Improve EdDSA/XDH key validation

peterdettman · peterdettman · commit bea54d9e4690 · 2021-06-06T20:08:57.000+07:00
diff --git a/crypto/src/crypto/parameters/Ed25519PrivateKeyParameters.cs b/crypto/src/crypto/parameters/Ed25519PrivateKeyParameters.cs
@@ -24,6 +24,11 @@ public Ed25519PrivateKeyParameters(SecureRandom random)
             Ed25519.GeneratePrivateKey(random, data);
         }
 
+        public Ed25519PrivateKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public Ed25519PrivateKeyParameters(byte[] buf, int off)
             : base(true)
         {
@@ -106,5 +111,13 @@ public void Sign(Ed25519.Algorithm algorithm, byte[] ctx, byte[] msg, int msgOff
             }
             }
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/Ed25519PublicKeyParameters.cs b/crypto/src/crypto/parameters/Ed25519PublicKeyParameters.cs
@@ -14,6 +14,11 @@ public sealed class Ed25519PublicKeyParameters
 
         private readonly byte[] data = new byte[KeySize];
 
+        public Ed25519PublicKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public Ed25519PublicKeyParameters(byte[] buf, int off)
             : base(false)
         {
@@ -36,5 +41,13 @@ public byte[] GetEncoded()
         {
             return Arrays.Clone(data);
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/Ed448PrivateKeyParameters.cs b/crypto/src/crypto/parameters/Ed448PrivateKeyParameters.cs
@@ -24,6 +24,11 @@ public Ed448PrivateKeyParameters(SecureRandom random)
             Ed448.GeneratePrivateKey(random, data);
         }
 
+        public Ed448PrivateKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public Ed448PrivateKeyParameters(byte[] buf, int off)
             : base(true)
         {
@@ -98,5 +103,13 @@ public void Sign(Ed448.Algorithm algorithm, byte[] ctx, byte[] msg, int msgOff,
             }
             }
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/Ed448PublicKeyParameters.cs b/crypto/src/crypto/parameters/Ed448PublicKeyParameters.cs
@@ -14,6 +14,11 @@ public sealed class Ed448PublicKeyParameters
 
         private readonly byte[] data = new byte[KeySize];
 
+        public Ed448PublicKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public Ed448PublicKeyParameters(byte[] buf, int off)
             : base(false)
         {
@@ -36,5 +41,13 @@ public byte[] GetEncoded()
         {
             return Arrays.Clone(data);
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/X25519PrivateKeyParameters.cs b/crypto/src/crypto/parameters/X25519PrivateKeyParameters.cs
@@ -22,6 +22,11 @@ public X25519PrivateKeyParameters(SecureRandom random)
             X25519.GeneratePrivateKey(random, data);
         }
 
+        public X25519PrivateKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public X25519PrivateKeyParameters(byte[] buf, int off)
             : base(true)
         {
@@ -59,5 +64,13 @@ public void GenerateSecret(X25519PublicKeyParameters publicKey, byte[] buf, int
             if (!X25519.CalculateAgreement(data, 0, encoded, 0, buf, off))
                 throw new InvalidOperationException("X25519 agreement failed");
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/X25519PublicKeyParameters.cs b/crypto/src/crypto/parameters/X25519PublicKeyParameters.cs
@@ -14,6 +14,11 @@ public sealed class X25519PublicKeyParameters
 
         private readonly byte[] data = new byte[KeySize];
 
+        public X25519PublicKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public X25519PublicKeyParameters(byte[] buf, int off)
             : base(false)
         {
@@ -36,5 +41,13 @@ public byte[] GetEncoded()
         {
             return Arrays.Clone(data);
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/X448PrivateKeyParameters.cs b/crypto/src/crypto/parameters/X448PrivateKeyParameters.cs
@@ -22,6 +22,11 @@ public X448PrivateKeyParameters(SecureRandom random)
             X448.GeneratePrivateKey(random, data);
         }
 
