extends Ident> Set<T> getIdents(String type, Function<String, T> getter) {
+        Set<T> results = new HashSet<>();
+        if (!initialized) {
+            return results;
+        }
+
+        for (Provider.Service service : provider.getServices()) {
+            if (service.getType().equals(type)) {
+                T id = getter.apply(service.getAlgorithm());
+                if (id != null) {
+                    results.add(id);
+                }
+            }
+        }
+        return results;
+    }
+
+    @Override
+    public Set<KeyAgreementIdent> getECKAs() {
+        return getIdents("KeyAgreement", KeyAgreementIdent::get);
+    }
+
+    @Override
+    public Set<SignatureIdent> getECSigs() {
+        return getIdents("Signature", SignatureIdent::get);
+    }
+
+    @Override
+    public Set<KeyPairGeneratorIdent> getKPGs() {
+        return getIdents("KeyPairGenerator", KeyPairGeneratorIdent::get);
+    }
+
+    @Override
+    public String name() {
+        return provider.getInfo();
+    }
+
+    public Provider getProvider() {
+        return provider;
+    }
+
+    @Override
+    public String toString() {
+        return name();
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/SunECLib.java b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
index 408908e..b64b740 100644
--- a/src/cz/crcs/ectester/standalone/libs/SunECLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
@@ -5,7 +5,7 @@ import sun.security.ec.SunEC;
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
-public class SunECLib extends JavaECLibrary {
+public class SunECLib extends ProviderECLibrary {
 
     public SunECLib() {
         super(new SunEC());
diff --git a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
new file mode 100644
index 0000000..31d6812
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
@@ -0,0 +1,16 @@
+package cz.crcs.ectester.standalone.libs;
+
+import java.security.Provider;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class TomcryptLib extends NativeECLibrary {
+
+    public TomcryptLib() {
+        super("tomcrypt", "libtomcrypt");
+    }
+
+    @Override
+    public native Provider getProvider();
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/native.h b/src/cz/crcs/ectester/standalone/libs/native.h
new file mode 100644
index 0000000..979f04a
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/native.h
@@ -0,0 +1,21 @@
+/* DO NOT EDIT THIS FILE - it is machine generated */
+#include <jni.h>
+/* Header for class cz_crcs_ectester_standalone_libs_TomcryptLib */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
+#define _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_TomcryptLib
+ * Method:    getProvider
+ * Signature: ()Ljava/security/Provider;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getProvider
+  (JNIEnv *, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
-- 
cgit v1.2.3-70-g09d2


From e22139e18d28906f9533a1dc31e0622080b5f35c Mon Sep 17 00:00:00 2001
From: J08nY
Date: Tue, 28 Nov 2017 00:25:54 +0100
Subject: Add ECDH testing to standalone part.

---
 .../ectester/standalone/ECTesterStandalone.java    | 112 +++++++++++++++------
 .../crcs/ectester/standalone/libs/ECLibrary.java   |   4 +-
 .../ectester/standalone/libs/NativeECLibrary.java  |  54 +---------
 .../standalone/libs/ProviderECLibrary.java         |  15 +--
 .../crcs/ectester/standalone/libs/TomcryptLib.java |   2 +-
 5 files changed, 100 insertions(+), 87 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index e36ffcd..ec681c7 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -17,11 +17,9 @@ import org.apache.commons.cli.Option;
 import org.apache.commons.cli.Options;
 import org.apache.commons.cli.ParseException;
 
+import javax.crypto.KeyAgreement;
 import java.io.IOException;
-import java.security.InvalidAlgorithmParameterException;
-import java.security.KeyPair;
-import java.security.KeyPairGenerator;
-import java.security.NoSuchAlgorithmException;
+import java.security.*;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
 import java.security.spec.ECParameterSpec;
@@ -87,9 +85,13 @@ public class ECTesterStandalone {
                 export();
             }
 
-        } catch (ParseException | NoSuchAlgorithmException | IOException ex) {
+        } catch (ParseException | IOException ex) {
             System.err.println(ex.getMessage());
         } catch (InvalidAlgorithmParameterException e) {
+            System.err.println("Invalid algorithm parameter: " + e.getMessage());
+        } catch (NoSuchAlgorithmException nsaex) {
+            System.err.println("Algorithm not supported by the selected library: " + nsaex.getMessage());
+        } catch (InvalidKeyException e) {
             e.printStackTrace();
         }
     }
@@ -103,6 +105,9 @@ public class ECTesterStandalone {
 
         Options ecdhOpts = new Options();
         ecdhOpts.addOption(Option.builder("t").longOpt("type").desc("Set KeyAgreement object [type].").hasArg().argName("type").optionalArg(false).build());
+        ecdhOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Do ECDH [amount] times.").build());
+        ecdhOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
+        ecdhOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         ParserOptions ecdh = new ParserOptions(new DefaultParser(), ecdhOpts);
         actions.put("ecdh", ecdh);
 
@@ -156,11 +161,11 @@ public class ECTesterStandalone {
                 if (!kpgs.isEmpty()) {
                     System.out.println("\t\t- KeyPairGenerators: " + String.join(",", kpgs.stream().map(KeyPairGeneratorIdent::getName).collect(Collectors.toList())));
                 }
-                Set<KeyAgreementIdent> eckas = lib.getECKAs();
+                Set<KeyAgreementIdent> eckas = lib.getKAs();
                 if (!eckas.isEmpty()) {
                     System.out.println("\t\t- KeyAgreements: " + String.join(",", eckas.stream().map(KeyAgreementIdent::getName).collect(Collectors.toList())));
                 }
-                Set<SignatureIdent> sigs = lib.getECSigs();
+                Set<SignatureIdent> sigs = lib.getSigs();
                 if (!eckas.isEmpty()) {
                     System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
                 }
@@ -171,8 +176,68 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void ecdh() {
+    private void ecdh() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException {
+        if (cfg.selected instanceof ProviderECLibrary) {
+            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
+
+            String algo = cli.getOptionValue("ecdh.type", "ECDH");
+            KeyAgreementIdent kaIdent = null;
+            for (KeyAgreementIdent ident : lib.getKAs()) {
+                if (ident.contains(algo)) {
+                    kaIdent = ident;
+                    break;
+                }
+            }
+
+            KeyPairGeneratorIdent kpIdent = null;
+            for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
+                if (ident.contains("EC")) {
+                    kpIdent = ident;
+                    break;
+                }
+            }
+
+            if (kaIdent == null || kpIdent == null) {
+                throw new NoSuchAlgorithmException(algo);
+            } else {
+                KeyAgreement ka = kaIdent.getInstance(lib.getProvider());
+                KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
+                if (cli.hasOption("ecdh.bits")) {
+                    int bits = Integer.parseInt(cli.getOptionValue("ecdh.bits"));
+                    kpg.initialize(bits);
+                } else if (cli.hasOption("ecdh.named-curve")) {
+                    String curveName = cli.getOptionValue("ecdh.named-curve");
+                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                    if (curve == null) {
+                        System.err.println("Curve not found: " + curveName);
+                        return;
+                    }
+                    kpg.initialize(curve.toSpec());
+                }
 
+                System.out.println("index;nanotime;pubW;privS;secret");
+
+                int amount = Integer.parseInt(cli.getOptionValue("ecdh.amount", "1"));
+                for (int i = 0; i < amount; ++i) {
+                    KeyPair one = kpg.genKeyPair();
+                    KeyPair other = kpg.genKeyPair();
+
+                    ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
+                    ECPublicKey pubkey = (ECPublicKey) other.getPublic();
+
+                    long elapsed = -System.nanoTime();
+                    ka.init(privkey);
+                    ka.doPhase(pubkey, true);
+                    elapsed += System.nanoTime();
+                    byte[] result = ka.generateSecret();
+
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW()), false);
+                    String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
+                    String dh = ByteUtil.bytesToHex(result, false);
+                    System.out.println(String.format("%d;%d;%s;%s;%s", i, elapsed, pub, priv, dh));
+                }
+            }
+        }
     }
 
     /**
@@ -187,10 +252,10 @@ public class ECTesterStandalone {
      */
     private void generate() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException {
         if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary jlib = (ProviderECLibrary) cfg.selected;
+            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
             KeyPairGeneratorIdent ident = null;
             String algo = cli.getOptionValue("generate.type", "EC");
-            for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
+            for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
                 if (kpIdent.contains(algo)) {
                     ident = kpIdent;
                     break;
@@ -199,7 +264,7 @@ public class ECTesterStandalone {
             if (ident == null) {
                 throw new NoSuchAlgorithmException(algo);
             } else {
-                KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
                 if (cli.hasOption("generate.bits")) {
                     int bits = Integer.parseInt(cli.getOptionValue("generate.bits"));
                     kpg.initialize(bits);
@@ -212,7 +277,7 @@ public class ECTesterStandalone {
                     }
                     kpg.initialize(curve.toSpec());
                 }
-                System.out.println("index;time;pubW;privS");
+                System.out.println("index;nanotime;pubW;privS");
 
                 int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
                 for (int i = 0; i < amount; ++i) {
@@ -224,7 +289,7 @@ public class ECTesterStandalone {
 
                     String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW()), false);
                     String priv = ByteUtil.bytesToHex(privateKey.getS().toByteArray(), false);
-                    System.out.println(String.format("%d;%d;%s;%s", i, elapsed / 1000000, pub, priv));
+                    System.out.println(String.format("%d;%d;%s;%s", i, elapsed, pub, priv));
                 }
             }
         }
@@ -242,10 +307,10 @@ public class ECTesterStandalone {
      */
     private void export() throws NoSuchAlgorithmException, IOException {
         if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary jlib = (ProviderECLibrary) cfg.selected;
+            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
             KeyPairGeneratorIdent ident = null;
             String algo = cli.getOptionValue("export.type", "EC");
-            for (KeyPairGeneratorIdent kpIdent : jlib.getKPGs()) {
+            for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
                 if (kpIdent.contains(algo)) {
                     ident = kpIdent;
                     break;
@@ -254,7 +319,7 @@ public class ECTesterStandalone {
             if (ident == null) {
                 throw new NoSuchAlgorithmException(algo);
             } else {
-                KeyPairGenerator kpg = ident.getInstance(jlib.getProvider());
+                KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
                 if (cli.hasOption("export.bits")) {
                     int bits = Integer.parseInt(cli.getOptionValue("export.bits"));
                     kpg.initialize(bits);
@@ -287,23 +352,14 @@ public class ECTesterStandalone {
         }
 
         boolean readOptions(TreeCommandLine cli) {
-            if (cli.isNext("generate")) {
-                if (!cli.hasArg(-1)) {
-                    System.err.println("Missing library name argument.");
-                    return false;
-                }
-
-                if (cli.hasOption("generate.bits") && cli.hasOption("generate.named-curve")) {
-                    System.err.println("You can only specify bitsize or a named curve, nor both.");
-                    return false;
-                }
-            } else if (cli.isNext("export")) {
+            if (cli.isNext("generate") || cli.isNext("export") || cli.isNext("ecdh")) {
                 if (!cli.hasArg(-1)) {
                     System.err.println("Missing library name argument.");
                     return false;
                 }
 
-                if (cli.hasOption("export.bits") && cli.hasOption("export.named-curve")) {
+                String next = cli.getNextName();
+                if (cli.hasOption(next + ".bits") && cli.hasOption(next + ".named-curve")) {
                     System.err.println("You can only specify bitsize or a named curve, nor both.");
                     return false;
                 }
diff --git a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
index 7e26dbe..1e73e61 100644
--- a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
@@ -14,9 +14,9 @@ public interface ECLibrary {
 
     boolean isInitialized();
 
-    Set<KeyAgreementIdent> getECKAs();
+    Set<KeyAgreementIdent> getKAs();
 
-    Set<SignatureIdent> getECSigs();
+    Set<SignatureIdent> getSigs();
 
     Set<KeyPairGeneratorIdent> getKPGs();
 
diff --git a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
index 40691e6..44fb47b 100644
--- a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
@@ -1,9 +1,5 @@
 package cz.crcs.ectester.standalone.libs;
 
-import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
-import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
-import cz.crcs.ectester.standalone.consts.SignatureIdent;
-
 import java.io.File;
 import java.io.IOException;
 import java.net.URL;
@@ -13,14 +9,11 @@ import java.nio.file.Path;
 import java.nio.file.Paths;
 import java.nio.file.StandardCopyOption;
 import java.security.Provider;
-import java.util.Collections;
-import java.util.Set;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
-public abstract class NativeECLibrary implements ECLibrary {
-    private ProviderECLibrary loaded;
+public abstract class NativeECLibrary extends ProviderECLibrary {
     private String resource;
     private String libname;
 
@@ -80,52 +73,13 @@ public abstract class NativeECLibrary implements ECLibrary {
 
             System.load(libPath.toString());
 
-            loaded = new ProviderECLibrary(getProvider());
-            return true;
+            provider = createProvider();
+            return super.initialize();
         } catch (IOException ignored) {
 
         }
         return false;
     }
 
-    public abstract Provider getProvider();
-
-    @Override
-    public boolean isInitialized() {
-        return loaded != null && loaded.isInitialized();
-    }
-
-    @Override
-    public Set<KeyAgreementIdent> getECKAs() {
-        if (!isInitialized()) {
-            return Collections.emptySet();
-        }
-        return loaded.getECKAs();
-    }
-
-    @Override
-    public Set<SignatureIdent> getECSigs() {
-        if (!isInitialized()) {
-            return Collections.emptySet();
-        }
-        return loaded.getECSigs();
-    }
-
-    @Override
-    public Set<KeyPairGeneratorIdent> getKPGs() {
-        if (!isInitialized()) {
-            return Collections.emptySet();
-        }
-        return loaded.getKPGs();
-    }
-
-    @Override
-    public String name() {
-        return loaded.name();
-    }
-
-    @Override
-    public String toString() {
-        return name();
-    }
+    abstract Provider createProvider();
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
index 879cc16..9108eaf 100644
--- a/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/ProviderECLibrary.java
@@ -14,13 +14,16 @@ import java.util.function.Function;
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
-public class ProviderECLibrary implements ECLibrary {
-    private Provider provider;
-    private boolean initialized;
+public abstract class ProviderECLibrary implements ECLibrary {
+    Provider provider;
+    private boolean initialized = false;
+
+    public ProviderECLibrary() {
+
+    }
 
     public ProviderECLibrary(Provider provider) {
         this.provider = provider;
-        this.initialized = false;
     }
 
     @Override
@@ -60,12 +63,12 @@ public class ProviderECLibrary implements ECLibrary {
     }
 
     @Override
-    public Set<KeyAgreementIdent> getECKAs() {
+    public Set<KeyAgreementIdent> getKAs() {
         return getIdents("KeyAgreement", KeyAgreementIdent::get);
     }
 
     @Override
-    public Set<SignatureIdent> getECSigs() {
+    public Set<SignatureIdent> getSigs() {
         return getIdents("Signature", SignatureIdent::get);
     }
 
diff --git a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
index 31d6812..fe4a79d 100644
--- a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
@@ -12,5 +12,5 @@ public class TomcryptLib extends NativeECLibrary {
     }
 
     @Override
-    public native Provider getProvider();
+    native Provider createProvider();
 }
-- 
cgit v1.2.3-70-g09d2


From 5913cd5cb0940623d3bb2ee0861a1fdcfe08f08b Mon Sep 17 00:00:00 2001
From: J08nY
Date: Tue, 28 Nov 2017 16:29:39 +0100
Subject: Implement ECDSA for standalone libs.

---
 .../ectester/standalone/ECTesterStandalone.java    | 132 ++++++++++++++++++---
 src/cz/crcs/ectester/standalone/consts/Ident.java  |  25 ++++
 .../standalone/consts/KeyAgreementIdent.java       |   8 +-
 .../standalone/consts/KeyPairGeneratorIdent.java   |  10 +-
 .../ectester/standalone/consts/SignatureIdent.java |   8 +-
 5 files changed, 163 insertions(+), 20 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index ec681c7..3ec11ed 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -18,10 +18,14 @@ import org.apache.commons.cli.Options;
 import org.apache.commons.cli.ParseException;
 
 import javax.crypto.KeyAgreement;
+import java.io.File;
+import java.io.FileNotFoundException;
 import java.io.IOException;
+import java.nio.file.Files;
 import java.security.*;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
+import java.security.spec.AlgorithmParameterSpec;
 import java.security.spec.ECParameterSpec;
 import java.util.*;
 import java.util.stream.Collectors;
@@ -93,6 +97,8 @@ public class ECTesterStandalone {
             System.err.println("Algorithm not supported by the selected library: " + nsaex.getMessage());
         } catch (InvalidKeyException e) {
             e.printStackTrace();
+        } catch (SignatureException e) {
+            e.printStackTrace();
         }
     }
 
@@ -113,6 +119,8 @@ public class ECTesterStandalone {
 
         Options ecdsaOpts = new Options();
         ecdsaOpts.addOption(Option.builder("t").longOpt("type").desc("Set Signature object [type].").hasArg().argName("type").optionalArg(false).build());
+        ecdsaOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Do ECDSA [amount] times.").build());
+        ecdsaOpts.addOption(Option.builder("f").longOpt("file").hasArg().argName("file").optionalArg(false).desc("Input [file] to sign.").build());
         ParserOptions ecdsa = new ParserOptions(new DefaultParser(), ecdsaOpts);
         actions.put("ecdsa", ecdsa);
 
@@ -181,27 +189,26 @@ public class ECTesterStandalone {
             ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
 
             String algo = cli.getOptionValue("ecdh.type", "ECDH");
-            KeyAgreementIdent kaIdent = null;
-            for (KeyAgreementIdent ident : lib.getKAs()) {
-                if (ident.contains(algo)) {
-                    kaIdent = ident;
-                    break;
-                }
-            }
+            KeyAgreementIdent kaIdent = lib.getKAs().stream()
+                    .filter((ident) -> ident.contains(algo))
+                    .findFirst()
+                    .orElse(null);
+
+            KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
+                    .filter((ident) -> ident.contains(algo))
+                    .findFirst()
+                    .orElse(lib.getKPGs().stream()
+                            .filter((ident) -> ident.contains("EC"))
+                            .findFirst()
+                            .orElse(null));
 
-            KeyPairGeneratorIdent kpIdent = null;
-            for (KeyPairGeneratorIdent ident : lib.getKPGs()) {
-                if (ident.contains("EC")) {
-                    kpIdent = ident;
-                    break;
-                }
-            }
 
             if (kaIdent == null || kpIdent == null) {
                 throw new NoSuchAlgorithmException(algo);
             } else {
                 KeyAgreement ka = kaIdent.getInstance(lib.getProvider());
                 KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
+                AlgorithmParameterSpec spec = null;
                 if (cli.hasOption("ecdh.bits")) {
                     int bits = Integer.parseInt(cli.getOptionValue("ecdh.bits"));
                     kpg.initialize(bits);
@@ -212,7 +219,8 @@ public class ECTesterStandalone {
                         System.err.println("Curve not found: " + curveName);
                         return;
                     }
-                    kpg.initialize(curve.toSpec());
+                    spec = curve.toSpec();
+                    kpg.initialize(spec);
                 }
 
                 System.out.println("index;nanotime;pubW;privS;secret");
@@ -226,10 +234,15 @@ public class ECTesterStandalone {
                     ECPublicKey pubkey = (ECPublicKey) other.getPublic();
 
                     long elapsed = -System.nanoTime();
-                    ka.init(privkey);
+                    if (spec != null) {
+                        ka.init(privkey, spec);
+                    } else {
+                        ka.init(privkey);
+                    }
                     ka.doPhase(pubkey, true);
                     elapsed += System.nanoTime();
                     byte[] result = ka.generateSecret();
+                    ka = kaIdent.getInstance(lib.getProvider());
 
                     String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW()), false);
                     String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
@@ -243,8 +256,93 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void ecdsa() {
+    private void ecdsa() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException, IOException, SignatureException {
+        byte[] data;
+        String dataString;
+        if (cli.hasOption("ecdsa.file")) {
+            String fileName = cli.getOptionValue("ecdsa.file");
+            File in = new File(fileName);
+            long len = in.length();
+            if (len == 0) {
+                throw new FileNotFoundException(fileName);
+            }
+            data = Files.readAllBytes(in.toPath());
+            dataString = "";
+        } else {
+            SecureRandom random = new SecureRandom();
+            data = new byte[128];
+            random.nextBytes(data);
+            dataString = ByteUtil.bytesToHex(data, false);
+        }
+
+        if (cfg.selected instanceof ProviderECLibrary) {
+            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
+
+            String algo = cli.getOptionValue("ecdsa.type", "ECDSA");
+            SignatureIdent sigIdent = lib.getSigs().stream()
+                    .filter((ident) -> ident.contains(algo))
+                    .findFirst()
+                    .orElse(null);
+
+            KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
+                    .filter((ident) -> ident.contains(algo))
+                    .findFirst()
+                    .orElse(lib.getKPGs().stream()
+                            .filter((ident) -> ident.contains("EC"))
+                            .findFirst()
+                            .orElse(null));
+
+            if (sigIdent == null || kpIdent == null) {
+                throw new NoSuchAlgorithmException(algo);
+            } else {
+                Signature sig = sigIdent.getInstance(lib.getProvider());
+                KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
+                AlgorithmParameterSpec spec = null;
+                if (cli.hasOption("ecdsa.bits")) {
+                    int bits = Integer.parseInt(cli.getOptionValue("ecdsa.bits"));
+                    kpg.initialize(bits);
+                } else if (cli.hasOption("ecdsa.named-curve")) {
+                    String curveName = cli.getOptionValue("ecdsa.named-curve");
+                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                    if (curve == null) {
+                        System.err.println("Curve not found: " + curveName);
+                        return;
+                    }
+                    spec = curve.toSpec();
+                    kpg.initialize(spec);
+                }
+
+                System.out.println("index;data;signtime;verifytime;pubW;privS;signature;verified");
+
+                int amount = Integer.parseInt(cli.getOptionValue("ecdsa.amount", "1"));
+                for (int i = 0; i < amount; ++i) {
+                    KeyPair one = kpg.genKeyPair();
+
+                    ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
+                    ECPublicKey pubkey = (ECPublicKey) one.getPublic();
 
+                    sig.initSign(privkey);
+                    sig.update(data);
+
+                    long signTime = -System.nanoTime();
+                    byte[] signature = sig.sign();
+                    signTime += System.nanoTime();
+
+                    sig.initVerify(pubkey);
+                    sig.update(data);
+
+                    long verifyTime = -System.nanoTime();
+                    boolean verified = sig.verify(signature);
+                    verifyTime += System.nanoTime();
+
+
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW()), false);
+                    String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
+                    String sign = ByteUtil.bytesToHex(signature, false);
+                    System.out.println(String.format("%d;%s;%d;%d;%s;%s;%s;%d", i, dataString, signTime, verifyTime, pub, priv, sign, verified ? 1 : 0));
+                }
+            }
+        }
     }
 
     /**
diff --git a/src/cz/crcs/ectester/standalone/consts/Ident.java b/src/cz/crcs/ectester/standalone/consts/Ident.java
index 84cce2d..e2556c5 100644
--- a/src/cz/crcs/ectester/standalone/consts/Ident.java
+++ b/src/cz/crcs/ectester/standalone/consts/Ident.java
@@ -1,9 +1,12 @@
 package cz.crcs.ectester.standalone.consts;
 
+import java.security.NoSuchAlgorithmException;
+import java.security.Provider;
 import java.util.Arrays;
 import java.util.Collections;
 import java.util.Set;
 import java.util.TreeSet;
+import java.util.function.BiFunction;
 
 public abstract class Ident {
     Set<String> idents;
@@ -28,6 +31,28 @@ public abstract class Ident {
         return name.equals(other) || idents.contains(other);
     }
 
+    <T> T getInstance(BiFunction<String, Provider, T> getter, Provider provider) throws NoSuchAlgorithmException {
+        T instance = null;
+        try {
+            instance = getter.apply(name, provider);
+        } catch (Exception ignored) {
+        }
+
+        if (instance == null) {
+            for (String alias : idents) {
+                try {
+                    instance = getter.apply(alias, provider);
+                } catch (Exception ignored) {
+                }
+            }
+        }
+
+        if (instance == null) {
+            throw new NoSuchAlgorithmException(name);
+        }
+        return instance;
+    }
+
     @Override
     public boolean equals(Object obj) {
         if (this == obj) {
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
index c0d1e27..724f3c6 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
@@ -55,7 +55,13 @@ public class KeyAgreementIdent extends Ident {
     }
 
     public KeyAgreement getInstance(Provider provider) throws NoSuchAlgorithmException {
-        KeyAgreement instance = KeyAgreement.getInstance(name, provider);
+        KeyAgreement instance = getInstance((algorithm, provider1) -> {
+            try {
+                return KeyAgreement.getInstance(algorithm, provider1);
+            } catch (NoSuchAlgorithmException e) {
+                return null;
+            }
+        }, provider);
         instance.getProvider();
         return instance;
     }
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
index d0526f7..50b7135 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
@@ -15,6 +15,8 @@ public class KeyPairGeneratorIdent extends Ident {
         ALL.add(new KeyPairGeneratorIdent("ECDSA"));
         ALL.add(new KeyPairGeneratorIdent("ECDHC"));
         ALL.add(new KeyPairGeneratorIdent("ECMQV"));
+        ALL.add(new KeyPairGeneratorIdent("ECGOST3410"));
+        ALL.add(new KeyPairGeneratorIdent("ECGOST3410-2012"));
     }
 
     public static KeyPairGeneratorIdent get(String ident) {
@@ -31,7 +33,13 @@ public class KeyPairGeneratorIdent extends Ident {
     }
 
     public KeyPairGenerator getInstance(Provider provider) throws NoSuchAlgorithmException {
-        KeyPairGenerator instance = KeyPairGenerator.getInstance(name, provider);
+        KeyPairGenerator instance = getInstance((algorithm, provider1) -> {
+            try {
+                return KeyPairGenerator.getInstance(algorithm, provider1);
+            } catch (NoSuchAlgorithmException e) {
+                return null;
+            }
+        }, provider);
         instance.getProvider();
         return instance;
     }
diff --git a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
index c027bf1..f322cc5 100644
--- a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
@@ -79,7 +79,13 @@ public class SignatureIdent extends Ident {
     }
 
     public Signature getInstance(Provider provider) throws NoSuchAlgorithmException {
-        Signature instance = Signature.getInstance(name, provider);
+        Signature instance = getInstance((algorithm, provider1) -> {
+            try {
+                return Signature.getInstance(algorithm, provider1);
+            } catch (NoSuchAlgorithmException e) {
+                return null;
+            }
+        }, provider);
         instance.getProvider();
         return instance;
     }
-- 
cgit v1.2.3-70-g09d2


From cd117b707bfae0271b86b5c647d2fbc72dd3676c Mon Sep 17 00:00:00 2001
From: J08nY
Date: Tue, 28 Nov 2017 22:23:31 +0100
Subject: Implement a basic NativeProvider using libtomcrypt.

---
 .gitignore                                         |  6 ++-
 build-standalone.xml                               |  3 +-
 nbproject/reader/project.properties                |  2 +-
 nbproject/standalone/project.properties            |  2 +-
 .../ectester/standalone/ECTesterStandalone.java    | 11 ++---
 .../ectester/standalone/libs/NativeECLibrary.java  | 22 ++++++---
 .../crcs/ectester/standalone/libs/TomcryptLib.java |  2 +-
 src/cz/crcs/ectester/standalone/libs/jni/Makefile  | 48 +++++++++++++++++++
 .../standalone/libs/jni/NativeProvider.java        | 25 ++++++++++
 .../standalone/libs/jni/TomCryptProvider.java      | 11 +++++
 src/cz/crcs/ectester/standalone/libs/jni/native.h  | 54 ++++++++++++++++++++++
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 40 ++++++++++++++++
 src/cz/crcs/ectester/standalone/libs/native.h      | 21 ---------
 13 files changed, 206 insertions(+), 41 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/Makefile
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/TomCryptProvider.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/native.h
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
 delete mode 100644 src/cz/crcs/ectester/standalone/libs/native.h

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/.gitignore b/.gitignore
index 4724134..8390d09 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,4 +4,8 @@
 /dist/ectester-reader.sh
 /dist/ectester-reader.bat
 /dist/ECTesterStandalone.jar
-/dist/ECTesterStandalone-dist.jar
\ No newline at end of file
+/dist/ECTesterStandalone-dist.jar
+
+/src/**/*.a
+/src/**/*.o
+/src/**/*.so
diff --git a/build-standalone.xml b/build-standalone.xml
index 05dc174..447b9b1 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -76,8 +76,9 @@
         <antcall target="dist-build.package"/>
     </target>
     <target name="headers" depends="compile">
-        <javah classpath="${build.classes.dir}" outputfile="src/cz/crcs/ectester/standalone/libs/native.h">
+        <javah classpath="${build.classes.dir}" outputfile="src/cz/crcs/ectester/standalone/libs/jni/native.h">
             <class name="cz.crcs.ectester.standalone.libs.TomcryptLib"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.TomCryptProvider"/>
         </javah>
     </target>
 </project>
diff --git a/nbproject/reader/project.properties b/nbproject/reader/project.properties
index ac98170..d372fd5 100644
--- a/nbproject/reader/project.properties
+++ b/nbproject/reader/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterReader
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/nbproject/standalone/project.properties b/nbproject/standalone/project.properties
index 868bcfa..7714914 100644
--- a/nbproject/standalone/project.properties
+++ b/nbproject/standalone/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterStandalone
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 3ec11ed..de9953a 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -8,10 +8,7 @@ import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
-import cz.crcs.ectester.standalone.libs.BouncyCastleLib;
-import cz.crcs.ectester.standalone.libs.ECLibrary;
-import cz.crcs.ectester.standalone.libs.ProviderECLibrary;
-import cz.crcs.ectester.standalone.libs.SunECLib;
+import cz.crcs.ectester.standalone.libs.*;
 import org.apache.commons.cli.DefaultParser;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.Options;
@@ -37,7 +34,7 @@ import java.util.stream.Collectors;
  * @version v0.1.0
  */
 public class ECTesterStandalone {
-    private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib()};
+    private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib()};
     private EC_Store dataStore;
     private Config cfg;
 
@@ -297,7 +294,6 @@ public class ECTesterStandalone {
             } else {
                 Signature sig = sigIdent.getInstance(lib.getProvider());
                 KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
-                AlgorithmParameterSpec spec = null;
                 if (cli.hasOption("ecdsa.bits")) {
                     int bits = Integer.parseInt(cli.getOptionValue("ecdsa.bits"));
                     kpg.initialize(bits);
@@ -308,8 +304,7 @@ public class ECTesterStandalone {
                         System.err.println("Curve not found: " + curveName);
                         return;
                     }
-                    spec = curve.toSpec();
-                    kpg.initialize(spec);
+                    kpg.initialize(curve.toSpec());
                 }
 
                 System.out.println("index;data;signtime;verifytime;pubW;privS;signature;verified");
diff --git a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
index 44fb47b..5d1b9d7 100644
--- a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
@@ -15,11 +15,13 @@ import java.security.Provider;
  */
 public abstract class NativeECLibrary extends ProviderECLibrary {
     private String resource;
-    private String libname;
+    private String[] requriements;
 
-    public NativeECLibrary(String resource, String libname) {
+    public static String LIB_RESOURCE_DIR = "/cz/crcs/ectester/standalone/libs/jni/";
+
+    public NativeECLibrary(String resource, String... requirements) {
         this.resource = resource;
-        this.libname = libname;
+        this.requriements = requirements;
     }
 
     @Override
@@ -33,8 +35,10 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
             } else {
                 suffix = "so";
                 if (System.getProperty("os.name").startsWith("Linux")) {
-                    appData = Paths.get(System.getenv("XDG_DATA_HOME"));
-                    if (appData == null) {
+                    String dataHome = System.getenv("XDG_DATA_HOME");
+                    if (dataHome != null) {
+                        appData = Paths.get(dataHome);
+                    } else {
                         appData = Paths.get(System.getProperty("user.home"), ".local", "share");
                     }
                 } else {
@@ -43,10 +47,10 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
             }
             Path libDir = appData.resolve("ECTesterStandalone");
             File libDirFile = libDir.toFile();
-            Path libPath = libDir.resolve(libname + "." + suffix);
+            Path libPath = libDir.resolve(resource + "." + suffix);
             File libFile = libPath.toFile();
 
-            URL jarURL = NativeECLibrary.class.getResource("/cz/crcs/ectester/standalone/libs/" + resource + "." + suffix);
+            URL jarURL = NativeECLibrary.class.getResource(LIB_RESOURCE_DIR + resource + "." + suffix);
             if (jarURL == null) {
                 return false;
             }
@@ -71,6 +75,10 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
             }
             jarConnection.getInputStream().close();
 
+            for (String requirement : requriements) {
+                System.loadLibrary(requirement);
+            }
+
             System.load(libPath.toString());
 
             provider = createProvider();
diff --git a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
index fe4a79d..49e810c 100644
--- a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
@@ -8,7 +8,7 @@ import java.security.Provider;
 public class TomcryptLib extends NativeECLibrary {
 
     public TomcryptLib() {
-        super("tomcrypt", "libtomcrypt");
+        super("tomcrypt_provider", "tommath", "tomcrypt");
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/Makefile b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
new file mode 100644
index 0000000..837078c
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
@@ -0,0 +1,48 @@
+ifeq ($(JAVA_HOME),)
+ifeq ($(OS),Windows_NT)
+which = $(shell where $1)
+else
+which = $(shell which $1)
+endif
+JAVAC ?= $(realpath $(call which,javac))
+JAVA_HOME = $(abspath $(dir $(JAVAC))..)
+endif
+
+ifneq ($(JAVA_HOME),)
+JNI_INCLUDEDIR ?= $(JAVA_HOME)/include
+endif
+
+ifeq ($(JNI_INCLUDEDIR),)
+$(error could not determine JNI include dir, try specifying either \
+    JAVA_HOME or JNI_INCLUDEDIR)
+endif
+
+TARGETTRIPLET := $(shell $(CC) -dumpmachine)
+ifeq ($(JNI_PLATFORM),)
+ifeq ($(findstring mingw,$(TARGETTRIPLET)),mingw)
+JNI_PLATFORM:= win32
+else
+ifeq ($(findstring linux,$(TARGETTRIPLET)),linux)
+JNI_PLATFORM:= linux
+# add more checks here
+endif
+endif
+endif
+
+JNI_PLATFORMINCLUDEDIR ?= $(JNI_INCLUDEDIR)/$(JNI_PLATFORM)
+
+
+
+all: tomcrypt_provider.so
+
+tomcrypt_provider.so: tomcrypt.o
+	gcc -DLTM_DESC -DUSE_LTM -fPIC -shared -o $@ $< -ltommath -ltomcrypt
+
+%.o: %.c
+	gcc -fPIC -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
+
+clean:
+	rm -rf *.o
+	rm -rf *.so
+
+.PHONY: all clean
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
new file mode 100644
index 0000000..43b7827
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
@@ -0,0 +1,25 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import java.security.AccessController;
+import java.security.PrivilegedAction;
+import java.security.Provider;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeProvider extends Provider {
+
+    public NativeProvider(String name, double version, String info) {
+        super(name, version, info);
+
+        AccessController.doPrivileged(new PrivilegedAction() {
+            public Object run() {
+                setup();
+                return null;
+            }
+        });
+    }
+
+    abstract void setup();
+
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/TomCryptProvider.java b/src/cz/crcs/ectester/standalone/libs/jni/TomCryptProvider.java
new file mode 100644
index 0000000..01e4c17
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/TomCryptProvider.java
@@ -0,0 +1,11 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+public class TomCryptProvider extends NativeProvider {
+
+    public TomCryptProvider(String name, double version, String info) {
+        super(name, version, info);
+    }
+
+    @Override
+    native void setup();
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/native.h b/src/cz/crcs/ectester/standalone/libs/jni/native.h
new file mode 100644
index 0000000..83ef841
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/native.h
@@ -0,0 +1,54 @@
+/* DO NOT EDIT THIS FILE - it is machine generated */
+#include <jni.h>
+/* Header for class cz_crcs_ectester_standalone_libs_TomcryptLib */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
+#define _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_TomcryptLib
+ * Method:    createProvider
+ * Signature: ()Ljava/security/Provider;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider
+  (JNIEnv *, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_TomCryptProvider */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_TomCryptProvider
+#define _Included_cz_crcs_ectester_standalone_libs_jni_TomCryptProvider
+#ifdef __cplusplus
+extern "C" {
+#endif
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID 1421746759512286392LL
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_MAX_ARRAY_SIZE
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_MAX_ARRAY_SIZE 2147483639L
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_KEYS
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_KEYS 0L
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_VALUES
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_VALUES 1L
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_ENTRIES
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_ENTRIES 2L
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID 4112578634029874840LL
+#undef cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_serialVersionUID -4298000515446427739LL
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_TomCryptProvider
+ * Method:    setup
+ * Signature: ()V
+ */
+JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_setup
+  (JNIEnv *, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
new file mode 100644
index 0000000..43ae06b
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -0,0 +1,40 @@
+#include "native.h"
+#include <stdio.h>
+#define LTM_DESC
+#include <tomcrypt.h>
+
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider(JNIEnv *env, jobject this) {
+    jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/TomCryptProvider");
+
+    jmethodID init = (*env)->GetMethodID(env, provider_class, "<init>", "(Ljava/lang/String;DLjava/lang/String;)V");
+    if (init == NULL) {
+        return NULL;
+    }
+    jstring name =  (*env)->NewStringUTF(env, "libtomcrypt " SCRYPT);
+    double version = strtod(SCRYPT, NULL);
+    return (*env)->NewObject(env, provider_class, init, name, version, name);
+}
+
+JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_TomCryptProvider_setup(JNIEnv *env, jobject this) {
+    ltc_mp = ltm_desc;
+    /* Just test ecc key generation at this time. */
+    ecc_key mykey;
+    prng_state prng;
+    int err;
+    /* register yarrow */
+    if (register_prng(&yarrow_desc) == -1) {
+        printf("Error registering Yarrow\n");
+        return;
+    }
+    /* setup the PRNG */
+    if ((err = rng_make_prng(128, find_prng("yarrow"), &prng, NULL)) != CRYPT_OK) {
+        printf("Error setting up PRNG, %s\n", error_to_string(err));
+        return;
+    }
+    /* make a 192-bit ECC key */
+    if ((err = ecc_make_key(&prng, find_prng("yarrow"), 24, &mykey)) != CRYPT_OK) {
+        printf("Error making key: %s\n", error_to_string(err));
+        return;
+    }
+    return;
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/native.h b/src/cz/crcs/ectester/standalone/libs/native.h
deleted file mode 100644
index 979f04a..0000000
--- a/src/cz/crcs/ectester/standalone/libs/native.h
+++ /dev/null
@@ -1,21 +0,0 @@
-/* DO NOT EDIT THIS FILE - it is machine generated */
-#include <jni.h>
-/* Header for class cz_crcs_ectester_standalone_libs_TomcryptLib */
-
-#ifndef _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
-#define _Included_cz_crcs_ectester_standalone_libs_TomcryptLib
-#ifdef __cplusplus
-extern "C" {
-#endif
-/*
- * Class:     cz_crcs_ectester_standalone_libs_TomcryptLib
- * Method:    getProvider
- * Signature: ()Ljava/security/Provider;
- */
-JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getProvider
-  (JNIEnv *, jobject);
-
-#ifdef __cplusplus
-}
-#endif
-#endif
-- 
cgit v1.2.3-70-g09d2


From 03265f4cf09b7bb59c09af722b8f44445a635d83 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 29 Nov 2017 02:22:30 +0100
Subject: Add listing of supported curves to standalone libs.

