Initial commit.

Author: Jesper Glintborg

.gitattributes

@@ -0,0 +1,22 @@
+# Auto detect text files and perform LF normalization
+* text=auto
+
+# Custom for Visual Studio
+*.cs     diff=csharp
+*.sln    merge=union
+*.csproj merge=union
+*.vbproj merge=union
+*.fsproj merge=union
+*.dbproj merge=union
+
+# Standard to msysgit
+*.doc	 diff=astextplain
+*.DOC	 diff=astextplain
+*.docx diff=astextplain
+*.DOCX diff=astextplain
+*.dot  diff=astextplain
+*.DOT  diff=astextplain
+*.pdf  diff=astextplain
+*.PDF	 diff=astextplain
+*.rtf	 diff=astextplain
+*.RTF	 diff=astextplain

.gitignore

@@ -0,0 +1,48 @@
+# Ignore Windows thumbnails
+Thumbs.db
+
+# Ignore Visual Studio files
+*.obj
+*.exe
+*.pdb
+*.nupkg
+*.user
+*.aps
+*.pch
+*.vspscc
+*_i.c
+*_p.c
+*.ncb
+*.suo
+*.tlb
+*.tlh
+*.bak
+*.cache
+*.ilk
+*.log
+*.orig
+[Bb]in
+[Dd]ebug*/
+*.lib
+*.sbr
+obj/
+[Rr]elease*/
+_ReSharper*/
+*.DotSettings
+[Tt]est[Rr]esult*
+
+# Ignore MonoDevelop files
+*.userprefs
+
+# Ignore NUnit project files
+*.nunit
+
+# Ignore NuGet Packages
+/src/packages/
+
+#Ignore VS files
+.vs/
+
+#Ignore lock files
+*.lock.json
+.idea/

NuGet.Config

@@ -0,0 +1,7 @@
+<?xml version="1.0" encoding="utf-8"?>
+<configuration>
+  <packageSources>
+    <add key="NuGet.org" value="https://api.nuget.org/v3/index.json" />
+    <add key="xunit" value="https://www.myget.org/F/xunit/api/v3/index.json" />
+  </packageSources>
+</configuration>

src/NetMQSecurityFactory.sln

@@ -0,0 +1,45 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.30104.148
+MinimumVisualStudioVersion = 10.0.40219.1
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Solution Items", "Solution Items", "{6AB1E02C-7800-4934-AA7A-4161459E1278}"
+	ProjectSection(SolutionItems) = preProject
+		..\.gitattributes = ..\.gitattributes
+		..\.gitignore = ..\.gitignore
+		Directory.Build.props = Directory.Build.props
+		Directory.Build.targets = Directory.Build.targets
+	EndProjectSection
+EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "NetMQSecurityFactory", "NetMQSecurityFactory\NetMQSecurityFactory.csproj", "{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Any CPU = Debug|Any CPU
+		Debug|x64 = Debug|x64
+		Debug|x86 = Debug|x86
+		Release|Any CPU = Release|Any CPU
+		Release|x64 = Release|x64
+		Release|x86 = Release|x86
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|x64.ActiveCfg = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|x64.Build.0 = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|x86.ActiveCfg = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Debug|x86.Build.0 = Debug|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|Any CPU.Build.0 = Release|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|x64.ActiveCfg = Release|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|x64.Build.0 = Release|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|x86.ActiveCfg = Release|Any CPU
+		{D6F112AA-46B7-4312-A8C2-8E8972C4B1FC}.Release|x86.Build.0 = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+	GlobalSection(ExtensibilityGlobals) = postSolution
+		SolutionGuid = {634B21AA-6698-4925-A0A3-943100197AB7}
+	EndGlobalSection
+EndGlobal

