Meta-CrySL is a meta-specification language for CrySL. The main goal is to support reuse and modularization of CrySL specifications. Based on a domain analysis, we found that CrySL specifications might vary according to different perspectives, including:
- JCA implementation (e.g., JCE provider or Bouncy Castle provider)
- API implementation version (e.g., Bouncy Castle 1.60 x Bouncy Castle 1.50)
- Cryptographic standards (e.g., FIPS and EuroCrypt)
Meta-CrySL is mostly based on meta-programming. We use three different languages:
- ECrySL: a slight extension to the original CrySL language
- Refinement: a language that supports different refinement operations over ECrySL specifications
- Configuration: a language that puts together ECrySL and Refinement specifications
We use a program generator infrastructure that takes as input a configuration file and outputs regular CrySL specifications. In this way, we do not have to modify the current crypto analysis of CogniCrypt.
You can also use Meta-CrySL from the command line using the following steps:
-
Download the Rascal Commandline REPL.
$ wget https://update.rascal-mpl.org/console/rascal-shell-stable.jar
-
Create an alias for the downloaded file
alias rascal-shell="java -Xmx1G -Xss32m -jar $(pwd)/rascal-shell-stable.jar"
-
Clone this repository and move to the local copy of the MetaCrySL repository
$ git clone https://github.com/CROSSINGTUD/MetaCrySL.git$ cd MetaCrySL
-
Start the rascal-shell terminal
$ rascal-shell
-
Using the rascal-shell, import the
Mainmodulerascal> import generator::Main;
-
Run the
mainfunction with the location of aconfigurationfile.- eg.:
rascal> main(|cwd:///samples/jca/android/config/Android0108.config|);
- eg.:
Note: You must review the src and out paths
of the configuration files. These configuration files are
within the following folders:
- samples/jca/android/config/
- samples/jca/android-cc/config/
- samples/jca/android-bsi/config/
The src folder must point to the full-qualified path of the samples/jca
directory (within the MetaCrySL local repository). You can decide where MetaCrySL
should generate the resulting CrySL rules (the out directory).
See the example bellow.
config Android0108 {
src = /Users/rbonifacio/Documents/workspace-rascal/MetaCrySL/samples/jca;
out = /Users/rbonifacio/tmp/target;
...
}
We also made available a docker image. To use it, proceed as follow:
$ docker run -it rbonifacio/mcsl-java8:v1 bash
root@...:/mcsl> cd MetaCrySL
root@...:/mcsl/MetaCrySL> rascal-shell
rascal> import generator::Main;
rascal> main(|cwd:///samples/jca/android/config/Android0108.config|);
We have successfully tested this implementation using the following settings.
- Java Development Kit - Version 8
- Eclipse RCP 2019-06
- Rascal-MPL 0.18.3 (you can use the current version from the update site
- The following video shows how to use this implementation.