---
 build-standalone.xml                               |  4 +--
 nbproject/reader/project.properties                |  2 +-
 nbproject/standalone/project.properties            |  2 +-
 .../ectester/standalone/ECTesterStandalone.java    |  5 +++
 .../ectester/standalone/libs/BouncyCastleLib.java  | 14 ++++++++
 .../crcs/ectester/standalone/libs/ECLibrary.java   |  2 ++
 src/cz/crcs/ectester/standalone/libs/SunECLib.java | 14 ++++++++
 .../crcs/ectester/standalone/libs/TomcryptLib.java |  4 +++
 .../standalone/libs/jni/NativeProvider.java        |  8 ++---
 src/cz/crcs/ectester/standalone/libs/jni/native.h  |  8 +++++
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 41 +++++++++++++---------
 11 files changed, 78 insertions(+), 26 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/build-standalone.xml b/build-standalone.xml
index 300eec8..6e65c67 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -76,10 +76,10 @@
         <antcall target="dist-build.package"/>
     </target>
     <target name="libs">
-        <exec dir="src/cz/crcs/ectester/standalone/libs/jni" executable="make" osfamily="unix"/>
+        <exec dir="src/cz/crcs/ectester/standalone/libs/jni" failonerror="true" executable="make" osfamily="unix"/>
     </target>
     <target name="-post-clean">
-        <exec dir="src/cz/crcs/ectester/standalone/libs/jni" executable="make clean" osfamily="unix"/>
+        <exec dir="src/cz/crcs/ectester/standalone/libs/jni" failonerror="true" executable="make clean" osfamily="unix"/>
     </target>
     <target name="headers" depends="compile">
         <javah classpath="${build.classes.dir}" outputfile="src/cz/crcs/ectester/standalone/libs/jni/native.h">
diff --git a/nbproject/reader/project.properties b/nbproject/reader/project.properties
index d372fd5..21441b3 100644
--- a/nbproject/reader/project.properties
+++ b/nbproject/reader/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterReader
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a,**/*.o,**/Makefile
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/nbproject/standalone/project.properties b/nbproject/standalone/project.properties
index 7714914..9fed4c2 100644
--- a/nbproject/standalone/project.properties
+++ b/nbproject/standalone/project.properties
@@ -6,7 +6,7 @@ annotation.processing.source.output=${build.generated.sources.dir}/ap-source-out
 application.title=ECTesterStandalone
 application.vendor=xsvenda
 build.classes.dir=${build.dir}/classes
-build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a
+build.classes.excludes=**/*.java,**/*.form,**/*.c,**/*.h,**/*.a,**/*.o,**/Makefile
 # This directory is removed when the project is cleaned:
 build.dir=build
 build.generated.dir=${build.dir}/generated
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index de9953a..9fca2b6 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -174,6 +174,11 @@ public class ECTesterStandalone {
                 if (!eckas.isEmpty()) {
                     System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
                 }
+                Set<String> curves = lib.getCurves();
+                if (!curves.isEmpty()) {
+                    System.out.println("\t\t- Curves: " + String.join(",", curves));
+                }
+                System.out.println();
             }
         }
     }
diff --git a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
index aaf76be..c6600f9 100644
--- a/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/BouncyCastleLib.java
@@ -1,7 +1,12 @@
 package cz.crcs.ectester.standalone.libs;
 
+import org.bouncycastle.jce.ECNamedCurveTable;
 import org.bouncycastle.jce.provider.BouncyCastleProvider;
 
+import java.util.Enumeration;
+import java.util.Set;
+import java.util.TreeSet;
+
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
@@ -11,4 +16,13 @@ public class BouncyCastleLib extends ProviderECLibrary {
         super(new BouncyCastleProvider());
     }
 
+    @Override
+    public Set<String> getCurves() {
+        Set<String> result = new TreeSet<>();
+        Enumeration names = ECNamedCurveTable.getNames();
+        while (names.hasMoreElements()) {
+            result.add((String) names.nextElement());
+        }
+        return result;
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
index 1e73e61..0f81978 100644
--- a/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/ECLibrary.java
@@ -14,6 +14,8 @@ public interface ECLibrary {
 
     boolean isInitialized();
 
+    Set<String> getCurves();
+
     Set<KeyAgreementIdent> getKAs();
 
     Set<SignatureIdent> getSigs();
diff --git a/src/cz/crcs/ectester/standalone/libs/SunECLib.java b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
index b64b740..3aec842 100644
--- a/src/cz/crcs/ectester/standalone/libs/SunECLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/SunECLib.java
@@ -2,6 +2,9 @@ package cz.crcs.ectester.standalone.libs;
 
 import sun.security.ec.SunEC;
 
+import java.util.Set;
+import java.util.TreeSet;
+
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
@@ -11,4 +14,15 @@ public class SunECLib extends ProviderECLibrary {
         super(new SunEC());
     }
 
+    @Override
+    public Set<String> getCurves() {
+        String curves = provider.get("AlgorithmParameters.EC SupportedCurves").toString();
+        String[] split = curves.split("\\|");
+        Set<String> result = new TreeSet<>();
+        for (String curve : split) {
+            String body = curve.split(",")[0].substring(1);
+            result.add(body);
+        }
+        return result;
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
index 49e810c..78db00e 100644
--- a/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
+++ b/src/cz/crcs/ectester/standalone/libs/TomcryptLib.java
@@ -1,6 +1,7 @@
 package cz.crcs.ectester.standalone.libs;
 
 import java.security.Provider;
+import java.util.Set;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
@@ -13,4 +14,7 @@ public class TomcryptLib extends NativeECLibrary {
 
     @Override
     native Provider createProvider();
+
+    @Override
+    public native Set<String> getCurves();
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
index 53f8b3c..a2233e2 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
@@ -12,11 +12,9 @@ public abstract class NativeProvider extends Provider {
     public NativeProvider(String name, double version, String info) {
         super(name, version, info);
 
-        AccessController.doPrivileged(new PrivilegedAction() {
-            public Object run() {
-                setup();
-                return null;
-            }
+        AccessController.doPrivileged((PrivilegedAction<Object>) () -> {
+            setup();
+            return null;
         });
     }
 
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/native.h b/src/cz/crcs/ectester/standalone/libs/jni/native.h
index e4e5009..e607738 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/native.h
+++ b/src/cz/crcs/ectester/standalone/libs/jni/native.h
@@ -15,6 +15,14 @@ extern "C" {
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider
   (JNIEnv *, jobject);
 
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_TomcryptLib
+ * Method:    getCurves
+ * Signature: ()Ljava/util/Set;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves
+  (JNIEnv *, jobject);
+
 #ifdef __cplusplus
 }
 #endif
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index db1de88..7f8f303 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -7,49 +7,56 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_crea
     jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
 
     jmethodID init = (*env)->GetMethodID(env, provider_class, "<init>", "(Ljava/lang/String;DLjava/lang/String;)V");
-    if (init == NULL) {
-        return NULL;
-    }
+
     jstring name =  (*env)->NewStringUTF(env, "libtomcrypt " SCRYPT);
     double version = strtod(SCRYPT, NULL);
+
     return (*env)->NewObject(env, provider_class, init, name, version, name);
 }
 
 JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_00024TomCrypt_setup(JNIEnv *env, jobject this) {
-
     /* Initialize libtommath as the math lib. */
     ltc_mp = ltm_desc;
 
     jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
 
     jmethodID put = (*env)->GetMethodID(env, provider_class, "put", "(Ljava/lang/Object;Ljava/lang/Object;)Ljava/lang/Object;");
-    if (put == NULL) {
-        return;
-    }
-    const ltc_ecc_set_type * curve = ltc_ecc_sets;
-    while (curve->name != NULL) {
-        printf("%s\n", curve->name);
-        curve++;
-    }
 
-    /* Just test ecc key generation at this time. */
+/*    *//* Just test ecc key generation at this time. *//*
     ecc_key mykey;
     prng_state prng;
     int err;
-    /* register yarrow */
+    *//* register yarrow *//*
     if (register_prng(&yarrow_desc) == -1) {
         printf("Error registering Yarrow\n");
         return;
     }
-    /* setup the PRNG */
+    *//* setup the PRNG *//*
     if ((err = rng_make_prng(128, find_prng("yarrow"), &prng, NULL)) != CRYPT_OK) {
         printf("Error setting up PRNG, %s\n", error_to_string(err));
         return;
     }
-    /* make a 192-bit ECC key */
+    *//* make a 192-bit ECC key *//*
     if ((err = ecc_make_key(&prng, find_prng("yarrow"), 24, &mykey)) != CRYPT_OK) {
         printf("Error making key: %s\n", error_to_string(err));
         return;
     }
-    return;
+    return;*/
+}
+
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves(JNIEnv *env, jobject this) {
+    jclass hash_set_class = (*env)->FindClass(env, "java/util/TreeSet");
+
+    jmethodID hash_set_ctr = (*env)->GetMethodID(env, hash_set_class, "<init>", "()V");
+    jmethodID hash_set_add = (*env)->GetMethodID(env, hash_set_class, "add", "(Ljava/lang/Object;)Z");
+
+    jobject result = (*env)->NewObject(env, hash_set_class, hash_set_ctr);
+    const ltc_ecc_set_type * curve = ltc_ecc_sets;
+    while (curve->size != 0) {
+        jstring curve_name = (*env)->NewStringUTF(env, curve->name);
+        (*env)->CallBooleanMethod(env, result, hash_set_add, curve_name);
+        curve++;
+    }
+
+    return result;
 }
\ No newline at end of file
-- 
cgit v1.2.3-70-g09d2


From 80fb4a2dcc45ef66bf476e260b1107e0fa96b280 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 29 Nov 2017 02:52:22 +0100
Subject: Sketch out native SPI classes.

---
 .../ectester/standalone/ECTesterStandalone.java    |  9 ++--
 .../standalone/libs/jni/NativeKeyAgreementSpi.java | 46 ++++++++++++++++++++
 .../libs/jni/NativeKeyPairGeneratorSpi.java        | 31 ++++++++++++++
 .../standalone/libs/jni/NativeSignatureSpi.java    | 49 ++++++++++++++++++++++
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 35 ++++++----------
 5 files changed, 143 insertions(+), 27 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 9fca2b6..8125485 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -59,6 +59,9 @@ public class ECTesterStandalone {
                 return;
             }
 
+            for (ECLibrary lib : libs) {
+                lib.initialize();
+            }
 
             cfg = new Config(libs);
             if (!cfg.readOptions(cli)) {
@@ -66,10 +69,6 @@ public class ECTesterStandalone {
             }
             dataStore = new EC_Store();
 
-            for (ECLibrary lib : libs) {
-                lib.initialize();
-            }
-
             if (cli.isNext("list-libs")) {
                 listLibraries();
             } else if (cli.isNext("list-data")) {
@@ -171,7 +170,7 @@ public class ECTesterStandalone {
                     System.out.println("\t\t- KeyAgreements: " + String.join(",", eckas.stream().map(KeyAgreementIdent::getName).collect(Collectors.toList())));
                 }
                 Set<SignatureIdent> sigs = lib.getSigs();
-                if (!eckas.isEmpty()) {
+                if (!sigs.isEmpty()) {
                     System.out.println("\t\t- Signatures: " + String.join(",", sigs.stream().map(SignatureIdent::getName).collect(Collectors.toList())));
                 }
                 Set<String> curves = lib.getCurves();
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
new file mode 100644
index 0000000..d1b1f42
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
@@ -0,0 +1,46 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import javax.crypto.KeyAgreementSpi;
+import javax.crypto.SecretKey;
+import javax.crypto.ShortBufferException;
+import java.security.*;
+import java.security.spec.AlgorithmParameterSpec;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
+    @Override
+    protected void engineInit(Key key, SecureRandom random) throws InvalidKeyException {
+
+    }
+
+    @Override
+    protected void engineInit(Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException {
+
+    }
+
+    @Override
+    protected Key engineDoPhase(Key key, boolean lastPhase) throws InvalidKeyException, IllegalStateException {
+        return null;
+    }
+
+    @Override
+    protected byte[] engineGenerateSecret() throws IllegalStateException {
+        return new byte[0];
+    }
+
+    @Override
+    protected int engineGenerateSecret(byte[] sharedSecret, int offset) throws IllegalStateException, ShortBufferException {
+        return 0;
+    }
+
+    @Override
+    protected SecretKey engineGenerateSecret(String algorithm) throws IllegalStateException, NoSuchAlgorithmException, InvalidKeyException {
+        return null;
+    }
+
+    public static class TomCrypt extends NativeKeyAgreementSpi {
+
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
new file mode 100644
index 0000000..6b4e5e0
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
@@ -0,0 +1,31 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import java.security.InvalidAlgorithmParameterException;
+import java.security.KeyPair;
+import java.security.KeyPairGeneratorSpi;
+import java.security.SecureRandom;
+import java.security.spec.AlgorithmParameterSpec;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeKeyPairGeneratorSpi extends KeyPairGeneratorSpi {
+    @Override
+    public void initialize(int keysize, SecureRandom random) {
+
+    }
+
+    @Override
+    public void initialize(AlgorithmParameterSpec params, SecureRandom random) throws InvalidAlgorithmParameterException {
+
+    }
+
+    @Override
+    public KeyPair generateKeyPair() {
+        return null;
+    }
+
+    public static class TomCrypt extends NativeKeyPairGeneratorSpi {
+        
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
new file mode 100644
index 0000000..0c6332e
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
@@ -0,0 +1,49 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import java.security.*;
+
+public abstract class NativeSignatureSpi extends SignatureSpi {
+    @Override
+    protected void engineInitVerify(PublicKey publicKey) throws InvalidKeyException {
+
+    }
+
+    @Override
+    protected void engineInitSign(PrivateKey privateKey) throws InvalidKeyException {
+
+    }
+
+    @Override
+    protected void engineUpdate(byte b) throws SignatureException {
+
+    }
+
+    @Override
+    protected void engineUpdate(byte[] b, int off, int len) throws SignatureException {
+
+    }
+
+    @Override
+    protected byte[] engineSign() throws SignatureException {
+        return new byte[0];
+    }
+
+    @Override
+    protected boolean engineVerify(byte[] sigBytes) throws SignatureException {
+        return false;
+    }
+
+    @Override
+    protected void engineSetParameter(String param, Object value) throws InvalidParameterException {
+
+    }
+
+    @Override
+    protected Object engineGetParameter(String param) throws InvalidParameterException {
+        return null;
+    }
+
+    public static class TomCrypt extends NativeSignatureSpi {
+        
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index 7f8f303..f59c1bd 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -20,28 +20,19 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
 
     jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
 
-    jmethodID put = (*env)->GetMethodID(env, provider_class, "put", "(Ljava/lang/Object;Ljava/lang/Object;)Ljava/lang/Object;");
-
-/*    *//* Just test ecc key generation at this time. *//*
-    ecc_key mykey;
-    prng_state prng;
-    int err;
-    *//* register yarrow *//*
-    if (register_prng(&yarrow_desc) == -1) {
-        printf("Error registering Yarrow\n");
-        return;
-    }
-    *//* setup the PRNG *//*
-    if ((err = rng_make_prng(128, find_prng("yarrow"), &prng, NULL)) != CRYPT_OK) {
-        printf("Error setting up PRNG, %s\n", error_to_string(err));
-        return;
-    }
-    *//* make a 192-bit ECC key *//*
-    if ((err = ecc_make_key(&prng, find_prng("yarrow"), 24, &mykey)) != CRYPT_OK) {
-        printf("Error making key: %s\n", error_to_string(err));
-        return;
-    }
-    return;*/
+    jmethodID provider_put = (*env)->GetMethodID(env, provider_class, "put", "(Ljava/lang/Object;Ljava/lang/Object;)Ljava/lang/Object;");
+
+    jstring ec = (*env)->NewStringUTF(env, "KeyPairGenerator.EC");
+    jstring ec_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$TomCrypt");
+    (*env)->CallObjectMethod(env, this, provider_put, ec, ec_value);
+
+    jstring ecdh = (*env)->NewStringUTF(env, "KeyAgreement.ECDH");
+    jstring ecdh_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$TomCrypt");
+    (*env)->CallObjectMethod(env, this, provider_put, ecdh, ecdh_value);
+
+    jstring ecdsa = (*env)->NewStringUTF(env, "Signature.ECDSA");
+    jstring ecdsa_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCrypt");
+    (*env)->CallObjectMethod(env, this, provider_put, ecdsa, ecdsa_value);
 }
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves(JNIEnv *env, jobject this) {
-- 
cgit v1.2.3-70-g09d2


From 5026cc9f03f11fc2a473124e32867f3302f901f7 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 29 Nov 2017 20:43:57 +0100
Subject: Implement KeyPairGeneration for LibTomCrypt.

---
 build-standalone.xml                               |   6 +-
 src/cz/crcs/ectester/common/util/ECUtil.java       |  95 ++++++-
 .../ectester/standalone/ECTesterStandalone.java    |   3 +-
 src/cz/crcs/ectester/standalone/libs/jni/Makefile  |   4 +-
 .../standalone/libs/jni/NativeECPrivateKey.java    |  56 ++++
 .../standalone/libs/jni/NativeECPublicKey.java     |  57 ++++
 .../libs/jni/NativeKeyPairGeneratorSpi.java        |  57 +++-
 src/cz/crcs/ectester/standalone/libs/jni/native.h  |  65 +++++
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 299 ++++++++++++++++++++-
 9 files changed, 626 insertions(+), 16 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/build-standalone.xml b/build-standalone.xml
index a745ca9..7261eee 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -71,7 +71,7 @@
     nbproject/build-impl.xml file. 
 
     -->
-    <target name="package" depends="jar,libs-try">
+    <target name="package" depends="jar">
         <property name="store.jar.name" value="ECTesterStandalone-dist"/>
         <antcall target="dist-build.package"/>
     </target>
@@ -87,6 +87,7 @@
         </exec>
     </target>
 
+    <target name="-post-compile" depends="libs-try"/>
     <target name="-post-clean">
         <exec dir="src/cz/crcs/ectester/standalone/libs/jni" failonerror="true" executable="make clean"
               osfamily="unix"/>
@@ -96,6 +97,9 @@
         <javah classpath="${build.classes.dir}" outputfile="src/cz/crcs/ectester/standalone/libs/jni/native.h">
             <class name="cz.crcs.ectester.standalone.libs.TomcryptLib"/>
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeProvider$TomCrypt"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$TomCrypt"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPublicKey$TomCrypt"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPrivateKey$TomCrypt"/>
         </javah>
     </target>
 </project>
diff --git a/src/cz/crcs/ectester/common/util/ECUtil.java b/src/cz/crcs/ectester/common/util/ECUtil.java
index 713effe..80ba34e 100644
--- a/src/cz/crcs/ectester/common/util/ECUtil.java
+++ b/src/cz/crcs/ectester/common/util/ECUtil.java
@@ -1,7 +1,7 @@
 package cz.crcs.ectester.common.util;
 
 import java.math.BigInteger;
-import java.security.spec.ECPoint;
+import java.security.spec.*;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
@@ -34,4 +34,97 @@ public class ECUtil {
         byte marker = (byte) (0x06 | point.getAffineY().mod(BigInteger.valueOf(2)).byteValue());
         return ByteUtil.concatenate(new byte[]{marker}, x, y);
     }
+
+    private static boolean isResidue(BigInteger a, BigInteger p) {
+        BigInteger exponent = p.subtract(BigInteger.ONE).divide(BigInteger.valueOf(2));
+        BigInteger result = a.modPow(exponent, p);
+        return result.intValueExact() == 1;
+    }
+
+    private static BigInteger modSqrt(BigInteger a, BigInteger p) {
+        BigInteger q = p.subtract(BigInteger.ONE);
+        int s = 0;
+        while (q.mod(BigInteger.valueOf(2)).equals(BigInteger.ZERO)) {
+            q = q.divide(BigInteger.valueOf(2));
+            s++;
+        }
+
+        BigInteger z = BigInteger.ONE;
+        do {
+            z = z.add(BigInteger.ONE);
+        } while (isResidue(z, p));
+
+        BigInteger m = BigInteger.valueOf(s);
+        BigInteger c = z.modPow(q, p);
+        BigInteger t = a.modPow(q, p);
+        BigInteger rExponent = q.add(BigInteger.ONE).divide(BigInteger.valueOf(2));
+        BigInteger r = a.modPow(rExponent, p);
+
+        while (!t.equals(BigInteger.ONE)) {
+            int i = 0;
+            BigInteger exponent;
+            do {
+               exponent = BigInteger.valueOf(2).pow(++i);
+            } while (!t.modPow(exponent, p).equals(BigInteger.ONE));
+
+            BigInteger twoExponent = m.subtract(BigInteger.valueOf(i + 1));
+            BigInteger b = c.modPow(BigInteger.valueOf(2).modPow(twoExponent, p), p);
+            m = BigInteger.valueOf(i);
+            c = b.modPow(BigInteger.valueOf(2), p);
+            t = t.multiply(c).mod(p);
+            r = r.multiply(b).mod(p);
+        }
+        return r;
+    }
+
+    public static ECPoint fromX962(byte[] data, EllipticCurve curve) {
+        if (data == null) {
+            return null;
+        }
+        if (data[0] == 0x04 || data[0] == 0x06 || data[0] == 0x07) {
+            int len = (data.length - 1) / 2;
+            byte[] xbytes = new byte[len];
+            System.arraycopy(data, 1, xbytes, 0, len);
+            byte[] ybytes = new byte[len];
+            System.arraycopy(data, 1 + len, ybytes, 0, len);
+            return new ECPoint(new BigInteger(xbytes), new BigInteger(ybytes));
+        } else if (data[0] == 0x02 || data[0] == 0x03) {
+            if (curve == null) {
+                throw new IllegalArgumentException();
+            }
+            byte[] xbytes = new byte[data.length - 1];
+            System.arraycopy(data, 1, xbytes, 0, data.length - 1);
+            BigInteger x = new BigInteger(xbytes);
+            BigInteger a = curve.getA();
+            BigInteger b = curve.getB();
+
+            ECField field = curve.getField();
+            if (field instanceof ECFieldFp) {
+                BigInteger p = ((ECFieldFp) field).getP();
+                BigInteger alpha = x.modPow(BigInteger.valueOf(3), p);
+                alpha = alpha.add(x.multiply(a));
+                alpha = alpha.add(b);
+
+                BigInteger beta = modSqrt(alpha, p);
+                if (beta.getLowestSetBit() == 0) {
+                    // rightmost bit is one
+                    if (data[0] == 0x02) {
+                        beta = beta.negate();
+                    }
+                } else {
+                    // rightmost bit is zero
+                    if (data[0] == 0x03) {
+                        beta = beta.negate();
+                    }
+                }
+
+                return new ECPoint(x, beta);
+            } else if (field instanceof ECFieldF2m) {
+
+            }
+            return null;
+        } else {
+            throw new IllegalArgumentException();
+        }
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 8125485..8605158 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -23,6 +23,7 @@ import java.security.*;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
 import java.security.spec.AlgorithmParameterSpec;
+import java.security.spec.ECGenParameterSpec;
 import java.security.spec.ECParameterSpec;
 import java.util.*;
 import java.util.stream.Collectors;
@@ -87,7 +88,7 @@ public class ECTesterStandalone {
 
         } catch (ParseException | IOException ex) {
             System.err.println(ex.getMessage());
-        } catch (InvalidAlgorithmParameterException e) {
+        } catch (InvalidAlgorithmParameterException | InvalidParameterException e) {
             System.err.println("Invalid algorithm parameter: " + e.getMessage());
         } catch (NoSuchAlgorithmException nsaex) {
             System.err.println("Algorithm not supported by the selected library: " + nsaex.getMessage());
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/Makefile b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
index 837078c..8750dd5 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/Makefile
+++ b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
@@ -36,10 +36,10 @@ JNI_PLATFORMINCLUDEDIR ?= $(JNI_INCLUDEDIR)/$(JNI_PLATFORM)
 all: tomcrypt_provider.so
 
 tomcrypt_provider.so: tomcrypt.o
-	gcc -DLTM_DESC -DUSE_LTM -fPIC -shared -o $@ $< -ltommath -ltomcrypt
+	gcc -DLTM_DESC -DUSE_LTM -fPIC -g -shared -o $@ $< -ltommath -ltomcrypt
 
 %.o: %.c
-	gcc -fPIC -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
+	gcc -fPIC -g -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
 
 clean:
 	rm -rf *.o
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
new file mode 100644
index 0000000..359b6b0
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
@@ -0,0 +1,56 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import org.bouncycastle.util.Arrays;
+
+import java.math.BigInteger;
+import java.security.interfaces.ECPrivateKey;
+import java.security.spec.ECParameterSpec;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeECPrivateKey implements ECPrivateKey {
+    private String algorithm;
+    private String format;
+
+    public NativeECPrivateKey(String algorithm, String format) {
+        this.algorithm = algorithm;
+        this.format = format;
+    }
+
+    @Override
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    @Override
+    public String getFormat() {
+        return format;
+    }
+
+    public static class TomCrypt extends NativeECPrivateKey {
+        private byte[] keyData;
+        private ECParameterSpec params;
+
+        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+            super("EC", "raw");
+            this.keyData = keyData;
+            this.params = params;
+        }
+
+        @Override
+        public BigInteger getS() {
+            return new BigInteger(keyData);
+        }
+
+        @Override
+        public byte[] getEncoded() {
+            return Arrays.clone(keyData);
+        }
+
+        @Override
+        public ECParameterSpec getParams() {
+            return params;
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java
new file mode 100644
index 0000000..c3791c4
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java
@@ -0,0 +1,57 @@
+package cz.crcs.ectester.standalone.libs.jni;
+
+import cz.crcs.ectester.common.util.ECUtil;
+import org.bouncycastle.util.Arrays;
+
+import java.security.interfaces.ECPublicKey;
+import java.security.spec.ECParameterSpec;
+import java.security.spec.ECPoint;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class NativeECPublicKey implements ECPublicKey {
+    private String algorithm;
+    private String format;
+
+    public NativeECPublicKey(String algorithm, String format) {
+        this.algorithm = algorithm;
+        this.format = format;
+    }
+
+    @Override
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    @Override
+    public String getFormat() {
+        return format;
+    }
+
+    public static class TomCrypt extends NativeECPublicKey {
+        private byte[] keyData;
+        private ECParameterSpec params;
+
+        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+            super("EC", "ANSI X9.62");
+            this.keyData = keyData;
+            this.params = params;
+        }
+
+        @Override
+        public ECPoint getW() {
+            return ECUtil.fromX962(keyData, params.getCurve());
+        }
+
+        @Override
+        public byte[] getEncoded() {
+            return Arrays.clone(keyData);
+        }
+
+        @Override
+        public ECParameterSpec getParams() {
+            return params;
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
index 6b4e5e0..d2cc59d 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
@@ -1,31 +1,74 @@
 package cz.crcs.ectester.standalone.libs.jni;
 
-import java.security.InvalidAlgorithmParameterException;
-import java.security.KeyPair;
-import java.security.KeyPairGeneratorSpi;
-import java.security.SecureRandom;
+import java.security.*;
 import java.security.spec.AlgorithmParameterSpec;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
 public abstract class NativeKeyPairGeneratorSpi extends KeyPairGeneratorSpi {
+    private int keysize;
+    private SecureRandom random;
+    private AlgorithmParameterSpec params;
+    private boolean useKeysize;
+    private boolean useParams;
+
     @Override
     public void initialize(int keysize, SecureRandom random) {
-
+        if (!keysizeSupported(keysize)) {
+            throw new InvalidParameterException("Keysize " + keysize + " not supported.");
+        }
+        this.keysize = keysize;
+        this.random = random;
+        this.useKeysize = true;
+        this.useParams = false;
     }
 
     @Override
     public void initialize(AlgorithmParameterSpec params, SecureRandom random) throws InvalidAlgorithmParameterException {
-
+        if (!paramsSupported(params)) {
+            throw new InvalidAlgorithmParameterException("not supported.");
+        }
+        this.params = params;
+        this.random = random;
+        this.useParams = true;
+        this.useKeysize = false;
     }
 
     @Override
     public KeyPair generateKeyPair() {
+        if (useKeysize) {
+            return generate(keysize, random);
+        } else if (useParams) {
+            return generate(params, random);
+        }
         return null;
     }
 
+    abstract boolean keysizeSupported(int keysize);
+
+    abstract boolean paramsSupported(AlgorithmParameterSpec params);
+
+    abstract KeyPair generate(int keysize, SecureRandom random);
+
+    abstract KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
+
     public static class TomCrypt extends NativeKeyPairGeneratorSpi {
-        
+
+        public TomCrypt() {
+            initialize(256, new SecureRandom());
+        }
+
+        @Override
+        native boolean keysizeSupported(int keysize);
+
+        @Override
+        native boolean paramsSupported(AlgorithmParameterSpec params);
+
+        @Override
+        native KeyPair generate(int keysize, SecureRandom random);
+
+        @Override
+        native KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/native.h b/src/cz/crcs/ectester/standalone/libs/jni/native.h
index e607738..da3a89c 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/native.h
+++ b/src/cz/crcs/ectester/standalone/libs/jni/native.h
@@ -60,3 +60,68 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
 }
 #endif
 #endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+ * Method:    keysizeSupported
+ * Signature: (I)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_keysizeSupported
+  (JNIEnv *, jobject, jint);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+ * Method:    paramsSupported
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_paramsSupported
+  (JNIEnv *, jobject, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+ * Method:    generate
+ * Signature: (ILjava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_generate__ILjava_security_SecureRandom_2
+  (JNIEnv *, jobject, jint, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_TomCrypt
+ * Method:    generate
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;Ljava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_generate__Ljava_security_spec_AlgorithmParameterSpec_2Ljava_security_SecureRandom_2
+  (JNIEnv *, jobject, jobject, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_TomCrypt */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_TomCrypt
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_TomCrypt
+#ifdef __cplusplus
+extern "C" {
+#endif
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_TomCrypt */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_TomCrypt
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_TomCrypt
+#ifdef __cplusplus
+extern "C" {
+#endif
+#ifdef __cplusplus
+}
+#endif
+#endif
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index f59c1bd..f7dedce 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -1,12 +1,28 @@
 #include "native.h"
 #include <stdio.h>
+#include <string.h>
 #define LTM_DESC
 #include <tomcrypt.h>
 
+static prng_state ltc_prng;
+static jclass provider_class;
+static jclass ec_parameter_spec_class;
+static jclass ecgen_parameter_spec_class;
+static jclass pubkey_class;
+static jclass privkey_class;
+static jclass keypair_class;
+static jclass elliptic_curve_class;
+static jclass fp_field_class;
+static jclass f2m_field_class;
+static jclass point_class;
+static jclass biginteger_class;
+
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider(JNIEnv *env, jobject this) {
-    jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
+    /* Create the custom provider. */
+    jclass local_provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
+    provider_class = (*env)->NewGlobalRef(env, local_provider_class);
 
-    jmethodID init = (*env)->GetMethodID(env, provider_class, "<init>", "(Ljava/lang/String;DLjava/lang/String;)V");
+    jmethodID init = (*env)->GetMethodID(env, local_provider_class, "<init>", "(Ljava/lang/String;DLjava/lang/String;)V");
 
     jstring name =  (*env)->NewStringUTF(env, "libtomcrypt " SCRYPT);
     double version = strtod(SCRYPT, NULL);
@@ -14,12 +30,11 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_crea
     return (*env)->NewObject(env, provider_class, init, name, version, name);
 }
 
+
 JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_00024TomCrypt_setup(JNIEnv *env, jobject this) {
     /* Initialize libtommath as the math lib. */
     ltc_mp = ltm_desc;
 
-    jclass provider_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeProvider$TomCrypt");
-
     jmethodID provider_put = (*env)->GetMethodID(env, provider_class, "put", "(Ljava/lang/Object;Ljava/lang/Object;)Ljava/lang/Object;");
 
     jstring ec = (*env)->NewStringUTF(env, "KeyPairGenerator.EC");
@@ -33,6 +48,47 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
     jstring ecdsa = (*env)->NewStringUTF(env, "Signature.ECDSA");
     jstring ecdsa_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCrypt");
     (*env)->CallObjectMethod(env, this, provider_put, ecdsa, ecdsa_value);
+
+    int err;
+    /* register yarrow */
+    if (register_prng(&yarrow_desc) == -1) {
+        fprintf(stderr, "Error registering Yarrow\n");
+        return;
+    }
+    /* setup the PRNG */
+    if ((err = rng_make_prng(128, find_prng("yarrow"), &ltc_prng, NULL)) != CRYPT_OK) {
+        fprintf(stderr, "Error setting up PRNG, %s\n", error_to_string(err));
+    }
+
+    jclass local_ec_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECParameterSpec");
+    ec_parameter_spec_class = (*env)->NewGlobalRef(env, local_ec_parameter_spec_class);
+
+    jclass local_ecgen_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECGenParameterSpec");
+    ecgen_parameter_spec_class = (*env)->NewGlobalRef(env, local_ecgen_parameter_spec_class);
+
+    jclass local_pubkey_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey$TomCrypt");
+    pubkey_class = (*env)->NewGlobalRef(env, local_pubkey_class);
+
+    jclass local_privkey_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey$TomCrypt");
+    privkey_class = (*env)->NewGlobalRef(env, local_privkey_class);
+
+    jclass local_keypair_class = (*env)->FindClass(env, "java/security/KeyPair");
+    keypair_class = (*env)->NewGlobalRef(env, local_keypair_class);
+
+    jclass local_elliptic_curve_class = (*env)->FindClass(env, "java/security/spec/EllipticCurve");
+    elliptic_curve_class = (*env)->NewGlobalRef(env, local_elliptic_curve_class);
+
+    jclass local_fp_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldFp");
+    fp_field_class = (*env)->NewGlobalRef(env, local_fp_field_class);
+
+    jclass local_f2m_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldF2m");
+    f2m_field_class = (*env)->NewGlobalRef(env, local_f2m_field_class);
+
+    jclass local_biginteger_class = (*env)->FindClass(env, "java/math/BigInteger");
+    biginteger_class = (*env)->NewGlobalRef(env, local_biginteger_class);
+
+    jclass local_point_class = (*env)->FindClass(env, "java/security/spec/ECPoint");
+    point_class = (*env)->NewGlobalRef(env, local_point_class);
 }
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves(JNIEnv *env, jobject this) {
@@ -50,4 +106,239 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getC
     }
 
     return result;
+}
+
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_keysizeSupported(JNIEnv *env, jobject this, jint keysize){
+    const ltc_ecc_set_type * curve = ltc_ecc_sets;
+    while (curve->size != 0) {
+        if (curve->size * 8 == keysize) {
+            return JNI_TRUE;
+        }
+        curve++;
+    }
+
+    return JNI_FALSE;
+}
+
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_paramsSupported(JNIEnv *env, jobject this, jobject params){
+    if (params == NULL) {
+        return JNI_FALSE;
+    }
+
+    if ((*env)->IsInstanceOf(env, params, ec_parameter_spec_class)) {
+        jmethodID get_curve = (*env)->GetMethodID(env, ec_parameter_spec_class, "getCurve", "()Ljava/security/spec/EllipticCurve;");
+        jobject curve = (*env)->CallObjectMethod(env, params, get_curve);
+
+        jmethodID get_field = (*env)->GetMethodID(env, elliptic_curve_class, "getField", "()Ljava/security/spec/ECField;");
+        jobject field = (*env)->CallObjectMethod(env, curve, get_field);
+
+        if ((*env)->IsInstanceOf(env, field, fp_field_class)) {
+            jmethodID get_p = (*env)->GetMethodID(env, fp_field_class, "getP", "()Ljava/math/BigInteger;");
+            jobject p = (*env)->CallObjectMethod(env, field, get_p);
+
+            jmethodID get_a = (*env)->GetMethodID(env, elliptic_curve_class, "getA", "()Ljava/math/BigInteger;");
+            jobject a = (*env)->CallObjectMethod(env, curve, get_a);
+
+            jmethodID biginteger_valueof = (*env)->GetStaticMethodID(env, biginteger_class, "valueOf", "(J)Ljava/math/BigInteger;");
+            jobject three = (*env)->CallStaticObjectMethod(env, biginteger_class, biginteger_valueof, (jlong)3);
+
+            jmethodID biginteger_add = (*env)->GetMethodID(env, biginteger_class, "add", "(Ljava/math/BigInteger;)Ljava/math/BigInteger;");
+            jobject a_3 = (*env)->CallObjectMethod(env, a, biginteger_add, three);
+
+            jmethodID biginteger_equals = (*env)->GetMethodID(env, biginteger_class, "equals", "(Ljava/lang/Object;)Z");
+            jboolean eq = (*env)->CallBooleanMethod(env, p, biginteger_equals, a_3);
+            return eq;
+        } else if ((*env)->IsInstanceOf(env, field, f2m_field_class)) {
+            return JNI_FALSE;
+        } else {
+            return JNI_FALSE;
+        }
+    } else if ((*env)->IsInstanceOf(env, params, ecgen_parameter_spec_class)) {
+        jmethodID get_name = (*env)->GetMethodID(env, ecgen_parameter_spec_class, "getName", "()Ljava/lang/String;");
+        jstring name = (*env)->CallObjectMethod(env, params, get_name);
+        const char *utf_name = (*env)->GetStringUTFChars(env, name, NULL);
+        const ltc_ecc_set_type * curve = ltc_ecc_sets;
+        while (curve->size != 0) {
+            if (strcasecmp(utf_name, curve->name) == 0) {
+                (*env)->ReleaseStringUTFChars(env, name, utf_name);
+                return JNI_TRUE;
+            }
+            curve++;
+        }
+        return JNI_FALSE;
+    } else {
+        return JNI_FALSE;
+    }
+}
+
+static jobject create_ec_param_spec(JNIEnv *env, const ltc_ecc_set_type *curve) {
+    jstring p_string = (*env)->NewStringUTF(env, curve->prime);
+    jmethodID biginteger_init = (*env)->GetMethodID(env, biginteger_class, "<init>", "(Ljava/lang/String;I)V");
+    jobject p = (*env)->NewObject(env, biginteger_class, biginteger_init, p_string, (jint) 16);
+
+    jmethodID fp_field_init = (*env)->GetMethodID(env, fp_field_class, "<init>", "(Ljava/math/BigInteger;)V");
+    jobject field = (*env)->NewObject(env, fp_field_class, fp_field_init, p);
+
+    jmethodID biginteger_subtract = (*env)->GetMethodID(env, biginteger_class, "subtract", "(Ljava/math/BigInteger;)Ljava/math/BigInteger;");
+    jmethodID biginteger_valueof = (*env)->GetStaticMethodID(env, biginteger_class, "valueOf", "(J)Ljava/math/BigInteger;");
+    jobject three = (*env)->CallStaticObjectMethod(env, biginteger_class, biginteger_valueof, (jlong) 3);
+    jobject a = (*env)->CallObjectMethod(env, p, biginteger_subtract, three);
+
+    jstring b_string = (*env)->NewStringUTF(env, curve->B);
+    jobject b = (*env)->NewObject(env, biginteger_class, biginteger_init, b_string, (jint) 16);
+
+    jmethodID elliptic_curve_init = (*env)->GetMethodID(env, elliptic_curve_class, "<init>", "(Ljava/security/spec/ECField;Ljava/math/BigInteger;Ljava/math/BigInteger;)V");
+    jobject elliptic_curve = (*env)->NewObject(env, elliptic_curve_class, elliptic_curve_init, field, a, b);
+
+    jstring gx_string = (*env)->NewStringUTF(env, curve->Gx);
+    jstring gy_string = (*env)->NewStringUTF(env, curve->Gy);
+    jobject gx = (*env)->NewObject(env, biginteger_class, biginteger_init, gx_string, (jint) 16);
+    jobject gy = (*env)->NewObject(env, biginteger_class, biginteger_init, gy_string, (jint) 16);
+
+    jmethodID point_init = (*env)->GetMethodID(env, point_class, "<init>", "(Ljava/math/BigInteger;Ljava/math/BigInteger;)V");
+    jobject g = (*env)->NewObject(env, point_class, point_init, gx, gy);
+
+    jstring n_string = (*env)->NewStringUTF(env, curve->order);
+    jobject n = (*env)->NewObject(env, biginteger_class, biginteger_init, n_string, (jint) 16);
+
+    jmethodID ec_parameter_spec_init = (*env)->GetMethodID(env, ec_parameter_spec_class, "<init>", "(Ljava/security/spec/EllipticCurve;Ljava/security/spec/ECPoint;Ljava/math/BigInteger;I)V");
+    return (*env)->NewObject(env, ec_parameter_spec_class, ec_parameter_spec_init, elliptic_curve, g, n, (jint) 1);
+}
+
+static char *biginteger_to_hex(JNIEnv *env, jobject big, jint bytes) {
+    jmethodID to_string = (*env)->GetMethodID(env, biginteger_class, "toString", "(I)Ljava/lang/String;");
+    jstring big_string = (*env)->CallObjectMethod(env, big, to_string, (jint) 16);
+
+    jsize len = (*env)->GetStringUTFLength(env, big_string);
+    char raw_string[len];
+    (*env)->GetStringUTFRegion(env, big_string, 0, len, raw_string);
+
+    char *result = calloc(bytes, 2);
+    if (len >= bytes) {
+        return strncpy(result, raw_string, 2*bytes);
+    } else {
+        jsize diff = bytes - len;
+        for (jint i = 0; i < diff*2; ++i) {
+            result[i] = '0';
+        }
+        return strncpy(result + diff*2, raw_string, 2*bytes);
+    }
+}
+
+static ltc_ecc_set_type* create_curve(JNIEnv *env, jobject params) {
+    jmethodID get_curve = (*env)->GetMethodID(env, ec_parameter_spec_class, "getCurve", "()Ljava/security/spec/EllipticCurve;");
+    jobject elliptic_curve = (*env)->CallObjectMethod(env, params, get_curve);
+
+    jmethodID get_field = (*env)->GetMethodID(env, elliptic_curve_class, "getField", "()Ljava/security/spec/ECField;");
+    jobject field = (*env)->CallObjectMethod(env, elliptic_curve, get_field);
+
+    jmethodID get_bits = (*env)->GetMethodID(env, fp_field_class, "getFieldSize", "()I");
+    jint bits = (*env)->CallIntMethod(env, field, get_bits);
+    jint bytes = (bits + (8 - bits % 8)) / 8;
+
+    jmethodID get_b = (*env)->GetMethodID(env, elliptic_curve_class, "getB", "()Ljava/math/BigInteger;");
+    jobject b = (*env)->CallObjectMethod(env, elliptic_curve, get_b);
+
+    jmethodID get_p = (*env)->GetMethodID(env, fp_field_class, "getP", "()Ljava/math/BigInteger;");
+    jobject p = (*env)->CallObjectMethod(env, field, get_p);
+
+    jmethodID get_g = (*env)->GetMethodID(env, ec_parameter_spec_class, "getGenerator", "()Ljava/security/spec/ECPoint;");
+    jobject g = (*env)->CallObjectMethod(env, params, get_g);
+
+    jmethodID get_x = (*env)->GetMethodID(env, point_class, "getAffineX", "()Ljava/math/BigInteger;");
+    jobject gx = (*env)->CallObjectMethod(env, g, get_x);
+
+    jmethodID get_y = (*env)->GetMethodID(env, point_class, "getAffineY", "()Ljava/math/BigInteger;");
+    jobject gy = (*env)->CallObjectMethod(env, g, get_y);
+
+    jmethodID get_n = (*env)->GetMethodID(env, ec_parameter_spec_class, "getOrder", "()Ljava/math/BigInteger;");
+    jobject n = (*env)->CallObjectMethod(env, params, get_n);
+
+    ltc_ecc_set_type *curve = calloc(sizeof(ltc_ecc_set_type), 1);
+    curve->size = bytes;
+    curve->name = "";
+    curve->prime = biginteger_to_hex(env, p, bytes);
+    curve->B = biginteger_to_hex(env, b, bytes);
+    curve->order = biginteger_to_hex(env, n, bytes);
+    curve->Gx = biginteger_to_hex(env, gx, bytes);
+    curve->Gy = biginteger_to_hex(env, gy, bytes);
+
+    return curve;
+}
+
+static jobject generate_from_curve(JNIEnv *env, const ltc_ecc_set_type *curve) {
+    ecc_key key;
+    int err;
+    if ((err = ecc_make_key_ex(&ltc_prng, find_prng("yarrow"), &key, curve)) != CRYPT_OK) {
+        printf("Error making key: %s\n", error_to_string(err));
+        return NULL;
+    }
+    unsigned long key_len = 2*curve->size + 1;
+    jbyteArray pub_bytes = (*env)->NewByteArray(env, key_len);
+    jbyte *key_pub = (*env)->GetByteArrayElements(env, pub_bytes, NULL);
+    ecc_ansi_x963_export(&key, key_pub, &key_len);
+    (*env)->ReleaseByteArrayElements(env, pub_bytes, key_pub, 0);
+
+    jobject ec_param_spec = create_ec_param_spec(env, curve);
+
+    jobject ec_pub_param_spec = (*env)->NewLocalRef(env, ec_param_spec);
+    jmethodID ec_pub_init = (*env)->GetMethodID(env, pubkey_class, "<init>", "([BLjava/security/spec/ECParameterSpec;)V");
+    jobject pubkey = (*env)->NewObject(env, pubkey_class, ec_pub_init, pub_bytes, ec_param_spec);
+
+    jbyteArray priv_bytes = (*env)->NewByteArray(env, curve->size);
+    jbyte *key_priv = (*env)->GetByteArrayElements(env, priv_bytes, NULL);
+    mp_to_unsigned_bin(key.k, key_priv);
+    (*env)->ReleaseByteArrayElements(env, priv_bytes, key_priv, 0);
+
+    jobject ec_priv_param_spec = (*env)->NewLocalRef(env, ec_param_spec);
+    jmethodID ec_priv_init = (*env)->GetMethodID(env, privkey_class, "<init>", "([BLjava/security/spec/ECParameterSpec;)V");
+    jobject privkey = (*env)->NewObject(env, privkey_class, ec_priv_init, priv_bytes, ec_priv_param_spec);
+
+    jmethodID keypair_init = (*env)->GetMethodID(env, keypair_class, "<init>", "(Ljava/security/PublicKey;Ljava/security/PrivateKey;)V");
+
+    ecc_free(&key);
+    return (*env)->NewObject(env, keypair_class, keypair_init, pubkey, privkey);
+}
+
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_generate__ILjava_security_SecureRandom_2(JNIEnv *env, jobject this, jint keysize, jobject random){
+    int key_bytes = keysize / 8;
+
+    const ltc_ecc_set_type *curve = ltc_ecc_sets;
+    while (curve->size != 0) {
+        if (curve->size == key_bytes) {
+            break;
+        }
+        curve++;
+    }
+
+    if (curve->size == 0) {
+        return NULL;
+    }
+
+    return generate_from_curve(env, curve);
+}
+
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_generate__Ljava_security_spec_AlgorithmParameterSpec_2Ljava_security_SecureRandom_2(JNIEnv *env, jobject this, jobject params, jobject random){
+    if ((*env)->IsInstanceOf(env, params, ec_parameter_spec_class)) {
+        ltc_ecc_set_type *curve = create_curve(env, params);
+        jobject result = generate_from_curve(env, curve);
+        free(curve);
+        return result;
+    } else if ((*env)->IsInstanceOf(env, params, ecgen_parameter_spec_class)) {
+        jmethodID get_name = (*env)->GetMethodID(env, ecgen_parameter_spec_class, "getName", "()Ljava/lang/String;");
+        jstring name = (*env)->CallObjectMethod(env, params, get_name);
+        const char* utf_name = (*env)->GetStringUTFChars(env, name, NULL);
+        const ltc_ecc_set_type* curve = ltc_ecc_sets;
+        while (curve->size != 0) {
+            if (strcasecmp(utf_name, curve->name) == 0) {
+                break;
+            }
+            curve++;
+        }
+        (*env)->ReleaseStringUTFChars(env, name, utf_name);
+
+        return generate_from_curve(env, curve);
+    } else {
+        return NULL;
+    }
 }
\ No newline at end of file
-- 
cgit v1.2.3-70-g09d2


From d571f404e51356239cdb7d23de95074b271016e1 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Thu, 30 Nov 2017 19:42:20 +0100
Subject: Fix NativeKeyAgreement keysize mismatch on BigInteger conversion.