src/NetMQSecurityFactory/EncryptionFactory.cs

@@ -0,0 +1,101 @@
+using System;
+using System.Collections.Generic;
+using System.IO;
+using System.Linq;
+using System.Reflection;
+
+namespace NetMQSecurityFactory
+{
+    public static class EncryptionFactory
+    {
+        private static Container<ICurveEncrypt> CurveEncrypt;
+
+        static EncryptionFactory()
+        {
+            LoadPlugins();
+        }
+
+        public static void LoadPlugins()
+        {
+            CurveEncrypt = LoadPluginsOfType<ICurveEncrypt>();
+        }
+
+        private static Container<T> LoadPluginsOfType<T>() where T : class
+        {
+            var type = typeof(T);
+            var path = Path.GetDirectoryName(Assembly.GetEntryAssembly().Location);
+            var assemblies = Directory.GetFiles(path, "*.dll");
+            var encryptorTypes = new List<Type>();
+
+            foreach (var assemblyName in assemblies)
+            {
+                try
+                {
+                    var assembly = Assembly.LoadFrom(assemblyName);
+                    if (assembly != null)
+                    {
+                        encryptorTypes.AddRange(assembly.GetTypes().Where(p => type.IsAssignableFrom(p) && p.IsAbstract == false));
+                    }
+                }
+                catch (Exception)
+                {
+                }
+            }
+
+            var fallback = encryptorTypes.First(x => EncryptionFallback(x));
+            var priority = encryptorTypes.FirstOrDefault(x => EncryptionPriority(x));
+            return new Container<T>(priority, fallback);
+        }
+
+        private class Container<T> where T : class
+        {
+            private Type priority;
+            private Type fallback;
+
+            public Container(Type priority, Type fallback)
+            {
+                this.priority = priority;
+                this.fallback = fallback;
+            }
+
+            public T CreateInstance()
+            {
+                try
+                {
+                    if (priority != null)
+                    {
+                        return Activator.CreateInstance(priority) as T;
+                    }
+                }
+                catch (Exception e)
+                {
+                    priority = null;
+                }
+                return Activator.CreateInstance(fallback) as T;
+            }
+        }
+
+        private static bool EncryptionPriority(Type t)
+        {
+            var priorityAttributes = (EncryptionPriorityAttribute[])t.GetCustomAttributes(typeof(EncryptionPriorityAttribute), false);
+            return (priorityAttributes.Length > 0);
+        }
+
+        private static bool EncryptionFallback(Type t)
+        {
+            var priorityAttributes = (EncryptionFallbackAttribute[])t.GetCustomAttributes(typeof(EncryptionFallbackAttribute), false);
+            return (priorityAttributes.Length > 0);
+        }
+
+        static public ICurveEncrypt GetCurveEncryptor(ReadOnlySpan<byte> secretKey, ReadOnlySpan<byte> publicKey)
+        {
+            ICurveEncrypt encryptor = null; 
+            if (CurveEncrypt != null)
+            {
+                encryptor = CurveEncrypt.CreateInstance();
+                encryptor?.SetKey(secretKey, publicKey);
+            }
+            return encryptor;
+        }
+    }
+}

src/NetMQSecurityFactory/EncryptionFallbackAttribute.cs

@@ -0,0 +1,9 @@
+using System;
+
+namespace NetMQSecurityFactory
+{
+    [AttributeUsage(AttributeTargets.Class, AllowMultiple = false)]
+    public class EncryptionFallbackAttribute : System.Attribute
+    {
+    }
+}

src/NetMQSecurityFactory/EncryptionPriorityAttribute.cs

@@ -0,0 +1,9 @@
+using System;
+
+namespace NetMQSecurityFactory
+{
+    [AttributeUsage(AttributeTargets.Class, AllowMultiple = false)]
+    public class EncryptionPriorityAttribute : System.Attribute
+    {
+    }
+}

src/NetMQSecurityFactory/ICurveEncrypt.cs

@@ -0,0 +1,13 @@
+using System;
+
+namespace NetMQSecurityFactory
+{
+    public interface ICurveEncrypt : IDisposable
+    {
+        void SetKey(ReadOnlySpan<byte> secretKey, ReadOnlySpan<byte> publicKey);
+        void Encrypt(Span<byte> cipher, Span<byte> mac, ReadOnlySpan<byte> message, ReadOnlySpan<byte> nonce);
+        void Encrypt(Span<byte> cipher, ReadOnlySpan<byte> message, ReadOnlySpan<byte> nonce);
+        bool TryDecrypt(Span<byte> message, ReadOnlySpan<byte> cipher, ReadOnlySpan<byte> nonce);
+        bool TryDecrypt(Span<byte> message, ReadOnlySpan<byte> cipher, ReadOnlySpan<byte> mac, ReadOnlySpan<byte> nonce);
+    }
+}

