TODO: Add tests to cover AEADParameters

Author: gefeili

core/src/main/java/org/bouncycastle/crypto/engines/AEADBaseEngine.java

@@ -0,0 +1,96 @@
+package org.bouncycastle.crypto.engines;
+
+import org.bouncycastle.crypto.CipherParameters;
+import org.bouncycastle.crypto.CryptoServicesRegistrar;
+import org.bouncycastle.crypto.DataLengthException;
+import org.bouncycastle.crypto.constraints.DefaultServiceProperties;
+import org.bouncycastle.crypto.modes.AEADCipher;
+import org.bouncycastle.crypto.params.AEADParameters;
+import org.bouncycastle.crypto.params.KeyParameter;
+import org.bouncycastle.crypto.params.ParametersWithIV;
+
+abstract class AEADBaseEngine
+    implements AEADCipher
+{
+    protected boolean forEncryption;
+    protected String algorithmName;
+    protected int CRYPTO_KEYBYTES;
+    protected int CRYPTO_NPUBBYTES;
+    protected int CRYPTO_ABYTES;
+    protected byte[] initialAssociatedText;
+
+    @Override
+    public String getAlgorithmName()
+    {
+        return algorithmName;
+    }
+
+    public int getKeyBytesSize()
+    {
+        return CRYPTO_KEYBYTES;
+    }
+
+    public int getIVBytesSize()
+    {
+        return CRYPTO_NPUBBYTES;
+    }
+
+
+    public int processByte(byte in, byte[] out, int outOff)
+        throws DataLengthException
+    {
+        return processBytes(new byte[]{ in }, 0, 1, out, outOff);
+    }
+
+    protected byte[][] initialize(boolean forEncryption, CipherParameters params)
+    {
+        this.forEncryption = forEncryption;
+        KeyParameter key;
+        byte[] npub;
+        byte[] k;
+
+        if (params instanceof AEADParameters)
+        {
+            AEADParameters aeadParameters = (AEADParameters)params;
+            key = aeadParameters.getKey();
+            npub = aeadParameters.getNonce();
+            initialAssociatedText = aeadParameters.getAssociatedText();
+
+            int macSizeBits = aeadParameters.getMacSize();
+            if (macSizeBits != CRYPTO_ABYTES * 8)
+            {
+                throw new IllegalArgumentException("Invalid value for MAC size: " + macSizeBits);
+            }
+        }
+        else if (params instanceof ParametersWithIV)
+        {
+            ParametersWithIV withIV = (ParametersWithIV)params;
+            key = (KeyParameter)withIV.getParameters();
+            npub = withIV.getIV();
+            initialAssociatedText = null;
+        }
+        else
+        {
+            throw new IllegalArgumentException("invalid parameters passed to " + algorithmName);
+        }
+
+        if (key == null)
+        {
+            throw new IllegalArgumentException(algorithmName + " Init parameters must include a key");
+        }
+        if (npub == null || npub.length != CRYPTO_NPUBBYTES)
+        {
+            throw new IllegalArgumentException(algorithmName + " requires exactly " + CRYPTO_NPUBBYTES + " bytes of IV");
+        }
+
+        k = key.getKey();
+        if (k.length != CRYPTO_KEYBYTES)
+        {
+            throw new IllegalArgumentException(algorithmName + " key must be " + CRYPTO_KEYBYTES + " bytes long");
+        }
+
+        CryptoServicesRegistrar.checkConstraints(new DefaultServiceProperties(
+            this.getAlgorithmName(), 128, params, Utils.getPurpose(forEncryption)));
+        return new byte[][]{k, npub};
+    }
+}

core/src/main/java/org/bouncycastle/crypto/engines/AsconAEAD128.java

@@ -1,11 +1,6 @@
 package org.bouncycastle.crypto.engines;
 
 import org.bouncycastle.crypto.CipherParameters;
-import org.bouncycastle.crypto.CryptoServicesRegistrar;
-import org.bouncycastle.crypto.constraints.DefaultServiceProperties;
-import org.bouncycastle.crypto.params.AEADParameters;
-import org.bouncycastle.crypto.params.KeyParameter;
-import org.bouncycastle.crypto.params.ParametersWithIV;
 import org.bouncycastle.util.Pack;
 