---
 src/cz/crcs/ectester/common/util/ECUtil.java       | 62 ++++++++++++++++++----
 .../ectester/standalone/ECTesterStandalone.java    |  7 ++-
 .../standalone/libs/jni/NativeKeyAgreementSpi.java |  4 +-
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 51 +++++++++++++-----
 4 files changed, 94 insertions(+), 30 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/common/util/ECUtil.java b/src/cz/crcs/ectester/common/util/ECUtil.java
index 80ba34e..662720a 100644
--- a/src/cz/crcs/ectester/common/util/ECUtil.java
+++ b/src/cz/crcs/ectester/common/util/ECUtil.java
@@ -7,34 +7,75 @@ import java.security.spec.*;
  * @author Jan Jancar johny@neuromancer.sk
  */
 public class ECUtil {
-    public static byte[] toX962Compressed(ECPoint point) {
+
+    public static byte[] toByteArray(BigInteger what, int bits) {
+        byte[] raw = what.toByteArray();
+        int bytes = (bits + 7) / 8;
+        if (raw.length < bytes) {
+            byte[] result = new byte[bytes];
+            System.arraycopy(raw,0, result, bytes - raw.length, raw.length);
+            return result;
+        }
+        if (bytes < raw.length) {
+            byte[] result = new byte[bytes];
+            System.arraycopy(raw, raw.length - bytes, result, 0, bytes);
+            return result;
+        }
+        return raw;
+    }
+
+    public static byte[] toX962Compressed(ECPoint point, int bits) {
         if (point.equals(ECPoint.POINT_INFINITY)) {
             return new byte[]{0};
         }
-        byte[] x = point.getAffineX().toByteArray();
+        byte[] x = toByteArray(point.getAffineX(), bits);
         byte marker = (byte) (0x02 | point.getAffineY().mod(BigInteger.valueOf(2)).byteValue());
         return ByteUtil.concatenate(new byte[]{marker}, x);
     }
 
-    public static byte[] toX962Uncompressed(ECPoint point) {
+    public static byte[] toX962Compressed(ECPoint point, EllipticCurve curve) {
+        return toX962Compressed(point, curve.getField().getFieldSize());
+    }
+
+    public static byte[] toX962Compressed(ECPoint point, ECParameterSpec spec) {
+        return toX962Compressed(point, spec.getCurve());
+    }
+
+    public static byte[] toX962Uncompressed(ECPoint point, int bits) {
         if (point.equals(ECPoint.POINT_INFINITY)) {
             return new byte[]{0};
         }
-        byte[] x = point.getAffineX().toByteArray();
-        byte[] y = point.getAffineY().toByteArray();
+        byte[] x = toByteArray(point.getAffineX(), bits);
+        byte[] y = toByteArray(point.getAffineY(), bits);
         return ByteUtil.concatenate(new byte[]{0x04}, x, y);
     }
 
-    public static byte[] toX962Hybrid(ECPoint point) {
+    public static byte[] toX962Uncompressed(ECPoint point, EllipticCurve curve) {
+        return toX962Uncompressed(point, curve.getField().getFieldSize());
+    }
+
+    public static byte[] toX962Uncompressed(ECPoint point, ECParameterSpec spec) {
+        return toX962Uncompressed(point, spec.getCurve());
+    }
+
+    public static byte[] toX962Hybrid(ECPoint point, int bits) {
         if (point.equals(ECPoint.POINT_INFINITY)) {
             return new byte[]{0};
         }
-        byte[] x = point.getAffineX().toByteArray();
-        byte[] y = point.getAffineY().toByteArray();
+        byte[] x = toByteArray(point.getAffineX(), bits);
+        byte[] y = toByteArray(point.getAffineY(), bits);
         byte marker = (byte) (0x06 | point.getAffineY().mod(BigInteger.valueOf(2)).byteValue());
         return ByteUtil.concatenate(new byte[]{marker}, x, y);
     }
 
+    public static byte[] toX962Hybrid(ECPoint point, EllipticCurve curve) {
+        return toX962Hybrid(point, curve.getField().getFieldSize());
+    }
+
+    public static byte[] toX962Hybrid(ECPoint point, ECParameterSpec spec) {
+        return toX962Hybrid(point, spec.getCurve());
+    }
+
     private static boolean isResidue(BigInteger a, BigInteger p) {
         BigInteger exponent = p.subtract(BigInteger.ONE).divide(BigInteger.valueOf(2));
         BigInteger result = a.modPow(exponent, p);
@@ -64,7 +105,7 @@ public class ECUtil {
             int i = 0;
             BigInteger exponent;
             do {
-               exponent = BigInteger.valueOf(2).pow(++i);
+                exponent = BigInteger.valueOf(2).pow(++i);
             } while (!t.modPow(exponent, p).equals(BigInteger.ONE));
 
             BigInteger twoExponent = m.subtract(BigInteger.valueOf(i + 1));
@@ -120,7 +161,8 @@ public class ECUtil {
 
                 return new ECPoint(x, beta);
             } else if (field instanceof ECFieldF2m) {
-
+                //TODO
+                throw new UnsupportedOperationException();
             }
             return null;
         } else {
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 8605158..3ad7141 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -23,7 +23,6 @@ import java.security.*;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
 import java.security.spec.AlgorithmParameterSpec;
-import java.security.spec.ECGenParameterSpec;
 import java.security.spec.ECParameterSpec;
 import java.util.*;
 import java.util.stream.Collectors;
@@ -246,7 +245,7 @@ public class ECTesterStandalone {
                     byte[] result = ka.generateSecret();
                     ka = kaIdent.getInstance(lib.getProvider());
 
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW()), false);
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
                     String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
                     String dh = ByteUtil.bytesToHex(result, false);
                     System.out.println(String.format("%d;%d;%s;%s;%s", i, elapsed, pub, priv, dh));
@@ -336,7 +335,7 @@ public class ECTesterStandalone {
                     verifyTime += System.nanoTime();
 
 
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW()), false);
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
                     String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
                     String sign = ByteUtil.bytesToHex(signature, false);
                     System.out.println(String.format("%d;%s;%d;%d;%s;%s;%s;%d", i, dataString, signTime, verifyTime, pub, priv, sign, verified ? 1 : 0));
@@ -385,7 +384,7 @@ public class ECTesterStandalone {
                     ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
                     ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
 
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW()), false);
+                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW(), publicKey.getParams()), false);
                     String priv = ByteUtil.bytesToHex(privateKey.getS().toByteArray(), false);
                     System.out.println(String.format("%d;%d;%s;%s", i, elapsed, pub, priv));
                 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
index fee0ea8..47eeabd 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
@@ -67,8 +67,8 @@ public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
 
     @Override
     protected byte[] engineGenerateSecret() throws IllegalStateException {
-        byte[] pubkey = ECUtil.toX962Uncompressed(publicKey.getW());
-        byte[] privkey = privateKey.getS().toByteArray();
+        byte[] pubkey = ECUtil.toX962Uncompressed(publicKey.getW(), params.getCurve());
+        byte[] privkey = ECUtil.toByteArray(privateKey.getS(), params.getCurve().getField().getFieldSize());
         return generateSecret(pubkey, privkey, params);
     }
 
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index b43b05a..d32c6a6 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -15,6 +15,7 @@ static jclass fp_field_class;
 static jclass f2m_field_class;
 static jclass point_class;
 static jclass biginteger_class;
+static jclass illegal_state_exception_class;
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider(JNIEnv *env, jobject this) {
     /* Create the custom provider. */
@@ -88,6 +89,9 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
 
     jclass local_point_class = (*env)->FindClass(env, "java/security/spec/ECPoint");
     point_class = (*env)->NewGlobalRef(env, local_point_class);
+
+    jclass local_illegal_state_exception_class = (*env)->FindClass(env, "java/lang/IllegalStateException");
+    illegal_state_exception_class = (*env)->NewGlobalRef(env, local_illegal_state_exception_class);
 }
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves(JNIEnv *env, jobject this) {
@@ -233,7 +237,7 @@ static ltc_ecc_set_type* create_curve(JNIEnv *env, jobject params) {
 
     jmethodID get_bits = (*env)->GetMethodID(env, fp_field_class, "getFieldSize", "()I");
     jint bits = (*env)->CallIntMethod(env, field, get_bits);
-    jint bytes = (bits + (8 - bits % 8)) / 8;
+    jint bytes = (bits + 7) / 8;
 
     jmethodID get_b = (*env)->GetMethodID(env, elliptic_curve_class, "getB", "()Ljava/math/BigInteger;");
     jobject b = (*env)->CallObjectMethod(env, elliptic_curve, get_b);
@@ -265,18 +269,23 @@ static ltc_ecc_set_type* create_curve(JNIEnv *env, jobject params) {
     return curve;
 }
 
+static void throw_new(JNIEnv *env, const char *class, const char *message) {
+    jclass clazz = (*env)->FindClass(env, class);
+    (*env)->ThrowNew(env, clazz, message);
+}
+
 static jobject generate_from_curve(JNIEnv *env, const ltc_ecc_set_type *curve) {
     ecc_key key;
     int err;
     if ((err = ecc_make_key_ex(&ltc_prng, find_prng("yarrow"), &key, curve)) != CRYPT_OK) {
-        printf("Error making key: %s\n", error_to_string(err));
+        throw_new(env, "java/security/GeneralSecurityException", error_to_string(err));
         return NULL;
     }
     unsigned long key_len = 2*curve->size + 1;
     jbyteArray pub_bytes = (*env)->NewByteArray(env, key_len);
     jbyte *key_pub = (*env)->GetByteArrayElements(env, pub_bytes, NULL);
     ecc_ansi_x963_export(&key, key_pub, &key_len);
-    (*env)->ReleaseByteArrayElements(env, pub_bytes, key_pub, 0);
+    (*env)->ReleaseByteArrayElements(env, pub_bytes, key_pub, JNI_COMMIT);
 
     jobject ec_param_spec = create_ec_param_spec(env, curve);
 
@@ -287,7 +296,7 @@ static jobject generate_from_curve(JNIEnv *env, const ltc_ecc_set_type *curve) {
     jbyteArray priv_bytes = (*env)->NewByteArray(env, curve->size);
     jbyte *key_priv = (*env)->GetByteArrayElements(env, priv_bytes, NULL);
     ltc_mp.unsigned_write(key.k, key_priv);
-    (*env)->ReleaseByteArrayElements(env, priv_bytes, key_priv, 0);
+    (*env)->ReleaseByteArrayElements(env, priv_bytes, key_priv, JNI_COMMIT);
 
     jobject ec_priv_param_spec = (*env)->NewLocalRef(env, ec_param_spec);
     jmethodID ec_priv_init = (*env)->GetMethodID(env, privkey_class, "<init>", "([BLjava/security/spec/ECParameterSpec;)V");
@@ -347,7 +356,13 @@ JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKey
 
     jsize pub_size = (*env)->GetArrayLength(env, pubkey);
     jbyte *pub_data = (*env)->GetByteArrayElements(env, pubkey, NULL);
-    jsize pub_half = (pub_size - 1) / 2;
+
+    if (curve->size != (pub_size - 1) / 2) {
+        throw_new(env, "java/lang/IllegalStateException", "Curve size does not match the public key size.");
+        (*env)->ReleaseByteArrayElements(env, pubkey, pub_data, JNI_ABORT);
+        free(curve);
+        return NULL;
+    }
 
     ecc_key pub;
     pub.type = PK_PUBLIC;
@@ -355,38 +370,46 @@ JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKey
     pub.dp = curve;
     ltc_init_multi(&pub.pubkey.x, &pub.pubkey.y, &pub.pubkey.z, NULL);
     ltc_mp.set_int(pub.pubkey.z, 1);
-    ltc_mp.unsigned_read(pub.pubkey.x, pub_data + 1, (unsigned long) pub_half);
-    ltc_mp.unsigned_read(pub.pubkey.y, pub_data + 1 + pub_half, (unsigned long) pub_half);
+    ltc_mp.unsigned_read(pub.pubkey.x, pub_data + 1, (unsigned long) curve->size);
+    ltc_mp.unsigned_read(pub.pubkey.y, pub_data + 1 + curve->size, (unsigned long) curve->size);
 
     (*env)->ReleaseByteArrayElements(env, pubkey, pub_data, JNI_ABORT);
 
+
     jsize priv_size = (*env)->GetArrayLength(env, privkey);
     jbyte *priv_data = (*env)->GetByteArrayElements(env, privkey, NULL);
 
+    if (curve->size != priv_size) {
+        throw_new(env, "java/lang/IllegalStateException", "Curve size does not match the private key size.");
+        (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
+        free(curve);
+        return NULL;
+    }
+
     ecc_key priv;
     priv.type = PK_PRIVATE;
     priv.idx = -1;
     priv.dp = curve;
     ltc_mp.init(&priv.k);
-    ltc_mp.unsigned_read(priv.k, priv_data, (unsigned long) priv_size);
+    ltc_mp.unsigned_read(priv.k, priv_data, (unsigned long) curve->size);
 
     (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
 
-    unsigned char result[pub_half];
-
-    unsigned long output_len = pub_half;
+    unsigned char result[curve->size];
+    unsigned long output_len = curve->size;
     int err;
     if ((err = ecc_shared_secret(&priv, &pub, result, &output_len)) != CRYPT_OK) {
-        printf("Error during shared secret computation: %s\n", error_to_string(err));
+        throw_new(env, "java/security/GeneralSecurityException", error_to_string(err));
         free(curve);
         return NULL;
     }
 
-    jbyteArray output = (*env)->NewByteArray(env, pub_half);
+    jbyteArray output = (*env)->NewByteArray(env, curve->size);
     jbyte *output_data = (*env)->GetByteArrayElements(env, output, NULL);
-    memcpy(output_data, result, pub_half);
+    memcpy(output_data, result, curve->size);
     (*env)->ReleaseByteArrayElements(env, output, output_data, JNI_COMMIT);
 
+    ltc_cleanup_multi(&pub.pubkey.x, &pub.pubkey.y, &pub.pubkey.z, &priv.k, NULL);
     free(curve);
     return output;
 }
\ No newline at end of file
-- 
cgit v1.2.3-70-g09d2


From c33faeed138b3cbb0324878fa24481916791ec50 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Thu, 30 Nov 2017 23:57:09 +0100
Subject: Implement ECDSA for LibTomCrypt.

---
 build-standalone.xml                               |   1 +
 .../ectester/standalone/ECTesterStandalone.java    |   6 +-
 .../standalone/libs/jni/NativeKeyAgreementSpi.java |   4 +-
 .../standalone/libs/jni/NativeSignatureSpi.java    |  57 +++++++--
 src/cz/crcs/ectester/standalone/libs/jni/native.h  |  27 +++++
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   | 135 ++++++++++++++++-----
 6 files changed, 188 insertions(+), 42 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/build-standalone.xml b/build-standalone.xml
index 8098ce2..ef6ab2a 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -101,6 +101,7 @@
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPublicKey$TomCrypt"/>
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPrivateKey$TomCrypt"/>
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$TomCrypt"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCryptRaw"/>
         </javah>
     </target>
 </project>
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 3ad7141..5ecff9b 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -116,6 +116,8 @@ public class ECTesterStandalone {
         Options ecdsaOpts = new Options();
         ecdsaOpts.addOption(Option.builder("t").longOpt("type").desc("Set Signature object [type].").hasArg().argName("type").optionalArg(false).build());
         ecdsaOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Do ECDSA [amount] times.").build());
+        ecdsaOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
+        ecdsaOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         ecdsaOpts.addOption(Option.builder("f").longOpt("file").hasArg().argName("file").optionalArg(false).desc("Input [file] to sign.").build());
         ParserOptions ecdsa = new ParserOptions(new DefaultParser(), ecdsaOpts);
         actions.put("ecdsa", ecdsa);
@@ -271,7 +273,7 @@ public class ECTesterStandalone {
             dataString = "";
         } else {
             SecureRandom random = new SecureRandom();
-            data = new byte[128];
+            data = new byte[32];
             random.nextBytes(data);
             dataString = ByteUtil.bytesToHex(data, false);
         }
@@ -449,7 +451,7 @@ public class ECTesterStandalone {
         }
 
         boolean readOptions(TreeCommandLine cli) {
-            if (cli.isNext("generate") || cli.isNext("export") || cli.isNext("ecdh")) {
+            if (cli.isNext("generate") || cli.isNext("export") || cli.isNext("ecdh") || cli.isNext("ecdsa")) {
                 if (!cli.hasArg(-1)) {
                     System.err.println("Missing library name argument.");
                     return false;
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
index 47eeabd..913f73e 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
@@ -23,7 +23,7 @@ public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
     protected void engineInit(Key key, SecureRandom random) throws InvalidKeyException {
         if (!(key instanceof ECPrivateKey)) {
             throw new InvalidKeyException
-                    ("Key must be instance of PrivateKey");
+                    ("Key must be instance of ECPrivateKey");
         }
         privateKey = (ECPrivateKey) key;
         this.params = privateKey.getParams();
@@ -52,7 +52,7 @@ public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
         }
         if (!(key instanceof ECPublicKey)) {
             throw new InvalidKeyException
-                    ("Key must be a PublicKey with algorithm EC");
+                    ("Key must be an instance of ECPublicKey");
         }
         ECParameterSpec publicParams = ((ECPublicKey) key).getParams();
         if (!(params.getCurve().equals(publicParams.getCurve()) &&
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
index 0c6332e..a9ec8a6 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
@@ -1,49 +1,86 @@
 package cz.crcs.ectester.standalone.libs.jni;
 
+import cz.crcs.ectester.common.util.ECUtil;
+
+import java.io.ByteArrayOutputStream;
 import java.security.*;
+import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.ECPublicKey;
+import java.security.spec.ECParameterSpec;
 
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
 public abstract class NativeSignatureSpi extends SignatureSpi {
+    private ECPublicKey verifyKey;
+    private ECPrivateKey signKey;
+    private ECParameterSpec params;
+
+    private ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+
     @Override
     protected void engineInitVerify(PublicKey publicKey) throws InvalidKeyException {
-
+        if (!(publicKey instanceof ECPublicKey)) {
+            throw new InvalidKeyException
+                    ("Key must be an instance of ECPublicKey");
+        }
+        verifyKey = (ECPublicKey) publicKey;
+        params = verifyKey.getParams();
+        buffer.reset();
     }
 
     @Override
     protected void engineInitSign(PrivateKey privateKey) throws InvalidKeyException {
-
+        if (!(privateKey instanceof ECPrivateKey)) {
+            throw new InvalidKeyException
+                    ("Key must be an instance of ECPrivateKey");
+        }
+        signKey = (ECPrivateKey) privateKey;
+        params = signKey.getParams();
+        buffer.reset();
     }
 
     @Override
     protected void engineUpdate(byte b) throws SignatureException {
-
+        buffer.write(b);
     }
 
     @Override
     protected void engineUpdate(byte[] b, int off, int len) throws SignatureException {
-
+        buffer.write(b, off, len);
     }
 
     @Override
     protected byte[] engineSign() throws SignatureException {
-        return new byte[0];
+        return sign(buffer.toByteArray(), ECUtil.toByteArray(signKey.getS(), params.getCurve().getField().getFieldSize()), params);
     }
 
     @Override
     protected boolean engineVerify(byte[] sigBytes) throws SignatureException {
-        return false;
+        return verify(sigBytes, buffer.toByteArray(), ECUtil.toX962Uncompressed(verifyKey.getW(), params), params);
     }
 
     @Override
     protected void engineSetParameter(String param, Object value) throws InvalidParameterException {
-
+        throw new UnsupportedOperationException("setParameter() not supported");
     }
 
     @Override
     protected Object engineGetParameter(String param) throws InvalidParameterException {
-        return null;
+        throw new UnsupportedOperationException("getParameter() not supported");
     }
 
-    public static class TomCrypt extends NativeSignatureSpi {
-        
+    abstract byte[] sign(byte[] data, byte[] privkey, ECParameterSpec params);
+
+    abstract boolean verify(byte[] signature, byte[] data, byte[] pubkey, ECParameterSpec params);
+
+    public static class TomCryptRaw extends NativeSignatureSpi {
+
+        @Override
+        native byte[] sign(byte[] data, byte[] privkey, ECParameterSpec params);
+
+        @Override
+        native boolean verify(byte[] signature, byte[] data, byte[] pubkey, ECParameterSpec params);
+
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/native.h b/src/cz/crcs/ectester/standalone/libs/jni/native.h
index 7f63f61..852dd53 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/native.h
+++ b/src/cz/crcs/ectester/standalone/libs/jni/native.h
@@ -144,3 +144,30 @@ JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKey
 }
 #endif
 #endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_TomCryptRaw */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_TomCryptRaw
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_TomCryptRaw
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_TomCryptRaw
+ * Method:    sign
+ * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
+ */
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024TomCryptRaw_sign
+  (JNIEnv *, jobject, jbyteArray, jbyteArray, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_TomCryptRaw
+ * Method:    verify
+ * Signature: ([B[B[BLjava/security/spec/ECParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024TomCryptRaw_verify
+  (JNIEnv *, jobject, jbyteArray, jbyteArray, jbyteArray, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index d32c6a6..629ffc1 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -45,8 +45,8 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
     jstring ecdh_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$TomCrypt");
     (*env)->CallObjectMethod(env, this, provider_put, ecdh, ecdh_value);
 
-    jstring ecdsa = (*env)->NewStringUTF(env, "Signature.ECDSA");
-    jstring ecdsa_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCrypt");
+    jstring ecdsa = (*env)->NewStringUTF(env, "Signature.NONEwithECDSA");
+    jstring ecdsa_value = (*env)->NewStringUTF(env, "cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCryptRaw");
     (*env)->CallObjectMethod(env, this, provider_put, ecdsa, ecdsa_value);
 
     int err;
@@ -112,9 +112,10 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getC
 }
 
 JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_keysizeSupported(JNIEnv *env, jobject this, jint keysize){
+    int key_bytes = (keysize + 7) / 8;
     const ltc_ecc_set_type * curve = ltc_ecc_sets;
     while (curve->size != 0) {
-        if (curve->size * 8 == keysize) {
+        if (curve->size == key_bytes) {
             return JNI_TRUE;
         }
         curve++;
@@ -309,7 +310,7 @@ static jobject generate_from_curve(JNIEnv *env, const ltc_ecc_set_type *curve) {
 }
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024TomCrypt_generate__ILjava_security_SecureRandom_2(JNIEnv *env, jobject this, jint keysize, jobject random){
-    int key_bytes = keysize / 8;
+    int key_bytes = (keysize + 7) / 8;
 
     const ltc_ecc_set_type *curve = ltc_ecc_sets;
     while (curve->size != 0) {
@@ -351,49 +352,63 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPai
     }
 }
 
-JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_00024TomCrypt_generateSecret(JNIEnv *env, jobject this, jbyteArray pubkey, jbyteArray privkey, jobject params){
-    ltc_ecc_set_type *curve = create_curve(env, params);
+static jboolean privkey_from_bytes(JNIEnv *env, jbyteArray privkey, const ltc_ecc_set_type *curve, ecc_key *out) {
+    jsize priv_size = (*env)->GetArrayLength(env, privkey);
+    jbyte *priv_data = (*env)->GetByteArrayElements(env, privkey, NULL);
 
+    if (curve->size != priv_size) {
+        throw_new(env, "java/lang/IllegalStateException", "Curve size does not match the private key size.");
+        (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
+        return JNI_FALSE;
+    }
+
+    out->type = PK_PRIVATE;
+    out->idx = -1;
+    out->dp = curve;
+    ltc_mp.init(&out->k);
+    ltc_mp.unsigned_read(out->k, priv_data, (unsigned long) curve->size);
+
+    (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
+    return JNI_TRUE;
+}
+
+static jboolean pubkey_from_bytes(JNIEnv *env, jbyteArray pubkey, const ltc_ecc_set_type *curve, ecc_key *out) {
     jsize pub_size = (*env)->GetArrayLength(env, pubkey);
     jbyte *pub_data = (*env)->GetByteArrayElements(env, pubkey, NULL);
 
     if (curve->size != (pub_size - 1) / 2) {
         throw_new(env, "java/lang/IllegalStateException", "Curve size does not match the public key size.");
         (*env)->ReleaseByteArrayElements(env, pubkey, pub_data, JNI_ABORT);
-        free(curve);
-        return NULL;
+        return JNI_FALSE;
     }
 
-    ecc_key pub;
-    pub.type = PK_PUBLIC;
-    pub.idx = -1;
-    pub.dp = curve;
-    ltc_init_multi(&pub.pubkey.x, &pub.pubkey.y, &pub.pubkey.z, NULL);
-    ltc_mp.set_int(pub.pubkey.z, 1);
-    ltc_mp.unsigned_read(pub.pubkey.x, pub_data + 1, (unsigned long) curve->size);
-    ltc_mp.unsigned_read(pub.pubkey.y, pub_data + 1 + curve->size, (unsigned long) curve->size);
+    out->type = PK_PUBLIC;
+    out->idx = -1;
+    out->dp = curve;
+    ltc_init_multi(&out->pubkey.x, &out->pubkey.y, &out->pubkey.z, NULL);
+    ltc_mp.set_int(out->pubkey.z, 1);
+    ltc_mp.unsigned_read(out->pubkey.x, pub_data + 1, (unsigned long) curve->size);
+    ltc_mp.unsigned_read(out->pubkey.y, pub_data + 1 + curve->size, (unsigned long) curve->size);
 
     (*env)->ReleaseByteArrayElements(env, pubkey, pub_data, JNI_ABORT);
 
+    return JNI_TRUE;
+}
 
-    jsize priv_size = (*env)->GetArrayLength(env, privkey);
-    jbyte *priv_data = (*env)->GetByteArrayElements(env, privkey, NULL);
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_00024TomCrypt_generateSecret(JNIEnv *env, jobject this, jbyteArray pubkey, jbyteArray privkey, jobject params){
+    ltc_ecc_set_type *curve = create_curve(env, params);
 
-    if (curve->size != priv_size) {
-        throw_new(env, "java/lang/IllegalStateException", "Curve size does not match the private key size.");
-        (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
+    ecc_key pub;
+    if (!pubkey_from_bytes(env, pubkey, curve, &pub)) {
         free(curve);
         return NULL;
     }
 
     ecc_key priv;
-    priv.type = PK_PRIVATE;
-    priv.idx = -1;
-    priv.dp = curve;
-    ltc_mp.init(&priv.k);
-    ltc_mp.unsigned_read(priv.k, priv_data, (unsigned long) curve->size);
-
-    (*env)->ReleaseByteArrayElements(env, privkey, priv_data, JNI_ABORT);
+    if (!privkey_from_bytes(env, privkey, curve, &priv)) {
+        free(curve);
+        return NULL;
+    }
 
     unsigned char result[curve->size];
     unsigned long output_len = curve->size;
@@ -412,4 +427,68 @@ JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKey
     ltc_cleanup_multi(&pub.pubkey.x, &pub.pubkey.y, &pub.pubkey.z, &priv.k, NULL);
     free(curve);
     return output;
+}
+
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024TomCryptRaw_sign(JNIEnv *env, jobject this, jbyteArray data, jbyteArray privkey, jobject params) {
+    ltc_ecc_set_type *curve = create_curve(env, params);
+
+    ecc_key priv;
+    if (!privkey_from_bytes(env, privkey, curve, &priv)) {
+        free(curve);
+        return NULL;
+    }
+
+    jsize data_size = (*env)->GetArrayLength(env, data);
+    jbyte *data_data = (*env)->GetByteArrayElements(env, data, NULL);
+
+    unsigned char result[curve->size*4];
+    unsigned long output_len = curve->size*4;
+    int err;
+    if ((err = ecc_sign_hash(data_data, data_size, result, &output_len, &ltc_prng, find_prng("yarrow"), &priv)) != CRYPT_OK) {
+        throw_new(env, "java/security/GeneralSecurityException", error_to_string(err));
+        free(curve);
+        (*env)->ReleaseByteArrayElements(env, data, data_data, JNI_ABORT);
+        return NULL;
+    }
+
+    (*env)->ReleaseByteArrayElements(env, data, data_data, JNI_ABORT);
+
+    jbyteArray output = (*env)->NewByteArray(env, output_len);
+    jbyte *output_data = (*env)->GetByteArrayElements(env, output, NULL);
+    memcpy(output_data, result, output_len);
+    (*env)->ReleaseByteArrayElements(env, output, output_data, JNI_COMMIT);
+
+    free(curve);
+    return output;
+}
+
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024TomCryptRaw_verify(JNIEnv *env, jobject this, jbyteArray signature, jbyteArray data, jbyteArray pubkey, jobject params) {
+    ltc_ecc_set_type *curve = create_curve(env, params);
+
+    ecc_key pub;
+    if (!pubkey_from_bytes(env, pubkey, curve, &pub)) {
+        free(curve);
+        return JNI_FALSE;
+    }
+
+    jsize data_size = (*env)->GetArrayLength(env, data);
+    jbyte *data_data = (*env)->GetByteArrayElements(env, data, NULL);
+
+    jsize sig_size = (*env)->GetArrayLength(env, signature);
+    jbyte *sig_data = (*env)->GetByteArrayElements(env, signature, NULL);
+
+    int err;
+    int result;
+    if ((err = ecc_verify_hash(sig_data, sig_size, data_data, data_size, &result, &pub)) != CRYPT_OK) {
+        throw_new(env, "java/security/GeneralSecurityException", error_to_string(err));
+        free(curve);
+        (*env)->ReleaseByteArrayElements(env, data, data_data, JNI_ABORT);
+        (*env)->ReleaseByteArrayElements(env, signature, sig_data, JNI_ABORT);
+        return JNI_FALSE;
+    }
+
+    (*env)->ReleaseByteArrayElements(env, data, data_data, JNI_ABORT);
+    (*env)->ReleaseByteArrayElements(env, signature, sig_data, JNI_ABORT);
+    free(curve);
+    return result;
 }
\ No newline at end of file
-- 
cgit v1.2.3-70-g09d2


From 21da331c7a6e5db64ec5f1b59ce0ece624f6b760 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 6 Dec 2017 19:07:44 +0100
Subject: Implement basic standalone testing.

