Merge branch 'main' of gitlab.cryptoworkshop.com:root/bc-java

Author: dghgit

pg/src/main/java/org/bouncycastle/bcpg/SymmetricKeyEncSessionPacket.java

@@ -29,15 +29,13 @@ public class SymmetricKeyEncSessionPacket
      */
     public static final int VERSION_6 = 6;
 
-    private int version;          // V4, V5, V6
-    private int encAlgorithm;     // V4, V5, V6
-    private S2K s2k;              // V4,
-    // array for exposing raw S2K parameters. Useful for forwards compat.
-    private byte[] s2kBytes;         // Makes only sense for v6, since there we have a counter
-    private byte[] secKeyData;       // V4, V5, V6
-    private int aeadAlgorithm;    // V5, V6
-    private byte[] iv;               // V5, V6
-    private byte[] authTag;          // V5, V6
+    private final int version;          // V4, V5, V6
+    private final int encAlgorithm;     // V4, V5, V6
+    private final int aeadAlgorithm;    // V5, V6
+    private S2K s2k;                    // V4, V5, V6
+    private byte[] secKeyData;          // V4, V5, V6
+    private byte[] iv;                  // V5, V6
+    private byte[] authTag;             // V5, V6
 
     public SymmetricKeyEncSessionPacket(
         BCPGInputStream in)
@@ -57,6 +55,7 @@ public SymmetricKeyEncSessionPacket(
         if (version == VERSION_4)
         {
             encAlgorithm = in.read();
+            aeadAlgorithm = 0;
 
             s2k = new S2K(in);
 
@@ -207,6 +206,7 @@ public SymmetricKeyEncSessionPacket(
 
         this.version = VERSION_4;
         this.encAlgorithm = encAlgorithm;
+        this.aeadAlgorithm = 0;
         this.s2k = s2k;
         this.secKeyData = secKeyData;
     }
@@ -339,51 +339,63 @@ public void encode(
         BCPGOutputStream out)
         throws IOException
     {
+        PacketFormat packetFormat = version > 4 ? PacketFormat.CURRENT : PacketFormat.ROUNDTRIP;
+
         ByteArrayOutputStream bOut = new ByteArrayOutputStream();
-        BCPGOutputStream pOut;
-        if (version == 4)
-        {
-            pOut = new BCPGOutputStream(bOut);
-        }
-        else
-        {
-            pOut = new BCPGOutputStream(bOut, true);
-        }
+        BCPGOutputStream pOut = new BCPGOutputStream(bOut, packetFormat);
 
         pOut.write(version);
-        if (version == VERSION_4)
+
+        switch (version)
+        {
+        case VERSION_4:
         {
             pOut.write(encAlgorithm);
-            pOut.writeObject(s2k);
+            s2k.encode(pOut);
 
             if (secKeyData != null && secKeyData.length > 0)
             {
                 pOut.write(secKeyData);
             }
+            break;
         }
-        else
+        case VERSION_5:
         {
-            int s2kLen = 0;
-            if (version == VERSION_6)
-            {
-                s2kLen = s2k.getEncoded().length;
-                int count = 1 + 1 + 1 + s2kLen + iv.length;
-                pOut.write(count); // len of 5 following fields
-            }
             pOut.write(encAlgorithm);
             pOut.write(aeadAlgorithm);
-            if (version == VERSION_6)
+            s2k.encode(pOut);
+            pOut.write(iv);
+
+            if (secKeyData != null && secKeyData.length > 0)
             {
-                pOut.write(s2kLen);
+                pOut.write(secKeyData);
             }
-            pOut.writeObject(s2k);
+
+            pOut.write(authTag);
+            break;
+        }
+        case VERSION_6:
+        {
+            byte[] s2kEncoded = s2k.getEncoded();
+            int count = 1 + 1 + 1 + s2kEncoded.length + iv.length; // len of 5 following fields
+
+            pOut.write(count);
+            pOut.write(encAlgorithm);
+            pOut.write(aeadAlgorithm);
+            pOut.write(s2kEncoded.length);
+            pOut.write(s2kEncoded);
             pOut.write(iv);
 
             if (secKeyData != null && secKeyData.length > 0)
             {
                 pOut.write(secKeyData);
             }
+
             pOut.write(authTag);
+            break;
+        }
+        default:
+            throw new IllegalStateException();
         }
 
         pOut.close();

