fixed use of random to avoid occassional null pointer

Author: dghgit

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/bike/BIKECipherSpi.java

@@ -27,6 +27,9 @@
 import org.bouncycastle.jcajce.spec.KEMParameterSpec;
 import org.bouncycastle.pqc.crypto.bike.BIKEKEMExtractor;
 import org.bouncycastle.pqc.crypto.bike.BIKEKEMGenerator;
+import org.bouncycastle.pqc.crypto.cmce.CMCEKEMGenerator;
+import org.bouncycastle.pqc.jcajce.provider.cmce.BCCMCEPrivateKey;
+import org.bouncycastle.pqc.jcajce.provider.cmce.BCCMCEPublicKey;
 import org.bouncycastle.pqc.jcajce.provider.util.WrapUtil;
 import org.bouncycastle.util.Arrays;
 import org.bouncycastle.util.Exceptions;
@@ -39,7 +42,6 @@ class BIKECipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCBIKEPublicKey wrapKey;
     private BCBIKEPrivateKey unwrapKey;
-    private SecureRandom random;
 
     private AlgorithmParameters engineParams;
 
@@ -126,11 +128,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -151,11 +148,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCBIKEPublicKey)
             {
                 wrapKey = (BCBIKEPublicKey)key;
-                kemGen = new BIKEKEMGenerator(random);
+                kemGen = new BIKEKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -166,7 +163,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -176,7 +173,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/cmce/CMCECipherSpi.java

@@ -39,7 +39,6 @@ class CMCECipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCCMCEPublicKey wrapKey;
     private BCCMCEPrivateKey unwrapKey;
-    private SecureRandom random;
 
     private AlgorithmParameters engineParams;
 
@@ -125,11 +124,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
         throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -150,11 +144,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCCMCEPublicKey)
             {
                 wrapKey = (BCCMCEPublicKey)key;
-                kemGen = new CMCEKEMGenerator(random);
+                kemGen = new CMCEKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an CMCE public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -165,7 +159,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an CMCE private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -175,7 +169,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
         throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/frodo/FrodoCipherSpi.java

@@ -27,6 +27,9 @@
 import org.bouncycastle.jcajce.spec.KEMParameterSpec;
 import org.bouncycastle.pqc.crypto.frodo.FrodoKEMExtractor;
 import org.bouncycastle.pqc.crypto.frodo.FrodoKEMGenerator;
+import org.bouncycastle.pqc.crypto.hqc.HQCKEMGenerator;
+import org.bouncycastle.pqc.jcajce.provider.hqc.BCHQCPrivateKey;
+import org.bouncycastle.pqc.jcajce.provider.hqc.BCHQCPublicKey;
 import org.bouncycastle.pqc.jcajce.provider.util.WrapUtil;
 import org.bouncycastle.util.Arrays;
 import org.bouncycastle.util.Exceptions;
@@ -39,7 +42,6 @@ class FrodoCipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCFrodoPublicKey wrapKey;
     private BCFrodoPrivateKey unwrapKey;
-    private SecureRandom random;
 
     private AlgorithmParameters engineParams;
 
@@ -126,11 +128,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -151,11 +148,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCFrodoPublicKey)
             {
                 wrapKey = (BCFrodoPublicKey)key;
-                kemGen = new FrodoKEMGenerator(random);
+                kemGen = new FrodoKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -166,7 +163,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -176,7 +173,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/hqc/HQCCipherSpi.java

@@ -39,8 +39,6 @@ class HQCCipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCHQCPublicKey wrapKey;
     private BCHQCPrivateKey unwrapKey;
-    private SecureRandom random;
-
     private AlgorithmParameters engineParams;
 
     HQCCipherSpi(String algorithmName)
@@ -126,11 +124,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -151,11 +144,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCHQCPublicKey)
             {
                 wrapKey = (BCHQCPublicKey)key;
-                kemGen = new HQCKEMGenerator(random);
+                kemGen = new HQCKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -166,7 +159,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -176,7 +169,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/kyber/KyberCipherSpi.java

@@ -41,7 +41,6 @@ class KyberCipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCKyberPublicKey wrapKey;
     private BCKyberPrivateKey unwrapKey;
-    private SecureRandom random;
 
     private AlgorithmParameters engineParams;
     private KyberParameters kyberParameters;
@@ -135,11 +134,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -160,11 +154,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCKyberPublicKey)
             {
                 wrapKey = (BCKyberPublicKey)key;
-                kemGen = new KyberKEMGenerator(random);
+                kemGen = new KyberKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -175,7 +169,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -194,7 +188,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;

prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/ntru/NTRUCipherSpi.java

@@ -27,6 +27,10 @@
 import org.bouncycastle.jcajce.spec.KEMParameterSpec;
 import org.bouncycastle.pqc.crypto.ntru.NTRUKEMExtractor;
 import org.bouncycastle.pqc.crypto.ntru.NTRUKEMGenerator;
+import org.bouncycastle.pqc.crypto.ntruprime.SNTRUPrimeKEMGenerator;
+import org.bouncycastle.pqc.jcajce.provider.ntruprime.BCNTRULPRimePublicKey;
+import org.bouncycastle.pqc.jcajce.provider.ntruprime.BCSNTRUPrimePrivateKey;
+import org.bouncycastle.pqc.jcajce.provider.ntruprime.BCSNTRUPrimePublicKey;
 import org.bouncycastle.pqc.jcajce.provider.util.WrapUtil;
 import org.bouncycastle.util.Arrays;
 import org.bouncycastle.util.Exceptions;
@@ -39,7 +43,6 @@ class NTRUCipherSpi
     private KEMParameterSpec kemParameterSpec;
     private BCNTRUPublicKey wrapKey;
     private BCNTRUPrivateKey unwrapKey;
-    private SecureRandom random;
 
     private AlgorithmParameters engineParams;
 
@@ -126,11 +129,6 @@ protected void engineInit(int opmode, Key key, SecureRandom random)
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-        if (random == null)
-        {
-            this.random = CryptoServicesRegistrar.getSecureRandom();
-        }
-
         if (paramSpec == null)
         {
             // TODO: default should probably use shake.
@@ -151,11 +149,11 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec paramSpec,
             if (key instanceof BCNTRUPublicKey)
             {
                 wrapKey = (BCNTRUPublicKey)key;
-                kemGen = new NTRUKEMGenerator(random);
+                kemGen = new NTRUKEMGenerator(CryptoServicesRegistrar.getSecureRandom(random));
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA public key can be used for wrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " public key can be used for wrapping");
             }
         }
         else if (opmode == Cipher.UNWRAP_MODE)
@@ -166,7 +164,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
             }
             else
             {
-                throw new InvalidKeyException("Only an RSA private key can be used for unwrapping");
+                throw new InvalidKeyException("Only a " + algorithmName + " private key can be used for unwrapping");
             }
         }
         else
@@ -176,7 +174,7 @@ else if (opmode == Cipher.UNWRAP_MODE)
     }
 
     @Override
-    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom secureRandom)
+    protected void engineInit(int opmode, Key key, AlgorithmParameters algorithmParameters, SecureRandom random)
             throws InvalidKeyException, InvalidAlgorithmParameterException
     {
         AlgorithmParameterSpec paramSpec = null;