EC updates from bc-csharp

Author: peterdettman

core/src/main/java/org/bouncycastle/asn1/x9/X9IntegerConverter.java

@@ -17,10 +17,9 @@ public class X9IntegerConverter
      * @param c the curve of interest.
      * @return the field size in bytes (rounded up).
      */
-    public int getByteLength(
-        ECCurve c)
+    public int getByteLength(ECCurve c)
     {
-        return (c.getFieldSize() + 7) / 8;
+        return c.getFieldElementEncodingLength();
     }
 
     /**
@@ -29,10 +28,9 @@ public int getByteLength(
      * @param fe the field element of interest.
      * @return the field size in bytes (rounded up).
      */
-    public int getByteLength(
-        ECFieldElement fe)
+    public int getByteLength(ECFieldElement fe)
     {
-        return (fe.getFieldSize() + 7) / 8;
+        return fe.getEncodedLength();
     }
 
     /**

core/src/main/java/org/bouncycastle/crypto/agreement/ECDHBasicAgreement.java

@@ -41,7 +41,7 @@ public void init(
 
     public int getFieldSize()
     {
-        return (key.getParameters().getCurve().getFieldSize() + 7) / 8;
+        return key.getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public BigInteger calculateAgreement(

core/src/main/java/org/bouncycastle/crypto/agreement/ECDHCBasicAgreement.java

@@ -45,7 +45,7 @@ public void init(
 
     public int getFieldSize()
     {
-        return (key.getParameters().getCurve().getFieldSize() + 7) / 8;
+        return key.getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public BigInteger calculateAgreement(

core/src/main/java/org/bouncycastle/crypto/agreement/ECDHCStagedAgreement.java

@@ -27,7 +27,7 @@ public void init(
 
     public int getFieldSize()
     {
-        return (key.getParameters().getCurve().getFieldSize() + 7) / 8;
+        return key.getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public AsymmetricKeyParameter calculateStage(

core/src/main/java/org/bouncycastle/crypto/agreement/ECDHCUnifiedAgreement.java

@@ -25,7 +25,7 @@ public void init(
 
     public int getFieldSize()
     {
-        return (privParams.getStaticPrivateKey().getParameters().getCurve().getFieldSize() + 7) / 8;
+        return privParams.getStaticPrivateKey().getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public byte[] calculateAgreement(CipherParameters pubKey)

core/src/main/java/org/bouncycastle/crypto/agreement/ECMQVBasicAgreement.java

@@ -31,7 +31,7 @@ public void init(
 
     public int getFieldSize()
     {
-        return (privParams.getStaticPrivateKey().getParameters().getCurve().getFieldSize() + 7) / 8;
+        return privParams.getStaticPrivateKey().getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public BigInteger calculateAgreement(CipherParameters pubKey)

core/src/main/java/org/bouncycastle/crypto/agreement/ECVKOAgreement.java

@@ -48,7 +48,7 @@ public int getAgreementSize()
      */
     public int getFieldSize()
     {
-        return (key.getParameters().getCurve().getFieldSize() + 7) / 8;
+        return key.getParameters().getCurve().getFieldElementEncodingLength();
     }
 
     public byte[] calculateAgreement(CipherParameters pubKey)

core/src/main/java/org/bouncycastle/crypto/engines/SM2Engine.java

@@ -95,7 +95,7 @@ public void init(boolean forEncryption, CipherParameters param)
             ecParams = ecKey.getParameters();
         }
 
-        curveLength = (ecParams.getCurve().getFieldSize() + 7) / 8;
+        curveLength = ecParams.getCurve().getFieldElementEncodingLength();
 
         CryptoServicesRegistrar.checkConstraints(new DefaultServiceProperties("SM2", ConstraintUtils.bitsOfSecurityFor(ecParams.getCurve()), ecKey, Utils.getPurpose(forEncryption)));
     }

core/src/main/java/org/bouncycastle/crypto/kems/ECIESKEMExtractor.java

@@ -119,6 +119,6 @@ public byte[] extractSecret(byte[] encapsulation)
 
     public int getEncapsulationLength()
     {
-        return (decKey.getParameters().getCurve().getFieldSize() / 8) * 2 + 1;
+        return decKey.getParameters().getCurve().getAffinePointEncodingLength(false);
     }
 }

core/src/main/java/org/bouncycastle/crypto/parsers/ECIESPublicKeyParser.java

@@ -1,12 +1,14 @@
 package org.bouncycastle.crypto.parsers;
 
+import java.io.EOFException;
 import java.io.IOException;
 import java.io.InputStream;
 
 import org.bouncycastle.crypto.KeyParser;
 import org.bouncycastle.crypto.params.AsymmetricKeyParameter;
 import org.bouncycastle.crypto.params.ECDomainParameters;
 import org.bouncycastle.crypto.params.ECPublicKeyParameters;
+import org.bouncycastle.math.ec.ECCurve;
 import org.bouncycastle.util.io.Streams;
 
 public class ECIESPublicKeyParser
@@ -22,33 +24,45 @@ public ECIESPublicKeyParser(ECDomainParameters ecParams)
     public AsymmetricKeyParameter readKey(InputStream stream)
         throws IOException
     {
-        byte[] V;
-        int    first = stream.read();
+        int first = stream.read();
+        if (first < 0)
+        {
+            throw new EOFException();
+        }
 
         // Decode the public ephemeral key
+        boolean compressed;
         switch (first)
         {
         case 0x00: // infinity
             throw new IOException("Sender's public key invalid.");
 
         case 0x02: // compressed
         case 0x03: // Byte length calculated as in ECPoint.getEncoded();
-            V = new byte[1 + (ecParams.getCurve().getFieldSize()+7)/8];
+            compressed = true;
             break;
 
         case 0x04: // uncompressed or
         case 0x06: // hybrid
         case 0x07: // Byte length calculated as in ECPoint.getEncoded();
-            V = new byte[1 + 2*((ecParams.getCurve().getFieldSize()+7)/8)];
+            compressed = false;
             break;
 
         default:
             throw new IOException("Sender's public key has invalid point encoding 0x" + Integer.toString(first, 16));
         }
 
+        ECCurve curve = ecParams.getCurve();
+        int encodingLength = curve.getAffinePointEncodingLength(compressed);
+        byte[] V = new byte[encodingLength];
         V[0] = (byte)first;
-        Streams.readFully(stream, V, 1, V.length - 1);
 
-        return new ECPublicKeyParameters(ecParams.getCurve().decodePoint(V), ecParams);
+        int readLength = encodingLength - 1;
+        if (Streams.readFully(stream, V, 1, readLength) != readLength)
+        {
+            throw new EOFException();
+        }
+
+        return new ECPublicKeyParameters(curve.decodePoint(V), ecParams);
     }
 }