 /**
@@ -27,6 +22,7 @@ public class AsconAEAD128
     public AsconAEAD128()
     {
         CRYPTO_KEYBYTES = 16;
+        CRYPTO_NPUBBYTES = 16;
         CRYPTO_ABYTES = 16;
         ASCON_AEAD_RATE = 16;
         ASCON_IV = 0x00001000808c0001L;
@@ -144,54 +140,12 @@ private void finishData(State nextState)
     public void init(boolean forEncryption, CipherParameters params)
         throws IllegalArgumentException
     {
-        KeyParameter key;
-        byte[] npub;
-        if (params instanceof AEADParameters)
-        {
-            AEADParameters aeadParameters = (AEADParameters)params;
-            key = aeadParameters.getKey();
-            npub = aeadParameters.getNonce();
-            initialAssociatedText = aeadParameters.getAssociatedText();
-
-            int macSizeBits = aeadParameters.getMacSize();
-            if (macSizeBits != CRYPTO_ABYTES * 8)
-            {
-                throw new IllegalArgumentException("Invalid value for MAC size: " + macSizeBits);
-            }
-        }
-        else if (params instanceof ParametersWithIV)
-        {
-            ParametersWithIV withIV = (ParametersWithIV)params;
-            key = (KeyParameter)withIV.getParameters();
-            npub = withIV.getIV();
-            initialAssociatedText = null;
-        }
-        else
-        {
-            throw new IllegalArgumentException("invalid parameters passed to Ascon");
-        }
-
-        if (key == null)
-        {
-            throw new IllegalArgumentException("Ascon Init parameters must include a key");
-        }
-        if (npub == null || npub.length != CRYPTO_ABYTES)
-        {
-            throw new IllegalArgumentException("Ascon-AEAD-128 requires exactly " + CRYPTO_ABYTES + " bytes of IV");
-        }
-
-        byte[] k = key.getKey();
-        if (k.length != CRYPTO_KEYBYTES)
-        {
-            throw new IllegalArgumentException("Ascon-AEAD-128 key must be " + CRYPTO_KEYBYTES + " bytes long");
-        }
+        byte[][] keyiv = initialize(forEncryption, params);
 
-        CryptoServicesRegistrar.checkConstraints(new DefaultServiceProperties(
-            this.getAlgorithmName(), 128, params, Utils.getPurpose(forEncryption)));
-        K0 = Pack.littleEndianToLong(k, 0);
-        K1 = Pack.littleEndianToLong(k, 8);
-        N0 = Pack.littleEndianToLong(npub, 0);
-        N1 = Pack.littleEndianToLong(npub, 8);
+        K0 = Pack.littleEndianToLong(keyiv[0], 0);
+        K1 = Pack.littleEndianToLong(keyiv[0], 8);
+        N0 = Pack.littleEndianToLong(keyiv[1], 0);
+        N1 = Pack.littleEndianToLong(keyiv[1], 8);
 
         m_state = forEncryption ? State.EncInit : State.DecInit;
 

core/src/main/java/org/bouncycastle/crypto/engines/AsconBaseEngine.java

@@ -8,7 +8,7 @@
 import org.bouncycastle.util.Longs;
 
 abstract class AsconBaseEngine
-    implements AEADCipher
+    extends AEADBaseEngine
 {
     protected enum State
     {
@@ -25,11 +25,7 @@ protected enum State
 
 
     protected State m_state = State.Uninitialized;
-    protected String algorithmName;
     protected byte[] mac;
-    protected byte[] initialAssociatedText;
-    protected int CRYPTO_KEYBYTES;
-    protected int CRYPTO_ABYTES;
     protected int nr;
     protected int ASCON_AEAD_RATE;
     protected long K0;
@@ -254,12 +250,6 @@ public void processAADBytes(byte[] inBytes, int inOff, int len)
         m_bufPos = len;
     }
 
-    public int processByte(byte in, byte[] out, int outOff)
-        throws DataLengthException
-    {
-        return processBytes(new byte[]{in}, 0, 1, out, outOff);
-    }
-
     public int processBytes(byte[] inBytes, int inOff, int len, byte[] outBytes, int outOff)
         throws DataLengthException
     {
@@ -479,22 +469,5 @@ protected void reset(boolean clearMac)
         }
     }
 
-    public int getKeyBytesSize()
-    {
-        return CRYPTO_KEYBYTES;
-    }
-
-    public int getIVBytesSize()
-    {
-        return CRYPTO_ABYTES;
-    }
-
-
-    public String getAlgorithmName()
-    {
-        return algorithmName;
-    }
-
     public abstract String getAlgorithmVersion();
-
 }

core/src/main/java/org/bouncycastle/crypto/engines/AsconEngine.java

@@ -1,11 +1,6 @@
 package org.bouncycastle.crypto.engines;
 
 import org.bouncycastle.crypto.CipherParameters;
-import org.bouncycastle.crypto.CryptoServicesRegistrar;
-import org.bouncycastle.crypto.constraints.DefaultServiceProperties;
-import org.bouncycastle.crypto.params.AEADParameters;
-import org.bouncycastle.crypto.params.KeyParameter;
-import org.bouncycastle.crypto.params.ParametersWithIV;
 import org.bouncycastle.util.Pack;
 
