blob: a1ddfffb2c817f2777cf9cdaa105cda555eaebbf (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
|
package org.spongycastle.bcpg;
import java.io.IOException;
import org.spongycastle.asn1.ASN1ObjectIdentifier;
import org.spongycastle.math.ec.ECPoint;
/**
* base class for an ECDH Public Key.
*/
public class ECDHPublicBCPGKey
extends ECPublicBCPGKey
{
private byte reserved;
private byte hashFunctionId;
private byte symAlgorithmId;
/**
* @param in the stream to read the packet from.
*/
public ECDHPublicBCPGKey(
BCPGInputStream in)
throws IOException
{
super(in);
int length = in.read();
byte[] kdfParameters = new byte[length];
if (kdfParameters.length != 3)
{
throw new IllegalStateException("kdf parameters size of 3 expected.");
}
in.read(kdfParameters);
reserved = kdfParameters[0];
hashFunctionId = kdfParameters[1];
symAlgorithmId = kdfParameters[2];
verifyHashAlgorithm();
verifySymmetricKeyAlgorithm();
}
public ECDHPublicBCPGKey(
ASN1ObjectIdentifier oid,
ECPoint point,
int hashAlgorithm,
int symmetricKeyAlgorithm)
{
super(oid, point);
reserved = 1;
hashFunctionId = (byte)hashAlgorithm;
symAlgorithmId = (byte)symmetricKeyAlgorithm;
verifyHashAlgorithm();
verifySymmetricKeyAlgorithm();
}
public byte getReserved()
{
return reserved;
}
public byte getHashAlgorithm()
{
return hashFunctionId;
}
public byte getSymmetricKeyAlgorithm()
{
return symAlgorithmId;
}
public void encode(
BCPGOutputStream out)
throws IOException
{
super.encode(out);
out.write(0x3);
out.write(reserved);
out.write(hashFunctionId);
out.write(symAlgorithmId);
}
private void verifyHashAlgorithm()
{
switch (hashFunctionId)
{
case HashAlgorithmTags.SHA256:
case HashAlgorithmTags.SHA384:
case HashAlgorithmTags.SHA512:
break;
default:
throw new IllegalStateException("Hash algorithm must be SHA-256 or stronger.");
}
}
private void verifySymmetricKeyAlgorithm()
{
switch (symAlgorithmId)
{
case SymmetricKeyAlgorithmTags.AES_128:
case SymmetricKeyAlgorithmTags.AES_192:
case SymmetricKeyAlgorithmTags.AES_256:
break;
default:
throw new IllegalStateException("Symmetric key algorithm must be AES-128 or stronger.");
}
}
}
|