+        public X448PrivateKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public X448PrivateKeyParameters(byte[] buf, int off)
             : base(true)
         {
@@ -59,5 +64,13 @@ public void GenerateSecret(X448PublicKeyParameters publicKey, byte[] buf, int of
             if (!X448.CalculateAgreement(data, 0, encoded, 0, buf, off))
                 throw new InvalidOperationException("X448 agreement failed");
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/crypto/parameters/X448PublicKeyParameters.cs b/crypto/src/crypto/parameters/X448PublicKeyParameters.cs
@@ -14,6 +14,11 @@ public sealed class X448PublicKeyParameters
 
         private readonly byte[] data = new byte[KeySize];
 
+        public X448PublicKeyParameters(byte[] buf)
+            : this(Validate(buf), 0)
+        {
+        }
+
         public X448PublicKeyParameters(byte[] buf, int off)
             : base(false)
         {
@@ -36,5 +41,13 @@ public byte[] GetEncoded()
         {
             return Arrays.Clone(data);
         }
+
+        private static byte[] Validate(byte[] buf)
+        {
+            if (buf.Length != KeySize)
+                throw new ArgumentException("must have length " + KeySize, "buf");
+
+            return buf;
+        }
     }
 }
diff --git a/crypto/src/security/PrivateKeyFactory.cs b/crypto/src/security/PrivateKeyFactory.cs
@@ -174,26 +174,26 @@ public static AsymmetricKeyParameter CreateKey(
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_X25519))
             {
-                return new X25519PrivateKeyParameters(GetRawKey(keyInfo, X25519PrivateKeyParameters.KeySize), 0);
+                return new X25519PrivateKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_X448))
             {
-                return new X448PrivateKeyParameters(GetRawKey(keyInfo, X448PrivateKeyParameters.KeySize), 0);
+                return new X448PrivateKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_Ed25519))
             {
-                return new Ed25519PrivateKeyParameters(GetRawKey(keyInfo, Ed25519PrivateKeyParameters.KeySize), 0);
+                return new Ed25519PrivateKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_Ed448))
             {
-                return new Ed448PrivateKeyParameters(GetRawKey(keyInfo, Ed448PrivateKeyParameters.KeySize), 0);
+                return new Ed448PrivateKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512)
                      || algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_256))
             {
                 Gost3410PublicKeyAlgParameters gostParams = Gost3410PublicKeyAlgParameters.GetInstance(keyInfo.PrivateKeyAlgorithm.Parameters);
-                ECGost3410Parameters ecSpec = null;
-                BigInteger d = null;
+                ECGost3410Parameters ecSpec;
+                BigInteger d;
                 Asn1Object p = keyInfo.PrivateKeyAlgorithm.Parameters.ToAsn1Object();
                 if (p is Asn1Sequence && (Asn1Sequence.GetInstance(p).Count == 2 || Asn1Sequence.GetInstance(p).Count == 3))
                 {
@@ -280,13 +280,9 @@ public static AsymmetricKeyParameter CreateKey(
             }
         }
 
-        private static byte[] GetRawKey(PrivateKeyInfo keyInfo, int expectedSize)
+        private static byte[] GetRawKey(PrivateKeyInfo keyInfo)
         {
-            byte[] result = Asn1OctetString.GetInstance(keyInfo.ParsePrivateKey()).GetOctets();
-            if (expectedSize != result.Length)
-                throw new SecurityUtilityException("private key encoding has incorrect length");
-
-            return result;
+            return Asn1OctetString.GetInstance(keyInfo.ParsePrivateKey()).GetOctets();
         }
 
         public static AsymmetricKeyParameter DecryptKey(
diff --git a/crypto/src/security/PublicKeyFactory.cs b/crypto/src/security/PublicKeyFactory.cs
@@ -217,19 +217,19 @@ public static AsymmetricKeyParameter CreateKey(
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_X25519))
             {
-                return new X25519PublicKeyParameters(GetRawKey(keyInfo, X25519PublicKeyParameters.KeySize), 0);
+                return new X25519PublicKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_X448))
             {
-                return new X448PublicKeyParameters(GetRawKey(keyInfo, X448PublicKeyParameters.KeySize), 0);
+                return new X448PublicKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_Ed25519))
             {
-                return new Ed25519PublicKeyParameters(GetRawKey(keyInfo, Ed25519PublicKeyParameters.KeySize), 0);
+                return new Ed25519PublicKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(EdECObjectIdentifiers.id_Ed448))
             {
-                return new Ed448PublicKeyParameters(GetRawKey(keyInfo, Ed448PublicKeyParameters.KeySize), 0);
+                return new Ed448PublicKeyParameters(GetRawKey(keyInfo));
             }
             else if (algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_256)
                 ||   algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512))
@@ -282,17 +282,13 @@ public static AsymmetricKeyParameter CreateKey(
             }
         }
 