---
 .../crcs/ectester/reader/test/CardTestSuite.java   |   1 -
 .../ectester/standalone/ECTesterStandalone.java    | 373 +++++++++++----------
 src/cz/crcs/ectester/standalone/consts/Ident.java  |   3 +
 .../ectester/standalone/test/KeyAgreementTest.java |   2 +-
 .../standalone/test/KeyAgreementTestable.java      |  64 +++-
 .../ectester/standalone/test/KeyGeneratorTest.java |   2 +-
 .../ectester/standalone/test/SignatureTest.java    |  16 +-
 .../standalone/test/SignatureTestable.java         |  22 +-
 .../standalone/test/StandaloneDefaultSuite.java    |  76 +++++
 .../standalone/test/StandaloneTestSuite.java       |  24 ++
 10 files changed, 386 insertions(+), 197 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
 create mode 100644 src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/reader/test/CardTestSuite.java b/src/cz/crcs/ectester/reader/test/CardTestSuite.java
index e3cc155..3da5158 100644
--- a/src/cz/crcs/ectester/reader/test/CardTestSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardTestSuite.java
@@ -13,7 +13,6 @@ import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.command.Command;
 
 import java.io.IOException;
-import java.util.Collections;
 import java.util.LinkedList;
 import java.util.List;
 import java.util.Map;
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 5ecff9b..433e6a8 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -2,6 +2,9 @@ package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.output.TextTestWriter;
+import cz.crcs.ectester.common.test.TestException;
+import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.common.util.ECUtil;
 import cz.crcs.ectester.data.EC_Store;
@@ -9,6 +12,8 @@ import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 import cz.crcs.ectester.standalone.libs.*;
+import cz.crcs.ectester.standalone.test.StandaloneDefaultSuite;
+import cz.crcs.ectester.standalone.test.StandaloneTestSuite;
 import org.apache.commons.cli.DefaultParser;
 import org.apache.commons.cli.Option;
 import org.apache.commons.cli.Options;
@@ -34,7 +39,7 @@ import java.util.stream.Collectors;
  * @version v0.1.0
  */
 public class ECTesterStandalone {
-    private ECLibrary[] libs = new ECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib()};
+    private ProviderECLibrary[] libs = new ProviderECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib()};
     private EC_Store dataStore;
     private Config cfg;
 
@@ -91,9 +96,7 @@ public class ECTesterStandalone {
             System.err.println("Invalid algorithm parameter: " + e.getMessage());
         } catch (NoSuchAlgorithmException nsaex) {
             System.err.println("Algorithm not supported by the selected library: " + nsaex.getMessage());
-        } catch (InvalidKeyException e) {
-            e.printStackTrace();
-        } catch (SignatureException e) {
+        } catch (InvalidKeyException | SignatureException | TestException e) {
             e.printStackTrace();
         }
     }
@@ -103,6 +106,11 @@ public class ECTesterStandalone {
 
         Options testOpts = new Options();
         ParserOptions test = new ParserOptions(new DefaultParser(), testOpts);
+        testOpts.addOption(Option.builder("gt").longOpt("kpg-type").desc("Set the KeyPairGenerator object [type].").hasArg().argName("type").optionalArg(false).build());
+        testOpts.addOption(Option.builder("kt").longOpt("ka-type").desc("Set the KeyAgreement object [type].").hasArg().argName("type").optionalArg(false).build());
+        testOpts.addOption(Option.builder("st").longOpt("sig-type").desc("Set the Signature object [type].").hasArg().argName("type").optionalArg(false).build());
+        testOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
+        testOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         actions.put("test", test);
 
         Options ecdhOpts = new Options();
@@ -188,70 +196,68 @@ public class ECTesterStandalone {
      *
      */
     private void ecdh() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException {
-        if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
-
-            String algo = cli.getOptionValue("ecdh.type", "ECDH");
-            KeyAgreementIdent kaIdent = lib.getKAs().stream()
-                    .filter((ident) -> ident.contains(algo))
-                    .findFirst()
-                    .orElse(null);
-
-            KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
-                    .filter((ident) -> ident.contains(algo))
-                    .findFirst()
-                    .orElse(lib.getKPGs().stream()
-                            .filter((ident) -> ident.contains("EC"))
-                            .findFirst()
-                            .orElse(null));
-
-
-            if (kaIdent == null || kpIdent == null) {
-                throw new NoSuchAlgorithmException(algo);
-            } else {
-                KeyAgreement ka = kaIdent.getInstance(lib.getProvider());
-                KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
-                AlgorithmParameterSpec spec = null;
-                if (cli.hasOption("ecdh.bits")) {
-                    int bits = Integer.parseInt(cli.getOptionValue("ecdh.bits"));
-                    kpg.initialize(bits);
-                } else if (cli.hasOption("ecdh.named-curve")) {
-                    String curveName = cli.getOptionValue("ecdh.named-curve");
-                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
-                    if (curve == null) {
-                        System.err.println("Curve not found: " + curveName);
-                        return;
-                    }
-                    spec = curve.toSpec();
-                    kpg.initialize(spec);
+        ProviderECLibrary lib = cfg.selected;
+
+        String algo = cli.getOptionValue("ecdh.type", "ECDH");
+        KeyAgreementIdent kaIdent = lib.getKAs().stream()
+                .filter((ident) -> ident.contains(algo))
+                .findFirst()
+                .orElse(null);
+
+        KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
+                .filter((ident) -> ident.contains(algo))
+                .findFirst()
+                .orElse(lib.getKPGs().stream()
+                        .filter((ident) -> ident.contains("EC"))
+                        .findFirst()
+                        .orElse(null));
+
+
+        if (kaIdent == null || kpIdent == null) {
+            throw new NoSuchAlgorithmException(algo);
+        } else {
+            KeyAgreement ka = kaIdent.getInstance(lib.getProvider());
+            KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
+            AlgorithmParameterSpec spec = null;
+            if (cli.hasOption("ecdh.bits")) {
+                int bits = Integer.parseInt(cli.getOptionValue("ecdh.bits"));
+                kpg.initialize(bits);
+            } else if (cli.hasOption("ecdh.named-curve")) {
+                String curveName = cli.getOptionValue("ecdh.named-curve");
+                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                if (curve == null) {
+                    System.err.println("Curve not found: " + curveName);
+                    return;
                 }
+                spec = curve.toSpec();
+                kpg.initialize(spec);
+            }
 
-                System.out.println("index;nanotime;pubW;privS;secret");
+            System.out.println("index;nanotime;pubW;privS;secret");
 
-                int amount = Integer.parseInt(cli.getOptionValue("ecdh.amount", "1"));
-                for (int i = 0; i < amount; ++i) {
-                    KeyPair one = kpg.genKeyPair();
-                    KeyPair other = kpg.genKeyPair();
+            int amount = Integer.parseInt(cli.getOptionValue("ecdh.amount", "1"));
+            for (int i = 0; i < amount; ++i) {
+                KeyPair one = kpg.genKeyPair();
+                KeyPair other = kpg.genKeyPair();
 
-                    ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
-                    ECPublicKey pubkey = (ECPublicKey) other.getPublic();
+                ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
+                ECPublicKey pubkey = (ECPublicKey) other.getPublic();
 
-                    long elapsed = -System.nanoTime();
-                    if (spec != null) {
-                        ka.init(privkey, spec);
-                    } else {
-                        ka.init(privkey);
-                    }
-                    ka.doPhase(pubkey, true);
-                    elapsed += System.nanoTime();
-                    byte[] result = ka.generateSecret();
-                    ka = kaIdent.getInstance(lib.getProvider());
-
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
-                    String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
-                    String dh = ByteUtil.bytesToHex(result, false);
-                    System.out.println(String.format("%d;%d;%s;%s;%s", i, elapsed, pub, priv, dh));
+                long elapsed = -System.nanoTime();
+                if (spec != null) {
+                    ka.init(privkey, spec);
+                } else {
+                    ka.init(privkey);
                 }
+                ka.doPhase(pubkey, true);
+                elapsed += System.nanoTime();
+                byte[] result = ka.generateSecret();
+                ka = kaIdent.getInstance(lib.getProvider());
+
+                String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
+                String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
+                String dh = ByteUtil.bytesToHex(result, false);
+                System.out.println(String.format("%d;%d;%s;%s;%s", i, elapsed, pub, priv, dh));
             }
         }
     }
@@ -278,70 +284,68 @@ public class ECTesterStandalone {
             dataString = ByteUtil.bytesToHex(data, false);
         }
 
-        if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
-
-            String algo = cli.getOptionValue("ecdsa.type", "ECDSA");
-            SignatureIdent sigIdent = lib.getSigs().stream()
-                    .filter((ident) -> ident.contains(algo))
-                    .findFirst()
-                    .orElse(null);
-
-            KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
-                    .filter((ident) -> ident.contains(algo))
-                    .findFirst()
-                    .orElse(lib.getKPGs().stream()
-                            .filter((ident) -> ident.contains("EC"))
-                            .findFirst()
-                            .orElse(null));
-
-            if (sigIdent == null || kpIdent == null) {
-                throw new NoSuchAlgorithmException(algo);
-            } else {
-                Signature sig = sigIdent.getInstance(lib.getProvider());
-                KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
-                if (cli.hasOption("ecdsa.bits")) {
-                    int bits = Integer.parseInt(cli.getOptionValue("ecdsa.bits"));
-                    kpg.initialize(bits);
-                } else if (cli.hasOption("ecdsa.named-curve")) {
-                    String curveName = cli.getOptionValue("ecdsa.named-curve");
-                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
-                    if (curve == null) {
-                        System.err.println("Curve not found: " + curveName);
-                        return;
-                    }
-                    kpg.initialize(curve.toSpec());
+        ProviderECLibrary lib = cfg.selected;
+
+        String algo = cli.getOptionValue("ecdsa.type", "ECDSA");
+        SignatureIdent sigIdent = lib.getSigs().stream()
+                .filter((ident) -> ident.contains(algo))
+                .findFirst()
+                .orElse(null);
+
+        KeyPairGeneratorIdent kpIdent = lib.getKPGs().stream()
+                .filter((ident) -> ident.contains(algo))
+                .findFirst()
+                .orElse(lib.getKPGs().stream()
+                        .filter((ident) -> ident.contains("EC"))
+                        .findFirst()
+                        .orElse(null));
+
+        if (sigIdent == null || kpIdent == null) {
+            throw new NoSuchAlgorithmException(algo);
+        } else {
+            Signature sig = sigIdent.getInstance(lib.getProvider());
+            KeyPairGenerator kpg = kpIdent.getInstance(lib.getProvider());
+            if (cli.hasOption("ecdsa.bits")) {
+                int bits = Integer.parseInt(cli.getOptionValue("ecdsa.bits"));
+                kpg.initialize(bits);
+            } else if (cli.hasOption("ecdsa.named-curve")) {
+                String curveName = cli.getOptionValue("ecdsa.named-curve");
+                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                if (curve == null) {
+                    System.err.println("Curve not found: " + curveName);
+                    return;
                 }
+                kpg.initialize(curve.toSpec());
+            }
 
-                System.out.println("index;data;signtime;verifytime;pubW;privS;signature;verified");
+            System.out.println("index;data;signtime;verifytime;pubW;privS;signature;verified");
 
-                int amount = Integer.parseInt(cli.getOptionValue("ecdsa.amount", "1"));
-                for (int i = 0; i < amount; ++i) {
-                    KeyPair one = kpg.genKeyPair();
+            int amount = Integer.parseInt(cli.getOptionValue("ecdsa.amount", "1"));
+            for (int i = 0; i < amount; ++i) {
+                KeyPair one = kpg.genKeyPair();
 
-                    ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
-                    ECPublicKey pubkey = (ECPublicKey) one.getPublic();
+                ECPrivateKey privkey = (ECPrivateKey) one.getPrivate();
+                ECPublicKey pubkey = (ECPublicKey) one.getPublic();
 
-                    sig.initSign(privkey);
-                    sig.update(data);
+                sig.initSign(privkey);
+                sig.update(data);
 
-                    long signTime = -System.nanoTime();
-                    byte[] signature = sig.sign();
-                    signTime += System.nanoTime();
+                long signTime = -System.nanoTime();
+                byte[] signature = sig.sign();
+                signTime += System.nanoTime();
 
-                    sig.initVerify(pubkey);
-                    sig.update(data);
+                sig.initVerify(pubkey);
+                sig.update(data);
 
-                    long verifyTime = -System.nanoTime();
-                    boolean verified = sig.verify(signature);
-                    verifyTime += System.nanoTime();
+                long verifyTime = -System.nanoTime();
+                boolean verified = sig.verify(signature);
+                verifyTime += System.nanoTime();
 
 
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
-                    String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
-                    String sign = ByteUtil.bytesToHex(signature, false);
-                    System.out.println(String.format("%d;%s;%d;%d;%s;%s;%s;%d", i, dataString, signTime, verifyTime, pub, priv, sign, verified ? 1 : 0));
-                }
+                String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(pubkey.getW(), pubkey.getParams()), false);
+                String priv = ByteUtil.bytesToHex(privkey.getS().toByteArray(), false);
+                String sign = ByteUtil.bytesToHex(signature, false);
+                System.out.println(String.format("%d;%s;%d;%d;%s;%s;%s;%d", i, dataString, signTime, verifyTime, pub, priv, sign, verified ? 1 : 0));
             }
         }
     }
@@ -350,46 +354,44 @@ public class ECTesterStandalone {
      *
      */
     private void generate() throws NoSuchAlgorithmException, InvalidAlgorithmParameterException {
-        if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
-            KeyPairGeneratorIdent ident = null;
-            String algo = cli.getOptionValue("generate.type", "EC");
-            for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
-                if (kpIdent.contains(algo)) {
-                    ident = kpIdent;
-                    break;
-                }
+        ProviderECLibrary lib = cfg.selected;
+        KeyPairGeneratorIdent ident = null;
+        String algo = cli.getOptionValue("generate.type", "EC");
+        for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
+            if (kpIdent.contains(algo)) {
+                ident = kpIdent;
+                break;
             }
-            if (ident == null) {
-                throw new NoSuchAlgorithmException(algo);
-            } else {
-                KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
-                if (cli.hasOption("generate.bits")) {
-                    int bits = Integer.parseInt(cli.getOptionValue("generate.bits"));
-                    kpg.initialize(bits);
-                } else if (cli.hasOption("generate.named-curve")) {
-                    String curveName = cli.getOptionValue("generate.named-curve");
-                    EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
-                    if (curve == null) {
-                        System.err.println("Curve not found: " + curveName);
-                        return;
-                    }
-                    kpg.initialize(curve.toSpec());
-                }
-                System.out.println("index;nanotime;pubW;privS");
-
-                int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
-                for (int i = 0; i < amount; ++i) {
-                    long elapsed = -System.nanoTime();
-                    KeyPair kp = kpg.genKeyPair();
-                    elapsed += System.nanoTime();
-                    ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
-                    ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
-
-                    String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW(), publicKey.getParams()), false);
-                    String priv = ByteUtil.bytesToHex(privateKey.getS().toByteArray(), false);
-                    System.out.println(String.format("%d;%d;%s;%s", i, elapsed, pub, priv));
+        }
+        if (ident == null) {
+            throw new NoSuchAlgorithmException(algo);
+        } else {
+            KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
+            if (cli.hasOption("generate.bits")) {
+                int bits = Integer.parseInt(cli.getOptionValue("generate.bits"));
+                kpg.initialize(bits);
+            } else if (cli.hasOption("generate.named-curve")) {
+                String curveName = cli.getOptionValue("generate.named-curve");
+                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                if (curve == null) {
+                    System.err.println("Curve not found: " + curveName);
+                    return;
                 }
+                kpg.initialize(curve.toSpec());
+            }
+            System.out.println("index;nanotime;pubW;privS");
+
+            int amount = Integer.parseInt(cli.getOptionValue("generate.amount", "1"));
+            for (int i = 0; i < amount; ++i) {
+                long elapsed = -System.nanoTime();
+                KeyPair kp = kpg.genKeyPair();
+                elapsed += System.nanoTime();
+                ECPublicKey publicKey = (ECPublicKey) kp.getPublic();
+                ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
+
+                String pub = ByteUtil.bytesToHex(ECUtil.toX962Uncompressed(publicKey.getW(), publicKey.getParams()), false);
+                String priv = ByteUtil.bytesToHex(privateKey.getS().toByteArray(), false);
+                System.out.println(String.format("%d;%d;%s;%s", i, elapsed, pub, priv));
             }
         }
     }
@@ -397,39 +399,40 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void test() {
-
+    private void test() throws NoSuchAlgorithmException, TestException {
+        StandaloneTestSuite suite = new StandaloneDefaultSuite(dataStore, cfg, cli);
+        TestRunner runner = new TestRunner(suite, new TextTestWriter(System.out));
+        suite.setup();
+        runner.run();
     }
 
     /**
      *
      */
     private void export() throws NoSuchAlgorithmException, IOException {
-        if (cfg.selected instanceof ProviderECLibrary) {
-            ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
-            KeyPairGeneratorIdent ident = null;
-            String algo = cli.getOptionValue("export.type", "EC");
-            for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
-                if (kpIdent.contains(algo)) {
-                    ident = kpIdent;
-                    break;
-                }
+        ProviderECLibrary lib = (ProviderECLibrary) cfg.selected;
+        KeyPairGeneratorIdent ident = null;
+        String algo = cli.getOptionValue("export.type", "EC");
+        for (KeyPairGeneratorIdent kpIdent : lib.getKPGs()) {
+            if (kpIdent.contains(algo)) {
+                ident = kpIdent;
+                break;
             }
-            if (ident == null) {
-                throw new NoSuchAlgorithmException(algo);
-            } else {
-                KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
-                if (cli.hasOption("export.bits")) {
-                    int bits = Integer.parseInt(cli.getOptionValue("export.bits"));
-                    kpg.initialize(bits);
-                }
-                KeyPair kp = kpg.genKeyPair();
-                ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
-                ECParameterSpec params = privateKey.getParams();
-                System.out.println(params);
-                EC_Curve curve = EC_Curve.fromSpec(params);
-                curve.writeCSV(System.out);
+        }
+        if (ident == null) {
+            throw new NoSuchAlgorithmException(algo);
+        } else {
+            KeyPairGenerator kpg = ident.getInstance(lib.getProvider());
+            if (cli.hasOption("export.bits")) {
+                int bits = Integer.parseInt(cli.getOptionValue("export.bits"));
+                kpg.initialize(bits);
             }
+            KeyPair kp = kpg.genKeyPair();
+            ECPrivateKey privateKey = (ECPrivateKey) kp.getPrivate();
+            ECParameterSpec params = privateKey.getParams();
+            System.out.println(params);
+            EC_Curve curve = EC_Curve.fromSpec(params);
+            curve.writeCSV(System.out);
         }
     }
 
@@ -443,15 +446,15 @@ public class ECTesterStandalone {
      *
      */
     public static class Config {
-        private ECLibrary[] libs;
-        public ECLibrary selected = null;
+        private ProviderECLibrary[] libs;
+        public ProviderECLibrary selected = null;
 
-        public Config(ECLibrary[] libs) {
+        public Config(ProviderECLibrary[] libs) {
             this.libs = libs;
         }
 
         boolean readOptions(TreeCommandLine cli) {
-            if (cli.isNext("generate") || cli.isNext("export") || cli.isNext("ecdh") || cli.isNext("ecdsa")) {
+            if (cli.isNext("generate") || cli.isNext("export") || cli.isNext("ecdh") || cli.isNext("ecdsa") || cli.isNext("test")) {
                 if (!cli.hasArg(-1)) {
                     System.err.println("Missing library name argument.");
                     return false;
@@ -466,8 +469,8 @@ public class ECTesterStandalone {
 
             String libraryName = cli.getArg(-1);
             if (libraryName != null) {
-                List<ECLibrary> matchedLibs = new LinkedList<>();
-                for (ECLibrary lib : libs) {
+                List<ProviderECLibrary> matchedLibs = new LinkedList<>();
+                for (ProviderECLibrary lib : libs) {
                     if (lib.name().toLowerCase().contains(libraryName.toLowerCase())) {
                         matchedLibs.add(lib);
                     }
diff --git a/src/cz/crcs/ectester/standalone/consts/Ident.java b/src/cz/crcs/ectester/standalone/consts/Ident.java
index e2556c5..40a44ac 100644
--- a/src/cz/crcs/ectester/standalone/consts/Ident.java
+++ b/src/cz/crcs/ectester/standalone/consts/Ident.java
@@ -42,6 +42,9 @@ public abstract class Ident {
             for (String alias : idents) {
                 try {
                     instance = getter.apply(alias, provider);
+                    if (instance != null) {
+                        break;
+                    }
                 } catch (Exception ignored) {
                 }
             }
diff --git a/src/cz/crcs/ectester/standalone/test/KeyAgreementTest.java b/src/cz/crcs/ectester/standalone/test/KeyAgreementTest.java
index 9604e75..e273a44 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyAgreementTest.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyAgreementTest.java
@@ -43,7 +43,7 @@ public class KeyAgreementTest extends SimpleTest<KeyAgreementTestable> {
 
     @Override
     public String getDescription() {
-        return null;
+        return "KeyAgreement test";
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java b/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
index fedf519..8e9b0dd 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
@@ -2,12 +2,14 @@ package cz.crcs.ectester.standalone.test;
 
 import cz.crcs.ectester.common.test.BaseTestable;
 import cz.crcs.ectester.common.test.TestException;
-import cz.crcs.ectester.common.test.Testable;
 
 import javax.crypto.KeyAgreement;
+import java.security.InvalidAlgorithmParameterException;
 import java.security.InvalidKeyException;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
+import java.security.spec.AlgorithmParameterSpec;
+import java.security.spec.ECParameterSpec;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
@@ -16,6 +18,9 @@ public class KeyAgreementTestable extends BaseTestable {
     private KeyAgreement ka;
     private ECPrivateKey privateKey;
     private ECPublicKey publicKey;
+    private KeyGeneratorTestable kgtPrivate;
+    private KeyGeneratorTestable kgtPublic;
+    private AlgorithmParameterSpec spec;
     private byte[] secret;
 
     public KeyAgreementTestable(KeyAgreement ka, ECPrivateKey privateKey, ECPublicKey publicKey) {
@@ -24,6 +29,27 @@ public class KeyAgreementTestable extends BaseTestable {
         this.publicKey = publicKey;
     }
 
+    public KeyAgreementTestable(KeyAgreement ka, ECPrivateKey privateKey, ECPublicKey publicKey, ECParameterSpec spec) {
+        this(ka, privateKey, publicKey);
+        this.spec = spec;
+    }
+
+    public KeyAgreementTestable(KeyAgreement ka, KeyGeneratorTestable kgt, ECPrivateKey privateKey, ECParameterSpec spec) {
+        this(ka, privateKey, null, spec);
+        this.kgtPublic = kgt;
+    }
+
+    public KeyAgreementTestable(KeyAgreement ka, ECPublicKey publicKey, KeyGeneratorTestable kgt, ECParameterSpec spec) {
+        this(ka, null, publicKey, spec);
+        this.kgtPrivate = kgt;
+    }
+
+    public KeyAgreementTestable(KeyAgreement ka, KeyGeneratorTestable privKgt, KeyGeneratorTestable pubKgt, ECParameterSpec spec) {
+        this(ka, (ECPrivateKey) null, null, spec);
+        this.kgtPrivate = privKgt;
+        this.kgtPublic = pubKgt;
+    }
+
     public byte[] getSecret() {
         if (!hasRun) {
             return null;
@@ -33,20 +59,38 @@ public class KeyAgreementTestable extends BaseTestable {
 
     @Override
     public void run() throws TestException {
+        if (kgtPrivate != null) {
+            privateKey = (ECPrivateKey) kgtPrivate.getKeyPair().getPrivate();
+        }
+
+        if (kgtPublic != null) {
+            publicKey = (ECPublicKey) kgtPublic.getKeyPair().getPublic();
+        }
+
         try {
-            ka.init(privateKey);
-        } catch (InvalidKeyException ikex) {
-            throw new TestException(ikex);
+            if (spec != null) {
+                ka.init(privateKey, spec);
+            } else {
+                ka.init(privateKey);
+            }
+        } catch (InvalidKeyException | InvalidAlgorithmParameterException e) {
+            ok = false;
+            error = true;
+            hasRun = true;
+            return;
         }
 
         try {
             ka.doPhase(publicKey, true);
-        } catch (InvalidKeyException ikex) {
-            throw new TestException(ikex);
-        } catch (IllegalStateException isex) {
+        } catch (IllegalStateException e) {
             ok = false;
             hasRun = true;
             return;
+        } catch (InvalidKeyException e) {
+            ok = false;
+            error = true;
+            hasRun = true;
+            return;
         }
 
         try {
@@ -55,7 +99,13 @@ public class KeyAgreementTestable extends BaseTestable {
             ok = false;
             hasRun = true;
             return;
+        } catch (UnsupportedOperationException uoe) {
+            ok = false;
+            error = true;
+            hasRun = false;
+            return;
         }
+
         ok = true;
         hasRun = true;
     }
diff --git a/src/cz/crcs/ectester/standalone/test/KeyGeneratorTest.java b/src/cz/crcs/ectester/standalone/test/KeyGeneratorTest.java
index 9032415..a57e28c 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyGeneratorTest.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyGeneratorTest.java
@@ -28,7 +28,7 @@ public class KeyGeneratorTest extends SimpleTest<KeyGeneratorTestable> {
 
     @Override
     public String getDescription() {
-        return null;
+        return "KeyPairGenerator test";
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/standalone/test/SignatureTest.java b/src/cz/crcs/ectester/standalone/test/SignatureTest.java
index 272a3f7..97e387c 100644
--- a/src/cz/crcs/ectester/standalone/test/SignatureTest.java
+++ b/src/cz/crcs/ectester/standalone/test/SignatureTest.java
@@ -1,5 +1,6 @@
 package cz.crcs.ectester.standalone.test;
 
+import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.common.test.SimpleTest;
 import cz.crcs.ectester.common.test.TestCallback;
 import cz.crcs.ectester.common.test.TestException;
@@ -12,9 +13,22 @@ public class SignatureTest extends SimpleTest<SignatureTestable> {
         super(sig, callback);
     }
 
+    public static SignatureTest expect(SignatureTestable kg, Result.ExpectedValue expected) {
+        return new SignatureTest(kg, new TestCallback<SignatureTestable>() {
+            @Override
+            public Result apply(SignatureTestable signatureTestable) {
+                return new Result(Result.Value.fromExpected(expected, signatureTestable.ok(), signatureTestable.error()));
+            }
+        });
+    }
+
+    public static SignatureTest function(SignatureTestable ka, TestCallback<SignatureTestable> callback) {
+        return new SignatureTest(ka, callback);
+    }
+
     @Override
     public String getDescription() {
-        return null;
+        return "Signature test";
     }
 
     @Override
diff --git a/src/cz/crcs/ectester/standalone/test/SignatureTestable.java b/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
index 8b6815b..564a6bf 100644
--- a/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
@@ -2,9 +2,9 @@ package cz.crcs.ectester.standalone.test;
 
 import cz.crcs.ectester.common.test.BaseTestable;
 import cz.crcs.ectester.common.test.TestException;
-import cz.crcs.ectester.common.test.Testable;
 
 import java.security.InvalidKeyException;
+import java.security.SecureRandom;
 import java.security.Signature;
 import java.security.SignatureException;
 import java.security.interfaces.ECPrivateKey;
@@ -14,6 +14,7 @@ public class SignatureTestable extends BaseTestable {
     private Signature sig;
     private ECPrivateKey signKey;
     private ECPublicKey verifyKey;
+    private KeyGeneratorTestable kgt;
     private byte[] data;
     private byte[] signature;
     private boolean verified;
@@ -23,6 +24,20 @@ public class SignatureTestable extends BaseTestable {
         this.signKey = signKey;
         this.verifyKey = verifyKey;
         this.data = data;
+        if (data == null) {
+            SecureRandom random = new SecureRandom();
+            this.data = new byte[32];
+            random.nextBytes(this.data);
+        }
+    }
+
+    public SignatureTestable(Signature sig, KeyGeneratorTestable kgt, byte[] data) {
+        this(sig, null, null, data);
+        this.kgt = kgt;
+    }
+
+    public byte[] getData() {
+        return data;
     }
 
     public byte[] getSignature() {
@@ -35,6 +50,11 @@ public class SignatureTestable extends BaseTestable {
 
     @Override
     public void run() throws TestException {
+        if (kgt != null) {
+            signKey = (ECPrivateKey) kgt.getKeyPair().getPrivate();
+            verifyKey = (ECPublicKey) kgt.getKeyPair().getPublic();
+        }
+
         try {
             sig.initSign(signKey);
         } catch (InvalidKeyException e) {
diff --git a/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java b/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
new file mode 100644
index 0000000..7056d69
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
@@ -0,0 +1,76 @@
+package cz.crcs.ectester.standalone.test;
+
+import cz.crcs.ectester.common.cli.TreeCommandLine;
+import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.test.Result;
+import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.standalone.ECTesterStandalone;
+import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
+import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
+import cz.crcs.ectester.standalone.consts.SignatureIdent;
+
+import javax.crypto.KeyAgreement;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+import java.security.Signature;
+import java.security.spec.ECParameterSpec;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class StandaloneDefaultSuite extends StandaloneTestSuite {
+
+    public StandaloneDefaultSuite(EC_Store dataStore, ECTesterStandalone.Config cfg, TreeCommandLine cli) {
+        super(dataStore, cfg, cli, "default", "The default test suite tests basic support of ECDH and ECDSA.");
+    }
+
+    @Override
+    public void setup() throws NoSuchAlgorithmException {
+        String kpgAlgo = cli.getOptionValue("test.kpg-type", "EC");
+        String kaAlgo = cli.getOptionValue("test.ka-type");
+        String sigAlgo = cli.getOptionValue("test.sig-type");
+
+        KeyPairGeneratorIdent kpgIdent = cfg.selected.getKPGs().stream()
+                .filter((ident) -> ident.contains(kpgAlgo))
+                .findFirst().get();
+        KeyPairGenerator kpg = kpgIdent.getInstance(cfg.selected.getProvider());
+
+        KeyGeneratorTestable kgtOne;
+        KeyGeneratorTestable kgtOther;
+        ECParameterSpec spec = null;
+        if (cli.hasOption("test.bits")) {
+            int bits = Integer.parseInt(cli.getOptionValue("test.bits"));
+            kgtOne = new KeyGeneratorTestable(kpg, bits);
+            kgtOther = new KeyGeneratorTestable(kpg, bits);
+        } else if (cli.hasOption("test.named-curve")) {
+            String curveName = cli.getOptionValue("test.named-curve");
+            EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+            if (curve == null) {
+                System.err.println("Curve not found: " + curveName);
+                return;
+            }
+            spec = curve.toSpec();
+            kgtOne = new KeyGeneratorTestable(kpg, spec);
+            kgtOther = new KeyGeneratorTestable(kpg, spec);
+        } else {
+            kgtOne = new KeyGeneratorTestable(kpg);
+            kgtOther = new KeyGeneratorTestable(kpg);
+        }
+
+        tests.add(KeyGeneratorTest.expect(kgtOne, Result.ExpectedValue.SUCCESS));
+        tests.add(KeyGeneratorTest.expect(kgtOther, Result.ExpectedValue.SUCCESS));
+
+        for (KeyAgreementIdent kaIdent : cfg.selected.getKAs()) {
+            if (kaAlgo == null || kaIdent.contains(kaAlgo)) {
+                KeyAgreement ka = kaIdent.getInstance(cfg.selected.getProvider());
+                tests.add(KeyAgreementTest.expect(new KeyAgreementTestable(ka, kgtOne, kgtOther, spec), Result.ExpectedValue.SUCCESS));
+            }
+        }
+        for (SignatureIdent sigIdent : cfg.selected.getSigs()) {
+            if (sigAlgo == null || sigIdent.contains(sigAlgo)) {
+                Signature sig = sigIdent.getInstance(cfg.selected.getProvider());
+                tests.add(SignatureTest.expect(new SignatureTestable(sig, kgtOne, null), Result.ExpectedValue.SUCCESS));
+            }
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java b/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java
new file mode 100644
index 0000000..5682cd5
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java
@@ -0,0 +1,24 @@
+package cz.crcs.ectester.standalone.test;
+
+import cz.crcs.ectester.common.cli.TreeCommandLine;
+import cz.crcs.ectester.common.test.TestSuite;
+import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.standalone.ECTesterStandalone;
+
+import java.security.NoSuchAlgorithmException;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class StandaloneTestSuite extends TestSuite {
+    TreeCommandLine cli;
+    ECTesterStandalone.Config cfg;
+
+    public StandaloneTestSuite(EC_Store dataStore, ECTesterStandalone.Config cfg, TreeCommandLine cli, String name, String description) {
+        super(dataStore, name, description);
+        this.cfg = cfg;
+        this.cli = cli;
+    }
+
+    public abstract void setup() throws NoSuchAlgorithmException;
+}
-- 
cgit v1.2.3-70-g09d2


From ad5049198a295c4f918fe08211d860e64e1f73ac Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 6 Dec 2017 21:03:08 +0100
Subject: Add Botan library.

---
 build-standalone.xml                               |   7 +
 .../ectester/standalone/ECTesterStandalone.java    |   2 +-
 src/cz/crcs/ectester/standalone/libs/BotanLib.java |  20 +++
 .../ectester/standalone/libs/NativeECLibrary.java  |  28 +++-
 src/cz/crcs/ectester/standalone/libs/jni/Makefile  |  12 +-
 .../standalone/libs/jni/NativeECPrivateKey.java    |  16 +-
 .../standalone/libs/jni/NativeECPublicKey.java     |  16 +-
 .../standalone/libs/jni/NativeKeyAgreementSpi.java |   6 +
 .../libs/jni/NativeKeyPairGeneratorSpi.java        |  19 +++
 .../standalone/libs/jni/NativeProvider.java        |  10 ++
 .../standalone/libs/jni/NativeSignatureSpi.java    |   8 +
 src/cz/crcs/ectester/standalone/libs/jni/botan.cpp | 110 +++++++++++++
 src/cz/crcs/ectester/standalone/libs/jni/native.h  | 171 +++++++++++++++++++++
 13 files changed, 417 insertions(+), 8 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/libs/BotanLib.java
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/botan.cpp

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/build-standalone.xml b/build-standalone.xml
index ef6ab2a..ea160c8 100644
--- a/build-standalone.xml
+++ b/build-standalone.xml
@@ -102,6 +102,13 @@
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPrivateKey$TomCrypt"/>
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$TomCrypt"/>
             <class name="cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$TomCryptRaw"/>
+            <class name="cz.crcs.ectester.standalone.libs.BotanLib"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeProvider$Botan"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$Botan"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPublicKey$Botan"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeECPrivateKey$Botan"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$Botan"/>
+            <class name="cz.crcs.ectester.standalone.libs.jni.NativeSignatureSpi$Botan"/>
         </javah>
     </target>
 </project>
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 433e6a8..d9525e9 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -39,7 +39,7 @@ import java.util.stream.Collectors;
  * @version v0.1.0
  */
 public class ECTesterStandalone {
-    private ProviderECLibrary[] libs = new ProviderECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib()};
+    private ProviderECLibrary[] libs = new ProviderECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib(), new BotanLib()};
     private EC_Store dataStore;
     private Config cfg;
 
diff --git a/src/cz/crcs/ectester/standalone/libs/BotanLib.java b/src/cz/crcs/ectester/standalone/libs/BotanLib.java
new file mode 100644
index 0000000..cd28791
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/BotanLib.java
@@ -0,0 +1,20 @@
+package cz.crcs.ectester.standalone.libs;
+
+import java.security.Provider;
+import java.util.Set;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class BotanLib extends NativeECLibrary {
+
+    public BotanLib() {
+        super("botan_provider", "botan-2");
+    }
+
+    @Override
+    native Provider createProvider();
+
+    @Override
+    public native Set<String> getCurves();
+}
diff --git a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
index e059c19..0a420a1 100644
--- a/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
+++ b/src/cz/crcs/ectester/standalone/libs/NativeECLibrary.java
@@ -2,6 +2,7 @@ package cz.crcs.ectester.standalone.libs;
 
 import java.io.File;
 import java.io.IOException;
+import java.lang.reflect.Field;
 import java.net.URL;
 import java.net.URLConnection;
 import java.nio.file.Files;
@@ -27,6 +28,7 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
     @Override
     public boolean initialize() {
         try {
+            /* Determine what OS are we running on and use appropriate suffix and path. */
             String suffix;
             Path appData;
             if (System.getProperty("os.name").startsWith("Windows")) {
@@ -56,6 +58,10 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
             }
             URLConnection jarConnection = jarURL.openConnection();
 
+            /* Only write the file if it does not exist,
+             * or if the existing one is older than the
+             * one in the JAR.
+             */
             boolean write = false;
             if (libDirFile.isDirectory() && libFile.isFile()) {
                 long jarModified = jarConnection.getLastModified();
@@ -75,16 +81,36 @@ public abstract class NativeECLibrary extends ProviderECLibrary {
             }
             jarConnection.getInputStream().close();
 
+            /*
+             *  Need to hack in /usr/local/lib to path.
+             *  See: https://stackoverflow.com/questions/5419039/is-djava-library-path-equivalent-to-system-setpropertyjava-library-path/24988095#24988095
+             */
+            String path = System.getProperty("java.library.path");
+            if (suffix.equals("so")) {
+                String newPath = path + ":/usr/local/lib";
+                System.setProperty("java.library.path", newPath);
+                Field fieldSysPath;
+                try {
+                    fieldSysPath = ClassLoader.class.getDeclaredField( "sys_paths" );
+                    fieldSysPath.setAccessible( true );
+                    fieldSysPath.set( null, null );
+                } catch (NoSuchFieldException | IllegalAccessException ignored) {
+                }
+            }
+
             for (String requirement : requriements) {
                 System.loadLibrary(requirement);
             }
 
+            if (suffix.equals("so")) {
+                System.setProperty("java.library.path", path);
+            }
+
             System.load(libPath.toString());
 
             provider = createProvider();
             return super.initialize();
         } catch (IOException | UnsatisfiedLinkError ignored) {
-
         }
         return false;
     }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/Makefile b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
index b60452f..78433c9 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/Makefile
+++ b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
@@ -31,16 +31,24 @@ endif
 
 JNI_PLATFORMINCLUDEDIR ?= $(JNI_INCLUDEDIR)/$(JNI_PLATFORM)
 
+LOCAL_INCLUDES = /usr/local/include
+LOCAL_LIBS = /usr/local/lib
 
 
-all: tomcrypt_provider.so
+all: tomcrypt_provider.so botan_provider.so
 
 tomcrypt_provider.so: tomcrypt.o
 	gcc -fPIC -g -shared -o $@ $< -L. -ltommath -ltomcrypt
 
-%.o: %.c
+tomcrypt.o: tomcrypt.c
 	gcc -DLTM_DESC -fPIC -g -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
 
+botan_provider.so: botan.o
+	g++ -fPIC -g -shared -o $@ $< -L. -L"$(LOCAL_LIBS)" -lbotan-2 -fstack-protector -m64 -pthread
+
+botan.o: botan.cpp
+	g++ -fPIC -g -I"$(LOCAL_INCLUDES)/botan-2" -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
+
 clean:
 	rm -rf *.o
 	rm -rf *.so
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
index 6f6cde3..22e5329 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey.java
@@ -28,11 +28,11 @@ public abstract class NativeECPrivateKey implements ECPrivateKey {
         return format;
     }
 
-    public static class TomCrypt extends NativeECPrivateKey {
+    private static class Raw extends NativeECPrivateKey {
         private byte[] keyData;
         private ECParameterSpec params;
 
-        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+        public Raw(byte[] keyData, ECParameterSpec params) {
             super("EC", "raw");
             this.keyData = keyData;
             this.params = params;
@@ -53,4 +53,16 @@ public abstract class NativeECPrivateKey implements ECPrivateKey {
             return params;
         }
     }
+
+    public static class TomCrypt extends Raw {
+        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+            super(keyData, params);
+        }
+    }
+
+    public static class Botan extends Raw {
+        public Botan(byte[] keyData, ECParameterSpec params) {
+            super(keyData, params);
+        }
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java
index c3791c4..8fc4747 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey.java
@@ -29,11 +29,11 @@ public abstract class NativeECPublicKey implements ECPublicKey {
         return format;
     }
 
-    public static class TomCrypt extends NativeECPublicKey {
+    private static class ANSIX962 extends NativeECPublicKey {
         private byte[] keyData;
         private ECParameterSpec params;
 
-        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+        public ANSIX962(byte[] keyData, ECParameterSpec params) {
             super("EC", "ANSI X9.62");
             this.keyData = keyData;
             this.params = params;
@@ -54,4 +54,16 @@ public abstract class NativeECPublicKey implements ECPublicKey {
             return params;
         }
     }
+
+    public static class TomCrypt extends ANSIX962 {
+        public TomCrypt(byte[] keyData, ECParameterSpec params) {
+            super(keyData, params);
+        }
+    }
+
+    public static class Botan extends ANSIX962 {
+        public Botan(byte[] keyData, ECParameterSpec params) {
+            super(keyData, params);
+        }
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
index a58c0c8..8875948 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
@@ -88,4 +88,10 @@ public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
         @Override
         native byte[] generateSecret(byte[] pubkey, byte[] privkey, ECParameterSpec params);
     }
+
+    public static class Botan extends NativeKeyAgreementSpi {
+
+        @Override
+        native byte[] generateSecret(byte[] pubkey, byte[] privkey, ECParameterSpec params);
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
index d2cc59d..5b8a54b 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
@@ -71,4 +71,23 @@ public abstract class NativeKeyPairGeneratorSpi extends KeyPairGeneratorSpi {
         @Override
         native KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
     }
+
+    public static class Botan extends NativeKeyPairGeneratorSpi {
+
+        public Botan() {
+            initialize(256, new SecureRandom());
+        }
+
+        @Override
+        native boolean keysizeSupported(int keysize);
+
+        @Override
+        native boolean paramsSupported(AlgorithmParameterSpec params);
+
+        @Override
+        native KeyPair generate(int keysize, SecureRandom random);
+
+        @Override
+        native KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
index a2233e2..a0689d6 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeProvider.java
@@ -29,4 +29,14 @@ public abstract class NativeProvider extends Provider {
         @Override
         native void setup();
     }
+
+    public static class Botan extends NativeProvider {
+
+        public Botan(String name, double version, String info) {
+            super(name, version, info);
+        }
+
+        @Override
+        native void setup();
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
index 76f01f0..8894f84 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeSignatureSpi.java
@@ -83,6 +83,14 @@ public abstract class NativeSignatureSpi extends SignatureSpi {
 
         @Override
         native boolean verify(byte[] signature, byte[] data, byte[] pubkey, ECParameterSpec params);
+    }
+
+    public static class Botan extends NativeSignatureSpi {
 
+        @Override
+        native byte[] sign(byte[] data, byte[] privkey, ECParameterSpec params);
+
+        @Override
+        native boolean verify(byte[] signature, byte[] data, byte[] pubkey, ECParameterSpec params);
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp b/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp
new file mode 100644
index 0000000..9c2394f
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp
@@ -0,0 +1,110 @@
+#include "native.h"
+#include <string>
+#include <botan/botan.h>
+
+static jclass provider_class;
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_BotanLib
+ * Method:    createProvider
+ * Signature: ()Ljava/security/Provider;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_createProvider(JNIEnv *env, jobject self) {
+    /* Create the custom provider. */
+    jclass local_provider_class = env->FindClass("cz/crcs/ectester/standalone/libs/jni/NativeProvider$Botan");
+    provider_class = (jclass) env->NewGlobalRef(local_provider_class);
+
+    jmethodID init = env->GetMethodID(local_provider_class, "<init>", "(Ljava/lang/String;DLjava/lang/String;)V");
+
+    const char* info_str = Botan::version_cstr();
+    const char* v_str = Botan::short_version_cstr();
+    std::string name_str = Botan::short_version_string();
+    name_str.insert(0, "Botan ");
+
+    jstring name = env->NewStringUTF(name_str.c_str());
+    double version = strtod(v_str, NULL);
+    jstring info = env->NewStringUTF(info_str);
+
+    return env->NewObject(provider_class, init, name, version, info);
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan
+ * Method:    setup
+ * Signature: ()V
+ */
+JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_00024Botan_setup(JNIEnv *env, jobject self){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_BotanLib
+ * Method:    getCurves
+ * Signature: ()Ljava/util/Set;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_getCurves(JNIEnv *env, jobject self){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    keysizeSupported
+ * Signature: (I)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_keysizeSupported(JNIEnv *env, jobject self, jint keysize){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    paramsSupported
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_paramsSupported(JNIEnv *env, jobject self, jobject params){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    generate
+ * Signature: (ILjava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__ILjava_security_SecureRandom_2(JNIEnv *env, jobject self, jint keysize, jobject random){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    generate
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;Ljava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__Ljava_security_spec_AlgorithmParameterSpec_2Ljava_security_SecureRandom_2(JNIEnv *env, jobject self, jobject params, jobject random){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_Botan
+ * Method:    generateSecret
+ * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
+ */
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_00024Botan_generateSecret(JNIEnv *env, jobject self, jbyteArray pubkey, jbyteArray privkey, jobject params){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+ * Method:    sign
+ * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
+ */
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024Botan_sign(JNIEnv *env, jobject self, jbyteArray data, jbyteArray privkey, jobject params){
+
+}
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+ * Method:    verify
+ * Signature: ([B[B[BLjava/security/spec/ECParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024Botan_verify(JNIEnv *env, jobject self, jbyteArray signature, jbyteArray data, jbyteArray pubkey, jobject params){
+
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/native.h b/src/cz/crcs/ectester/standalone/libs/jni/native.h
index 852dd53..d714b39 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/native.h
+++ b/src/cz/crcs/ectester/standalone/libs/jni/native.h
@@ -171,3 +171,174 @@ JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSigna
 }
 #endif
 #endif
+/* Header for class cz_crcs_ectester_standalone_libs_BotanLib */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_BotanLib
+#define _Included_cz_crcs_ectester_standalone_libs_BotanLib
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_BotanLib
+ * Method:    createProvider
+ * Signature: ()Ljava/security/Provider;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_createProvider
+  (JNIEnv *, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_BotanLib
+ * Method:    getCurves
+ * Signature: ()Ljava/util/Set;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_getCurves
+  (JNIEnv *, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID 1421746759512286392LL
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_MAX_ARRAY_SIZE
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_MAX_ARRAY_SIZE 2147483639L
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_KEYS
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_KEYS 0L
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_VALUES
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_VALUES 1L
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_ENTRIES
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_ENTRIES 2L
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID 4112578634029874840LL
+#undef cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID
+#define cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan_serialVersionUID -4298000515446427739LL
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeProvider_Botan
+ * Method:    setup
+ * Signature: ()V
+ */
+JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_00024Botan_setup
+  (JNIEnv *, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    keysizeSupported
+ * Signature: (I)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_keysizeSupported
+  (JNIEnv *, jobject, jint);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    paramsSupported
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_paramsSupported
+  (JNIEnv *, jobject, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    generate
+ * Signature: (ILjava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__ILjava_security_SecureRandom_2
+  (JNIEnv *, jobject, jint, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_Botan
+ * Method:    generate
+ * Signature: (Ljava/security/spec/AlgorithmParameterSpec;Ljava/security/SecureRandom;)Ljava/security/KeyPair;
+ */
+JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__Ljava_security_spec_AlgorithmParameterSpec_2Ljava_security_SecureRandom_2
+  (JNIEnv *, jobject, jobject, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPublicKey_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeECPrivateKey_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_Botan
+ * Method:    generateSecret
+ * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
+ */
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_00024Botan_generateSecret
+  (JNIEnv *, jobject, jbyteArray, jbyteArray, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
+/* Header for class cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan */
+
+#ifndef _Included_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+#define _Included_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+#ifdef __cplusplus
+extern "C" {
+#endif
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+ * Method:    sign
+ * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
+ */
+JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024Botan_sign
+  (JNIEnv *, jobject, jbyteArray, jbyteArray, jobject);
+
+/*
+ * Class:     cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_Botan
+ * Method:    verify
+ * Signature: ([B[B[BLjava/security/spec/ECParameterSpec;)Z
+ */
+JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeSignatureSpi_00024Botan_verify
+  (JNIEnv *, jobject, jbyteArray, jbyteArray, jbyteArray, jobject);
+
+#ifdef __cplusplus
+}
+#endif
+#endif
-- 
cgit v1.2.3-70-g09d2


From 26ced2ccee2c83414f7c81dfad583400be0e91af Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sat, 9 Dec 2017 19:12:06 +0100
Subject: Add Botan library implementation of keygen and ECDH.