pg/src/main/java/org/bouncycastle/openpgp/PGPObjectFactory.java

@@ -83,9 +83,8 @@ public PGPObjectFactory(
     public Object nextObject()
         throws IOException
     {
-        List l;
-
-        switch (in.nextPacketTag())
+        int tag = in.nextPacketTag();
+        switch (tag)
         {
         case -1:
             return null;
@@ -96,7 +95,8 @@ public Object nextObject()
         case PacketTags.EXPERIMENTAL_4:
             return in.readPacket();
         case PacketTags.SIGNATURE:
-            l = new ArrayList();
+        {
+            ArrayList l = new ArrayList();
 
             while (in.nextPacketTag() == PacketTags.SIGNATURE)
             {
@@ -117,6 +117,7 @@ public Object nextObject()
             }
 
             return new PGPSignatureList((PGPSignature[])l.toArray(new PGPSignature[l.size()]));
+        }
         case PacketTags.SECRET_KEY:
             try
             {
@@ -150,7 +151,8 @@ public Object nextObject()
         case PacketTags.AEAD_ENC_DATA:
             return new PGPEncryptedDataList(in);
         case PacketTags.ONE_PASS_SIGNATURE:
-            l = new ArrayList();
+        {
+            ArrayList l = new ArrayList();
 
             while (in.nextPacketTag() == PacketTags.ONE_PASS_SIGNATURE)
             {
@@ -165,24 +167,23 @@ public Object nextObject()
             }
 
             return new PGPOnePassSignatureList((PGPOnePassSignature[])l.toArray(new PGPOnePassSignature[l.size()]));
+        }
         case PacketTags.MARKER:
             return new PGPMarker(in);
         case PacketTags.PADDING:
             return new PGPPadding(in);
         case PacketTags.MOD_DETECTION_CODE:
-            return new UnknownPacket(PacketTags.MOD_DETECTION_CODE, in);
         case PacketTags.USER_ID:
-            return new UnknownPacket(PacketTags.USER_ID, in);
         case PacketTags.USER_ATTRIBUTE:
-            return new UnknownPacket(PacketTags.USER_ATTRIBUTE, in);
+            return new UnknownPacket(tag, in);
         }
 
-        int tag = in.nextPacketTag();
+        int nextTag = in.nextPacketTag();
         UnknownPacket unknownPacket = (UnknownPacket)in.readPacket();
         if (throwForUnknownCriticalPackets && unknownPacket.isCritical())
         {
             // Leave the error message intact for backwards compatibility
-            throw new IOException("unknown object in stream: " + tag);
+            throw new IOException("unknown object in stream: " + nextTag);
         }
         return unknownPacket;
     }

pg/src/main/java/org/bouncycastle/openpgp/PGPPadding.java

@@ -95,7 +95,7 @@ public PGPPadding(int len)
      */
     public PGPPadding(int len, SecureRandom random)
     {
-        this.p = new PaddingPacket(len, random);
+        this.p = new PaddingPacket(len, CryptoServicesRegistrar.getSecureRandom(random));
     }
 
     /**

pg/src/test/java/org/bouncycastle/openpgp/test/PGPAeadTest.java

@@ -183,7 +183,7 @@ private void knownV5TestVectorDecryptionTests()
     private void knownV6TestVectorDecryptionTests()
         throws IOException, PGPException
     {
-        // Test known-good V6 test vectors    TODO: decryption tests
+        // Test known-good V6 test vectors
         testBcDecryption(V6_EAX_PACKET_SEQUENCE, PASSWORD, PLAINTEXT);
         testBcDecryption(V6_OCB_PACKET_SEQUENCE, PASSWORD, PLAINTEXT);
         testBcDecryption(V6_GCM_PACKET_SEQUENCE, PASSWORD, PLAINTEXT);

pkix/src/test/java/org/bouncycastle/openssl/test/AllTests.java

@@ -84,6 +84,8 @@ public void testPKCS8Encrypted()
 
         PrivateKey key = kpGen.generateKeyPair().getPrivate();
 
+        encryptedTestNew(key, PKCS8Generator.AES_128_CBC);
+        encryptedTestNew(key, PKCS8Generator.AES_192_CBC);
         encryptedTestNew(key, PKCS8Generator.AES_256_CBC);
         encryptedTestNew(key, PKCS8Generator.DES3_CBC);
         encryptedTestNew(key, PKCS8Generator.PBE_SHA1_3DES);