-        private static byte[] GetRawKey(SubjectPublicKeyInfo keyInfo, int expectedSize)
+        private static byte[] GetRawKey(SubjectPublicKeyInfo keyInfo)
         {
             /*
              * TODO[RFC 8422]
              * - Require keyInfo.Algorithm.Parameters == null?
              */
-            byte[] result = keyInfo.PublicKeyData.GetOctets();
-            if (expectedSize != result.Length)
-                throw new SecurityUtilityException("public key encoding has incorrect length");
-
-            return result;
+            return keyInfo.PublicKeyData.GetOctets();
         }
 
         private static bool IsPkcsDHParam(Asn1Sequence seq)
diff --git a/crypto/test/src/crypto/test/Ed25519Test.cs b/crypto/test/src/crypto/test/Ed25519Test.cs
@@ -54,9 +54,9 @@ public override void PerformTest()
         private void BasicSigTest()
         {
             Ed25519PrivateKeyParameters privateKey = new Ed25519PrivateKeyParameters(
-                Hex.DecodeStrict("9d61b19deffd5a60ba844af492ec2cc44449c5697b326919703bac031cae7f60"), 0);
+                Hex.DecodeStrict("9d61b19deffd5a60ba844af492ec2cc44449c5697b326919703bac031cae7f60"));
             Ed25519PublicKeyParameters publicKey = new Ed25519PublicKeyParameters(
-                Hex.DecodeStrict("d75a980182b10ab7d54bfed3c964073a0ee172f3daa62325af021a68f707511a"), 0);
+                Hex.DecodeStrict("d75a980182b10ab7d54bfed3c964073a0ee172f3daa62325af021a68f707511a"));
 
             byte[] sig = Hex.Decode("e5564300c360ac729086e2cc806e828a84877f1eb8e5d974d873e065224901555fb8821590a33bacc61e39701cf9b46bd25bf5f0595bbe24655141438e7a100b");
 
diff --git a/crypto/test/src/crypto/test/Ed448Test.cs b/crypto/test/src/crypto/test/Ed448Test.cs
@@ -56,12 +56,12 @@ private void BasicSigTest()
                     "6c82a562cb808d10d632be89c8513ebf" +
                     "6c929f34ddfa8c9f63c9960ef6e348a3" +
                     "528c8a3fcc2f044e39a3fc5b94492f8f" +
-                    "032e7549a20098f95b"), 0);
+                    "032e7549a20098f95b"));
             Ed448PublicKeyParameters publicKey = new Ed448PublicKeyParameters(
                 Hex.DecodeStrict("5fd7449b59b461fd2ce787ec616ad46a" +
                     "1da1342485a70e1f8a0ea75d80e96778" +
                     "edf124769b46c7061bd6783df1e50f6c" +
-                    "d1fa1abeafe8256180"), 0);
+                    "d1fa1abeafe8256180"));
 
             byte[] sig = Hex.DecodeStrict("533a37f6bbe457251f023c0d88f976ae" +
                 "2dfb504a843e34d2074fd823d41a591f" +

Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,11 @@ public Ed25519PrivateKeyParameters(SecureRandom random)`
`24`	`24`	`Ed25519.GeneratePrivateKey(random, data);`
`25`	`25`	`}`
`26`	`26`
	`27`	`+ public Ed25519PrivateKeyParameters(byte[] buf)`
	`28`	`+ : this(Validate(buf), 0)`
	`29`	`+ {`
	`30`	`+ }`
	`31`	`+`
`27`	`32`	`public Ed25519PrivateKeyParameters(byte[] buf, int off)`
`28`	`33`	`: base(true)`
`29`	`34`	`{`
`@@ -106,5 +111,13 @@ public void Sign(Ed25519.Algorithm algorithm, byte[] ctx, byte[] msg, int msgOff`
`106`	`111`	`}`
`107`	`112`	`}`
`108`	`113`	`}`
	`114`	`+`
	`115`	`+ private static byte[] Validate(byte[] buf)`
	`116`	`+ {`
	`117`	`+ if (buf.Length != KeySize)`
	`118`	`+ throw new ArgumentException("must have length " + KeySize, "buf");`
	`119`	`+`
	`120`	`+ return buf;`
	`121`	`+ }`
`109`	`122`	`}`
`110`	`123`	`}`
Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,11 @@ public sealed class Ed25519PublicKeyParameters`
`14`	`14`
`15`	`15`	`private readonly byte[] data = new byte[KeySize];`
`16`	`16`
	`17`	`+ public Ed25519PublicKeyParameters(byte[] buf)`
	`18`	`+ : this(Validate(buf), 0)`
	`19`	`+ {`
	`20`	`+ }`
	`21`	`+`
`17`	`22`	`public Ed25519PublicKeyParameters(byte[] buf, int off)`
`18`	`23`	`: base(false)`
`19`	`24`	`{`
`@@ -36,5 +41,13 @@ public byte[] GetEncoded()`
`36`	`41`	`{`
`37`	`42`	`return Arrays.Clone(data);`
`38`	`43`	`}`
	`44`	`+`
	`45`	`+ private static byte[] Validate(byte[] buf)`
	`46`	`+ {`
	`47`	`+ if (buf.Length != KeySize)`
	`48`	`+ throw new ArgumentException("must have length " + KeySize, "buf");`
	`49`	`+`
	`50`	`+ return buf;`
	`51`	`+ }`
`39`	`52`	`}`
`40`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,11 @@ public Ed448PrivateKeyParameters(SecureRandom random)`
`24`	`24`	`Ed448.GeneratePrivateKey(random, data);`
`25`	`25`	`}`
`26`	`26`
	`27`	`+ public Ed448PrivateKeyParameters(byte[] buf)`
	`28`	`+ : this(Validate(buf), 0)`
	`29`	`+ {`
	`30`	`+ }`
	`31`	`+`
`27`	`32`	`public Ed448PrivateKeyParameters(byte[] buf, int off)`
`28`	`33`	`: base(true)`
`29`	`34`	`{`
`@@ -98,5 +103,13 @@ public void Sign(Ed448.Algorithm algorithm, byte[] ctx, byte[] msg, int msgOff,`
`98`	`103`	`}`
`99`	`104`	`}`
`100`	`105`	`}`
	`106`	`+`
	`107`	`+ private static byte[] Validate(byte[] buf)`
	`108`	`+ {`
	`109`	`+ if (buf.Length != KeySize)`
	`110`	`+ throw new ArgumentException("must have length " + KeySize, "buf");`
	`111`	`+`
	`112`	`+ return buf;`
	`113`	`+ }`
`101`	`114`	`}`
`102`	`115`	`}`
Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,11 @@ public X25519PrivateKeyParameters(SecureRandom random)`
`22`	`22`	`X25519.GeneratePrivateKey(random, data);`
`23`	`23`	`}`
`24`	`24`
	`25`	`+ public X25519PrivateKeyParameters(byte[] buf)`
	`26`	`+ : this(Validate(buf), 0)`
	`27`	`+ {`
	`28`	`+ }`
	`29`	`+`
`25`	`30`	`public X25519PrivateKeyParameters(byte[] buf, int off)`
`26`	`31`	`: base(true)`
`27`	`32`	`{`
`@@ -59,5 +64,13 @@ public void GenerateSecret(X25519PublicKeyParameters publicKey, byte[] buf, int`
`59`	`64`	`if (!X25519.CalculateAgreement(data, 0, encoded, 0, buf, off))`