---
 .../ectester/standalone/ECTesterStandalone.java    |  10 +-
 .../standalone/consts/KeyAgreementIdent.java       |  14 +-
 .../standalone/consts/KeyPairGeneratorIdent.java   |   4 +
 .../ectester/standalone/consts/SignatureIdent.java |  14 +
 src/cz/crcs/ectester/standalone/libs/jni/Makefile  |  23 +-
 .../standalone/libs/jni/NativeKeyAgreementSpi.java |  42 ++-
 .../libs/jni/NativeKeyPairGeneratorSpi.java        |  34 ++-
 src/cz/crcs/ectester/standalone/libs/jni/botan.cpp | 327 ++++++++++++++++++++-
 src/cz/crcs/ectester/standalone/libs/jni/c_utils.c |  61 ++++
 src/cz/crcs/ectester/standalone/libs/jni/c_utils.h |  15 +
 .../ectester/standalone/libs/jni/cpp_utils.cpp     |  54 ++++
 .../ectester/standalone/libs/jni/cpp_utils.hpp     |  16 +
 .../crcs/ectester/standalone/libs/jni/tomcrypt.c   |  45 +--
 13 files changed, 594 insertions(+), 65 deletions(-)
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/c_utils.c
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/c_utils.h
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.cpp
 create mode 100644 src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.hpp

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index d9525e9..c3dfbbe 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -96,6 +96,7 @@ public class ECTesterStandalone {
             System.err.println("Invalid algorithm parameter: " + e.getMessage());
         } catch (NoSuchAlgorithmException nsaex) {
             System.err.println("Algorithm not supported by the selected library: " + nsaex.getMessage());
+            nsaex.printStackTrace();
         } catch (InvalidKeyException | SignatureException | TestException e) {
             e.printStackTrace();
         }
@@ -208,9 +209,12 @@ public class ECTesterStandalone {
                 .filter((ident) -> ident.contains(algo))
                 .findFirst()
                 .orElse(lib.getKPGs().stream()
-                        .filter((ident) -> ident.contains("EC"))
+                        .filter((ident) -> ident.contains("ECDH"))
                         .findFirst()
-                        .orElse(null));
+                        .orElse(lib.getKPGs().stream()
+                                .filter((ident) -> ident.contains("EC"))
+                                .findFirst()
+                                .orElse(null)));
 
 
         if (kaIdent == null || kpIdent == null) {
@@ -231,7 +235,7 @@ public class ECTesterStandalone {
                 }
                 spec = curve.toSpec();
                 kpg.initialize(spec);
-            }
+            }//TODO: allow ECGenNamedSpec
 
             System.out.println("index;nanotime;pubW;privS;secret");
 
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
index 724f3c6..a5d3578 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyAgreementIdent.java
@@ -28,13 +28,13 @@ public class KeyAgreementIdent extends Ident {
         ALL.add(new KeyAgreementIdent("ECCDHwithSHA384KDF", "1.3.132.1.14.2"));
         ALL.add(new KeyAgreementIdent("ECDHwithSHA512KDF", "1.3.132.1.11.3"));
         ALL.add(new KeyAgreementIdent("ECCDHwithSHA512KDF", "1.3.132.1.14.3"));
-        // ECMQV
-        ALL.add(new KeyAgreementIdent("ECMQV"));
-        ALL.add(new KeyAgreementIdent("ECMQVwithSHA1CKDF", "1.3.133.16.840.63.0.16"));
-        ALL.add(new KeyAgreementIdent("ECMQVwithSHA224CKDF", "1.3.132.1.15.0"));
-        ALL.add(new KeyAgreementIdent("ECMQVwithSHA256CKDF", "1.3.132.1.15.1"));
-        ALL.add(new KeyAgreementIdent("ECMQVwithSHA384CKDF", "1.3.132.1.15.2"));
-        ALL.add(new KeyAgreementIdent("ECMQVwithSHA512CKDF", "1.3.132.1.15.3"));
+        // ECMQV - Disable for now as it needs diferent params(too different from DH)
+        //ALL.add(new KeyAgreementIdent("ECMQV"));
+        //ALL.add(new KeyAgreementIdent("ECMQVwithSHA1CKDF", "1.3.133.16.840.63.0.16"));
+        //ALL.add(new KeyAgreementIdent("ECMQVwithSHA224CKDF", "1.3.132.1.15.0"));
+        //ALL.add(new KeyAgreementIdent("ECMQVwithSHA256CKDF", "1.3.132.1.15.1"));
+        //ALL.add(new KeyAgreementIdent("ECMQVwithSHA384CKDF", "1.3.132.1.15.2"));
+        //ALL.add(new KeyAgreementIdent("ECMQVwithSHA512CKDF", "1.3.132.1.15.3"));
         // ECVKO
         ALL.add(new KeyAgreementIdent("ECVKO", "ECGOST3410", "1.2.643.2.2.19", "GOST-3410-2001", "1.2.643.2.2.96"));
         ALL.add(new KeyAgreementIdent("ECVKO256", "ECGOST3410-2012-256", "1.2.643.7.1.1.6.1", "1.2.643.7.1.1.1.1"));
diff --git a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
index 50b7135..8e67967 100644
--- a/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/KeyPairGeneratorIdent.java
@@ -17,6 +17,10 @@ public class KeyPairGeneratorIdent extends Ident {
         ALL.add(new KeyPairGeneratorIdent("ECMQV"));
         ALL.add(new KeyPairGeneratorIdent("ECGOST3410"));
         ALL.add(new KeyPairGeneratorIdent("ECGOST3410-2012"));
+        // ECKCDSA? Botan provides.
+        ALL.add(new KeyPairGeneratorIdent("ECKCDSA"));
+        // ECGDSA? Botan provides.
+        ALL.add(new KeyPairGeneratorIdent("ECGDSA"));
     }
 
     public static KeyPairGeneratorIdent get(String ident) {
diff --git a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
index f322cc5..d2f9f00 100644
--- a/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
+++ b/src/cz/crcs/ectester/standalone/consts/SignatureIdent.java
@@ -63,6 +63,20 @@ public class SignatureIdent extends Ident {
         ALL.add(new SignatureIdent("SHA3-256withECDDSA", "SHA3-256withDETECDSA"));
         ALL.add(new SignatureIdent("SHA3-384withECDDSA", "SHA3-384withDETECDSA"));
         ALL.add(new SignatureIdent("SHA3-512withECDDSA", "SHA3-512withDETECDSA"));
+        // ECKCDSA? Botan provides.
+        ALL.add(new SignatureIdent("ECKCDSA"));
+        ALL.add(new SignatureIdent("SHA1withECKCDSA", "1.2.410.200004.1.100.4.3"));
+        ALL.add(new SignatureIdent("SHA224withECKCDSA", "1.2.410.200004.1.100.4.4"));
+        ALL.add(new SignatureIdent("SHA256withECKCDSA", "1.2.410.200004.1.100.4.5"));
+        // ECGDSA? Botan provides.
+        ALL.add(new SignatureIdent("ECGDSA"));
+        ALL.add(new SignatureIdent("RIPEMD160withECGDSA", "1.3.36.3.3.2.5.4.1"));
+        ALL.add(new SignatureIdent("SHA1withECGDSA", "1.3.36.3.3.2.5.4.2"));
+        ALL.add(new SignatureIdent("SHA224withECGDSA", "1.3.36.3.3.2.5.4.3"));
+        ALL.add(new SignatureIdent("SHA224withECGDSA", "1.3.36.3.3.2.5.4.4"));
+        ALL.add(new SignatureIdent("SHA384withECGDSA", "1.3.36.3.3.2.5.4.5"));
+        ALL.add(new SignatureIdent("SHA512withECGDSA", "1.3.36.3.3.2.5.4.6"));
+
     }
 
     public static SignatureIdent get(String ident) {
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/Makefile b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
index c6df032..3530499 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/Makefile
+++ b/src/cz/crcs/ectester/standalone/libs/jni/Makefile
@@ -37,20 +37,31 @@ LOCAL_LIBS = /usr/local/lib
 CC?=gcc
 CXX?=g++
 
+CFLAGS+=-fPIC -g -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I.
+CXXFLAGS+=-fPIC -g -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I.
+
 
 all: tomcrypt_provider.so botan_provider.so
 
-tomcrypt_provider.so: tomcrypt.o
-	$(CC) -fPIC -g -shared -o $@ $< -L. -ltommath -ltomcrypt
+c_utils.o: c_utils.c
+	$(CC) $(CFLAGS) -c $<
+
+cpp_utils.o: cpp_utils.cpp
+	$(CXX) $(CXXFLAGS) -c $<
+
+
+tomcrypt_provider.so: tomcrypt.o c_utils.o
+	$(CC) -fPIC -g -shared -o $@ $^ -L. -ltommath -ltomcrypt
 
 tomcrypt.o: tomcrypt.c
-	$(CC) -DLTM_DESC -fPIC -g -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
+	$(CC) -DLTM_DESC $(CFLAGS) -c $<
+
 
-botan_provider.so: botan.o
-	$(CXX) -fPIC -g -shared -o $@ $< -L. -L"$(LOCAL_LIBS)" -lbotan-2 -fstack-protector -m64 -pthread
+botan_provider.so: botan.o cpp_utils.o
+	$(CXX) -fPIC -g -shared -o $@ $^ -L. -L"$(LOCAL_LIBS)" -lbotan-2 -fstack-protector -m64 -pthread
 
 botan.o: botan.cpp
-	$(CXX) -fPIC -g -I"$(LOCAL_INCLUDES)/botan-2" -I"$(JNI_INCLUDEDIR)" -I"$(JNI_PLATFORMINCLUDEDIR)" -I. -c $<
+	$(CXX) -I"$(LOCAL_INCLUDES)/botan-2" $(CFLAGS) -c $<
 
 clean:
 	rm -rf *.o
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
index 8875948..37c9add 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi.java
@@ -89,9 +89,49 @@ public abstract class NativeKeyAgreementSpi extends KeyAgreementSpi {
         native byte[] generateSecret(byte[] pubkey, byte[] privkey, ECParameterSpec params);
     }
 
-    public static class Botan extends NativeKeyAgreementSpi {
+    public abstract static class Botan extends NativeKeyAgreementSpi {
+        private String type;
+        public Botan(String type) {
+            this.type = type;
+        }
 
         @Override
         native byte[] generateSecret(byte[] pubkey, byte[] privkey, ECParameterSpec params);
     }
+
+    public static class BotanECDH extends Botan {
+        public BotanECDH() {
+            super("ECDH");
+        }
+    }
+
+    public static class BotanECDHwithSHA1KDF extends Botan {
+        public BotanECDHwithSHA1KDF() {
+            super("ECDHwithSHA1KDF");
+        }
+    }
+
+    public static class BotanECDHwithSHA224KDF extends Botan {
+        public BotanECDHwithSHA224KDF() {
+            super("ECDHwithSHA224KDF");
+        }
+    }
+
+    public static class BotanECDHwithSHA256KDF extends Botan {
+        public BotanECDHwithSHA256KDF() {
+            super("ECDHwithSHA256KDF");
+        }
+    }
+
+    public static class BotanECDHwithSHA384KDF extends Botan {
+        public BotanECDHwithSHA384KDF() {
+            super("ECDHwithSHA384KDF");
+        }
+    }
+
+    public static class BotanECDHwithSHA512KDF extends Botan {
+        public BotanECDHwithSHA512KDF() {
+            super("ECDHwithSHA512KDF");
+        }
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
index 5b8a54b..9461251 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
+++ b/src/cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi.java
@@ -72,9 +72,11 @@ public abstract class NativeKeyPairGeneratorSpi extends KeyPairGeneratorSpi {
         native KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
     }
 
-    public static class Botan extends NativeKeyPairGeneratorSpi {
+    public static abstract class Botan extends NativeKeyPairGeneratorSpi {
+        private String type;
 
-        public Botan() {
+        public Botan(String type) {
+            this.type = type;
             initialize(256, new SecureRandom());
         }
 
@@ -90,4 +92,32 @@ public abstract class NativeKeyPairGeneratorSpi extends KeyPairGeneratorSpi {
         @Override
         native KeyPair generate(AlgorithmParameterSpec params, SecureRandom random);
     }
+
+    public static class BotanECDH extends Botan {
+
+        public BotanECDH() {
+            super("ECDH");
+        }
+    }
+
+    public static class BotanECDSA extends Botan {
+
+        public BotanECDSA() {
+            super("ECDSA");
+        }
+    }
+
+    public static class BotanECKCDSA extends Botan {
+
+        public BotanECKCDSA() {
+            super("ECKCDSA");
+        }
+    }
+
+    public static class BotanECGDSA extends Botan {
+
+        public BotanECGDSA() {
+            super("ECGDSA");
+        }
+    }
 }
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp b/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp
index 9c2394f..0b2928d 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp
+++ b/src/cz/crcs/ectester/standalone/libs/jni/botan.cpp
@@ -1,6 +1,14 @@
 #include "native.h"
 #include <string>
 #include <botan/botan.h>
+#include <botan/ec_group.h>
+#include <botan/ecc_key.h>
+#include <botan/ecdsa.h>
+#include <botan/eckcdsa.h>
+#include <botan/ecgdsa.h>
+#include <botan/ecdh.h>
+#include <botan/pubkey.h>
+#include "cpp_utils.hpp"
 
 static jclass provider_class;
 
@@ -34,7 +42,49 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_createP
  * Signature: ()V
  */
 JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_00024Botan_setup(JNIEnv *env, jobject self){
+    jmethodID provider_put = env->GetMethodID(provider_class, "put", "(Ljava/lang/Object;Ljava/lang/Object;)Ljava/lang/Object;");
 
+    jstring ecdh = env->NewStringUTF("KeyPairGenerator.ECDH");
+    jstring ecdh_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$BotanECDH");
+    env->CallObjectMethod(self, provider_put, ecdh, ecdh_value);
+
+    jstring ecdsa = env->NewStringUTF("KeyPairGenerator.ECDSA");
+    jstring ecdsa_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$BotanECDSA");
+    env->CallObjectMethod(self, provider_put, ecdsa, ecdsa_value);
+
+    jstring eckcdsa = env->NewStringUTF("KeyPairGenerator.ECKCDSA");
+    jstring eckcdsa_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$BotanECKCDSA");
+    env->CallObjectMethod(self, provider_put, eckcdsa, eckcdsa_value);
+    
+    jstring ecgdsa = env->NewStringUTF("KeyPairGenerator.ECGDSA");
+    jstring ecgdsa_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyPairGeneratorSpi$BotanECGDSA");
+    env->CallObjectMethod(self, provider_put, ecgdsa, ecgdsa_value);
+
+    jstring ecdh_ka = env->NewStringUTF("KeyAgreement.ECDH");
+    jstring ecdh_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDH");
+    env->CallObjectMethod(self, provider_put, ecdh_ka, ecdh_ka_value);
+
+    jstring ecdh_sha1_ka = env->NewStringUTF("KeyAgreement.ECDHwithSHA1KDF");
+    jstring ecdh_sha1_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDHwithSHA1KDF");
+    env->CallObjectMethod(self, provider_put, ecdh_sha1_ka, ecdh_sha1_ka_value);
+
+    jstring ecdh_sha224_ka = env->NewStringUTF("KeyAgreement.ECDHwithSHA224KDF");
+    jstring ecdh_sha224_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDHwithSHA224KDF");
+    env->CallObjectMethod(self, provider_put, ecdh_sha224_ka, ecdh_sha224_ka_value);
+
+    jstring ecdh_sha256_ka = env->NewStringUTF("KeyAgreement.ECDHwithSHA256KDF");
+    jstring ecdh_sha256_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDHwithSHA256KDF");
+    env->CallObjectMethod(self, provider_put, ecdh_sha256_ka, ecdh_sha256_ka_value);
+
+    jstring ecdh_sha384_ka = env->NewStringUTF("KeyAgreement.ECDHwithSHA384KDF");
+    jstring ecdh_sha384_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDHwithSHA384KDF");
+    env->CallObjectMethod(self, provider_put, ecdh_sha384_ka, ecdh_sha384_ka_value);
+
+    jstring ecdh_sha512_ka = env->NewStringUTF("KeyAgreement.ECDHwithSHA512KDF");
+    jstring ecdh_sha512_ka_value = env->NewStringUTF("cz.crcs.ectester.standalone.libs.jni.NativeKeyAgreementSpi$BotanECDHwithSHA512KDF");
+    env->CallObjectMethod(self, provider_put, ecdh_sha512_ka, ecdh_sha512_ka_value);
+
+    init_classes(env, "Botan");
 }
 
 /*
@@ -43,7 +93,21 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
  * Signature: ()Ljava/util/Set;
  */
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_getCurves(JNIEnv *env, jobject self){
+    jclass hash_set_class = env->FindClass("java/util/TreeSet");
+
+    jmethodID hash_set_ctr = env->GetMethodID(hash_set_class, "<init>", "()V");
+    jmethodID hash_set_add = env->GetMethodID(hash_set_class, "add", "(Ljava/lang/Object;)Z");
+
+    jobject result = env->NewObject(hash_set_class, hash_set_ctr);
+
+    const std::set<std::string>& curves = Botan::EC_Group::known_named_groups();
+    for (auto it = curves.begin(); it != curves.end(); ++it) {
+        std::string curve_name = *it;
+        jstring name_str = env->NewStringUTF(curve_name.c_str());
+        env->CallBooleanMethod(result, hash_set_add, name_str);
+    }
 
+    return result;
 }
 
 /*
@@ -52,7 +116,7 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_BotanLib_getCurv
  * Signature: (I)Z
  */
 JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_keysizeSupported(JNIEnv *env, jobject self, jint keysize){
-
+    return JNI_TRUE;
 }
 
 /*
@@ -61,7 +125,195 @@ JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPa
  * Signature: (Ljava/security/spec/AlgorithmParameterSpec;)Z
  */
 JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_paramsSupported(JNIEnv *env, jobject self, jobject params){
+    if (params == NULL) {
+        return JNI_FALSE;
+    }
+
+    if (env->IsInstanceOf(params, ec_parameter_spec_class)) {
+        jmethodID get_curve = env->GetMethodID(ec_parameter_spec_class, "getCurve", "()Ljava/security/spec/EllipticCurve;");
+        jobject curve = env->CallObjectMethod(params, get_curve);
+
+        jmethodID get_field = env->GetMethodID(elliptic_curve_class, "getField", "()Ljava/security/spec/ECField;");
+        jobject field = env->CallObjectMethod(curve, get_field);
+
+        if (env->IsInstanceOf(field, fp_field_class)) {
+            return JNI_TRUE;
+        }
+    } else if (env->IsInstanceOf(params, ecgen_parameter_spec_class)) {
+        const std::set<std::string>& curves = Botan::EC_Group::known_named_groups();
+        jmethodID get_name = env->GetMethodID(ecgen_parameter_spec_class, "getName", "()Ljava/lang/String;");
+        jstring name = (jstring) env->CallObjectMethod(params, get_name);
+        const char *utf_name = env->GetStringUTFChars(name, NULL);
+        std::string str_name(utf_name);
+        env->ReleaseStringUTFChars(name, utf_name);
+        if (curves.find(str_name) != curves.end()) {
+            return JNI_TRUE;
+        }
+    }
+    return JNI_FALSE;
+}
+
+static jobject biginteger_from_bigint(JNIEnv *env, const Botan::BigInt& bigint) {
+    std::vector<uint8_t> bigint_data = Botan::BigInt::encode(bigint);
+    jbyteArray bigint_array = env->NewByteArray(bigint_data.size());
+    jbyte * bigint_bytes = env->GetByteArrayElements(bigint_array, NULL);
+    std::copy(bigint_data.begin(), bigint_data.end(), bigint_bytes);
+    env->ReleaseByteArrayElements(bigint_array, bigint_bytes, JNI_COMMIT);
+
+    jmethodID biginteger_init = env->GetMethodID(biginteger_class, "<init>", "(I[B)V");
+    return env->NewObject(biginteger_class, biginteger_init, (jint) 1, bigint_array);
+}
+
+static Botan::BigInt bigint_from_biginteger(JNIEnv *env, jobject biginteger) {
+    jmethodID to_byte_array = env->GetMethodID(biginteger_class, "toByteArray", "()[B");
+    jbyteArray byte_array = (jbyteArray) env->CallObjectMethod(biginteger, to_byte_array);
+    jsize byte_length = env->GetArrayLength(byte_array);
+    jbyte *byte_data = env->GetByteArrayElements(byte_array, NULL);
+    Botan::BigInt result((unsigned uint8_t*) byte_data, byte_length);
+    env->ReleaseByteArrayElements(byte_array, byte_data, JNI_ABORT);
+    return result;
+}
+
+static Botan::EC_Group group_from_params(JNIEnv *env, jobject params) {
+    if (env->IsInstanceOf(params, ec_parameter_spec_class)) {
+        jmethodID get_curve = env->GetMethodID(ec_parameter_spec_class, "getCurve", "()Ljava/security/spec/EllipticCurve;");
+        jobject elliptic_curve = env->CallObjectMethod(params, get_curve);
+    
+        jmethodID get_field = env->GetMethodID(elliptic_curve_class, "getField", "()Ljava/security/spec/ECField;");
+        jobject field = env->CallObjectMethod(elliptic_curve, get_field);
+    
+        jmethodID get_bits = env->GetMethodID(fp_field_class, "getFieldSize", "()I");
+        jint bits = env->CallIntMethod(field, get_bits);
+        jint bytes = (bits + 7) / 8;
+
+        jmethodID get_a = env->GetMethodID(elliptic_curve_class, "getA", "()Ljava/math/BigInteger;");
+        jobject a = env->CallObjectMethod(elliptic_curve, get_a);
+    
+        jmethodID get_b = env->GetMethodID(elliptic_curve_class, "getB", "()Ljava/math/BigInteger;");
+        jobject b = env->CallObjectMethod(elliptic_curve, get_b);
+    
+        jmethodID get_p = env->GetMethodID(fp_field_class, "getP", "()Ljava/math/BigInteger;");
+        jobject p = env->CallObjectMethod(field, get_p);
+    
+        jmethodID get_g = env->GetMethodID(ec_parameter_spec_class, "getGenerator", "()Ljava/security/spec/ECPoint;");
+        jobject g = env->CallObjectMethod(params, get_g);
+    
+        jmethodID get_x = env->GetMethodID(point_class, "getAffineX", "()Ljava/math/BigInteger;");
+        jobject gx = env->CallObjectMethod(g, get_x);
+    
+        jmethodID get_y = env->GetMethodID(point_class, "getAffineY", "()Ljava/math/BigInteger;");
+        jobject gy = env->CallObjectMethod(g, get_y);
+    
+        jmethodID get_n = env->GetMethodID(ec_parameter_spec_class, "getOrder", "()Ljava/math/BigInteger;");
+        jobject n = env->CallObjectMethod(params, get_n);
+
+        jmethodID get_h = env->GetMethodID(ec_parameter_spec_class, "getCofactor", "()I");
+        jint h = env->CallIntMethod(params, get_h);
+
+        Botan::BigInt pi = bigint_from_biginteger(env, p);
+        Botan::BigInt ai = bigint_from_biginteger(env, a);
+        Botan::BigInt bi = bigint_from_biginteger(env, b);
+        Botan::CurveGFp curve(pi, ai, bi);
+
+        Botan::BigInt gxi = bigint_from_biginteger(env, gx);
+        Botan::BigInt gyi = bigint_from_biginteger(env, gy);
+        Botan::PointGFp generator(curve, gxi, gyi);
+
+        Botan::BigInt ni = bigint_from_biginteger(env, n);
+        Botan::BigInt hi(h);
+
+        return Botan::EC_Group(curve, generator, ni, hi);
+    } else if (env->IsInstanceOf(params, ecgen_parameter_spec_class)) {
+        jmethodID get_name = env->GetMethodID(ecgen_parameter_spec_class, "getName", "()Ljava/lang/String;");
+        jstring name = (jstring) env->CallObjectMethod(params, get_name);
+        const char *utf_name = env->GetStringUTFChars(name, NULL);
+        std::string curve_name(utf_name);
+        env->ReleaseStringUTFChars(name, utf_name);
+        return Botan::EC_Group(curve_name);
+    }
+    return Botan::EC_Group();
+}
+
+static jobject params_from_group(JNIEnv *env, Botan::EC_Group group) {
+    const Botan::CurveGFp& curve = group.get_curve();
+    jobject p = biginteger_from_bigint(env, curve.get_p());
 
+    jmethodID fp_field_init = env->GetMethodID(fp_field_class, "<init>", "(Ljava/math/BigInteger;)V");
+    jobject fp_field = env->NewObject(fp_field_class, fp_field_init, p);
+
+    jobject a = biginteger_from_bigint(env, curve.get_a());
+    jobject b = biginteger_from_bigint(env, curve.get_b());
+
+    jmethodID elliptic_curve_init = env->GetMethodID(elliptic_curve_class, "<init>", "(Ljava/security/spec/ECField;Ljava/math/BigInteger;Ljava/math/BigInteger;)V");
+    jobject elliptic_curve = env->NewObject(elliptic_curve_class, elliptic_curve_init, fp_field, a, b);
+
+    const Botan::PointGFp& generator = group.get_base_point();
+    jobject gx = biginteger_from_bigint(env, generator.get_affine_x());
+    jobject gy = biginteger_from_bigint(env, generator.get_affine_y());
+
+    jmethodID point_init = env->GetMethodID(point_class, "<init>", "(Ljava/math/BigInteger;Ljava/math/BigInteger;)V");
+    jobject g = env->NewObject(point_class, point_init, gx, gy);
+
+    const Botan::BigInt& order = group.get_order();
+    jobject n = biginteger_from_bigint(env, order);
+
+    const Botan::BigInt& cofactor = group.get_cofactor();
+    jint h = (jint) cofactor.to_u32bit();
+
+    jmethodID ec_parameter_spec_init = env->GetMethodID(ec_parameter_spec_class, "<init>", "(Ljava/security/spec/EllipticCurve;Ljava/security/spec/ECPoint;Ljava/math/BigInteger;I)V");
+    return env->NewObject(ec_parameter_spec_class, ec_parameter_spec_init, elliptic_curve, g, n, h);
+}
+
+static jobject generate_from_group(JNIEnv* env, jobject self, Botan::EC_Group group) {
+    Botan::AutoSeeded_RNG rng;
+
+    jclass botan_kpg_class = env->FindClass("cz/crcs/ectester/standalone/libs/jni/NativeKeyPairGeneratorSpi$Botan");
+    jfieldID type_id = env->GetFieldID(botan_kpg_class, "type", "Ljava/lang/String;");
+    jstring type = (jstring) env->GetObjectField(self, type_id);
+    const char* type_data = env->GetStringUTFChars(type, NULL);
+    std::string type_str(type_data);
+    env->ReleaseStringUTFChars(type, type_data);
+
+    std::unique_ptr<Botan::EC_PrivateKey> skey;
+    if (type_str == "ECDH") {
+        skey = std::make_unique<Botan::ECDH_PrivateKey>(rng, group);
+    } else if (type_str == "ECDSA") {
+        skey = std::make_unique<Botan::ECDSA_PrivateKey>(rng, group);
+    } else if (type_str == "ECKCDSA") {
+        skey = std::make_unique<Botan::ECKCDSA_PrivateKey>(rng, group);
+    } else if (type_str == "ECGDSA") {
+        skey = std::make_unique<Botan::ECGDSA_PrivateKey>(rng, group);
+    }
+
+    jobject ec_param_spec = params_from_group(env, group);
+
+    const Botan::PointGFp& pub_point = skey->public_point();
+    std::vector<uint8_t> pub_data = Botan::unlock(Botan::EC2OSP(pub_point, Botan::PointGFp::UNCOMPRESSED));
+
+    jbyteArray pub_bytearray = env->NewByteArray(pub_data.size());
+    jbyte *pub_bytes = env->GetByteArrayElements(pub_bytearray, NULL);
+    std::copy(pub_data.begin(), pub_data.end(), pub_bytes);
+    env->ReleaseByteArrayElements(pub_bytearray, pub_bytes, JNI_COMMIT);
+
+    jobject ec_pub_param_spec = env->NewLocalRef(ec_param_spec);
+    jmethodID ec_pub_init = env->GetMethodID(pubkey_class, "<init>", "([BLjava/security/spec/ECParameterSpec;)V");
+    jobject pubkey = env->NewObject(pubkey_class, ec_pub_init, pub_bytearray, ec_pub_param_spec);
+
+    const Botan::BigInt& priv_scalar = skey->private_value();
+    std::vector<uint8_t> priv_data = Botan::BigInt::encode(priv_scalar);
+
+    jbyteArray priv_bytearray = env->NewByteArray(priv_data.size());
+    jbyte *priv_bytes = env->GetByteArrayElements(priv_bytearray, NULL);
+    std::copy(priv_data.begin(), priv_data.end(), priv_bytes);
+    env->ReleaseByteArrayElements(priv_bytearray, priv_bytes, JNI_COMMIT);
+
+    jobject ec_priv_param_spec = env->NewLocalRef(ec_param_spec);
+    jmethodID ec_priv_init = env->GetMethodID(privkey_class, "<init>", "([BLjava/security/spec/ECParameterSpec;)V");
+    jobject privkey = env->NewObject(privkey_class, ec_priv_init, priv_bytearray, ec_priv_param_spec);
+
+    jmethodID keypair_init = env->GetMethodID(keypair_class, "<init>", "(Ljava/security/PublicKey;Ljava/security/PrivateKey;)V");
+
+    return env->NewObject(keypair_class, keypair_init, pubkey, privkey);
 }
 
 /*
@@ -70,7 +322,17 @@ JNIEXPORT jboolean JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPa
  * Signature: (ILjava/security/SecureRandom;)Ljava/security/KeyPair;
  */
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__ILjava_security_SecureRandom_2(JNIEnv *env, jobject self, jint keysize, jobject random){
-
+    const std::set<std::string>& curves = Botan::EC_Group::known_named_groups();
+    for (auto it = curves.begin(); it != curves.end(); ++it) {
+        Botan::EC_Group curve_group = Botan::EC_Group(*it);
+        size_t curve_size = curve_group.get_curve().get_p().bits();
+        if (curve_size == keysize) {
+            //generate on this group. Even thou no default groups are present...
+            return generate_from_group(env, self, curve_group);
+        }
+    }
+    //TODO throw an exception here? InvalidAlgorithmParameters one?
+    return NULL;
 }
 
 /*
@@ -79,7 +341,8 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPai
  * Signature: (Ljava/security/spec/AlgorithmParameterSpec;Ljava/security/SecureRandom;)Ljava/security/KeyPair;
  */
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPairGeneratorSpi_00024Botan_generate__Ljava_security_spec_AlgorithmParameterSpec_2Ljava_security_SecureRandom_2(JNIEnv *env, jobject self, jobject params, jobject random){
-
+    Botan::EC_Group curve_group = group_from_params(env, params);
+    return generate_from_group(env, self, curve_group);
 }
 
 /*
@@ -88,7 +351,65 @@ JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyPai
  * Signature: ([B[BLjava/security/spec/ECParameterSpec;)[B
  */
 JNIEXPORT jbyteArray JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeKeyAgreementSpi_00024Botan_generateSecret(JNIEnv *env, jobject self, jbyteArray pubkey, jbyteArray privkey, jobject params){
+    Botan::EC_Group curve_group = group_from_params(env, params);
+
+    jsize privkey_length = env->GetArrayLength(privkey);
+    jbyte *privkey_data = env->GetByteArrayElements(privkey, NULL);
+    Botan::BigInt privkey_scalar((unsigned uint8_t*) privkey_data, privkey_length);
+    env->ReleaseByteArrayElements(privkey, privkey_data, JNI_ABORT);
+
+    Botan::AutoSeeded_RNG rng;
+
+    Botan::ECDH_PrivateKey skey(rng, curve_group, privkey_scalar);
+
+    jsize pubkey_length = env->GetArrayLength(pubkey);
+    jbyte *pubkey_data = env->GetByteArrayElements(pubkey, NULL);
+    Botan::PointGFp public_point = Botan::OS2ECP((uint8_t*) pubkey_data, pubkey_length, curve_group.get_curve());
+    env->ReleaseByteArrayElements(pubkey, pubkey_data, JNI_ABORT);
+
+    Botan::ECDH_PublicKey pkey(curve_group, public_point);
+    //TODO: do check_key here?
+
+    jclass botan_ka_class = env->FindClass("cz/crcs/ectester/standalone/libs/jni/NativeKeyAgreementSpi$Botan");
+    jfieldID type_id = env->GetFieldID(botan_ka_class, "type", "Ljava/lang/String;");
+    jstring type = (jstring) env->GetObjectField(self, type_id);
+    const char *type_data = env->GetStringUTFChars(type, NULL);
+    std::string type_str(type_data);
+    env->ReleaseStringUTFChars(type, type_data);
+
+    std::string kdf;
+    size_t key_len = 0;
+    if (type_str == "ECDH") {
+        kdf = "Raw";
+        //key len unused
+    } else if (type_str == "ECDHwithSHA1KDF") {
+        kdf = "KDF1(SHA-1)";
+        key_len = 20;
+    } else if (type_str == "ECDHwithSHA224KDF") {
+        kdf = "KDF1(SHA-224)";
+        key_len = 28;
+    } else if (type_str == "ECDHwithSHA256KDF") {
+        kdf = "KDF1(SHA-256)";
+        key_len = 32;
+    } else if (type_str == "ECDHwithSHA384KDF") {
+        kdf = "KDF1(SHA-384)";
+        key_len = 48;
+    } else if (type_str == "ECDHwithSHA512KDF") {
+        kdf = "KDF1(SHA-512)";
+        key_len = 64;
+    } else {
+        //TODO what?
+    }
+
+    Botan::PK_Key_Agreement ka(skey, rng, kdf);
+
+    std::vector<uint8_t> derived = Botan::unlock(ka.derive_key(key_len, pkey.public_value()).bits_of());
+    jbyteArray result = env->NewByteArray(derived.size());
+    jbyte *result_data = env->GetByteArrayElements(result, NULL);
+    std::copy(derived.begin(), derived.end(), result_data);
+    env->ReleaseByteArrayElements(result, result_data, JNI_COMMIT);
 
+    return result;
 }
 
 /*
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/c_utils.c b/src/cz/crcs/ectester/standalone/libs/jni/c_utils.c
new file mode 100644
index 0000000..230f516
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/c_utils.c
@@ -0,0 +1,61 @@
+#include "c_utils.h"
+#include <string.h>
+
+jclass ec_parameter_spec_class;
+jclass ecgen_parameter_spec_class;
+jclass pubkey_class;
+jclass privkey_class;
+jclass keypair_class;
+jclass elliptic_curve_class;
+jclass fp_field_class;
+jclass f2m_field_class;
+jclass point_class;
+jclass biginteger_class;
+jclass illegal_state_exception_class;
+
+void init_classes(JNIEnv *env, const char* lib_name) {
+    jclass local_ec_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECParameterSpec");
+    ec_parameter_spec_class = (*env)->NewGlobalRef(env, local_ec_parameter_spec_class);
+
+    jclass local_ecgen_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECGenParameterSpec");
+    ecgen_parameter_spec_class = (*env)->NewGlobalRef(env, local_ecgen_parameter_spec_class);
+
+    const char *pubkey_base = "cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey$";
+    char pubkey_class_name[strlen(pubkey_base) + strlen(lib_name) + 1];
+    pubkey_class_name[0] = 0;
+    strcat(pubkey_class_name, pubkey_base);
+    strcat(pubkey_class_name, lib_name);
+
+    jclass local_pubkey_class = (*env)->FindClass(env, pubkey_class_name);
+    pubkey_class = (*env)->NewGlobalRef(env, local_pubkey_class);
+
+    const char *privkey_base = "cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey$";
+    char privkey_class_name[strlen(privkey_base) + strlen(lib_name) + 1];
+    privkey_class_name[0] = 0;
+    strcat(privkey_class_name, privkey_base);
+    strcat(privkey_class_name, lib_name);
+
+    jclass local_privkey_class = (*env)->FindClass(env, privkey_class_name);
+    privkey_class = (*env)->NewGlobalRef(env, local_privkey_class);
+
+    jclass local_keypair_class = (*env)->FindClass(env, "java/security/KeyPair");
+    keypair_class = (*env)->NewGlobalRef(env, local_keypair_class);
+
+    jclass local_elliptic_curve_class = (*env)->FindClass(env, "java/security/spec/EllipticCurve");
+    elliptic_curve_class = (*env)->NewGlobalRef(env, local_elliptic_curve_class);
+
+    jclass local_fp_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldFp");
+    fp_field_class = (*env)->NewGlobalRef(env, local_fp_field_class);
+
+    jclass local_f2m_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldF2m");
+    f2m_field_class = (*env)->NewGlobalRef(env, local_f2m_field_class);
+
+    jclass local_biginteger_class = (*env)->FindClass(env, "java/math/BigInteger");
+    biginteger_class = (*env)->NewGlobalRef(env, local_biginteger_class);
+
+    jclass local_point_class = (*env)->FindClass(env, "java/security/spec/ECPoint");
+    point_class = (*env)->NewGlobalRef(env, local_point_class);
+
+    jclass local_illegal_state_exception_class = (*env)->FindClass(env, "java/lang/IllegalStateException");
+    illegal_state_exception_class = (*env)->NewGlobalRef(env, local_illegal_state_exception_class);
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/c_utils.h b/src/cz/crcs/ectester/standalone/libs/jni/c_utils.h
new file mode 100644
index 0000000..edd0bda
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/c_utils.h
@@ -0,0 +1,15 @@
+#include "native.h"
+
+extern jclass ec_parameter_spec_class;
+extern jclass ecgen_parameter_spec_class;
+extern jclass pubkey_class;
+extern jclass privkey_class;
+extern jclass keypair_class;
+extern jclass elliptic_curve_class;
+extern jclass fp_field_class;
+extern jclass f2m_field_class;
+extern jclass point_class;
+extern jclass biginteger_class;
+extern jclass illegal_state_exception_class;
+
+void init_classes(JNIEnv *env, const char* lib_name);
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.cpp b/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.cpp
new file mode 100644
index 0000000..ed59d51
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.cpp
@@ -0,0 +1,54 @@
+#include "cpp_utils.hpp"
+
+jclass ec_parameter_spec_class;
+jclass ecgen_parameter_spec_class;
+jclass pubkey_class;
+jclass privkey_class;
+jclass keypair_class;
+jclass elliptic_curve_class;
+jclass fp_field_class;
+jclass f2m_field_class;
+jclass point_class;
+jclass biginteger_class;
+jclass illegal_state_exception_class;
+
+void init_classes(JNIEnv *env, std::string lib_name) {
+    jclass local_ec_parameter_spec_class = env->FindClass("java/security/spec/ECParameterSpec");
+    ec_parameter_spec_class = (jclass) env->NewGlobalRef(local_ec_parameter_spec_class);
+
+    jclass local_ecgen_parameter_spec_class = env->FindClass("java/security/spec/ECGenParameterSpec");
+    ecgen_parameter_spec_class = (jclass) env->NewGlobalRef(local_ecgen_parameter_spec_class);
+
+    std::string pubkey_class_name("cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey$");
+    pubkey_class_name += lib_name;
+
+    jclass local_pubkey_class = env->FindClass(pubkey_class_name.c_str());
+    pubkey_class = (jclass) env->NewGlobalRef(local_pubkey_class);
+
+    std::string privkey_class_name("cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey$");
+    privkey_class_name += lib_name;
+
+    jclass local_privkey_class = env->FindClass(privkey_class_name.c_str());
+    privkey_class = (jclass) env->NewGlobalRef(local_privkey_class);
+
+    jclass local_keypair_class = env->FindClass("java/security/KeyPair");
+    keypair_class = (jclass) env->NewGlobalRef(local_keypair_class);
+
+    jclass local_elliptic_curve_class = env->FindClass("java/security/spec/EllipticCurve");
+    elliptic_curve_class = (jclass) env->NewGlobalRef(local_elliptic_curve_class);
+
+    jclass local_fp_field_class = env->FindClass("java/security/spec/ECFieldFp");
+    fp_field_class = (jclass) env->NewGlobalRef(local_fp_field_class);
+
+    jclass local_f2m_field_class = env->FindClass("java/security/spec/ECFieldF2m");
+    f2m_field_class = (jclass) env->NewGlobalRef(local_f2m_field_class);
+
+    jclass local_biginteger_class = env->FindClass("java/math/BigInteger");
+    biginteger_class = (jclass) env->NewGlobalRef(local_biginteger_class);
+
+    jclass local_point_class = env->FindClass("java/security/spec/ECPoint");
+    point_class = (jclass) env->NewGlobalRef(local_point_class);
+
+    jclass local_illegal_state_exception_class = env->FindClass("java/lang/IllegalStateException");
+    illegal_state_exception_class = (jclass) env->NewGlobalRef(local_illegal_state_exception_class);
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.hpp b/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.hpp
new file mode 100644
index 0000000..d0bf8f2
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/libs/jni/cpp_utils.hpp
@@ -0,0 +1,16 @@
+#include "native.h"
+#include <string>
+
+extern jclass ec_parameter_spec_class;
+extern jclass ecgen_parameter_spec_class;
+extern jclass pubkey_class;
+extern jclass privkey_class;
+extern jclass keypair_class;
+extern jclass elliptic_curve_class;
+extern jclass fp_field_class;
+extern jclass f2m_field_class;
+extern jclass point_class;
+extern jclass biginteger_class;
+extern jclass illegal_state_exception_class;
+
+void init_classes(JNIEnv *env, std::string lib_name);
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
index 629ffc1..0fb69a3 100644
--- a/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
+++ b/src/cz/crcs/ectester/standalone/libs/jni/tomcrypt.c
@@ -2,20 +2,10 @@
 #include <stdio.h>
 #include <string.h>
 #include <tomcrypt.h>
+#include "c_utils.h"
 
 static prng_state ltc_prng;
 static jclass provider_class;
-static jclass ec_parameter_spec_class;
-static jclass ecgen_parameter_spec_class;
-static jclass pubkey_class;
-static jclass privkey_class;
-static jclass keypair_class;
-static jclass elliptic_curve_class;
-static jclass fp_field_class;
-static jclass f2m_field_class;
-static jclass point_class;
-static jclass biginteger_class;
-static jclass illegal_state_exception_class;
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_createProvider(JNIEnv *env, jobject this) {
     /* Create the custom provider. */
@@ -60,38 +50,7 @@ JNIEXPORT void JNICALL Java_cz_crcs_ectester_standalone_libs_jni_NativeProvider_
         fprintf(stderr, "Error setting up PRNG, %s\n", error_to_string(err));
     }
 
-    jclass local_ec_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECParameterSpec");
-    ec_parameter_spec_class = (*env)->NewGlobalRef(env, local_ec_parameter_spec_class);
-
-    jclass local_ecgen_parameter_spec_class = (*env)->FindClass(env, "java/security/spec/ECGenParameterSpec");
-    ecgen_parameter_spec_class = (*env)->NewGlobalRef(env, local_ecgen_parameter_spec_class);
-
-    jclass local_pubkey_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeECPublicKey$TomCrypt");
-    pubkey_class = (*env)->NewGlobalRef(env, local_pubkey_class);
-
-    jclass local_privkey_class = (*env)->FindClass(env, "cz/crcs/ectester/standalone/libs/jni/NativeECPrivateKey$TomCrypt");
-    privkey_class = (*env)->NewGlobalRef(env, local_privkey_class);
-
-    jclass local_keypair_class = (*env)->FindClass(env, "java/security/KeyPair");
-    keypair_class = (*env)->NewGlobalRef(env, local_keypair_class);
-
-    jclass local_elliptic_curve_class = (*env)->FindClass(env, "java/security/spec/EllipticCurve");
-    elliptic_curve_class = (*env)->NewGlobalRef(env, local_elliptic_curve_class);
-
-    jclass local_fp_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldFp");
-    fp_field_class = (*env)->NewGlobalRef(env, local_fp_field_class);
-
-    jclass local_f2m_field_class = (*env)->FindClass(env, "java/security/spec/ECFieldF2m");
-    f2m_field_class = (*env)->NewGlobalRef(env, local_f2m_field_class);
-
-    jclass local_biginteger_class = (*env)->FindClass(env, "java/math/BigInteger");
-    biginteger_class = (*env)->NewGlobalRef(env, local_biginteger_class);
-
-    jclass local_point_class = (*env)->FindClass(env, "java/security/spec/ECPoint");
-    point_class = (*env)->NewGlobalRef(env, local_point_class);
-
-    jclass local_illegal_state_exception_class = (*env)->FindClass(env, "java/lang/IllegalStateException");
-    illegal_state_exception_class = (*env)->NewGlobalRef(env, local_illegal_state_exception_class);
+    init_classes(env, "TomCrypt");
 }
 
 JNIEXPORT jobject JNICALL Java_cz_crcs_ectester_standalone_libs_TomcryptLib_getCurves(JNIEnv *env, jobject this) {
-- 
cgit v1.2.3-70-g09d2


From 71006eb01c60b3556b620b7d4579d65ed6f86926 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Wed, 27 Dec 2017 01:10:06 +0100
Subject: Split output to remove cross-dependency of reader and standalone.

