java source code of CablePairingData

Project: webauthndemo (GitHub Link)

webauthndemo-master
- src
  - main
    - java
      - com
        google
        webauthn
        gaedemo
        crypto
        Cable.java
        AlgorithmIdentifierMapper.java
        OfflineVerify.java
        Crypto.java
        storage
        SessionData.java
        CredentialObject.java
        Authenticator.java
        AttestationSessionData.java
        Credential.java
        User.java
        CableKeyPair.java
        endpoints
        Fido2RequestHandler.java
        Constants.java
        exceptions
        ResponseException.java
        WebAuthnException.java
        servlets
        RemoveCredential.java
        BeginGetAssertion.java
        Home.java
        DeleteOldSessions.java
        AssetLinksHttpServlet.java
        Cable.java
        UpdateCredential.java
        CreateSession.java
        FinishGetAssertion.java
        FinishMakeCredential.java
        GetSession.java
        SaveCredential.java
        Login.java
        RegisteredKeys.java
        BeginMakeCredential.java
        objects
        AttestationStatementEnum.java
        CableRegistrationData.java
        PackedAttestationStatement.java
        AuthenticationExtensionsClientInputs.java
        AuthenticatorAttachment.java
        AuthenticatorAttestationResponse.java
        Algorithm.java
        AttestationObject.java
        CablePairingData.java
        PublicKeyCredentialParameters.java
        AttestationExtension.java
        AttestationData.java
        AttestationConveyancePreference.java
        PublicKeyCredentialDescriptor.java
        AuthenticationExtensionsClientOutputs.java
        Attachment.java
        AuthenticatorData.java
        AuthenticatorTransport.java
        AndroidSafetyNetAttestationStatement.java
        PublicKeyCredentialUserEntity.java
        NoneAttestationStatement.java
        RsaKey.java
        CredentialPublicKey.java
        AuthenticatorSelectionCriteria.java
        AttestationStatement.java
        PublicKeyCredentialCreationOptions.java
        PublicKeyCredentialType.java
        CollectedClientData.java
        AuthenticatorResponse.java
        FidoU2fAttestationStatement.java
        CableSessionData.java
        PublicKeyCredential.java
        PublicKeyCredentialRpEntity.java
        EccKey.java
        PublicKeyCredentialEntity.java
        AuthenticatorAssertionResponse.java
        PublicKeyCredentialRequestOptions.java
        UserVerificationRequirement.java
        server
        Server.java
        AndroidSafetyNetServer.java
        PublicKeyCredentialResponse.java
        Datastore.java
        OfyHelper.java
        PackedServer.java
        U2fServer.java
    - webapp
      - favicon.ico
      - index.jsp
      - WEB-INF
        appengine-web.xml
        logging.properties
        datastore-indexes.xml
        cron.xml
        web.xml
      - stylesheets
        webauthn.css
      - js
        webauthn.js
        webauthn-cable.js
        login.js
      - login.jsp
      - well-known
        assetlinks.json
      - cable.jsp
  - test
    - java
      - com
        google
        webauthn
        gaedemo
        crypto
        CableTest.java
        objects
        EccKeyTest.java
        AndroidSafetyNetAttestationStatementTest.java
        AuthenticatorAssertionResponseTest.java
        AttestationDataTest.java
        CredentialPublicKeyTest.java
        CryptoTest.java
        AuthenticatorAttestationResponseTest.java
        FidoU2fAttestationStatementTest.java
        AuthenticatorDataTest.java
        CollectedClientDataTest.java
        RsaKeyTest.java
- pom.xml
- LICENSE
- CONTRIBUTING.md
- client-secret.json.enc
- .travis.yml
- README.md
- .gitignore

/*
 * Copyright 2018 Google Inc. All Rights Reserved.
 *
 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except
 * in compliance with the License. You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software distributed under the License
 * is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
 * or implied. See the License for the specific language governing permissions and limitations under
 * the License.
 *
 */

package com.google.webauthn.gaedemo.objects;

import java.nio.ByteBuffer;
import java.nio.charset.StandardCharsets;
import java.security.KeyPair;
import java.security.interfaces.ECPublicKey;

import org.bouncycastle.util.Arrays;

import com.google.common.primitives.Bytes;
import com.google.webauthn.gaedemo.crypto.Crypto;

public class CablePairingData {
  public int version;
  public byte[] irk;
  public byte[] lk;
  private static int HKDF_SHA_LENGTH = 64;
  private static int K_LENGTH = 32;

  public CablePairingData(int version, byte[] irk, byte[] lk) {
    this.version = version;
    this.irk = irk;
    this.lk = lk;
  }

  public CablePairingData() {}

  /**
   * @param cableData
   * @param sessionKeyPair
   * @return
   */
  public static CablePairingData generatePairingData(CableRegistrationData cableData,
      KeyPair sessionKeyPair) {
    byte[] sharedSecret = Crypto.getS(sessionKeyPair.getPrivate(), cableData.publicKey);

    byte[] info = "FIDO caBLE v1 pairing data".getBytes(StandardCharsets.US_ASCII);
    byte[] version = ByteBuffer.allocate(4).putInt(cableData.versions.get(0)).array();

    byte[] result = Crypto.hkdfSha256(sharedSecret, Crypto.sha256Digest(Bytes.concat(version,
        Crypto.compressECPublicKey((ECPublicKey) sessionKeyPair.getPublic()), cableData.publicKey)),
        info, HKDF_SHA_LENGTH);

    return new CablePairingData(cableData.versions.get(0), Arrays.copyOf(result, K_LENGTH),
        Arrays.copyOfRange(result, K_LENGTH, 2 * K_LENGTH));
  }
}