`60`	`65`	`throw new InvalidOperationException("X25519 agreement failed");`
`61`	`66`	`}`
	`67`	`+`
	`68`	`+ private static byte[] Validate(byte[] buf)`
	`69`	`+ {`
	`70`	`+ if (buf.Length != KeySize)`
	`71`	`+ throw new ArgumentException("must have length " + KeySize, "buf");`
	`72`	`+`
	`73`	`+ return buf;`
	`74`	`+ }`
`62`	`75`	`}`
`63`	`76`	`}`
Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,11 @@ public X448PrivateKeyParameters(SecureRandom random)`
`22`	`22`	`X448.GeneratePrivateKey(random, data);`
`23`	`23`	`}`
`24`	`24`
	`25`	`+ public X448PrivateKeyParameters(byte[] buf)`
	`26`	`+ : this(Validate(buf), 0)`
	`27`	`+ {`
	`28`	`+ }`
	`29`	`+`
`25`	`30`	`public X448PrivateKeyParameters(byte[] buf, int off)`
`26`	`31`	`: base(true)`
`27`	`32`	`{`
`@@ -59,5 +64,13 @@ public void GenerateSecret(X448PublicKeyParameters publicKey, byte[] buf, int of`
`59`	`64`	`if (!X448.CalculateAgreement(data, 0, encoded, 0, buf, off))`
`60`	`65`	`throw new InvalidOperationException("X448 agreement failed");`
`61`	`66`	`}`
	`67`	`+`
	`68`	`+ private static byte[] Validate(byte[] buf)`
	`69`	`+ {`
	`70`	`+ if (buf.Length != KeySize)`
	`71`	`+ throw new ArgumentException("must have length " + KeySize, "buf");`
	`72`	`+`
	`73`	`+ return buf;`
	`74`	`+ }`
`62`	`75`	`}`
`63`	`76`	`}`
Original file line number	Diff line number	Diff line change
`@@ -174,26 +174,26 @@ public static AsymmetricKeyParameter CreateKey(`
`174`	`174`	`}`
`175`	`175`	`else if (algOid.Equals(EdECObjectIdentifiers.id_X25519))`
`176`	`176`	`{`
`177`		`- return new X25519PrivateKeyParameters(GetRawKey(keyInfo, X25519PrivateKeyParameters.KeySize), 0);`
	`177`	`+ return new X25519PrivateKeyParameters(GetRawKey(keyInfo));`
`178`	`178`	`}`
`179`	`179`	`else if (algOid.Equals(EdECObjectIdentifiers.id_X448))`
`180`	`180`	`{`
`181`		`- return new X448PrivateKeyParameters(GetRawKey(keyInfo, X448PrivateKeyParameters.KeySize), 0);`
	`181`	`+ return new X448PrivateKeyParameters(GetRawKey(keyInfo));`
`182`	`182`	`}`
`183`	`183`	`else if (algOid.Equals(EdECObjectIdentifiers.id_Ed25519))`
`184`	`184`	`{`
`185`		`- return new Ed25519PrivateKeyParameters(GetRawKey(keyInfo, Ed25519PrivateKeyParameters.KeySize), 0);`
	`185`	`+ return new Ed25519PrivateKeyParameters(GetRawKey(keyInfo));`
`186`	`186`	`}`
`187`	`187`	`else if (algOid.Equals(EdECObjectIdentifiers.id_Ed448))`
`188`	`188`	`{`
`189`		`- return new Ed448PrivateKeyParameters(GetRawKey(keyInfo, Ed448PrivateKeyParameters.KeySize), 0);`
	`189`	`+ return new Ed448PrivateKeyParameters(GetRawKey(keyInfo));`
`190`	`190`	`}`
`191`	`191`	`else if (algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512)`
`192`	`192`	`\|\| algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_256))`
`193`	`193`	`{`
`194`	`194`	`Gost3410PublicKeyAlgParameters gostParams = Gost3410PublicKeyAlgParameters.GetInstance(keyInfo.PrivateKeyAlgorithm.Parameters);`
`195`		`- ECGost3410Parameters ecSpec = null;`
`196`		`- BigInteger d = null;`
	`195`	`+ ECGost3410Parameters ecSpec;`
	`196`	`+ BigInteger d;`
`197`	`197`	`Asn1Object p = keyInfo.PrivateKeyAlgorithm.Parameters.ToAsn1Object();`