---
 nbproject/reader/project.properties                |   2 +-
 nbproject/standalone/project.properties            |   2 +-
 .../ectester/common/output/BaseTextTestWriter.java |  76 ++++++++
 .../ectester/common/output/BaseXMLTestWriter.java  | 100 ++++++++++
 .../ectester/common/output/BaseYAMLTestWriter.java |  88 +++++++++
 .../ectester/common/output/TestableWriter.java     |  65 -------
 .../ectester/common/output/TextTestWriter.java     |  79 --------
 .../crcs/ectester/common/output/XMLTestWriter.java | 204 ---------------------
 .../ectester/common/output/YAMLTestWriter.java     | 161 ----------------
 src/cz/crcs/ectester/reader/ECTesterReader.java    |   5 +-
 .../ectester/reader/output/TextTestWriter.java     |  28 +++
 .../crcs/ectester/reader/output/XMLTestWriter.java |  75 ++++++++
 .../ectester/reader/output/YAMLTestWriter.java     |  57 ++++++
 .../ectester/standalone/ECTesterStandalone.java    |   2 +-
 .../ectester/standalone/output/TextTestWriter.java |  20 ++
 .../ectester/standalone/output/XMLTestWriter.java  |  82 +++++++++
 .../ectester/standalone/output/YAMLTestWriter.java |  70 +++++++
 17 files changed, 603 insertions(+), 513 deletions(-)
 create mode 100644 src/cz/crcs/ectester/common/output/BaseTextTestWriter.java
 create mode 100644 src/cz/crcs/ectester/common/output/BaseXMLTestWriter.java
 create mode 100644 src/cz/crcs/ectester/common/output/BaseYAMLTestWriter.java
 delete mode 100644 src/cz/crcs/ectester/common/output/TestableWriter.java
 delete mode 100644 src/cz/crcs/ectester/common/output/TextTestWriter.java
 delete mode 100644 src/cz/crcs/ectester/common/output/XMLTestWriter.java
 delete mode 100644 src/cz/crcs/ectester/common/output/YAMLTestWriter.java
 create mode 100644 src/cz/crcs/ectester/reader/output/TextTestWriter.java
 create mode 100644 src/cz/crcs/ectester/reader/output/XMLTestWriter.java
 create mode 100644 src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
 create mode 100644 src/cz/crcs/ectester/standalone/output/TextTestWriter.java
 create mode 100644 src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
 create mode 100644 src/cz/crcs/ectester/standalone/output/YAMLTestWriter.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/nbproject/reader/project.properties b/nbproject/reader/project.properties
index 5eb8ae3..69db523 100644
--- a/nbproject/reader/project.properties
+++ b/nbproject/reader/project.properties
@@ -30,7 +30,7 @@ dist.javadoc.dir=${dist.dir}/javadoc
 libs.CopyLibs.classpath=nbproject/copylibstask.jar
 endorsed.classpath=
 excludes=
-includes=**/applet/**,**/common/**,**/data/**,**/reader/**,**/standalone/**
+includes=**/applet/**,**/common/**,**/data/**,**/reader/**
 jar.compress=false
 javac.classpath=\
     lib/bcprov-jdk15on-1.58.jar:\
diff --git a/nbproject/standalone/project.properties b/nbproject/standalone/project.properties
index 2d3a9eb..9fed4c2 100644
--- a/nbproject/standalone/project.properties
+++ b/nbproject/standalone/project.properties
@@ -30,7 +30,7 @@ dist.javadoc.dir=${dist.dir}/javadoc
 libs.CopyLibs.classpath=nbproject/copylibstask.jar
 endorsed.classpath=
 excludes=
-includes=**/common/**,**/standalone/**,**/data/**,**/applet/*,**/reader/**
+includes=**/common/**,**/standalone/**,**/data/**,**/applet/*
 jar.compress=false
 javac.classpath=\
     lib/bcprov-jdk15on-1.58.jar:\
diff --git a/src/cz/crcs/ectester/common/output/BaseTextTestWriter.java b/src/cz/crcs/ectester/common/output/BaseTextTestWriter.java
new file mode 100644
index 0000000..9635d0c
--- /dev/null
+++ b/src/cz/crcs/ectester/common/output/BaseTextTestWriter.java
@@ -0,0 +1,76 @@
+package cz.crcs.ectester.common.output;
+
+import cz.crcs.ectester.common.test.*;
+
+import java.io.PrintStream;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class BaseTextTestWriter implements TestWriter {
+    private PrintStream output;
+
+    public static int BASE_WIDTH = 76;
+
+    public BaseTextTestWriter(PrintStream output) {
+        this.output = output;
+    }
+
+    @Override
+    public void begin(TestSuite suite) {
+        output.println("=== Running test suite: " + suite.getName() + " ===");
+        output.println("=== " + suite.getDescription());
+    }
+
+    protected abstract String testableString(Testable t);
+
+    private String testString(Test t, int offset) {
+        if (!t.hasRun()) {
+            return null;
+        }
+
+        StringBuilder out = new StringBuilder();
+        out.append(t.ok() ? "OK  " : "NOK ");
+        out.append("━ ");
+        int width = BASE_WIDTH - (offset + out.length());
+        String widthSpec = "%-" + String.valueOf(width) + "s";
+        out.append(String.format(widthSpec, t.getDescription()));
+        out.append(" ┃ ");
+        out.append(String.format("%-9s", t.getResultValue().name()));
+        out.append(" ┃ ");
+
+        if (t instanceof CompoundTest) {
+            CompoundTest test = (CompoundTest) t;
+            out.append(test.getResultCause());
+            out.append(System.lineSeparator());
+            Test[] tests = test.getTests();
+            for (int i = 0; i < tests.length; ++i) {
+                if (i == tests.length - 1) {
+                    out.append("    ┗ ");
+                } else {
+                    out.append("    ┣ ");
+                }
+                out.append(testString(tests[i], offset + 6));
+                if (i != tests.length - 1) {
+                    out.append(System.lineSeparator());
+                }
+            }
+        } else {
+            SimpleTest test = (SimpleTest) t;
+            out.append(testableString(test.getTestable()));
+        }
+        return out.toString();
+    }
+
+    @Override
+    public void outputTest(Test t) {
+        if (!t.hasRun())
+            return;
+        output.println(testString(t, 0));
+        output.flush();
+    }
+
+    @Override
+    public void end() {
+    }
+}
diff --git a/src/cz/crcs/ectester/common/output/BaseXMLTestWriter.java b/src/cz/crcs/ectester/common/output/BaseXMLTestWriter.java
new file mode 100644
index 0000000..9d3c8f3
--- /dev/null
+++ b/src/cz/crcs/ectester/common/output/BaseXMLTestWriter.java
@@ -0,0 +1,100 @@
+package cz.crcs.ectester.common.output;
+
+import cz.crcs.ectester.common.test.*;
+import org.w3c.dom.Document;
+import org.w3c.dom.Element;
+import org.w3c.dom.Node;
+
+import javax.xml.parsers.DocumentBuilder;
+import javax.xml.parsers.DocumentBuilderFactory;
+import javax.xml.parsers.ParserConfigurationException;
+import javax.xml.transform.OutputKeys;
+import javax.xml.transform.Transformer;
+import javax.xml.transform.TransformerException;
+import javax.xml.transform.TransformerFactory;
+import javax.xml.transform.dom.DOMSource;
+import javax.xml.transform.stream.StreamResult;
+import java.io.OutputStream;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class BaseXMLTestWriter implements TestWriter {
+    private OutputStream output;
+    private DocumentBuilder db;
+    protected Document doc;
+    private Node root;
+
+    public BaseXMLTestWriter(OutputStream output) throws ParserConfigurationException {
+        this.output = output;
+        this.db = DocumentBuilderFactory.newInstance().newDocumentBuilder();
+    }
+
+    @Override
+    public void begin(TestSuite suite) {
+        doc = db.newDocument();
+        Element rootElem = doc.createElement("testSuite");
+        rootElem.setAttribute("name", suite.getName());
+        rootElem.setAttribute("desc", suite.getDescription());
+
+        root = rootElem;
+        doc.appendChild(root);
+    }
+
+    protected abstract Element testableElement(Testable t);
+
+    private Element testElement(Test t) {
+        Element testElem;
+        if (t instanceof CompoundTest) {
+            CompoundTest test = (CompoundTest) t;
+            testElem = doc.createElement("test");
+            testElem.setAttribute("type", "compound");
+            for (Test innerTest : test.getTests()) {
+                testElem.appendChild(testElement(innerTest));
+            }
+        } else {
+            SimpleTest test = (SimpleTest) t;
+            testElem = testableElement(test.getTestable());
+        }
+
+        Element description = doc.createElement("desc");
+        description.setTextContent(t.getDescription());
+        testElem.appendChild(description);
+
+        Element result = doc.createElement("result");
+        Element ok = doc.createElement("ok");
+        ok.setTextContent(String.valueOf(t.ok()));
+        Element value = doc.createElement("value");
+        value.setTextContent(t.getResultValue().name());
+        Element cause = doc.createElement("cause");
+        cause.setTextContent(t.getResultCause());
+        result.appendChild(ok);
+        result.appendChild(value);
+        result.appendChild(cause);
+        testElem.appendChild(result);
+
+        return testElem;
+    }
+
+    @Override
+    public void outputTest(Test t) {
+        if (!t.hasRun())
+            return;
+        root.appendChild(testElement(t));
+    }
+
+    @Override
+    public void end() {
+        try {
+            DOMSource domSource = new DOMSource(doc);
+            StreamResult result = new StreamResult(output);
+            TransformerFactory tf = TransformerFactory.newInstance();
+            Transformer transformer = tf.newTransformer();
+            transformer.setOutputProperty(OutputKeys.INDENT, "yes");
+            transformer.setOutputProperty("{http://xml.apache.org/xslt}indent-amount", "2");
+            transformer.transform(domSource, result);
+        } catch (TransformerException e) {
+            e.printStackTrace();
+        }
+    }
+}
diff --git a/src/cz/crcs/ectester/common/output/BaseYAMLTestWriter.java b/src/cz/crcs/ectester/common/output/BaseYAMLTestWriter.java
new file mode 100644
index 0000000..af76927
--- /dev/null
+++ b/src/cz/crcs/ectester/common/output/BaseYAMLTestWriter.java
@@ -0,0 +1,88 @@
+package cz.crcs.ectester.common.output;
+
+import cz.crcs.ectester.common.test.*;
+import org.yaml.snakeyaml.DumperOptions;
+import org.yaml.snakeyaml.Yaml;
+
+import java.io.PrintStream;
+import java.util.HashMap;
+import java.util.LinkedList;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public abstract class BaseYAMLTestWriter implements TestWriter {
+    private PrintStream output;
+    private Map<String, Object> testRun;
+    private Map<String, String> testSuite;
+    protected List<Object> tests;
+
+    public BaseYAMLTestWriter(PrintStream output) {
+        this.output = output;
+    }
+
+    @Override
+    public void begin(TestSuite suite) {
+        output.println("---");
+        testRun = new HashMap<>();
+        testSuite = new HashMap<>();
+        tests = new LinkedList<>();
+        testSuite.put("name", suite.getName());
+        testSuite.put("desc", suite.getDescription());
+
+        testRun.put("suite", testSuite);
+        testRun.put("tests", tests);
+    }
+
+    abstract protected Map<String, Object> testableObject(Testable t);
+
+    private Map<String, Object> testObject(Test t) {
+        Map<String, Object> testObj;
+        if (t instanceof CompoundTest) {
+            CompoundTest test = (CompoundTest) t;
+            testObj = new HashMap<>();
+            testObj.put("type", "compound");
+            List<Map<String, Object>> innerTests = new LinkedList<>();
+            for (Test innerTest : test.getTests()) {
+                innerTests.add(testObject(innerTest));
+            }
+            testObj.put("tests", innerTests);
+        } else {
+            SimpleTest test = (SimpleTest) t;
+            testObj = testableObject(test.getTestable());
+        }
+
+        testObj.put("desc", t.getDescription());
+        Map<String, Object> result = new HashMap<>();
+        result.put("ok", t.ok());
+        result.put("value", t.getResultValue().name());
+        result.put("cause", t.getResultCause());
+        testObj.put("result", result);
+
+        return testObj;
+    }
+
+    @Override
+    public void outputTest(Test t) {
+        if (!t.hasRun())
+            return;
+        tests.add(testObject(t));
+    }
+
+    @Override
+    public void end() {
+        DumperOptions options = new DumperOptions();
+        options.setDefaultFlowStyle(DumperOptions.FlowStyle.BLOCK);
+        options.setPrettyFlow(true);
+        Yaml yaml = new Yaml(options);
+
+        Map<String, Object> result = new HashMap<>();
+        result.put("testRun", testRun);
+        String out = yaml.dump(result);
+
+        output.println(out);
+        output.println("---");
+    }
+}
diff --git a/src/cz/crcs/ectester/common/output/TestableWriter.java b/src/cz/crcs/ectester/common/output/TestableWriter.java
deleted file mode 100644
index 9876064..0000000
--- a/src/cz/crcs/ectester/common/output/TestableWriter.java
+++ /dev/null
@@ -1,65 +0,0 @@
-package cz.crcs.ectester.common.output;
-
-import cz.crcs.ectester.common.test.BaseTestable;
-import cz.crcs.ectester.reader.output.ResponseWriter;
-import cz.crcs.ectester.reader.response.Response;
-import cz.crcs.ectester.reader.test.CommandTestable;
-import cz.crcs.ectester.standalone.test.KeyAgreementTestable;
-import cz.crcs.ectester.standalone.test.KeyGeneratorTestable;
-import cz.crcs.ectester.standalone.test.SignatureTestable;
-
-import java.io.OutputStream;
-import java.io.PrintStream;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class TestableWriter {
-    private PrintStream output;
-    private ResponseWriter respWriter;
-
-    public TestableWriter(PrintStream output) {
-        this.output = output;
-        this.respWriter = new ResponseWriter(output);
-    }
-
-    public TestableWriter(OutputStream output) {
-        this(new PrintStream(output));
-    }
-
-    public String outputTestableSuffix(BaseTestable t) {
-        if (t instanceof CommandTestable) {
-            Response r = ((CommandTestable) t).getResponse();
-            return respWriter.responseSuffix(r);
-        } else if (t instanceof KeyAgreementTestable) {
-
-        } else if (t instanceof KeyGeneratorTestable) {
-
-        } else if (t instanceof SignatureTestable) {
-
-        }
-        return null;
-    }
-
-    public void writeTestableSuffix(BaseTestable t) {
-        output.println(outputTestableSuffix(t));
-    }
-
-    public String outputTestable(BaseTestable t) {
-        if (t instanceof CommandTestable) {
-            CommandTestable testable = (CommandTestable) t;
-            return respWriter.responseString(testable.getResponse());
-        } else if (t instanceof KeyAgreementTestable) {
-
-        } else if (t instanceof KeyGeneratorTestable) {
-
-        } else if (t instanceof SignatureTestable) {
-
-        }
-        return null;
-    }
-
-    public void writeTestable(BaseTestable t) {
-        output.println(outputTestable(t));
-    }
-}
diff --git a/src/cz/crcs/ectester/common/output/TextTestWriter.java b/src/cz/crcs/ectester/common/output/TextTestWriter.java
deleted file mode 100644
index 2691ccb..0000000
--- a/src/cz/crcs/ectester/common/output/TextTestWriter.java
+++ /dev/null
@@ -1,79 +0,0 @@
-package cz.crcs.ectester.common.output;
-
-import cz.crcs.ectester.common.test.CompoundTest;
-import cz.crcs.ectester.common.test.SimpleTest;
-import cz.crcs.ectester.common.test.Test;
-import cz.crcs.ectester.common.test.TestSuite;
-
-import java.io.PrintStream;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class TextTestWriter implements TestWriter {
-    private PrintStream output;
-    private TestableWriter testableWriter;
-
-    public static int BASE_WIDTH = 76;
-
-    public TextTestWriter(PrintStream output) {
-        this.output = output;
-        this.testableWriter = new TestableWriter(output);
-    }
-
-    @Override
-    public void begin(TestSuite suite) {
-        output.println("=== Running test suite: " + suite.getName() + " ===");
-        output.println("=== " + suite.getDescription());
-    }
-
-    private String testString(Test t, int offset) {
-        if (!t.hasRun()) {
-            return null;
-        }
-
-        StringBuilder out = new StringBuilder();
-        out.append(t.ok() ? "OK  " : "NOK ");
-        out.append("━ ");
-        int width = BASE_WIDTH - (offset + out.length());
-        String widthSpec = "%-" + String.valueOf(width) + "s";
-        out.append(String.format(widthSpec, t.getDescription()));
-        out.append(" ┃ ");
-        out.append(String.format("%-9s", t.getResultValue().name()));
-        out.append(" ┃ ");
-
-        if (t instanceof CompoundTest) {
-            CompoundTest test = (CompoundTest) t;
-            out.append(test.getResultCause());
-            out.append(System.lineSeparator());
-            Test[] tests = test.getTests();
-            for (int i = 0; i < tests.length; ++i) {
-                if (i == tests.length - 1) {
-                    out.append("    ┗ ");
-                } else {
-                    out.append("    ┣ ");
-                }
-                out.append(testString(tests[i], offset + 6));
-                if (i != tests.length - 1) {
-                    out.append(System.lineSeparator());
-                }
-            }
-        } else {
-            SimpleTest test = (SimpleTest) t;
-            out.append(testableWriter.outputTestableSuffix(test.getTestable()));
-        }
-        return out.toString();
-    }
-
-    @Override
-    public void outputTest(Test t) {
-        if (!t.hasRun())
-            return;
-        output.println(testString(t, 0));
-        output.flush();
-    }
-
-    @Override
-    public void end() {
-    }
-}
diff --git a/src/cz/crcs/ectester/common/output/XMLTestWriter.java b/src/cz/crcs/ectester/common/output/XMLTestWriter.java
deleted file mode 100644
index 4139330..0000000
--- a/src/cz/crcs/ectester/common/output/XMLTestWriter.java
+++ /dev/null
@@ -1,204 +0,0 @@
-package cz.crcs.ectester.common.output;
-
-import cz.crcs.ectester.common.test.CompoundTest;
-import cz.crcs.ectester.common.test.Test;
-import cz.crcs.ectester.common.test.TestSuite;
-import cz.crcs.ectester.common.util.ByteUtil;
-import cz.crcs.ectester.reader.command.Command;
-import cz.crcs.ectester.reader.response.Response;
-import cz.crcs.ectester.reader.test.CommandTest;
-import cz.crcs.ectester.standalone.test.*;
-import org.w3c.dom.Document;
-import org.w3c.dom.Element;
-import org.w3c.dom.Node;
-
-import javax.xml.parsers.DocumentBuilder;
-import javax.xml.parsers.DocumentBuilderFactory;
-import javax.xml.parsers.ParserConfigurationException;
-import javax.xml.transform.OutputKeys;
-import javax.xml.transform.Transformer;
-import javax.xml.transform.TransformerException;
-import javax.xml.transform.TransformerFactory;
-import javax.xml.transform.dom.DOMSource;
-import javax.xml.transform.stream.StreamResult;
-import java.io.OutputStream;
-import java.security.PrivateKey;
-import java.security.PublicKey;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class XMLTestWriter implements TestWriter {
-    private OutputStream output;
-    private DocumentBuilder db;
-    private Document doc;
-    private Node root;
-
-    public XMLTestWriter(OutputStream output) throws ParserConfigurationException {
-        this.output = output;
-        this.db = DocumentBuilderFactory.newInstance().newDocumentBuilder();
-    }
-
-    @Override
-    public void begin(TestSuite suite) {
-        doc = db.newDocument();
-        Element rootElem = doc.createElement("testSuite");
-        rootElem.setAttribute("name", suite.getName());
-        rootElem.setAttribute("desc", suite.getDescription());
-
-        root = rootElem;
-        doc.appendChild(root);
-    }
-
-    private Element commandElement(Command c) {
-        Element commandElem = doc.createElement("command");
-
-        Element apdu = doc.createElement("apdu");
-        apdu.setTextContent(ByteUtil.bytesToHex(c.getAPDU().getBytes()));
-        commandElem.appendChild(apdu);
-
-        return commandElem;
-    }
-
-    private Element responseElement(Response r) {
-        Element responseElem = doc.createElement("response");
-        responseElem.setAttribute("successful", r.successful() ? "true" : "false");
-
-        Element apdu = doc.createElement("apdu");
-        apdu.setTextContent(ByteUtil.bytesToHex(r.getAPDU().getBytes()));
-        responseElem.appendChild(apdu);
-
-        Element naturalSW = doc.createElement("natural-sw");
-        naturalSW.setTextContent(String.valueOf(Short.toUnsignedInt(r.getNaturalSW())));
-        responseElem.appendChild(naturalSW);
-
-        Element sws = doc.createElement("sws");
-        for (int i = 0; i < r.getNumSW(); ++i) {
-            Element sw = doc.createElement("sw");
-            sw.setTextContent(String.valueOf(Short.toUnsignedInt(r.getSW(i))));
-            sws.appendChild(sw);
-        }
-        responseElem.appendChild(sws);
-
-        Element duration = doc.createElement("duration");
-        duration.setTextContent(String.valueOf(r.getDuration()));
-        responseElem.appendChild(duration);
-
-        Element description = doc.createElement("desc");
-        description.setTextContent(r.getDescription());
-        responseElem.appendChild(description);
-
-        return responseElem;
-    }
-
-    private Element kaElement(KeyAgreementTestable kat) {
-        Element katElem = doc.createElement("key-agreement");
-
-        Element secret = doc.createElement("secret");
-        secret.setTextContent(ByteUtil.bytesToHex(kat.getSecret()));
-        katElem.appendChild(secret);
-
-        return katElem;
-    }
-
-    private Element kgtElement(KeyGeneratorTestable kgt) {
-        Element kgtElem = doc.createElement("key-pair-generator");
-
-        Element keyPair = doc.createElement("key-pair");
-        Element pubkey = doc.createElement("pubkey");
-        PublicKey pkey = kgt.getKeyPair().getPublic();
-        pubkey.setAttribute("algorithm", pkey.getAlgorithm());
-        pubkey.setAttribute("format", pkey.getFormat());
-        pubkey.setTextContent(ByteUtil.bytesToHex(pkey.getEncoded()));
-        keyPair.appendChild(pubkey);
-
-        Element privkey = doc.createElement("privkey");
-        PrivateKey skey = kgt.getKeyPair().getPrivate();
-        privkey.setAttribute("algorithm", skey.getAlgorithm());
-        privkey.setAttribute("format", skey.getFormat());
-        privkey.setTextContent(ByteUtil.bytesToHex(skey.getEncoded()));
-        keyPair.appendChild(privkey);
-
-        return kgtElem;
-    }
-
-    private Element sigElement(SignatureTestable sig) {
-        Element sigElem = doc.createElement("signature");
-        sigElem.setAttribute("verified", sig.getVerified() ? "true" : "false");
-
-        Element raw = doc.createElement("raw");
-        raw.setTextContent(ByteUtil.bytesToHex(sig.getSignature()));
-        sigElem.appendChild(raw);
-
-        return sigElem;
-    }
-
-    private Element testElement(Test t) {
-        Element testElem = doc.createElement("test");
-
-        if (t instanceof CommandTest) {
-            CommandTest test = (CommandTest) t;
-            testElem.setAttribute("type", "command");
-            testElem.appendChild(commandElement(test.getCommand()));
-            testElem.appendChild(responseElement(test.getResponse()));
-        } else if (t instanceof KeyAgreementTest) {
-            KeyAgreementTest test = (KeyAgreementTest) t;
-            testElem.setAttribute("type", "key-agreement");
-            testElem.appendChild(kaElement(test.getTestable()));
-        } else if (t instanceof KeyGeneratorTest) {
-            KeyGeneratorTest test = (KeyGeneratorTest) t;
-            testElem.setAttribute("type", "key-pair-generator");
-            testElem.appendChild(kgtElement(test.getTestable()));
-        } else if (t instanceof SignatureTest) {
-            SignatureTest test = (SignatureTest) t;
-            testElem.setAttribute("type", "signature");
-            testElem.appendChild(sigElement(test.getTestable()));
-        } else if (t instanceof CompoundTest) {
-            CompoundTest test = (CompoundTest) t;
-            testElem.setAttribute("type", "compound");
-            for (Test innerTest : test.getTests()) {
-                testElem.appendChild(testElement(innerTest));
-            }
-        }
-
-        Element description = doc.createElement("desc");
-        description.setTextContent(t.getDescription());
-        testElem.appendChild(description);
-
-        Element result = doc.createElement("result");
-        Element ok = doc.createElement("ok");
-        ok.setTextContent(String.valueOf(t.ok()));
-        Element value = doc.createElement("value");
-        value.setTextContent(t.getResultValue().name());
-        Element cause = doc.createElement("cause");
-        cause.setTextContent(t.getResultCause());
-        result.appendChild(ok);
-        result.appendChild(value);
-        result.appendChild(cause);
-        testElem.appendChild(result);
-
-        return testElem;
-    }
-
-    @Override
-    public void outputTest(Test t) {
-        if (!t.hasRun())
-            return;
-        root.appendChild(testElement(t));
-    }
-
-    @Override
-    public void end() {
-        try {
-            DOMSource domSource = new DOMSource(doc);
-            StreamResult result = new StreamResult(output);
-            TransformerFactory tf = TransformerFactory.newInstance();
-            Transformer transformer = tf.newTransformer();
-            transformer.setOutputProperty(OutputKeys.INDENT, "yes");
-            transformer.setOutputProperty("{http://xml.apache.org/xslt}indent-amount", "2");
-            transformer.transform(domSource, result);
-        } catch (TransformerException e) {
-            e.printStackTrace();
-        }
-    }
-}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/common/output/YAMLTestWriter.java b/src/cz/crcs/ectester/common/output/YAMLTestWriter.java
deleted file mode 100644
index ba9fa43..0000000
--- a/src/cz/crcs/ectester/common/output/YAMLTestWriter.java
+++ /dev/null
@@ -1,161 +0,0 @@
-package cz.crcs.ectester.common.output;
-
-import cz.crcs.ectester.common.test.CompoundTest;
-import cz.crcs.ectester.common.test.Test;
-import cz.crcs.ectester.common.test.TestSuite;
-import cz.crcs.ectester.common.util.ByteUtil;
-import cz.crcs.ectester.reader.command.Command;
-import cz.crcs.ectester.reader.response.Response;
-import cz.crcs.ectester.reader.test.CommandTest;
-import cz.crcs.ectester.standalone.test.*;
-import org.yaml.snakeyaml.DumperOptions;
-import org.yaml.snakeyaml.Yaml;
-
-import java.io.PrintStream;
-import java.security.PrivateKey;
-import java.security.PublicKey;
-import java.util.HashMap;
-import java.util.LinkedList;
-import java.util.List;
-import java.util.Map;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class YAMLTestWriter implements TestWriter {
-    private PrintStream output;
-    private Map<String, Object> testRun;
-    private Map<String, String> testSuite;
-    private List<Object> tests;
-
-    public YAMLTestWriter(PrintStream output) {
-        this.output = output;
-    }
-
-    @Override
-    public void begin(TestSuite suite) {
-        output.println("---");
-        testRun = new HashMap<>();
-        testSuite = new HashMap<>();
-        tests = new LinkedList<>();
-        testSuite.put("name", suite.getName());
-        testSuite.put("desc", suite.getDescription());
-
-        testRun.put("suite", testSuite);
-        testRun.put("tests", tests);
-    }
-
-    private Map<String, Object> commandObject(Command c) {
-        Map<String, Object> commandObj = new HashMap<>();
-        commandObj.put("apdu", ByteUtil.bytesToHex(c.getAPDU().getBytes()));
-        return commandObj;
-    }
-
-    private Map<String, Object> responseObject(Response r) {
-        Map<String, Object> responseObj = new HashMap<>();
-        responseObj.put("successful", r.successful());
-        responseObj.put("apdu", ByteUtil.bytesToHex(r.getAPDU().getBytes()));
-        responseObj.put("natural_sw", Short.toUnsignedInt(r.getNaturalSW()));
-        List<Integer> sws = new LinkedList<>();
-        for (int i = 0; i < r.getNumSW(); ++i) {
-            sws.add(Short.toUnsignedInt(r.getSW(i)));
-        }
-        responseObj.put("sws", sws);
-        responseObj.put("duration", r.getDuration());
-        responseObj.put("desc", r.getDescription());
-        return responseObj;
-    }
-
-    private Map<String, Object> kaObject(KeyAgreementTestable kat) {
-        Map<String, Object> katObject = new HashMap<>();
-        katObject.put("secret", ByteUtil.bytesToHex(kat.getSecret()));
-        return katObject;
-    }
-
-    private Map<String, Object> kgtObject(KeyGeneratorTestable kgt) {
-        Map<String, Object> kgtObject = new HashMap<>();
-        Map<String, Object> pubObject = new HashMap<>();
-        PublicKey pkey = kgt.getKeyPair().getPublic();
-        pubObject.put("algorithm", pkey.getAlgorithm());
-        pubObject.put("format", pkey.getFormat());
-        pubObject.put("raw", ByteUtil.bytesToHex(pkey.getEncoded()));
-        kgtObject.put("pubkey", pubObject);
-
-        Map<String, Object> privObject = new HashMap<>();
-        PrivateKey skey = kgt.getKeyPair().getPrivate();
-        privObject.put("algorithm", skey.getAlgorithm());
-        privObject.put("format", skey.getFormat());
-        privObject.put("raw", ByteUtil.bytesToHex(skey.getEncoded()));
-        kgtObject.put("privkey", privObject);
-        return kgtObject;
-    }
-
-    private Map<String, Object> sigObject(SignatureTestable sig) {
-        Map<String, Object> sigObject = new HashMap<>();
-        sigObject.put("verified", sig.getVerified());
-        sigObject.put("raw", ByteUtil.bytesToHex(sig.getSignature()));
-        return sigObject;
-    }
-
-    private Map<String, Object> testObject(Test t) {
-        Map<String, Object> testObj = new HashMap<>();
-
-        if (t instanceof CommandTest) {
-            CommandTest test = (CommandTest) t;
-            testObj.put("type", "command");
-            testObj.put("command", commandObject(test.getCommand()));
-            testObj.put("response", responseObject(test.getResponse()));
-        } else if (t instanceof KeyAgreementTest) {
-            KeyAgreementTest test = (KeyAgreementTest) t;
-            testObj.put("type", "key-agreement");
-            testObj.put("key-agreement", kaObject(test.getTestable()));
-        } else if (t instanceof KeyGeneratorTest) {
-            KeyGeneratorTest test = (KeyGeneratorTest) t;
-            testObj.put("type", "key-pair-generator");
-            testObj.put("key-pair-generator", kgtObject(test.getTestable()));
-        } else if (t instanceof SignatureTest) {
-            SignatureTest test = (SignatureTest) t;
-            testObj.put("type", "signature");
-            testObj.put("signature", sigObject(test.getTestable()));
-        } else if (t instanceof CompoundTest) {
-            CompoundTest test = (CompoundTest) t;
-            testObj.put("type", "compound");
-            List<Map<String, Object>> tests = new LinkedList<>();
-            for (Test innerTest : test.getTests()) {
-                tests.add(testObject(innerTest));
-            }
-            testObj.put("tests", tests);
-        }
-
-        testObj.put("desc", t.getDescription());
-        Map<String, Object> result = new HashMap<>();
-        result.put("ok", t.ok());
-        result.put("value", t.getResultValue().name());
-        result.put("cause", t.getResultCause());
-        testObj.put("result", result);
-
-        return testObj;
-    }
-
-    @Override
-    public void outputTest(Test t) {
-        if (!t.hasRun())
-            return;
-        tests.add(testObject(t));
-    }
-
-    @Override
-    public void end() {
-        DumperOptions options = new DumperOptions();
-        options.setDefaultFlowStyle(DumperOptions.FlowStyle.BLOCK);
-        options.setPrettyFlow(true);
-        Yaml yaml = new Yaml(options);
-
-        Map<String, Object> result = new HashMap<>();
-        result.put("testRun", testRun);
-        String out = yaml.dump(result);
-
-        output.println(out);
-        output.println("---");
-    }
-}
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index 6fa7068..f566c9c 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -31,7 +31,10 @@ import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.command.Command;
-import cz.crcs.ectester.reader.output.*;
+import cz.crcs.ectester.reader.output.ResponseWriter;
+import cz.crcs.ectester.reader.output.TextTestWriter;
+import cz.crcs.ectester.reader.output.XMLTestWriter;
+import cz.crcs.ectester.reader.output.YAMLTestWriter;
 import cz.crcs.ectester.reader.response.Response;
 import cz.crcs.ectester.reader.test.*;
 import javacard.security.KeyPair;
diff --git a/src/cz/crcs/ectester/reader/output/TextTestWriter.java b/src/cz/crcs/ectester/reader/output/TextTestWriter.java
new file mode 100644
index 0000000..dedf561
--- /dev/null
+++ b/src/cz/crcs/ectester/reader/output/TextTestWriter.java
@@ -0,0 +1,28 @@
+package cz.crcs.ectester.reader.output;
+
+import cz.crcs.ectester.common.output.BaseTextTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+import cz.crcs.ectester.reader.test.CommandTestable;
+
+import java.io.PrintStream;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class TextTestWriter extends BaseTextTestWriter {
+    private ResponseWriter writer;
+
+    public TextTestWriter(PrintStream output) {
+        super(output);
+        this.writer = new ResponseWriter(output);
+    }
+
+    @Override
+    protected String testableString(Testable t) {
+        if (t instanceof CommandTestable) {
+            CommandTestable cmd = (CommandTestable) t;
+            return writer.responseSuffix(cmd.getResponse());
+        }
+        return "";
+    }
+}
diff --git a/src/cz/crcs/ectester/reader/output/XMLTestWriter.java b/src/cz/crcs/ectester/reader/output/XMLTestWriter.java
new file mode 100644
index 0000000..d88a64e
--- /dev/null
+++ b/src/cz/crcs/ectester/reader/output/XMLTestWriter.java
@@ -0,0 +1,75 @@
+package cz.crcs.ectester.reader.output;
+
+import cz.crcs.ectester.common.output.BaseXMLTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.reader.command.Command;
+import cz.crcs.ectester.reader.response.Response;
+import cz.crcs.ectester.reader.test.CommandTestable;
+import org.w3c.dom.Element;
+
+import javax.xml.parsers.ParserConfigurationException;
+import java.io.OutputStream;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class XMLTestWriter extends BaseXMLTestWriter {
+    public XMLTestWriter(OutputStream output) throws ParserConfigurationException {
+        super(output);
+    }
+
+    private Element commandElement(Command c) {
+        Element commandElem = doc.createElement("command");
+
+        Element apdu = doc.createElement("apdu");
+        apdu.setTextContent(ByteUtil.bytesToHex(c.getAPDU().getBytes()));
+        commandElem.appendChild(apdu);
+
+        return commandElem;
+    }
+
+    private Element responseElement(Response r) {
+        Element responseElem = doc.createElement("response");
+        responseElem.setAttribute("successful", r.successful() ? "true" : "false");
+
+        Element apdu = doc.createElement("apdu");
+        apdu.setTextContent(ByteUtil.bytesToHex(r.getAPDU().getBytes()));
+        responseElem.appendChild(apdu);
+
+        Element naturalSW = doc.createElement("natural-sw");
+        naturalSW.setTextContent(String.valueOf(Short.toUnsignedInt(r.getNaturalSW())));
+        responseElem.appendChild(naturalSW);
+
+        Element sws = doc.createElement("sws");
+        for (int i = 0; i < r.getNumSW(); ++i) {
+            Element sw = doc.createElement("sw");
+            sw.setTextContent(String.valueOf(Short.toUnsignedInt(r.getSW(i))));
+            sws.appendChild(sw);
+        }
+        responseElem.appendChild(sws);
+
+        Element duration = doc.createElement("duration");
+        duration.setTextContent(String.valueOf(r.getDuration()));
+        responseElem.appendChild(duration);
+
+        Element description = doc.createElement("desc");
+        description.setTextContent(r.getDescription());
+        responseElem.appendChild(description);
+
+        return responseElem;
+    }
+
+    @Override
+    protected Element testableElement(Testable t) {
+        if (t instanceof CommandTestable) {
+            CommandTestable cmd = (CommandTestable) t;
+            Element result = doc.createElement("test");
+            result.setAttribute("type", "command");
+            result.appendChild(commandElement(cmd.getCommand()));
+            result.appendChild(responseElement(cmd.getResponse()));
+            return result;
+        }
+        return null;
+    }
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java b/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
new file mode 100644
index 0000000..49a20f1
--- /dev/null
+++ b/src/cz/crcs/ectester/reader/output/YAMLTestWriter.java
@@ -0,0 +1,57 @@
+package cz.crcs.ectester.reader.output;
+
+import cz.crcs.ectester.common.output.BaseYAMLTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.reader.command.Command;
+import cz.crcs.ectester.reader.response.Response;
+import cz.crcs.ectester.reader.test.CommandTestable;
+
+import java.io.PrintStream;
+import java.util.HashMap;
+import java.util.LinkedList;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class YAMLTestWriter extends BaseYAMLTestWriter {
+    public YAMLTestWriter(PrintStream output) {
+        super(output);
+    }
+
+    private Map<String, Object> commandObject(Command c) {
+        Map<String, Object> commandObj = new HashMap<>();
+        commandObj.put("apdu", ByteUtil.bytesToHex(c.getAPDU().getBytes()));
+        return commandObj;
+    }
+
+    private Map<String, Object> responseObject(Response r) {
+        Map<String, Object> responseObj = new HashMap<>();
+        responseObj.put("successful", r.successful());
+        responseObj.put("apdu", ByteUtil.bytesToHex(r.getAPDU().getBytes()));
+        responseObj.put("natural_sw", Short.toUnsignedInt(r.getNaturalSW()));
+        List<Integer> sws = new LinkedList<>();
+        for (int i = 0; i < r.getNumSW(); ++i) {
+            sws.add(Short.toUnsignedInt(r.getSW(i)));
+        }
+        responseObj.put("sws", sws);
+        responseObj.put("duration", r.getDuration());
+        responseObj.put("desc", r.getDescription());
+        return responseObj;
+    }
+
+    @Override
+    protected Map<String, Object> testableObject(Testable t) {
+        if (t instanceof CommandTestable) {
+            CommandTestable cmd = (CommandTestable) t;
+            Map<String, Object> result = new HashMap<>();
+            result.put("type", "command");
+            result.put("command", commandObject(cmd.getCommand()));
+            result.put("response", responseObject(cmd.getResponse()));
+            return result;
+        }
+        return null;
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index c3dfbbe..237897c 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -2,7 +2,6 @@ package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
-import cz.crcs.ectester.common.output.TextTestWriter;
 import cz.crcs.ectester.common.test.TestException;
 import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
@@ -12,6 +11,7 @@ import cz.crcs.ectester.standalone.consts.KeyAgreementIdent;
 import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 import cz.crcs.ectester.standalone.libs.*;
+import cz.crcs.ectester.standalone.output.TextTestWriter;
 import cz.crcs.ectester.standalone.test.StandaloneDefaultSuite;
 import cz.crcs.ectester.standalone.test.StandaloneTestSuite;
 import org.apache.commons.cli.DefaultParser;
diff --git a/src/cz/crcs/ectester/standalone/output/TextTestWriter.java b/src/cz/crcs/ectester/standalone/output/TextTestWriter.java
new file mode 100644
index 0000000..ddb1029
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/output/TextTestWriter.java
@@ -0,0 +1,20 @@
+package cz.crcs.ectester.standalone.output;
+
+import cz.crcs.ectester.common.output.BaseTextTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+
+import java.io.PrintStream;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class TextTestWriter extends BaseTextTestWriter {
+    public TextTestWriter(PrintStream output) {
+        super(output);
+    }
+
+    @Override
+    protected String testableString(Testable t) {
+        return "";
+    }
+}
\ No newline at end of file
diff --git a/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java b/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
new file mode 100644
index 0000000..cc1a19e
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
@@ -0,0 +1,82 @@
+package cz.crcs.ectester.standalone.output;
+
+import cz.crcs.ectester.common.output.BaseXMLTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.standalone.test.KeyAgreementTestable;
+import cz.crcs.ectester.standalone.test.KeyGeneratorTestable;
+import cz.crcs.ectester.standalone.test.SignatureTestable;
+import org.w3c.dom.Element;
+
+import javax.xml.parsers.ParserConfigurationException;
+import java.io.OutputStream;
+import java.security.PrivateKey;
+import java.security.PublicKey;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class XMLTestWriter extends BaseXMLTestWriter {
+
+    public XMLTestWriter(OutputStream output) throws ParserConfigurationException {
+        super(output);
+    }
+
+    private Element kaElement(KeyAgreementTestable kat) {
+        Element katElem = doc.createElement("key-agreement");
+
+        Element secret = doc.createElement("secret");
+        secret.setTextContent(ByteUtil.bytesToHex(kat.getSecret()));
+        katElem.appendChild(secret);
+
+        return katElem;
+    }
+
+    private Element kgtElement(KeyGeneratorTestable kgt) {
+        Element kgtElem = doc.createElement("key-pair-generator");
+
+        Element keyPair = doc.createElement("key-pair");
+        Element pubkey = doc.createElement("pubkey");
+        PublicKey pkey = kgt.getKeyPair().getPublic();
+        pubkey.setAttribute("algorithm", pkey.getAlgorithm());
+        pubkey.setAttribute("format", pkey.getFormat());
+        pubkey.setTextContent(ByteUtil.bytesToHex(pkey.getEncoded()));
+        keyPair.appendChild(pubkey);
+
+        Element privkey = doc.createElement("privkey");
+        PrivateKey skey = kgt.getKeyPair().getPrivate();
+        privkey.setAttribute("algorithm", skey.getAlgorithm());
+        privkey.setAttribute("format", skey.getFormat());
+        privkey.setTextContent(ByteUtil.bytesToHex(skey.getEncoded()));
+        keyPair.appendChild(privkey);
+
+        return kgtElem;
+    }
+
+    private Element sigElement(SignatureTestable sig) {
+        Element sigElem = doc.createElement("signature");
+        sigElem.setAttribute("verified", sig.getVerified() ? "true" : "false");
+
+        Element raw = doc.createElement("raw");
+        raw.setTextContent(ByteUtil.bytesToHex(sig.getSignature()));
+        sigElem.appendChild(raw);
+
+        return sigElem;
+    }
+
+    @Override
+    protected Element testableElement(Testable t) {
+        Element result = doc.createElement("test");
+        if (t instanceof KeyGeneratorTestable) {
+            result.setAttribute("type", "key-pair-generator");
+            result.appendChild(kgtElement((KeyGeneratorTestable) t));
+        } else if (t instanceof KeyAgreementTestable) {
+            result.setAttribute("type", "key-agreement");
+            result.appendChild(kaElement((KeyAgreementTestable) t));
+        } else if (t instanceof SignatureTestable) {
+            result.setAttribute("type", "signature");
+            result.appendChild(sigElement((SignatureTestable) t));
+        }
+        return result;
+    }
+}
diff --git a/src/cz/crcs/ectester/standalone/output/YAMLTestWriter.java b/src/cz/crcs/ectester/standalone/output/YAMLTestWriter.java
new file mode 100644
index 0000000..7ede623
--- /dev/null
+++ b/src/cz/crcs/ectester/standalone/output/YAMLTestWriter.java
@@ -0,0 +1,70 @@
+package cz.crcs.ectester.standalone.output;
+
+import cz.crcs.ectester.common.output.BaseYAMLTestWriter;
+import cz.crcs.ectester.common.test.Testable;
+import cz.crcs.ectester.common.util.ByteUtil;
+import cz.crcs.ectester.standalone.test.KeyAgreementTestable;
+import cz.crcs.ectester.standalone.test.KeyGeneratorTestable;
+import cz.crcs.ectester.standalone.test.SignatureTestable;
+
+import java.io.PrintStream;
+import java.security.PrivateKey;
+import java.security.PublicKey;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Jan Jancar johny@neuromancer.sk
+ */
+public class YAMLTestWriter extends BaseYAMLTestWriter {
+    public YAMLTestWriter(PrintStream output) {
+        super(output);
+    }
+
+    private Map<String, Object> kaObject(KeyAgreementTestable kat) {
+        Map<String, Object> katObject = new HashMap<>();
+        katObject.put("secret", ByteUtil.bytesToHex(kat.getSecret()));
+        return katObject;
+    }
+
+    private Map<String, Object> kgtObject(KeyGeneratorTestable kgt) {
+        Map<String, Object> kgtObject = new HashMap<>();
+        Map<String, Object> pubObject = new HashMap<>();
+        PublicKey pkey = kgt.getKeyPair().getPublic();
+        pubObject.put("algorithm", pkey.getAlgorithm());
+        pubObject.put("format", pkey.getFormat());
+        pubObject.put("raw", ByteUtil.bytesToHex(pkey.getEncoded()));
+        kgtObject.put("pubkey", pubObject);
+
+        Map<String, Object> privObject = new HashMap<>();
+        PrivateKey skey = kgt.getKeyPair().getPrivate();
+        privObject.put("algorithm", skey.getAlgorithm());
+        privObject.put("format", skey.getFormat());
+        privObject.put("raw", ByteUtil.bytesToHex(skey.getEncoded()));
+        kgtObject.put("privkey", privObject);
+        return kgtObject;
+    }
+
+    private Map<String, Object> sigObject(SignatureTestable sig) {
+        Map<String, Object> sigObject = new HashMap<>();
+        sigObject.put("verified", sig.getVerified());
+        sigObject.put("raw", ByteUtil.bytesToHex(sig.getSignature()));
+        return sigObject;
+    }
+
+    @Override
+    protected Map<String, Object> testableObject(Testable t) {
+        Map<String, Object> result = new HashMap<>();
+        if (t instanceof KeyGeneratorTestable) {
+            result.put("type", "key-pair-generator");
+            result.put("key-pair-generator", kgtObject((KeyGeneratorTestable) t));
+        } else if (t instanceof KeyAgreementTestable) {
+            result.put("type", "key-agreement");
+            result.put("key-agreement", kaObject((KeyAgreementTestable) t));
+        } else if (t instanceof SignatureTestable) {
+            result.put("type", "signature");
+            result.put("signature", sigObject((SignatureTestable) t));
+        }
+        return result;
+    }
+}
-- 
cgit v1.2.3-70-g09d2