src/NetMQSecurityFactory/LibSodium.cs

@@ -0,0 +1,72 @@
+using System;
+using System.Runtime.InteropServices;
+
+namespace NetMQSecurityFactory
+{
+    [EncryptionPriority]
+    public class LibSodium : ICurveEncrypt
+    {
+        private byte[] SharedSecretKey = new byte[32];
+        const string DllName = "libsodium.dll";
+
+        //crypto_secretbox_easy
+        [DllImport(DllName, CallingConvention = CallingConvention.Cdecl)]
+        internal static extern int crypto_secretbox_easy(ref byte buffer, byte[] message, long messageLength, byte[] nonce, byte[] key);
+
+        [DllImport(DllName, CallingConvention = CallingConvention.Cdecl)]
+        internal static extern int crypto_box_beforenm(byte[] shared_key, byte[] public_key, byte[] secret_key);
+
+        //crypto_secretbox_open_easy
+        [DllImport(DllName, CallingConvention = CallingConvention.Cdecl)]
+        internal static extern int crypto_secretbox_open_easy(ref byte buffer, byte[] cipherText, long cipherTextLength, byte[] nonce, byte[] key);
+
+        //sodium_version_string
+        [DllImport(DllName, CallingConvention = CallingConvention.Cdecl)]
+        internal static extern IntPtr sodium_version_string();
+
+        public LibSodium()
+        {
+            var ptr = LibSodium.sodium_version_string();
+            Marshal.PtrToStringAnsi(ptr);
+        }
+
+        public void Dispose()
+        {
+        }
+
+        public void SetKey(ReadOnlySpan<byte> secretKey, ReadOnlySpan<byte> publicKey)
+        {
+            crypto_box_beforenm( SharedSecretKey,publicKey.ToArray(), secretKey.ToArray());
+        }
+
+        public void Encrypt(Span<byte> cipher, Span<byte> mac, ReadOnlySpan<byte> message, ReadOnlySpan<byte> nonce)
+        {
+            var complete = new Span<byte>( new byte[mac.Length+cipher.Length]);
+
+            LibSodium.crypto_secretbox_easy(ref cipher.GetPinnableReference(), complete.ToArray(), complete.Length, nonce.ToArray(), SharedSecretKey);
+
+            complete.Slice(0, mac.Length).CopyTo(mac);
+            complete.Slice(mac.Length).CopyTo(cipher);
+        }
+
+        public void Encrypt(Span<byte> cipher, ReadOnlySpan<byte> message, ReadOnlySpan<byte> nonce)
+        {
+            LibSodium.crypto_secretbox_easy(ref cipher.GetPinnableReference(), message.ToArray(), message.Length, nonce.ToArray(), SharedSecretKey);
+        }
+
+        public bool TryDecrypt(Span<byte> message, ReadOnlySpan<byte> cipher, ReadOnlySpan<byte> nonce)
+        {
+            return LibSodium.crypto_secretbox_open_easy(ref message.GetPinnableReference(), cipher.ToArray(), cipher.Length, nonce.ToArray(), SharedSecretKey) == 0;
+        }
+
+        public bool TryDecrypt(Span<byte> message, ReadOnlySpan<byte> cipher, ReadOnlySpan<byte> mac, ReadOnlySpan<byte> nonce)
+        {
+            var complete = new Span<byte>(new byte[mac.Length + cipher.Length]);
+            mac.CopyTo(complete);
+
+            cipher.CopyTo(complete.Slice(mac.Length));
+
+            return LibSodium.crypto_secretbox_open_easy(ref message.GetPinnableReference(), complete.ToArray(), complete.Length, nonce.ToArray(), SharedSecretKey) == 0;
+        }
+    }
+}

src/NetMQSecurityFactory/NetMQSecurityFactory.csproj

@@ -0,0 +1,16 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+  <PropertyGroup>
+    <TargetFrameworks>net45;net47;netstandard2.0;netstandard2.1</TargetFrameworks>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="Microsoft.NETFramework.ReferenceAssemblies.net47" Version="1.0.0">
+      <PrivateAssets>all</PrivateAssets>
+      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
+    </PackageReference>
+    <PackageReference Include="System.AppContext" Version="4.3.0" />
+    <PackageReference Include="System.Memory" Version="4.5.3" />
+  </ItemGroup>
+
+</Project>