`198`	`198`	`if (p is Asn1Sequence && (Asn1Sequence.GetInstance(p).Count == 2 \|\| Asn1Sequence.GetInstance(p).Count == 3))`
`199`	`199`	`{`
`@@ -280,13 +280,9 @@ public static AsymmetricKeyParameter CreateKey(`
`280`	`280`	`}`
`281`	`281`	`}`
`282`	`282`
`283`		`- private static byte[] GetRawKey(PrivateKeyInfo keyInfo, int expectedSize)`
	`283`	`+ private static byte[] GetRawKey(PrivateKeyInfo keyInfo)`
`284`	`284`	`{`
`285`		`- byte[] result = Asn1OctetString.GetInstance(keyInfo.ParsePrivateKey()).GetOctets();`
`286`		`- if (expectedSize != result.Length)`
`287`		`- throw new SecurityUtilityException("private key encoding has incorrect length");`
`288`		`-`
`289`		`- return result;`
	`285`	`+ return Asn1OctetString.GetInstance(keyInfo.ParsePrivateKey()).GetOctets();`
`290`	`286`	`}`
`291`	`287`
`292`	`288`	`public static AsymmetricKeyParameter DecryptKey(`
Original file line number	Diff line number	Diff line change
`@@ -217,19 +217,19 @@ public static AsymmetricKeyParameter CreateKey(`
`217`	`217`	`}`
`218`	`218`	`else if (algOid.Equals(EdECObjectIdentifiers.id_X25519))`
`219`	`219`	`{`
`220`		`- return new X25519PublicKeyParameters(GetRawKey(keyInfo, X25519PublicKeyParameters.KeySize), 0);`
	`220`	`+ return new X25519PublicKeyParameters(GetRawKey(keyInfo));`
`221`	`221`	`}`
`222`	`222`	`else if (algOid.Equals(EdECObjectIdentifiers.id_X448))`
`223`	`223`	`{`
`224`		`- return new X448PublicKeyParameters(GetRawKey(keyInfo, X448PublicKeyParameters.KeySize), 0);`
	`224`	`+ return new X448PublicKeyParameters(GetRawKey(keyInfo));`
`225`	`225`	`}`
`226`	`226`	`else if (algOid.Equals(EdECObjectIdentifiers.id_Ed25519))`
`227`	`227`	`{`
`228`		`- return new Ed25519PublicKeyParameters(GetRawKey(keyInfo, Ed25519PublicKeyParameters.KeySize), 0);`
	`228`	`+ return new Ed25519PublicKeyParameters(GetRawKey(keyInfo));`
`229`	`229`	`}`
`230`	`230`	`else if (algOid.Equals(EdECObjectIdentifiers.id_Ed448))`
`231`	`231`	`{`
`232`		`- return new Ed448PublicKeyParameters(GetRawKey(keyInfo, Ed448PublicKeyParameters.KeySize), 0);`
	`232`	`+ return new Ed448PublicKeyParameters(GetRawKey(keyInfo));`
`233`	`233`	`}`
`234`	`234`	`else if (algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_256)`
`235`	`235`	`\|\| algOid.Equals(RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512))`
`@@ -282,17 +282,13 @@ public static AsymmetricKeyParameter CreateKey(`
`282`	`282`	`}`
`283`	`283`	`}`
`284`	`284`
`285`		`- private static byte[] GetRawKey(SubjectPublicKeyInfo keyInfo, int expectedSize)`
	`285`	`+ private static byte[] GetRawKey(SubjectPublicKeyInfo keyInfo)`
`286`	`286`	`{`
`287`	`287`	`/*`
`288`	`288`	`* TODO[RFC 8422]`
`289`	`289`	`* - Require keyInfo.Algorithm.Parameters == null?`
`290`	`290`	`*/`
`291`		`- byte[] result = keyInfo.PublicKeyData.GetOctets();`
`292`		`- if (expectedSize != result.Length)`
`293`		`- throw new SecurityUtilityException("public key encoding has incorrect length");`
`294`		`-`
`295`		`- return result;`
	`291`	`+ return keyInfo.PublicKeyData.GetOctets();`
`296`	`292`	`}`
`297`	`293`
`298`	`294`	`private static bool IsPkcsDHParam(Asn1Sequence seq)`