From bbc29b640dc0a94e5faa48f647f3420316914c67 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Sat, 30 Dec 2017 03:43:13 +0100
Subject: Add more comprehensive XML output to standalone app.

---
 .../ectester/standalone/ECTesterStandalone.java    | 60 +++++++++++++++++-----
 .../ectester/standalone/output/XMLTestWriter.java  | 38 +++++++++++---
 .../standalone/test/KeyAgreementTestable.java      | 12 +++++
 .../standalone/test/KeyGeneratorTestable.java      |  4 ++
 .../standalone/test/SignatureTestable.java         |  4 ++
 5 files changed, 97 insertions(+), 21 deletions(-)

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index 237897c..b1b71a5 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -2,6 +2,7 @@ package cz.crcs.ectester.standalone;
 
 import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.TestException;
 import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
@@ -12,6 +13,8 @@ import cz.crcs.ectester.standalone.consts.KeyPairGeneratorIdent;
 import cz.crcs.ectester.standalone.consts.SignatureIdent;
 import cz.crcs.ectester.standalone.libs.*;
 import cz.crcs.ectester.standalone.output.TextTestWriter;
+import cz.crcs.ectester.standalone.output.XMLTestWriter;
+import cz.crcs.ectester.standalone.output.YAMLTestWriter;
 import cz.crcs.ectester.standalone.test.StandaloneDefaultSuite;
 import cz.crcs.ectester.standalone.test.StandaloneTestSuite;
 import org.apache.commons.cli.DefaultParser;
@@ -20,6 +23,7 @@ import org.apache.commons.cli.Options;
 import org.apache.commons.cli.ParseException;
 
 import javax.crypto.KeyAgreement;
+import javax.xml.parsers.ParserConfigurationException;
 import java.io.File;
 import java.io.FileNotFoundException;
 import java.io.IOException;
@@ -90,7 +94,7 @@ public class ECTesterStandalone {
                 export();
             }
 
-        } catch (ParseException | IOException ex) {
+        } catch (ParseException | ParserConfigurationException | IOException ex) {
             System.err.println(ex.getMessage());
         } catch (InvalidAlgorithmParameterException | InvalidParameterException e) {
             System.err.println("Invalid algorithm parameter: " + e.getMessage());
@@ -105,43 +109,49 @@ public class ECTesterStandalone {
     private TreeCommandLine parseArgs(String[] args) throws ParseException {
         Map<String, ParserOptions> actions = new TreeMap<>();
 
+        Option namedCurve = Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build();
+        Option bits = Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build();
+
         Options testOpts = new Options();
-        ParserOptions test = new ParserOptions(new DefaultParser(), testOpts);
+        testOpts.addOption(bits);
+        testOpts.addOption(namedCurve);
         testOpts.addOption(Option.builder("gt").longOpt("kpg-type").desc("Set the KeyPairGenerator object [type].").hasArg().argName("type").optionalArg(false).build());
         testOpts.addOption(Option.builder("kt").longOpt("ka-type").desc("Set the KeyAgreement object [type].").hasArg().argName("type").optionalArg(false).build());
         testOpts.addOption(Option.builder("st").longOpt("sig-type").desc("Set the Signature object [type].").hasArg().argName("type").optionalArg(false).build());
-        testOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
-        testOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
+        testOpts.addOption(Option.builder("f").longOpt("format").desc("Set the output format, one of text,yaml,xml.").hasArg().argName("format").optionalArg(false).build());
+        List<Argument> testArgs = new LinkedList<>();
+        testArgs.add(new Argument("test_suite", "The test suite to run.", true));
+        ParserOptions test = new ParserOptions(new DefaultParser(), testOpts, testArgs);
         actions.put("test", test);
 
         Options ecdhOpts = new Options();
+        ecdhOpts.addOption(bits);
+        ecdhOpts.addOption(namedCurve);
         ecdhOpts.addOption(Option.builder("t").longOpt("type").desc("Set KeyAgreement object [type].").hasArg().argName("type").optionalArg(false).build());
         ecdhOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Do ECDH [amount] times.").build());
-        ecdhOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
-        ecdhOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         ParserOptions ecdh = new ParserOptions(new DefaultParser(), ecdhOpts);
         actions.put("ecdh", ecdh);
 
         Options ecdsaOpts = new Options();
+        ecdsaOpts.addOption(bits);
+        ecdsaOpts.addOption(namedCurve);
         ecdsaOpts.addOption(Option.builder("t").longOpt("type").desc("Set Signature object [type].").hasArg().argName("type").optionalArg(false).build());
         ecdsaOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Do ECDSA [amount] times.").build());
-        ecdsaOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
-        ecdsaOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
         ecdsaOpts.addOption(Option.builder("f").longOpt("file").hasArg().argName("file").optionalArg(false).desc("Input [file] to sign.").build());
         ParserOptions ecdsa = new ParserOptions(new DefaultParser(), ecdsaOpts);
         actions.put("ecdsa", ecdsa);
 
         Options generateOpts = new Options();
-        generateOpts.addOption(Option.builder("nc").longOpt("named-curve").desc("Use a named curve, from CurveDB: <cat/id>").hasArg().argName("cat/id").build());
+        generateOpts.addOption(bits);
+        generateOpts.addOption(namedCurve);
         generateOpts.addOption(Option.builder("n").longOpt("amount").hasArg().argName("amount").optionalArg(false).desc("Generate [amount] of EC keys.").build());
         generateOpts.addOption(Option.builder("t").longOpt("type").hasArg().argName("type").optionalArg(false).desc("Set KeyPairGenerator object [type].").build());
-        generateOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
         ParserOptions generate = new ParserOptions(new DefaultParser(), generateOpts);
         actions.put("generate", generate);
 
         Options exportOpts = new Options();
         exportOpts.addOption(Option.builder("t").longOpt("type").hasArg().argName("type").optionalArg(false).desc("Set KeyPair object [type].").build());
-        exportOpts.addOption(Option.builder("b").longOpt("bits").hasArg().argName("n").optionalArg(false).desc("What size of curve to use.").build());
+        exportOpts.addOption(bits);
         ParserOptions export = new ParserOptions(new DefaultParser(), exportOpts);
         actions.put("export", export);
 
@@ -403,9 +413,24 @@ public class ECTesterStandalone {
     /**
      *
      */
-    private void test() throws NoSuchAlgorithmException, TestException {
+    private void test() throws NoSuchAlgorithmException, TestException, ParserConfigurationException {
+        TestWriter writer;
+        switch (cli.getOptionValue("test.format", "text").toLowerCase()) {
+            case "yaml":
+            case "yml":
+                writer = new YAMLTestWriter(System.out);
+                break;
+            case "xml":
+                writer = new XMLTestWriter(System.out);
+                break;
+            case "text":
+            default:
+                writer = new TextTestWriter(System.out);
+                break;
+        }
+
         StandaloneTestSuite suite = new StandaloneDefaultSuite(dataStore, cfg, cli);
-        TestRunner runner = new TestRunner(suite, new TextTestWriter(System.out));
+        TestRunner runner = new TestRunner(suite, writer);
         suite.setup();
         runner.run();
     }
@@ -490,6 +515,15 @@ public class ECTesterStandalone {
                 }
             }
 
+            if (cli.hasOption("test.format")) {
+                String fmt = cli.getOptionValue("test.format");
+                String formats[] = new String[]{"text", "xml", "yaml", "yml"};
+                if (!Arrays.asList(formats).contains(fmt.toLowerCase())) {
+                    System.err.println("Invalid format specified.");
+                    return false;
+                }
+            }
+
             return true;
         }
     }
diff --git a/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java b/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
index cc1a19e..f1503cb 100644
--- a/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
+++ b/src/cz/crcs/ectester/standalone/output/XMLTestWriter.java
@@ -22,40 +22,62 @@ public class XMLTestWriter extends BaseXMLTestWriter {
         super(output);
     }
 
+    private Element pkeyElement(PublicKey pkey) {
+        Element pubkey = doc.createElement("pubkey");
+        pubkey.setAttribute("algorithm", pkey.getAlgorithm());
+        pubkey.setAttribute("format", pkey.getFormat());
+        pubkey.setTextContent(ByteUtil.bytesToHex(pkey.getEncoded()));
+        return pubkey;
+    }
+
+    private Element skeyElement(PrivateKey skey) {
+        Element privkey = doc.createElement("privkey");
+        privkey.setAttribute("algorithm", skey.getAlgorithm());
+        privkey.setAttribute("format", skey.getFormat());
+        privkey.setTextContent(ByteUtil.bytesToHex(skey.getEncoded()));
+        return privkey;
+    }
+
     private Element kaElement(KeyAgreementTestable kat) {
         Element katElem = doc.createElement("key-agreement");
+        katElem.setAttribute("algo", kat.getKa().getAlgorithm());
 
         Element secret = doc.createElement("secret");
         secret.setTextContent(ByteUtil.bytesToHex(kat.getSecret()));
         katElem.appendChild(secret);
 
+        PublicKey pkey = kat.getPublicKey();
+        Element pubkey = pkeyElement(pkey);
+        katElem.appendChild(pubkey);
+
+        PrivateKey skey = kat.getPrivateKey();
+        Element privkey = skeyElement(skey);
+        katElem.appendChild(privkey);
+
         return katElem;
     }
 
     private Element kgtElement(KeyGeneratorTestable kgt) {
         Element kgtElem = doc.createElement("key-pair-generator");
+        kgtElem.setAttribute("algo", kgt.getKpg().getAlgorithm());
 
         Element keyPair = doc.createElement("key-pair");
-        Element pubkey = doc.createElement("pubkey");
         PublicKey pkey = kgt.getKeyPair().getPublic();
-        pubkey.setAttribute("algorithm", pkey.getAlgorithm());
-        pubkey.setAttribute("format", pkey.getFormat());
-        pubkey.setTextContent(ByteUtil.bytesToHex(pkey.getEncoded()));
+        Element pubkey = pkeyElement(pkey);
         keyPair.appendChild(pubkey);
 
-        Element privkey = doc.createElement("privkey");
         PrivateKey skey = kgt.getKeyPair().getPrivate();
-        privkey.setAttribute("algorithm", skey.getAlgorithm());
-        privkey.setAttribute("format", skey.getFormat());
-        privkey.setTextContent(ByteUtil.bytesToHex(skey.getEncoded()));
+        Element privkey = skeyElement(skey);
         keyPair.appendChild(privkey);
 
+        kgtElem.appendChild(keyPair);
         return kgtElem;
     }
 
     private Element sigElement(SignatureTestable sig) {
         Element sigElem = doc.createElement("signature");
         sigElem.setAttribute("verified", sig.getVerified() ? "true" : "false");
+        sigElem.setAttribute("algo", sig.getSig().getAlgorithm());
 
         Element raw = doc.createElement("raw");
         raw.setTextContent(ByteUtil.bytesToHex(sig.getSignature()));
diff --git a/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java b/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
index 8e9b0dd..de9356b 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyAgreementTestable.java
@@ -50,6 +50,18 @@ public class KeyAgreementTestable extends BaseTestable {
         this.kgtPublic = pubKgt;
     }
 
+    public KeyAgreement getKa() {
+        return ka;
+    }
+
+    public ECPublicKey getPublicKey() {
+        return publicKey;
+    }
+
+    public ECPrivateKey getPrivateKey() {
+        return privateKey;
+    }
+
     public byte[] getSecret() {
         if (!hasRun) {
             return null;
diff --git a/src/cz/crcs/ectester/standalone/test/KeyGeneratorTestable.java b/src/cz/crcs/ectester/standalone/test/KeyGeneratorTestable.java
index ca7f1e7..3fca168 100644
--- a/src/cz/crcs/ectester/standalone/test/KeyGeneratorTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/KeyGeneratorTestable.java
@@ -28,6 +28,10 @@ public class KeyGeneratorTestable extends BaseTestable {
         this.spec = spec;
     }
 
+    public KeyPairGenerator getKpg() {
+        return kpg;
+    }
+
     public KeyPair getKeyPair() {
         return kp;
     }
diff --git a/src/cz/crcs/ectester/standalone/test/SignatureTestable.java b/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
index 564a6bf..e434337 100644
--- a/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
+++ b/src/cz/crcs/ectester/standalone/test/SignatureTestable.java
@@ -36,6 +36,10 @@ public class SignatureTestable extends BaseTestable {
         this.kgt = kgt;
     }
 
+    public Signature getSig() {
+        return sig;
+    }
+
     public byte[] getData() {
         return data;
     }
-- 
cgit v1.2.3-70-g09d2


From 94e441b522069d3fed4b88a4823b91c1593bac68 Mon Sep 17 00:00:00 2001
From: J08nY
Date: Tue, 9 Jan 2018 13:46:29 +0100
Subject: Simplify test suites.

---
 src/cz/crcs/ectester/applet/ECTesterApplet.java    |  1 -
 src/cz/crcs/ectester/applet/EC_Consts.java         | 23 +++++-
 src/cz/crcs/ectester/common/cli/TreeParser.java    |  8 +++
 src/cz/crcs/ectester/common/test/BaseRunnable.java | 31 ---------
 src/cz/crcs/ectester/common/test/Runnable.java     | 18 -----
 src/cz/crcs/ectester/common/test/TestRunner.java   | 29 --------
 src/cz/crcs/ectester/common/test/TestSuite.java    | 35 ++++++----
 src/cz/crcs/ectester/common/test/Testable.java     | 13 +++-
 src/cz/crcs/ectester/data/EC_Store.java            | 16 +++--
 src/cz/crcs/ectester/reader/ECTesterReader.java    | 77 ++++++++++----------
 .../reader/test/CardCompositeCurvesSuite.java      | 31 ++++-----
 .../ectester/reader/test/CardDefaultSuite.java     | 81 ++++++++++------------
 .../reader/test/CardInvalidCurvesSuite.java        | 34 ++++-----
 .../crcs/ectester/reader/test/CardTestSuite.java   | 33 ++++-----
 .../ectester/reader/test/CardTestVectorSuite.java  | 39 +++++------
 .../ectester/reader/test/CardWrongCurvesSuite.java | 48 +++++++++----
 .../ectester/standalone/ECTesterStandalone.java    | 17 ++---
 .../standalone/test/StandaloneDefaultSuite.java    | 18 ++---
 .../standalone/test/StandaloneTestSuite.java       |  7 +-
 19 files changed, 265 insertions(+), 294 deletions(-)
 delete mode 100644 src/cz/crcs/ectester/common/test/BaseRunnable.java
 delete mode 100644 src/cz/crcs/ectester/common/test/Runnable.java
 delete mode 100644 src/cz/crcs/ectester/common/test/TestRunner.java

(limited to 'src/cz/crcs/ectester/standalone/ECTesterStandalone.java')

diff --git a/src/cz/crcs/ectester/applet/ECTesterApplet.java b/src/cz/crcs/ectester/applet/ECTesterApplet.java
index 870fb3d..71d9d56 100644
--- a/src/cz/crcs/ectester/applet/ECTesterApplet.java
+++ b/src/cz/crcs/ectester/applet/ECTesterApplet.java
@@ -83,7 +83,6 @@ public class ECTesterApplet extends Applet implements ExtendedLength {
     public static final byte KeyAgreement_ALG_EC_SVDP_DHC_PLAIN = 4;
     public static final byte KeyAgreement_ALG_EC_PACE_GM = 5;
     public static final byte KeyAgreement_ALG_EC_SVDP_DH_PLAIN_XY = 6;
-    public static final byte KeyAgreement_ALG_DH_PLAIN = 7;
 
     // Class javacard.security.Signature
     // javacard.security.Signature Fields:
diff --git a/src/cz/crcs/ectester/applet/EC_Consts.java b/src/cz/crcs/ectester/applet/EC_Consts.java
index 15cb7fa..4581fd6 100644
--- a/src/cz/crcs/ectester/applet/EC_Consts.java
+++ b/src/cz/crcs/ectester/applet/EC_Consts.java
@@ -1002,7 +1002,7 @@ public class EC_Consts {
     public static final byte CURVE_default = (byte) 0;
     public static final byte CURVE_external = (byte) 0xff;
 
-    // SECP recommended curves over FP
+    // SECG recommended curves over FP
     public static final byte CURVE_secp112r1 = (byte) 1;
     public static final byte CURVE_secp128r1 = (byte) 2;
     public static final byte CURVE_secp160r1 = (byte) 3;
@@ -1014,7 +1014,7 @@ public class EC_Consts {
 
     public static final byte FP_CURVES = (byte) 8;
 
-    // SECP recommended curves over F2M
+    // SECG recommended curves over F2M
     public static final byte CURVE_sect163r1 = (byte) 9;
     public static final byte CURVE_sect233r1 = (byte) 10;
     public static final byte CURVE_sect283r1 = (byte) 11;
@@ -1026,6 +1026,25 @@ public class EC_Consts {
     public static final short[] FP_SIZES = new short[]{112, 128, 160, 192, 224, 256, 384, 521};
     public static final short[] F2M_SIZES = new short[]{163, 233, 283, 409, 571};
 
+    public static final byte[] KA_TYPES = new byte[]{
+            ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH,
+            //ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH_KDF, //duplicate
+            ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DHC,
+            //ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DHC_KDF, //duplicate
+            ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH_PLAIN,
+            ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DHC_PLAIN,
+            ECTesterApplet.KeyAgreement_ALG_EC_PACE_GM,
+            ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH_PLAIN_XY
+    };
+
+    public static final byte[] SIG_TYPES = new byte[]{
+            ECTesterApplet.Signature_ALG_ECDSA_SHA,
+            ECTesterApplet.Signature_ALG_ECDSA_SHA_224,
+            ECTesterApplet.Signature_ALG_ECDSA_SHA_256,
+            ECTesterApplet.Signature_ALG_ECDSA_SHA_384,
+            ECTesterApplet.Signature_ALG_ECDSA_SHA_512
+    };
+
     public static byte getCurve(short keyLength, byte keyClass) {
         if (keyClass == KeyPair.ALG_EC_FP) {
             switch (keyLength) {
diff --git a/src/cz/crcs/ectester/common/cli/TreeParser.java b/src/cz/crcs/ectester/common/cli/TreeParser.java
index 77cce30..f1a1980 100644
--- a/src/cz/crcs/ectester/common/cli/TreeParser.java
+++ b/src/cz/crcs/ectester/common/cli/TreeParser.java
@@ -86,6 +86,7 @@ public class TreeParser implements CommandLineParser {
             }
         }
 
+        int maxArgs = args.size();
         long requiredArgs = args.stream().filter(Argument::isRequired).count();
         String reqArgs = String.join(" ", args.stream().filter(Argument::isRequired).map(Argument::getName).collect(Collectors.toList()));
 
@@ -99,6 +100,8 @@ public class TreeParser implements CommandLineParser {
 
             if (lastCli.getArgs().length < requiredArgs) {
                 throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            } else if (lastCli.getArgs().length > maxArgs) {
+                throw new MissingArgumentException("Too many arguments.");
             }
 
             subTreeCli.setName(sub);
@@ -106,6 +109,8 @@ public class TreeParser implements CommandLineParser {
         } else if (subCli != null) {
             if (subCli.getArgs().length < requiredArgs) {
                 throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            } else if (subCli.getArgs().length > maxArgs) {
+                throw new MissingArgumentException("Too many arguments.");
             }
 
             TreeCommandLine subTreeCli = new TreeCommandLine(sub, subCli, null);
@@ -113,7 +118,10 @@ public class TreeParser implements CommandLineParser {
         } else {
             if (cliArgs.length < requiredArgs) {
                 throw new MissingArgumentException("Not enough arguments: " + reqArgs);
+            } else if (cliArgs.length > maxArgs) {
+                throw new MissingArgumentException("Too many arguments.");
             }
+
             return new TreeCommandLine(cli, null);
         }
     }
diff --git a/src/cz/crcs/ectester/common/test/BaseRunnable.java b/src/cz/crcs/ectester/common/test/BaseRunnable.java
deleted file mode 100644
index 3e18208..0000000
--- a/src/cz/crcs/ectester/common/test/BaseRunnable.java
+++ /dev/null
@@ -1,31 +0,0 @@
-package cz.crcs.ectester.common.test;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class BaseRunnable implements Runnable {
-    private boolean hasRun = false;
-    private Func runImplicit;
-
-    public BaseRunnable(Func runImplicit) {
-        this.runImplicit = runImplicit;
-    }
-
-    @Override
-    public boolean hasRun() {
-        return hasRun;
-    }
-
-    @Override
-    public void run() throws TestException {
-        if (!hasRun) {
-            runImplicit.run();
-        }
-        hasRun = true;
-    }
-
-    @FunctionalInterface
-    public interface Func {
-        void run() throws TestException;
-    }
-}
diff --git a/src/cz/crcs/ectester/common/test/Runnable.java b/src/cz/crcs/ectester/common/test/Runnable.java
deleted file mode 100644
index 6f0efb0..0000000
--- a/src/cz/crcs/ectester/common/test/Runnable.java
+++ /dev/null
@@ -1,18 +0,0 @@
-package cz.crcs.ectester.common.test;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public interface Runnable {
-    /**
-     * @return Whether this runnable was run.
-     */
-    boolean hasRun();
-
-    /**
-     * Run this Runnable.
-     *
-     * @throws TestException
-     */
-    void run() throws TestException;
-}
diff --git a/src/cz/crcs/ectester/common/test/TestRunner.java b/src/cz/crcs/ectester/common/test/TestRunner.java
deleted file mode 100644
index cd71bcd..0000000
--- a/src/cz/crcs/ectester/common/test/TestRunner.java
+++ /dev/null
@@ -1,29 +0,0 @@
-package cz.crcs.ectester.common.test;
-
-import cz.crcs.ectester.common.output.TestWriter;
-
-/**
- * @author Jan Jancar johny@neuromancer.sk
- */
-public class TestRunner {
-    private TestSuite suite;
-    private TestWriter writer;
-
-    public TestRunner(TestSuite suite, TestWriter writer) {
-        this.suite = suite;
-        this.writer = writer;
-    }
-
-    public void run() throws TestException {
-        writer.begin(suite);
-        for (Runnable t : suite.getRunnables()) {
-            if (!t.hasRun()) {
-                t.run();
-                if (t instanceof Test) {
-                    writer.outputTest((Test) t);
-                }
-            }
-        }
-        writer.end();
-    }
-}
diff --git a/src/cz/crcs/ectester/common/test/TestSuite.java b/src/cz/crcs/ectester/common/test/TestSuite.java
index 1a7c914..f4f30ee 100644
--- a/src/cz/crcs/ectester/common/test/TestSuite.java
+++ b/src/cz/crcs/ectester/common/test/TestSuite.java
@@ -1,5 +1,6 @@
 package cz.crcs.ectester.common.test;
 
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.data.EC_Store;
 
 import java.util.Collections;
@@ -13,27 +14,37 @@ import java.util.stream.Collectors;
 public abstract class TestSuite {
     protected String name;
     protected String description;
-    protected List<Runnable> run = new LinkedList<>();
-    protected EC_Store dataStore;
+    protected TestWriter writer;
 
-    public TestSuite(EC_Store dataStore, String name, String description) {
-        this.dataStore = dataStore;
+    public TestSuite(TestWriter writer, String name, String description) {
+        this.writer = writer;
         this.name = name;
         this.description = description;
     }
 
-    public List<Runnable> getRunnables() {
-        return Collections.unmodifiableList(run);
+    public void run() throws TestException {
+        writer.begin(this);
+        try {
+            runTests();
+        } catch (Exception e) {
+            throw new TestException(e);
+        }
+        writer.end();
     }
 
-    @SuppressWarnings("unchecked")
-    public List<Test> getTests() {
-        return Collections.unmodifiableList((List<Test>)(List<?>) run
-                .stream()
-                .filter(runnable -> (runnable instanceof Test))
-                .collect(Collectors.toList()));
+    protected Test runTest(Test t) throws TestException {
+        t.run();
+        return t;
     }
 
+    protected Test doTest(Test t) throws TestException {
+        t.run();
+        writer.outputTest(t);
+        return t;
+    }
+
+    protected abstract void runTests() throws Exception;
+
     public String getName() {
         return name;
     }
diff --git a/src/cz/crcs/ectester/common/test/Testable.java b/src/cz/crcs/ectester/common/test/Testable.java
index cc7a5de..3627075 100644
--- a/src/cz/crcs/ectester/common/test/Testable.java
+++ b/src/cz/crcs/ectester/common/test/Testable.java
@@ -3,7 +3,7 @@ package cz.crcs.ectester.common.test;
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
-public interface Testable extends Runnable {
+public interface Testable {
     /**
      * @return Whether this Testable was OK.
      */
@@ -13,4 +13,15 @@ public interface Testable extends Runnable {
      * @return Whether an error happened.
      */
     boolean error();
+    /**
+     * @return Whether this runnable was run.
+     */
+    boolean hasRun();
+
+    /**
+     * Run this Runnable.
+     *
+     * @throws TestException
+     */
+    void run() throws TestException;
 }
diff --git a/src/cz/crcs/ectester/data/EC_Store.java b/src/cz/crcs/ectester/data/EC_Store.java
index c25be4e..e4ba40c 100644
--- a/src/cz/crcs/ectester/data/EC_Store.java
+++ b/src/cz/crcs/ectester/data/EC_Store.java
@@ -1,8 +1,6 @@
 package cz.crcs.ectester.data;
 
-import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.ec.*;
-import cz.crcs.ectester.common.util.CardUtil;
 import javacard.security.KeyPair;
 import org.w3c.dom.Document;
 import org.w3c.dom.Element;
@@ -31,12 +29,11 @@ import java.util.TreeMap;
  * @author Jan Jancar johny@neuromancer.sk
  */
 public class EC_Store {
-
     private DocumentBuilder db;
-
     private Map<String, EC_Category> categories;
+    private static EC_Store instance;
 
-    public EC_Store() throws IOException {
+    private EC_Store() {
         DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance();
 
         try {
@@ -85,7 +82,7 @@ public class EC_Store {
             });
 
             parse();
-        } catch (ParserConfigurationException | SAXException e) {
+        } catch (ParserConfigurationException | SAXException | IOException e) {
             e.printStackTrace();
         }
     }
@@ -322,4 +319,11 @@ public class EC_Store {
         return getObject(objClass, query.substring(0, split), query.substring(split + 1));
     }
 
+    public static EC_Store getInstance() {
+        if (instance == null) {
+            instance = new EC_Store();
+        }
+        return instance;
+    }
+
 }
diff --git a/src/cz/crcs/ectester/reader/ECTesterReader.java b/src/cz/crcs/ectester/reader/ECTesterReader.java
index d4b95ed..ff0f403 100644
--- a/src/cz/crcs/ectester/reader/ECTesterReader.java
+++ b/src/cz/crcs/ectester/reader/ECTesterReader.java
@@ -28,7 +28,6 @@ import cz.crcs.ectester.common.ec.EC_Params;
 import cz.crcs.ectester.common.output.OutputLogger;
 import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.TestException;
-import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.common.util.CardUtil;
 import cz.crcs.ectester.data.EC_Store;
@@ -64,9 +63,7 @@ import static cz.crcs.ectester.applet.ECTesterApplet.Signature_ALG_ECDSA_SHA;
 public class ECTesterReader {
     private CardMngr cardManager;
     private OutputLogger logger;
-    private TestWriter testWriter;
     private ResponseWriter respWriter;
-    private EC_Store dataStore;
     private Config cfg;
 
     private Options opts = new Options();
@@ -100,10 +97,9 @@ public class ECTesterReader {
                 return;
             }
 
-            dataStore = new EC_Store();
             //if list, print and quit
             if (cli.hasOption("list-named")) {
-                CLITools.listNamed(dataStore, cli.getOptionValue("list-named"));
+                CLITools.listNamed(EC_Store.getInstance(), cli.getOptionValue("list-named"));
                 return;
             }
 
@@ -126,22 +122,7 @@ public class ECTesterReader {
 
             // Setup logger, testWriter and respWriter
             logger = new OutputLogger(true, cfg.log);
-            if (cfg.format == null) {
-                testWriter = new TextTestWriter(logger.getPrintStream());
-            } else {
-                switch (cfg.format) {
-                    case "text":
-                        testWriter = new TextTestWriter(logger.getPrintStream());
-                        break;
-                    case "xml":
-                        testWriter = new XMLTestWriter(logger.getOutputStream());
-                        break;
-                    case "yaml":
-                    case "yml":
-                        testWriter = new YAMLTestWriter(logger.getPrintStream());
-                        break;
-                }
-            }
+
             respWriter = new ResponseWriter(logger.getPrintStream());
 
             //do action
@@ -363,9 +344,9 @@ public class ECTesterReader {
     private void generate() throws CardException, IOException {
         byte keyClass = cfg.primeField ? KeyPair.ALG_EC_FP : KeyPair.ALG_EC_F2M;
 
-		Response allocate = new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass).send();
-		respWriter.outputResponse(allocate);
-        Command curve = Command.prepareCurve(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass);
+        Response allocate = new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass).send();
+        respWriter.outputResponse(allocate);
+        Command curve = Command.prepareCurve(cardManager, EC_Store.getInstance(), cfg, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass);
 
