Refactor DHKEKGenerator ASN.1 classes

peterdettman · peterdettman · commit aa78c04ee112 · 2026-01-24T14:30:11.000+07:00
diff --git a/core/src/main/java/org/bouncycastle/asn1/x9/KeySpecificInfo.java b/core/src/main/java/org/bouncycastle/asn1/x9/KeySpecificInfo.java
@@ -1,12 +1,11 @@
 package org.bouncycastle.asn1.x9;
 
-import java.util.Enumeration;
-
 import org.bouncycastle.asn1.ASN1Object;
 import org.bouncycastle.asn1.ASN1ObjectIdentifier;
 import org.bouncycastle.asn1.ASN1OctetString;
 import org.bouncycastle.asn1.ASN1Primitive;
 import org.bouncycastle.asn1.ASN1Sequence;
+import org.bouncycastle.asn1.ASN1TaggedObject;
 import org.bouncycastle.asn1.DERSequence;
 
 /**
@@ -22,23 +21,6 @@
 public class KeySpecificInfo
     extends ASN1Object
 {
-    private ASN1ObjectIdentifier algorithm;
-    private ASN1OctetString      counter;
-
-    /**
-     * Base constructor.
-     *
-     * @param algorithm  algorithm identifier for the CEK.
-     * @param counter initial counter value for key derivation.
-     */
-    public KeySpecificInfo(
-        ASN1ObjectIdentifier algorithm,
-        ASN1OctetString      counter)
-    {
-        this.algorithm = algorithm;
-        this.counter = counter;
-    }
-
     /**
      * Return a KeySpecificInfo object from the passed in object.
      *
@@ -59,13 +41,50 @@ else if (obj != null)
         return null;
     }
 
-    private KeySpecificInfo(
-        ASN1Sequence  seq)
+    public static KeySpecificInfo getInstance(ASN1TaggedObject taggedObject, boolean declaredExplicit)
+    {
+        return new KeySpecificInfo(ASN1Sequence.getInstance(taggedObject, declaredExplicit));
+    }
+
+    public static KeySpecificInfo getTagged(ASN1TaggedObject taggedObject, boolean declaredExplicit)
+    {
+        return new KeySpecificInfo(ASN1Sequence.getTagged(taggedObject, declaredExplicit));
+    }
+
+    private final ASN1ObjectIdentifier algorithm;
+    private final ASN1OctetString counter;
+
+    private KeySpecificInfo(ASN1Sequence  seq)
     {
-        Enumeration e = seq.getObjects();
+        int count = seq.size();
+        if (count != 2)
+        {
+            throw new IllegalArgumentException("Bad sequence size: " + count);
+        }
+
+        this.algorithm = ASN1ObjectIdentifier.getInstance(seq.getObjectAt(0));
+        this.counter = ASN1OctetString.getInstance(seq.getObjectAt(1));
+    }
 
-        algorithm = (ASN1ObjectIdentifier)e.nextElement();
-        counter = (ASN1OctetString)e.nextElement();
+    /**
+     * Base constructor.
+     *
+     * @param algorithm  algorithm identifier for the CEK.
+     * @param counter initial counter value for key derivation.
+     */
+    public KeySpecificInfo(ASN1ObjectIdentifier algorithm, ASN1OctetString counter)
+    {
+        if (algorithm == null)
+        {
+            throw new NullPointerException("'algorithm' cannot be null");
+        }
+        if (counter == null)
+        {
+            throw new NullPointerException("'counter' cannot be null");
+        }
+
+        this.algorithm = algorithm;
+        this.counter = counter;
     }
 
     /**
diff --git a/core/src/main/java/org/bouncycastle/asn1/x9/OtherInfo.java b/core/src/main/java/org/bouncycastle/asn1/x9/OtherInfo.java
@@ -1,7 +1,5 @@
 package org.bouncycastle.asn1.x9;
 