         FileWriter keysFile = new FileWriter(cfg.output);
         keysFile.write("index;time;pubW;privS\n");
@@ -414,15 +395,33 @@ public class ECTesterReader {
      * @throws CardException if APDU transmission fails
      * @throws IOException   if an IO error occurs when writing to key file.
      */
-    private void test() throws IOException, TestException {
+    private void test() throws IOException, TestException, ParserConfigurationException {
+        TestWriter writer = null;
+        if (cfg.format == null) {
+            writer = new TextTestWriter(logger.getPrintStream());
+        } else {
+            switch (cfg.format) {
+                case "text":
+                    writer = new TextTestWriter(logger.getPrintStream());
+                    break;
+                case "xml":
+                    writer = new XMLTestWriter(logger.getOutputStream());
+                    break;
+                case "yaml":
+                case "yml":
+                    writer = new YAMLTestWriter(logger.getPrintStream());
+                    break;
+            }
+        }
+
         CardTestSuite suite;
 
         switch (cfg.testSuite) {
             case "default":
-                suite = new CardDefaultSuite(dataStore, cfg);
+                suite = new CardDefaultSuite(writer, cfg, cardManager);
                 break;
             case "test-vectors":
-                suite = new CardTestVectorSuite(dataStore, cfg);
+                suite = new CardTestVectorSuite(writer, cfg, cardManager);
                 break;
             default:
                 // These run are dangerous, prompt before them.
@@ -437,17 +436,15 @@ public class ECTesterReader {
                     }
                     in.close();
                 }
-
-
                 switch (cfg.testSuite) {
                     case "wrong":
-                        suite = new CardWrongCurvesSuite(dataStore, cfg);
+                        suite = new CardWrongCurvesSuite(writer, cfg, cardManager);
                         break;
                     case "composite":
-                        suite = new CardCompositeCurvesSuite(dataStore, cfg);
+                        suite = new CardCompositeCurvesSuite(writer, cfg, cardManager);
                         break;
                     case "invalid":
-                        suite = new CardInvalidCurvesSuite(dataStore, cfg);
+                        suite = new CardInvalidCurvesSuite(writer, cfg, cardManager);
                         break;
                     default:
                         System.err.println("Unknown test suite.");
@@ -456,9 +453,7 @@ public class ECTesterReader {
                 break;
         }
 
-        TestRunner runner = new TestRunner(suite, testWriter);
-        suite.setup(cardManager);
-        runner.run();
+        suite.run();
     }
 
     /**
@@ -472,7 +467,7 @@ public class ECTesterReader {
         List<Response> prepare = new LinkedList<>();
         prepare.add(new Command.AllocateKeyAgreement(cardManager, cfg.ECKAType).send()); // Prepare KeyAgreement or required type
         prepare.add(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, (short) cfg.bits, keyClass).send());
-        Command curve = Command.prepareCurve(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_BOTH, (short) cfg.bits, keyClass);
+        Command curve = Command.prepareCurve(cardManager, EC_Store.getInstance(), cfg, ECTesterApplet.KEYPAIR_BOTH, (short) cfg.bits, keyClass);
         if (curve != null)
             prepare.add(curve.send());
 
@@ -486,7 +481,7 @@ public class ECTesterReader {
         List<Command> generate = new LinkedList<>();
         generate.add(new Command.Generate(cardManager, ECTesterApplet.KEYPAIR_BOTH));
         if (cfg.anyPublicKey || cfg.anyPrivateKey || cfg.anyKey) {
-            generate.add(Command.prepareKey(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_REMOTE));
+            generate.add(Command.prepareKey(cardManager, EC_Store.getInstance(), cfg, ECTesterApplet.KEYPAIR_REMOTE));
         }
 
         FileWriter out = null;
@@ -554,7 +549,7 @@ public class ECTesterReader {
 
         Command generate;
         if (cfg.anyKeypart) {
-            generate = Command.prepareKey(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_LOCAL);
+            generate = Command.prepareKey(cardManager, EC_Store.getInstance(), cfg, ECTesterApplet.KEYPAIR_LOCAL);
         } else {
             generate = new Command.Generate(cardManager, ECTesterApplet.KEYPAIR_LOCAL);
         }
@@ -563,7 +558,7 @@ public class ECTesterReader {
         List<Response> prepare = new LinkedList<>();
         prepare.add(new Command.AllocateSignature(cardManager, cfg.ECDSAType).send());
         prepare.add(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass).send());
-        Command curve = Command.prepareCurve(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass);
+        Command curve = Command.prepareCurve(cardManager, EC_Store.getInstance(), cfg, ECTesterApplet.KEYPAIR_LOCAL, (short) cfg.bits, keyClass);
         if (curve != null)
             prepare.add(curve.send());
 
@@ -620,7 +615,7 @@ public class ECTesterReader {
     public static class Config {
 
         //Options
-        public int bits;
+        public short bits;
         public boolean all;
         public boolean primeField = false;
         public boolean binaryField = false;
@@ -670,7 +665,7 @@ public class ECTesterReader {
          * @return whether the options are valid.
          */
         boolean readOptions(CommandLine cli) {
-            bits = Integer.parseInt(cli.getOptionValue("bit-size", "0"));
+            bits = Short.parseShort(cli.getOptionValue("bit-size", "0"));
             all = cli.hasOption("all");
             primeField = cli.hasOption("fp");
             binaryField = cli.hasOption("f2m");
diff --git a/src/cz/crcs/ectester/reader/test/CardCompositeCurvesSuite.java b/src/cz/crcs/ectester/reader/test/CardCompositeCurvesSuite.java
index 2c2ba26..a53806c 100644
--- a/src/cz/crcs/ectester/reader/test/CardCompositeCurvesSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardCompositeCurvesSuite.java
@@ -2,13 +2,13 @@ package cz.crcs.ectester.reader.test;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.test.BaseRunnable;
+import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.ec.EC_Key;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.command.Command;
-import cz.crcs.ectester.common.ec.EC_Curve;
-import cz.crcs.ectester.common.ec.EC_Key;
 import javacard.security.KeyPair;
 
 import java.util.Map;
@@ -20,34 +20,31 @@ import static cz.crcs.ectester.common.test.Result.ExpectedValue;
  */
 public class CardCompositeCurvesSuite extends CardTestSuite {
 
-    public CardCompositeCurvesSuite(EC_Store dataStore, ECTesterReader.Config cfg) {
-        super(dataStore, cfg, "composite", "The composite suite run ECDH over curves with composite order. This should generally fail, as using such a curve is unsafe.");
+    public CardCompositeCurvesSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager) {
+        super(writer, cfg, cardManager, "composite", "The composite suite run ECDH over curves with composite order. This should generally fail, as using such a curve is unsafe.");
     }
 
     @Override
-    public void setup(CardMngr cardManager) {
+    protected void runTests() throws Exception {
         /* Do the default run with the public keys set to provided smallorder keys
          * over composite order curves. Essentially small subgroup attacks.
          * These should fail, the curves aren't safe so that if the computation with
          * a small order public key succeeds the private key modulo the public key order
          * is revealed.
          */
-        Map<String, EC_Key> keys = dataStore.getObjects(EC_Key.class, "composite");
+        Map<String, EC_Key> keys = EC_Store.getInstance().getObjects(EC_Key.class, "composite");
         for (EC_Key key : keys.values()) {
-            EC_Curve curve = dataStore.getObject(EC_Curve.class, key.getCurve());
-            if (cfg.namedCurve != null && !(key.getCurve().startsWith(cfg.namedCurve) || key.getCurve().equals(cfg.namedCurve))) {
-                continue;
-            }
+            EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, key.getCurve());
             if (curve.getField() == KeyPair.ALG_EC_FP && !cfg.primeField || curve.getField() == KeyPair.ALG_EC_F2M && !cfg.binaryField) {
                 continue;
             }
             if ((curve.getBits() == cfg.bits || cfg.all)) {
-                run.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
-                run.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.ANY));
-                run.add(CommandTest.expect(new Command.Generate(cardManager, ECTesterApplet.KEYPAIR_LOCAL), ExpectedValue.ANY));
-                Command ecdhCommand = new Command.ECDH_direct(cardManager, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH, key.flatten());
-                run.add(CommandTest.expect(ecdhCommand, ExpectedValue.FAILURE, "Card correctly rejected to do ECDH over a composite order curve.", "Card incorrectly does ECDH over a composite order curve, leaks bits of private key."));
-                run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
+                doTest(CommandTest.expect(new Command.Allocate(this.card, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
+                doTest(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.ANY));
+                doTest(CommandTest.expect(new Command.Generate(this.card, ECTesterApplet.KEYPAIR_LOCAL), ExpectedValue.ANY));
+                Command ecdhCommand = new Command.ECDH_direct(this.card, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH, key.flatten());
+                doTest(CommandTest.expect(ecdhCommand, ExpectedValue.FAILURE, "Card correctly rejected to do ECDH over a composite order curve.", "Card incorrectly does ECDH over a composite order curve, leaks bits of private key."));
+                new Command.Cleanup(this.card).send();
             }
         }
     }
diff --git a/src/cz/crcs/ectester/reader/test/CardDefaultSuite.java b/src/cz/crcs/ectester/reader/test/CardDefaultSuite.java
index 7e7adbb..9de741c 100644
--- a/src/cz/crcs/ectester/reader/test/CardDefaultSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardDefaultSuite.java
@@ -2,15 +2,15 @@ package cz.crcs.ectester.reader.test;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.test.BaseRunnable;
-import cz.crcs.ectester.data.EC_Store;
+import cz.crcs.ectester.common.output.TestWriter;
+import cz.crcs.ectester.common.test.CompoundTest;
+import cz.crcs.ectester.common.test.Test;
+import cz.crcs.ectester.common.util.CardUtil;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.command.Command;
 import javacard.security.KeyPair;
 
-import java.io.IOException;
-
 import static cz.crcs.ectester.common.test.Result.ExpectedValue;
 
 /**
@@ -18,53 +18,46 @@ import static cz.crcs.ectester.common.test.Result.ExpectedValue;
  */
 public class CardDefaultSuite extends CardTestSuite {
 
-    public CardDefaultSuite(EC_Store dataStore, ECTesterReader.Config cfg) {
-        super(dataStore, cfg, "default", "The default test suite run basic support of ECDH and ECDSA.");
+    public CardDefaultSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager) {
+        super(writer, cfg, cardManager, "default", "The default test suite run basic support of ECDH and ECDSA.");
     }
 
     @Override
-    public void setup(CardMngr cardManager) throws IOException {
-        //run.add(CommandTest.expect(new Command.Support(cardManager), ExpectedValue.ANY));
-        if (cfg.namedCurve != null) {
-            String desc = "Default run over the " + cfg.namedCurve + " curve category.";
-            if (cfg.primeField) {
-                run.addAll(defaultCategoryTests(cardManager, cfg.namedCurve, KeyPair.ALG_EC_FP, ExpectedValue.SUCCESS, ExpectedValue.SUCCESS, ExpectedValue.SUCCESS, ExpectedValue.ANY, ExpectedValue.SUCCESS, desc));
-            }
-            if (cfg.binaryField) {
-                run.addAll(defaultCategoryTests(cardManager, cfg.namedCurve, KeyPair.ALG_EC_F2M, ExpectedValue.SUCCESS, ExpectedValue.SUCCESS, ExpectedValue.SUCCESS, ExpectedValue.ANY, ExpectedValue.SUCCESS, desc));
+    protected void runTests() throws Exception {
+        if (cfg.primeField) {
+            runDefault(KeyPair.ALG_EC_FP);
+        }
+        if (cfg.binaryField) {
+            runDefault(KeyPair.ALG_EC_F2M);
+        }
+    }
+
+    private void runDefault(byte field) throws Exception {
+        for (short keyLength : EC_Consts.FP_SIZES) {
+            Test key = doTest(CommandTest.expect(new Command.Allocate(this.card, ECTesterApplet.KEYPAIR_BOTH, keyLength, field), ExpectedValue.SUCCESS));
+            if (!key.ok()) {
+                continue;
             }
-        } else {
-            if (cfg.all) {
-                if (cfg.primeField) {
-                    //iterate over prime curve sizes used: EC_Consts.FP_SIZES
-                    for (short keyLength : EC_Consts.FP_SIZES) {
-                        defaultTests(cardManager, keyLength, KeyPair.ALG_EC_FP);
-                    }
+            doTest(CommandTest.expect(new Command.Generate(this.card, ECTesterApplet.KEYPAIR_BOTH), ExpectedValue.SUCCESS));
+            doTest(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.getCurve(keyLength, field), EC_Consts.PARAMETERS_DOMAIN_FP, null), ExpectedValue.SUCCESS));
+            doTest(CommandTest.expect(new Command.Generate(this.card, ECTesterApplet.KEYPAIR_BOTH), ExpectedValue.SUCCESS));
+            for (byte kaType : EC_Consts.KA_TYPES) {
+                Test allocate = CommandTest.expect(new Command.AllocateKeyAgreement(this.card, kaType), ExpectedValue.SUCCESS);
+                allocate.run();
+                if (allocate.ok()) {
+                    Test ka = CommandTest.expect(new Command.ECDH(this.card, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.KEYPAIR_REMOTE, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, kaType), ExpectedValue.SUCCESS);
+                    ka.run();
+                    Test kaCompressed = CommandTest.expect(new Command.ECDH(this.card, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.KEYPAIR_REMOTE, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_COMPRESS, kaType), ExpectedValue.SUCCESS);
+                    kaCompressed.run();
+                    doTest(CompoundTest.all(ExpectedValue.SUCCESS, "Test of the " + CardUtil.getKATypeString(kaType) + " KeyAgreement.", allocate, ka, kaCompressed));
                 }
-                if (cfg.binaryField) {
-                    //iterate over binary curve sizes used: EC_Consts.F2M_SIZES
-                    for (short keyLength : EC_Consts.F2M_SIZES) {
-                        defaultTests(cardManager, keyLength, KeyPair.ALG_EC_F2M);
-                    }
-                }
-            } else {
-                if (cfg.primeField) {
-                    defaultTests(cardManager, (short) cfg.bits, KeyPair.ALG_EC_FP);
-                }
-
-                if (cfg.binaryField) {
-                    defaultTests(cardManager, (short) cfg.bits, KeyPair.ALG_EC_F2M);
+            }
+            for (byte sigType : EC_Consts.SIG_TYPES) {
+                Test allocate = doTest(CommandTest.expect(new Command.AllocateSignature(this.card, sigType), ExpectedValue.SUCCESS));
+                if (allocate.ok()) {
+                    doTest(CommandTest.expect(new Command.ECDSA(this.card, ECTesterApplet.KEYPAIR_LOCAL, sigType, ECTesterApplet.EXPORT_FALSE, null), ExpectedValue.SUCCESS));
                 }
             }
         }
     }
-
-    private void defaultTests(CardMngr cardManager, short keyLength, byte keyType) throws IOException {
-        run.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, keyLength, keyType), ExpectedValue.SUCCESS));
-        Command curve = Command.prepareCurve(cardManager, dataStore, cfg, ECTesterApplet.KEYPAIR_BOTH, keyLength, keyType);
-        if (curve != null)
-            run.add(CommandTest.expect(curve, ExpectedValue.SUCCESS));
-        run.add(defaultCurveTests(cardManager, ExpectedValue.SUCCESS, ExpectedValue.SUCCESS, ExpectedValue.ANY, ExpectedValue.SUCCESS, "Default run."));
-        run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
-    }
 }
diff --git a/src/cz/crcs/ectester/reader/test/CardInvalidCurvesSuite.java b/src/cz/crcs/ectester/reader/test/CardInvalidCurvesSuite.java
index 3c0795b..0572a66 100644
--- a/src/cz/crcs/ectester/reader/test/CardInvalidCurvesSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardInvalidCurvesSuite.java
@@ -2,18 +2,17 @@ package cz.crcs.ectester.reader.test;
 
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
-import cz.crcs.ectester.common.test.BaseRunnable;
+import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.ec.EC_Key;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.CompoundTest;
 import cz.crcs.ectester.common.test.Test;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.command.Command;
-import cz.crcs.ectester.common.ec.EC_Curve;
-import cz.crcs.ectester.common.ec.EC_Key;
 import javacard.security.KeyPair;
 
-import java.io.IOException;
 import java.util.HashMap;
 import java.util.LinkedList;
 import java.util.List;
@@ -26,22 +25,19 @@ import static cz.crcs.ectester.common.test.Result.ExpectedValue;
  */
 public class CardInvalidCurvesSuite extends CardTestSuite {
 
-    public CardInvalidCurvesSuite(EC_Store dataStore, ECTesterReader.Config cfg) {
-        super(dataStore, cfg, "invalid", "The invalid curve suite run whether the card rejects points outside of the curve during ECDH.");
+    public CardInvalidCurvesSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager) {
+        super(writer, cfg, cardManager, "invalid", "The invalid curve suite run whether the card rejects points outside of the curve during ECDH.");
     }
 
     @Override
-    public void setup(CardMngr cardManager) throws IOException {
+    protected void runTests() throws Exception {
         /* Set original curves (secg/nist/brainpool). Generate local.
          * Try ECDH with invalid public keys of increasing (or decreasing) order.
          */
-        Map<String, EC_Key.Public> pubkeys = dataStore.getObjects(EC_Key.Public.class, "invalid");
+        Map<String, EC_Key.Public> pubkeys = EC_Store.getInstance().getObjects(EC_Key.Public.class, "invalid");
         Map<EC_Curve, List<EC_Key.Public>> curves = new HashMap<>();
         for (EC_Key.Public key : pubkeys.values()) {
-            EC_Curve curve = dataStore.getObject(EC_Curve.class, key.getCurve());
-            if (cfg.namedCurve != null && !(key.getCurve().startsWith(cfg.namedCurve) || key.getCurve().equals(cfg.namedCurve))) {
-                continue;
-            }
+            EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, key.getCurve());
             if (curve.getBits() != cfg.bits && !cfg.all) {
                 continue;
             }
@@ -56,16 +52,16 @@ public class CardInvalidCurvesSuite extends CardTestSuite {
             EC_Curve curve = e.getKey();
             List<EC_Key.Public> keys = e.getValue();
 
-            run.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
-            run.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.SUCCESS));
-            run.add(CommandTest.expect(new Command.Generate(cardManager, ECTesterApplet.KEYPAIR_LOCAL), ExpectedValue.SUCCESS));
+            doTest(CommandTest.expect(new Command.Allocate(this.card, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
+            doTest(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.SUCCESS));
+            doTest(CommandTest.expect(new Command.Generate(this.card, ECTesterApplet.KEYPAIR_LOCAL), ExpectedValue.SUCCESS));
             List<Test> ecdhTests = new LinkedList<>();
             for (EC_Key.Public pub : keys) {
-                Command ecdhCommand = new Command.ECDH_direct(cardManager, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH, pub.flatten());
-                ecdhTests.add(CommandTest.expect(ecdhCommand, ExpectedValue.FAILURE, "Card correctly rejected point on invalid curve." , "Card incorrectly accepted point on invalid curve."));
+                Command ecdhCommand = new Command.ECDH_direct(this.card, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, ECTesterApplet.KeyAgreement_ALG_EC_SVDP_DH, pub.flatten());
+                ecdhTests.add(CommandTest.expect(ecdhCommand, ExpectedValue.FAILURE, "Card correctly rejected point on invalid curve.", "Card incorrectly accepted point on invalid curve."));
             }
-            run.add(CompoundTest.all(ExpectedValue.SUCCESS, "Invalid curve test of " + curve.getId(), ecdhTests.toArray(new Test[0])));
-            run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
+            doTest(CompoundTest.all(ExpectedValue.SUCCESS, "Invalid curve test of " + curve.getId(), ecdhTests.toArray(new Test[0])));
+            new Command.Cleanup(this.card).send();
         }
     }
 }
diff --git a/src/cz/crcs/ectester/reader/test/CardTestSuite.java b/src/cz/crcs/ectester/reader/test/CardTestSuite.java
index 7035ca2..e12a588 100644
--- a/src/cz/crcs/ectester/reader/test/CardTestSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardTestSuite.java
@@ -3,14 +3,16 @@ package cz.crcs.ectester.reader.test;
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.ec.EC_Curve;
-import cz.crcs.ectester.common.test.*;
-import cz.crcs.ectester.common.test.Runnable;
+import cz.crcs.ectester.common.output.TestWriter;
+import cz.crcs.ectester.common.test.CompoundTest;
+import cz.crcs.ectester.common.test.Result;
+import cz.crcs.ectester.common.test.Test;
+import cz.crcs.ectester.common.test.TestSuite;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
 import cz.crcs.ectester.reader.command.Command;
 
-import java.io.IOException;
 import java.util.LinkedList;
 import java.util.List;
 import java.util.Map;
@@ -24,14 +26,14 @@ import static cz.crcs.ectester.common.test.Result.Value;
  */
 public abstract class CardTestSuite extends TestSuite {
     ECTesterReader.Config cfg;
+    CardMngr card;
 
-    CardTestSuite(EC_Store dataStore, ECTesterReader.Config cfg, String name, String description) {
-        super(dataStore, name, description);
+    CardTestSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager, String name, String description) {
+        super(writer, name, description);
+        this.card = cardManager;
         this.cfg = cfg;
     }
 
-    public abstract void setup(CardMngr cardManager) throws IOException;
-
     /**
      * @param cardManager          cardManager to send APDU through
      * @param generateExpected     expected result of the Generate command
@@ -98,21 +100,20 @@ public abstract class CardTestSuite extends TestSuite {
      * @param description            compound test description
      * @return run to run
      */
-    List<Runnable> defaultCategoryTests(CardMngr cardManager, String category, byte field, ExpectedValue setExpected, ExpectedValue generateExpected, ExpectedValue ecdhExpected, ExpectedValue ecdhCompressedExpected, ExpectedValue ecdsaExpected, String description) {
-        List<Runnable> tests = new LinkedList<>();
-        Map<String, EC_Curve> curves = dataStore.getObjects(EC_Curve.class, category);
+    List<Test> defaultCategoryTests(CardMngr cardManager, String category, byte field, ExpectedValue setExpected, ExpectedValue generateExpected, ExpectedValue ecdhExpected, ExpectedValue ecdhCompressedExpected, ExpectedValue ecdsaExpected, String description) {
+        Map<String, EC_Curve> curves = EC_Store.getInstance().getObjects(EC_Curve.class, category);
         if (curves == null)
-            return tests;
+            return null;
         for (Map.Entry<String, EC_Curve> entry : curves.entrySet()) {
             EC_Curve curve = entry.getValue();
             if (curve.getField() == field && (curve.getBits() == cfg.bits || cfg.all)) {
-                tests.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), field), ExpectedValue.SUCCESS));
-                tests.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), setExpected));
-                tests.add(defaultCurveTests(cardManager, generateExpected, ecdhExpected, ecdhCompressedExpected, ecdsaExpected, description));
-                run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
+                //tests.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), field), ExpectedValue.SUCCESS));
+                //tests.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), setExpected));
+                //tests.add(defaultCurveTests(cardManager, generateExpected, ecdhExpected, ecdhCompressedExpected, ecdsaExpected, description));
+                //run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
             }
         }
 
-        return tests;
+        return null;
     }
 }
diff --git a/src/cz/crcs/ectester/reader/test/CardTestVectorSuite.java b/src/cz/crcs/ectester/reader/test/CardTestVectorSuite.java
index 025cbe0..73c6621 100644
--- a/src/cz/crcs/ectester/reader/test/CardTestVectorSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardTestVectorSuite.java
@@ -3,6 +3,7 @@ package cz.crcs.ectester.reader.test;
 import cz.crcs.ectester.applet.ECTesterApplet;
 import cz.crcs.ectester.applet.EC_Consts;
 import cz.crcs.ectester.common.ec.*;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.*;
 import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.data.EC_Store;
@@ -25,46 +26,42 @@ import static cz.crcs.ectester.common.test.Result.Value;
  */
 public class CardTestVectorSuite extends CardTestSuite {
 
-    public CardTestVectorSuite(EC_Store dataStore, ECTesterReader.Config cfg) {
-        super(dataStore, cfg, "test", "The test-vectors suite contains a collection of test vectors which test basic ECDH correctness.");
+    public CardTestVectorSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager) {
+        super(writer, cfg, cardManager, "test", "The test-vectors suite contains a collection of test vectors which test basic ECDH correctness.");
     }
 
     @Override
-    public void setup(CardMngr cardManager) throws IOException {
+    protected void runTests() throws Exception {
         /* Set original curves (secg/nist/brainpool). Set keypairs from test vectors.
          * Do ECDH both ways, export and verify that the result is correct.
          */
-        Map<String, EC_KAResult> results = dataStore.getObjects(EC_KAResult.class, "test");
+        Map<String, EC_KAResult> results = EC_Store.getInstance().getObjects(EC_KAResult.class, "test");
         for (EC_KAResult result : results.values()) {
-            EC_Curve curve = dataStore.getObject(EC_Curve.class, result.getCurve());
-            if (cfg.namedCurve != null && !(result.getCurve().startsWith(cfg.namedCurve) || result.getCurve().equals(cfg.namedCurve))) {
-                continue;
-            }
+            EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, result.getCurve());
             if (curve.getBits() != cfg.bits && !cfg.all) {
                 continue;
             }
             if (curve.getField() == KeyPair.ALG_EC_FP && !cfg.primeField || curve.getField() == KeyPair.ALG_EC_F2M && !cfg.binaryField) {
                 continue;
             }
-            EC_Params onekey = dataStore.getObject(EC_Keypair.class, result.getOneKey());
+            EC_Params onekey = EC_Store.getInstance().getObject(EC_Keypair.class, result.getOneKey());
             if (onekey == null) {
-                onekey = dataStore.getObject(EC_Key.Private.class, result.getOneKey());
+                onekey = EC_Store.getInstance().getObject(EC_Key.Private.class, result.getOneKey());
             }
-            EC_Params otherkey = dataStore.getObject(EC_Keypair.class, result.getOtherKey());
+            EC_Params otherkey = EC_Store.getInstance().getObject(EC_Keypair.class, result.getOtherKey());
             if (otherkey == null) {
-                otherkey = dataStore.getObject(EC_Key.Public.class, result.getOtherKey());
+                otherkey = EC_Store.getInstance().getObject(EC_Key.Public.class, result.getOtherKey());
             }
             if (onekey == null || otherkey == null) {
                 throw new IOException("Test vector keys couldn't be located.");
             }
             List<Test> testVector = new LinkedList<>();
 
-            testVector.add(CommandTest.expect(new Command.Allocate(cardManager, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
-            testVector.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.SUCCESS));
-            //run.add(new Test.Simple(new Command.Generate(cardManager, ECTesterApplet.KEYPAIR_BOTH), ExpectedValue.SUCCESS));
-            testVector.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.CURVE_external, EC_Consts.PARAMETER_S, onekey.flatten(EC_Consts.PARAMETER_S)), ExpectedValue.SUCCESS));
-            testVector.add(CommandTest.expect(new Command.Set(cardManager, ECTesterApplet.KEYPAIR_REMOTE, EC_Consts.CURVE_external, EC_Consts.PARAMETER_W, otherkey.flatten(EC_Consts.PARAMETER_W)), ExpectedValue.SUCCESS));
-            testVector.add(CommandTest.function(new Command.ECDH(cardManager, ECTesterApplet.KEYPAIR_REMOTE, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_TRUE, EC_Consts.CORRUPTION_NONE, result.getJavaCardKA()), new TestCallback<CommandTestable>() {
+            testVector.add(CommandTest.expect(new Command.Allocate(this.card, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), ExpectedValue.SUCCESS));
+            testVector.add(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), ExpectedValue.SUCCESS));
+            testVector.add(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_LOCAL, EC_Consts.CURVE_external, EC_Consts.PARAMETER_S, onekey.flatten(EC_Consts.PARAMETER_S)), ExpectedValue.SUCCESS));
+            testVector.add(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_REMOTE, EC_Consts.CURVE_external, EC_Consts.PARAMETER_W, otherkey.flatten(EC_Consts.PARAMETER_W)), ExpectedValue.SUCCESS));
+            testVector.add(CommandTest.function(new Command.ECDH(this.card, ECTesterApplet.KEYPAIR_REMOTE, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.EXPORT_TRUE, EC_Consts.CORRUPTION_NONE, result.getJavaCardKA()), new TestCallback<CommandTestable>() {
                 @Override
                 public Result apply(CommandTestable testable) {
                     Response.ECDH dh = (Response.ECDH) testable.getResponse();
@@ -74,13 +71,13 @@ public class CardTestVectorSuite extends CardTestSuite {
                         return new Result(Value.FAILURE, "ECDH response did not contain the derived secret.");
                     if (!ByteUtil.compareBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength())) {
                         int firstDiff = ByteUtil.diffBytes(dh.getSecret(), 0, result.getData(0), 0, dh.secretLength());
-                        return new Result(Value.FAILURE, "ECDH derived secret does not match the test, first difference was at byte " + String.valueOf(firstDiff) + ".");
+                        return new Result(Value.FAILURE, "ECDH derived secret does not match the test-vector, first difference was at byte " + String.valueOf(firstDiff) + ".");
                     }
                     return new Result(Value.SUCCESS);
                 }
             }));
-            run.add(CompoundTest.all(ExpectedValue.SUCCESS, "Test vector " + result.getId(), testVector.toArray(new Test[0])));
-            run.add(new BaseRunnable(() -> new Command.Cleanup(cardManager)));
+            doTest(CompoundTest.all(ExpectedValue.SUCCESS, "Test vector " + result.getId(), testVector.toArray(new Test[0])));
+            new Command.Cleanup(this.card).send();
         }
     }
 }
diff --git a/src/cz/crcs/ectester/reader/test/CardWrongCurvesSuite.java b/src/cz/crcs/ectester/reader/test/CardWrongCurvesSuite.java
index 8c21aef..3a350c2 100644
--- a/src/cz/crcs/ectester/reader/test/CardWrongCurvesSuite.java
+++ b/src/cz/crcs/ectester/reader/test/CardWrongCurvesSuite.java
@@ -1,34 +1,58 @@
 package cz.crcs.ectester.reader.test;
 
+import cz.crcs.ectester.applet.ECTesterApplet;
+import cz.crcs.ectester.applet.EC_Consts;
+import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.output.TestWriter;
+import cz.crcs.ectester.common.test.CompoundTest;
+import cz.crcs.ectester.common.test.Result;
+import cz.crcs.ectester.common.test.Test;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.reader.CardMngr;
 import cz.crcs.ectester.reader.ECTesterReader;
+import cz.crcs.ectester.reader.command.Command;
 import javacard.security.KeyPair;
 
-import java.io.IOException;
-
-import static cz.crcs.ectester.common.test.Result.ExpectedValue;
+import java.util.Map;
 
 /**
  * @author Jan Jancar johny@neuromancer.sk
  */
 public class CardWrongCurvesSuite extends CardTestSuite {
 
-    public CardWrongCurvesSuite(EC_Store dataStore, ECTesterReader.Config cfg) {
-        super(dataStore, cfg, "wrong", "The wrong curve suite run whether the card rejects domain parameters which are not curves.");
+    public CardWrongCurvesSuite(TestWriter writer, ECTesterReader.Config cfg, CardMngr cardManager) {
+        super(writer, cfg, cardManager, "wrong", "The wrong curve suite run whether the card rejects domain parameters which are not curves.");
     }
 
     @Override
-    public void setup(CardMngr cardManager) throws IOException {
+    protected void runTests() throws Exception {
         /* Just do the default run on the wrong curves.
          * These should generally fail, the curves aren't curves.
          */
-        String desc = "Default run over wrong curve params.";
-        if (cfg.primeField) {
-            run.addAll(defaultCategoryTests(cardManager, cfg.testSuite, KeyPair.ALG_EC_FP, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, desc));
-        }
-        if (cfg.binaryField) {
-            run.addAll(defaultCategoryTests(cardManager, cfg.testSuite, KeyPair.ALG_EC_F2M, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, ExpectedValue.FAILURE, desc));
+        Map<String, EC_Curve> curves = EC_Store.getInstance().getObjects(EC_Curve.class, "wrong");
+        for (Map.Entry<String, EC_Curve> e : curves.entrySet()) {
+            EC_Curve curve = e.getValue();
+            if (curve.getBits() != cfg.bits && !cfg.all) {
+                continue;
+            }
+            if (curve.getField() == KeyPair.ALG_EC_FP && !cfg.primeField || curve.getField() == KeyPair.ALG_EC_F2M && !cfg.binaryField) {
+                continue;
+            }
+            Test key = doTest(CommandTest.expect(new Command.Allocate(this.card, ECTesterApplet.KEYPAIR_BOTH, curve.getBits(), curve.getField()), Result.ExpectedValue.SUCCESS));
+            if (!key.ok()) {
+                continue;
+            }
+            Test set = runTest(CommandTest.expect(new Command.Set(this.card, ECTesterApplet.KEYPAIR_BOTH, EC_Consts.CURVE_external, curve.getParams(), curve.flatten()), Result.ExpectedValue.SUCCESS));
+            Test generate = runTest(CommandTest.expect(new Command.Generate(this.card, ECTesterApplet.KEYPAIR_BOTH), Result.ExpectedValue.SUCCESS));
+            doTest(CompoundTest.any(Result.ExpectedValue.FAILURE, "Set wrong curve and generate keypairs, should fail." ,set, generate));
+
+            for (byte kaType : EC_Consts.KA_TYPES) {
+                Test allocate = runTest(CommandTest.expect(new Command.AllocateKeyAgreement(this.card, kaType), Result.ExpectedValue.SUCCESS));
+                if (allocate.ok()) {
+                    Test ka = runTest(CommandTest.expect(new Command.ECDH(this.card, ECTesterApplet.KEYPAIR_LOCAL, ECTesterApplet.KEYPAIR_REMOTE, ECTesterApplet.EXPORT_FALSE, EC_Consts.CORRUPTION_NONE, kaType), Result.ExpectedValue.FAILURE));
+                    doTest(CompoundTest.all(Result.ExpectedValue.SUCCESS, "Allocate and perform KA, should fail.", allocate, ka));
+                }
+            }
         }
     }
 }
diff --git a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
index b1b71a5..f5361c3 100644
--- a/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
+++ b/src/cz/crcs/ectester/standalone/ECTesterStandalone.java
@@ -4,7 +4,6 @@ import cz.crcs.ectester.common.cli.*;
 import cz.crcs.ectester.common.ec.EC_Curve;
 import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.TestException;
-import cz.crcs.ectester.common.test.TestRunner;
 import cz.crcs.ectester.common.util.ByteUtil;
 import cz.crcs.ectester.common.util.ECUtil;
 import cz.crcs.ectester.data.EC_Store;
@@ -44,7 +43,6 @@ import java.util.stream.Collectors;
  */
 public class ECTesterStandalone {
     private ProviderECLibrary[] libs = new ProviderECLibrary[]{new SunECLib(), new BouncyCastleLib(), new TomcryptLib(), new BotanLib()};
-    private EC_Store dataStore;
     private Config cfg;
 
     private Options opts = new Options();
@@ -76,12 +74,11 @@ public class ECTesterStandalone {
             if (!cfg.readOptions(cli)) {
                 return;
             }
-            dataStore = new EC_Store();
 
             if (cli.isNext("list-libs")) {
                 listLibraries();
             } else if (cli.isNext("list-data")) {
-                CLITools.listNamed(dataStore, cli.getNext().getArg(0));
+                CLITools.listNamed(EC_Store.getInstance(), cli.getNext().getArg(0));
             } else if (cli.isNext("ecdh")) {
                 ecdh();
             } else if (cli.isNext("ecdsa")) {
@@ -238,7 +235,7 @@ public class ECTesterStandalone {
                 kpg.initialize(bits);
             } else if (cli.hasOption("ecdh.named-curve")) {
                 String curveName = cli.getOptionValue("ecdh.named-curve");
-                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, curveName);
                 if (curve == null) {
                     System.err.println("Curve not found: " + curveName);
                     return;
@@ -324,7 +321,7 @@ public class ECTesterStandalone {
                 kpg.initialize(bits);
             } else if (cli.hasOption("ecdsa.named-curve")) {
                 String curveName = cli.getOptionValue("ecdsa.named-curve");
-                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, curveName);
                 if (curve == null) {
                     System.err.println("Curve not found: " + curveName);
                     return;
@@ -386,7 +383,7 @@ public class ECTesterStandalone {
                 kpg.initialize(bits);
             } else if (cli.hasOption("generate.named-curve")) {
                 String curveName = cli.getOptionValue("generate.named-curve");
-                EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+                EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, curveName);
                 if (curve == null) {
                     System.err.println("Curve not found: " + curveName);
                     return;
@@ -429,10 +426,8 @@ public class ECTesterStandalone {
                 break;
         }
 
-        StandaloneTestSuite suite = new StandaloneDefaultSuite(dataStore, cfg, cli);
-        TestRunner runner = new TestRunner(suite, writer);
-        suite.setup();
-        runner.run();
+        StandaloneTestSuite suite = new StandaloneDefaultSuite(writer, cfg, cli);
+        suite.run();
     }
 
     /**
diff --git a/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java b/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
index b24244e..42d2e54 100644
--- a/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
+++ b/src/cz/crcs/ectester/standalone/test/StandaloneDefaultSuite.java
@@ -2,6 +2,7 @@ package cz.crcs.ectester.standalone.test;
 
 import cz.crcs.ectester.common.cli.TreeCommandLine;
 import cz.crcs.ectester.common.ec.EC_Curve;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.Result;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.ECTesterStandalone;
@@ -11,7 +12,6 @@ import cz.crcs.ectester.standalone.consts.SignatureIdent;
 
 import javax.crypto.KeyAgreement;
 import java.security.KeyPairGenerator;
-import java.security.NoSuchAlgorithmException;
 import java.security.Signature;
 import java.security.spec.ECParameterSpec;
 
@@ -20,12 +20,12 @@ import java.security.spec.ECParameterSpec;
  */
 public class StandaloneDefaultSuite extends StandaloneTestSuite {
 
-    public StandaloneDefaultSuite(EC_Store dataStore, ECTesterStandalone.Config cfg, TreeCommandLine cli) {
-        super(dataStore, cfg, cli, "default", "The default test suite run basic support of ECDH and ECDSA.");
+    public StandaloneDefaultSuite(TestWriter writer, ECTesterStandalone.Config cfg, TreeCommandLine cli) {
+        super(writer, cfg, cli, "default", "The default test suite run basic support of ECDH and ECDSA.");
     }
 
     @Override
-    public void setup() throws NoSuchAlgorithmException {
+    protected void runTests() throws Exception {
         String kpgAlgo = cli.getOptionValue("test.kpg-type", "EC");
         String kaAlgo = cli.getOptionValue("test.ka-type");
         String sigAlgo = cli.getOptionValue("test.sig-type");
@@ -44,7 +44,7 @@ public class StandaloneDefaultSuite extends StandaloneTestSuite {
             kgtOther = new KeyGeneratorTestable(kpg, bits);
         } else if (cli.hasOption("test.named-curve")) {
             String curveName = cli.getOptionValue("test.named-curve");
-            EC_Curve curve = dataStore.getObject(EC_Curve.class, curveName);
+            EC_Curve curve = EC_Store.getInstance().getObject(EC_Curve.class, curveName);
             if (curve == null) {
                 System.err.println("Curve not found: " + curveName);
                 return;
@@ -57,19 +57,19 @@ public class StandaloneDefaultSuite extends StandaloneTestSuite {
             kgtOther = new KeyGeneratorTestable(kpg);
         }
 
-        run.add(KeyGeneratorTest.expect(kgtOne, Result.ExpectedValue.SUCCESS));
-        run.add(KeyGeneratorTest.expect(kgtOther, Result.ExpectedValue.SUCCESS));
+        doTest(KeyGeneratorTest.expect(kgtOne, Result.ExpectedValue.SUCCESS));
+        doTest(KeyGeneratorTest.expect(kgtOther, Result.ExpectedValue.SUCCESS));
 
         for (KeyAgreementIdent kaIdent : cfg.selected.getKAs()) {
             if (kaAlgo == null || kaIdent.contains(kaAlgo)) {
                 KeyAgreement ka = kaIdent.getInstance(cfg.selected.getProvider());
-                run.add(KeyAgreementTest.expect(new KeyAgreementTestable(ka, kgtOne, kgtOther, spec), Result.ExpectedValue.SUCCESS));
+                doTest(KeyAgreementTest.expect(new KeyAgreementTestable(ka, kgtOne, kgtOther, spec), Result.ExpectedValue.SUCCESS));
             }
         }
         for (SignatureIdent sigIdent : cfg.selected.getSigs()) {
             if (sigAlgo == null || sigIdent.contains(sigAlgo)) {
                 Signature sig = sigIdent.getInstance(cfg.selected.getProvider());
-                run.add(SignatureTest.expect(new SignatureTestable(sig, kgtOne, null), Result.ExpectedValue.SUCCESS));
+                doTest(SignatureTest.expect(new SignatureTestable(sig, kgtOne, null), Result.ExpectedValue.SUCCESS));
             }
         }
     }
diff --git a/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java b/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java
index 5682cd5..ad404c8 100644
--- a/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java
+++ b/src/cz/crcs/ectester/standalone/test/StandaloneTestSuite.java
@@ -1,6 +1,7 @@
 package cz.crcs.ectester.standalone.test;
 
 import cz.crcs.ectester.common.cli.TreeCommandLine;
+import cz.crcs.ectester.common.output.TestWriter;
 import cz.crcs.ectester.common.test.TestSuite;
 import cz.crcs.ectester.data.EC_Store;
 import cz.crcs.ectester.standalone.ECTesterStandalone;
@@ -14,11 +15,9 @@ public abstract class StandaloneTestSuite extends TestSuite {
     TreeCommandLine cli;
     ECTesterStandalone.Config cfg;
 
-    public StandaloneTestSuite(EC_Store dataStore, ECTesterStandalone.Config cfg, TreeCommandLine cli, String name, String description) {
-        super(dataStore, name, description);
+    public StandaloneTestSuite(TestWriter writer, ECTesterStandalone.Config cfg, TreeCommandLine cli, String name, String description) {
+        super(writer, name, description);
         this.cfg = cfg;
         this.cli = cli;
     }
-
-    public abstract void setup() throws NoSuchAlgorithmException;
 }
-- 
cgit v1.2.3-70-g09d2