-import java.util.Enumeration;
-
 import org.bouncycastle.asn1.ASN1EncodableVector;
 import org.bouncycastle.asn1.ASN1Object;
 import org.bouncycastle.asn1.ASN1OctetString;
@@ -25,20 +23,6 @@
 public class OtherInfo
     extends ASN1Object
 {
-    private KeySpecificInfo     keyInfo;
-    private ASN1OctetString     partyAInfo;
-    private ASN1OctetString     suppPubInfo;
-
-    public OtherInfo(
-        KeySpecificInfo     keyInfo,
-        ASN1OctetString     partyAInfo,
-        ASN1OctetString     suppPubInfo)
-    {
-        this.keyInfo = keyInfo;
-        this.partyAInfo = partyAInfo;
-        this.suppPubInfo = suppPubInfo;
-    }
-
     /**
      * Return a OtherInfo object from the passed in object.
      *
@@ -59,26 +43,66 @@ else if (obj != null)
         return null;
     }
 
-    private OtherInfo(
-        ASN1Sequence  seq)
+    public static OtherInfo getInstance(ASN1TaggedObject taggedObject, boolean declaredExplicit)
     {
-        Enumeration e = seq.getObjects();
+        return new OtherInfo(ASN1Sequence.getInstance(taggedObject, declaredExplicit));
+    }
 
-        keyInfo = KeySpecificInfo.getInstance(e.nextElement());
+    public static OtherInfo getTagged(ASN1TaggedObject taggedObject, boolean declaredExplicit)
+    {
+        return new OtherInfo(ASN1Sequence.getTagged(taggedObject, declaredExplicit));
+    }
+
+    private final KeySpecificInfo keyInfo;
+    private final ASN1OctetString partyAInfo;
+    private final ASN1OctetString suppPubInfo;
 
-        while (e.hasMoreElements())
+    private OtherInfo(ASN1Sequence seq)
+    {
+        int count = seq.size(), pos = 0;
+        if (count < 2 || count > 3)
         {
-            ASN1TaggedObject o = (ASN1TaggedObject)e.nextElement();
+            throw new IllegalArgumentException("Bad sequence size: " + count);
+        }
 
-            if (o.hasContextTag(0))
-            {
-                partyAInfo = (ASN1OctetString)o.getExplicitBaseObject();
-            }
-            else if (o.hasContextTag(2))
+        this.keyInfo = KeySpecificInfo.getInstance(seq.getObjectAt(pos++));
+
+        // partyAInfo [0] OCTET STRING OPTIONAL
+        ASN1OctetString partyAInfo = null;
+        if (pos < count)
+        {
+            ASN1TaggedObject tag0 = ASN1TaggedObject.getContextOptional(seq.getObjectAt(pos), 0);
+            if (tag0 != null)
             {
-                suppPubInfo = (ASN1OctetString)o.getExplicitBaseObject();
+                pos++;
+                partyAInfo = ASN1OctetString.getTagged(tag0, true);
             }
         }
+        this.partyAInfo = partyAInfo;
+
+        ASN1TaggedObject tag2 = ASN1TaggedObject.getContextInstance(seq.getObjectAt(pos++), 2);        
+        this.suppPubInfo = ASN1OctetString.getTagged(tag2, true);
+
+        if (pos != count)
+        {
+            throw new IllegalArgumentException("Unexpected elements in sequence");
+        }
+    }
+
+    public OtherInfo(KeySpecificInfo keyInfo, ASN1OctetString partyAInfo, ASN1OctetString suppPubInfo)
+    {
+        if (keyInfo == null)
+        {
+            throw new NullPointerException("'keyInfo' cannot be null");
+        }
+        if (suppPubInfo == null)
+        {
+            throw new NullPointerException("'suppPubInfo' cannot be null");
+        }
+
+        this.keyInfo = keyInfo;
+        this.partyAInfo = partyAInfo;
+        this.suppPubInfo = suppPubInfo;
     }
 
     /**
diff --git a/core/src/main/java/org/bouncycastle/crypto/agreement/kdf/DHKEKGenerator.java b/core/src/main/java/org/bouncycastle/crypto/agreement/kdf/DHKEKGenerator.java
@@ -2,12 +2,12 @@
 
 import java.io.IOException;
 
-import org.bouncycastle.asn1.ASN1EncodableVector;
 import org.bouncycastle.asn1.ASN1Encoding;
 import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.ASN1OctetString;
 import org.bouncycastle.asn1.DEROctetString;
-import org.bouncycastle.asn1.DERSequence;
-import org.bouncycastle.asn1.DERTaggedObject;
+import org.bouncycastle.asn1.x9.KeySpecificInfo;
+import org.bouncycastle.asn1.x9.OtherInfo;
 import org.bouncycastle.crypto.DataLengthException;
 import org.bouncycastle.crypto.DerivationFunction;
 import org.bouncycastle.crypto.DerivationParameters;
@@ -26,10 +26,9 @@ public class DHKEKGenerator
     private ASN1ObjectIdentifier algorithm;
     private int                 keySize;
     private byte[]              z;
-    private byte[]              partyAInfo;
+    private byte[]              extraInfo;
 
-    public DHKEKGenerator(
-        Digest digest)
+    public DHKEKGenerator(Digest digest)
     {
         this.digest = digest;
     }
@@ -41,7 +40,7 @@ public void init(DerivationParameters param)
         this.algorithm = params.getAlgorithm();
         this.keySize = params.getKeySize();
         this.z = params.getZ();
-        this.partyAInfo = params.getExtraInfo();
+        this.extraInfo = params.getExtraInfo();
     }
 
     public Digest getDigest()
@@ -57,8 +56,10 @@ public int generateBytes(byte[] out, int outOff, int len)
             throw new OutputLengthException("output buffer too small");
         }
 
-        long    oBytes = len;
-        int     outLen = digest.getDigestSize();
+        digest.reset();
+
+        long oBytes = len;
+        int outLen = digest.getDigestSize();
 
         //
         // this is at odds with the standard implementation, the
@@ -75,32 +76,24 @@ public int generateBytes(byte[] out, int outOff, int len)
 
         byte[] dig = new byte[digest.getDigestSize()];
 
-        int counter = 1;
+        int counter32 = 1;
 
         for (int i = 0; i < cThreshold; i++)
         {
             digest.update(z, 0, z.length);
 
-            // OtherInfo
-            ASN1EncodableVector v1 = new ASN1EncodableVector();
             // KeySpecificInfo
-            ASN1EncodableVector v2 = new ASN1EncodableVector();
+            ASN1OctetString counter = DEROctetString.withContents(Pack.intToBigEndian(counter32));
+            KeySpecificInfo keyInfo = new KeySpecificInfo(algorithm, counter);
 
-            v2.add(algorithm);
-            v2.add(new DEROctetString(Pack.intToBigEndian(counter)));
-
-            v1.add(new DERSequence(v2));
-
-            if (partyAInfo != null)
-            {
-                v1.add(new DERTaggedObject(true, 0, new DEROctetString(partyAInfo)));
-            }
-
-            v1.add(new DERTaggedObject(true, 2, new DEROctetString(Pack.intToBigEndian(keySize))));
+            // OtherInfo
+            ASN1OctetString partyAInfo = DEROctetString.withContentsOptional(extraInfo);
+            ASN1OctetString suppPubInfo = DEROctetString.withContents(Pack.intToBigEndian(keySize));
+            OtherInfo otherInfo = new OtherInfo(keyInfo, partyAInfo, suppPubInfo);
 
             try
             {
-                byte[] other = new DERSequence(v1).getEncoded(ASN1Encoding.DER);
+                byte[] other = otherInfo.getEncoded(ASN1Encoding.DER);
 
                 digest.update(other, 0, other.length);
             }
@@ -122,11 +115,9 @@ public int generateBytes(byte[] out, int outOff, int len)
                 System.arraycopy(dig, 0, out, outOff, len);
             }
 
-            counter++;
+            counter32++;
         }
 
-        digest.reset();
-
         return (int)oBytes;
     }
 }