 /**
@@ -36,31 +31,29 @@ public enum AsconParameters
     }
 
     private final AsconParameters asconParameters;
-
     private long K2;
 
     public AsconEngine(AsconParameters asconParameters)
     {
         this.asconParameters = asconParameters;
+        CRYPTO_NPUBBYTES = 16;
+        CRYPTO_ABYTES = 16;
         switch (asconParameters)
         {
         case ascon80pq:
             CRYPTO_KEYBYTES = 20;
-            CRYPTO_ABYTES = 16;
             ASCON_AEAD_RATE = 8;
             ASCON_IV = 0xa0400c0600000000L;
             algorithmName = "Ascon-80pq AEAD";
             break;
         case ascon128a:
             CRYPTO_KEYBYTES = 16;
-            CRYPTO_ABYTES = 16;
             ASCON_AEAD_RATE = 16;
             ASCON_IV = 0x80800c0800000000L;
             algorithmName = "Ascon-128a AEAD";
             break;
         case ascon128:
             CRYPTO_KEYBYTES = 16;
-            CRYPTO_ABYTES = 16;
             ASCON_AEAD_RATE = 8;
             ASCON_IV = 0x80400c0600000000L;
             algorithmName = "Ascon-128 AEAD";
@@ -219,62 +212,20 @@ private void finishData(State nextState)
     public void init(boolean forEncryption, CipherParameters params)
         throws IllegalArgumentException
     {
-        KeyParameter key;
-        byte[] npub;
-        if (params instanceof AEADParameters)
-        {
-            AEADParameters aeadParameters = (AEADParameters)params;
-            key = aeadParameters.getKey();
-            npub = aeadParameters.getNonce();
-            initialAssociatedText = aeadParameters.getAssociatedText();
-
-            int macSizeBits = aeadParameters.getMacSize();
-            if (macSizeBits != CRYPTO_ABYTES * 8)
-            {
-                throw new IllegalArgumentException("Invalid value for MAC size: " + macSizeBits);
-            }
-        }
-        else if (params instanceof ParametersWithIV)
-        {
-            ParametersWithIV withIV = (ParametersWithIV)params;
-            key = (KeyParameter)withIV.getParameters();
-            npub = withIV.getIV();
-            initialAssociatedText = null;
-        }
-        else
-        {
-            throw new IllegalArgumentException("invalid parameters passed to Ascon");
-        }
-
-        if (key == null)
-        {
-            throw new IllegalArgumentException("Ascon Init parameters must include a key");
-        }
-        if (npub == null || npub.length != CRYPTO_ABYTES)
-        {
-            throw new IllegalArgumentException(asconParameters + " requires exactly " + CRYPTO_ABYTES + " bytes of IV");
-        }
-
-        byte[] k = key.getKey();
-        if (k.length != CRYPTO_KEYBYTES)
-        {
-            throw new IllegalArgumentException(asconParameters + " key must be " + CRYPTO_KEYBYTES + " bytes long");
-        }
+        byte[][] keyiv = initialize(forEncryption, params);
 
-        CryptoServicesRegistrar.checkConstraints(new DefaultServiceProperties(
-            this.getAlgorithmName(), 128, params, Utils.getPurpose(forEncryption)));
-        N0 = Pack.bigEndianToLong(npub, 0);
-        N1 = Pack.bigEndianToLong(npub, 8);
+        N0 = Pack.bigEndianToLong(keyiv[1], 0);
+        N1 = Pack.bigEndianToLong(keyiv[1], 8);
         if (CRYPTO_KEYBYTES == 16)
         {
-            K1 = Pack.bigEndianToLong(k, 0);
-            K2 = Pack.bigEndianToLong(k, 8);
+            K1 = Pack.bigEndianToLong(keyiv[0], 0);
+            K2 = Pack.bigEndianToLong(keyiv[0], 8);
         }
         else if (CRYPTO_KEYBYTES == 20)
         {
-            K0 = Pack.bigEndianToInt(k, 0);
-            K1 = Pack.bigEndianToLong(k, 4);
-            K2 = Pack.bigEndianToLong(k, 12);
+            K0 = Pack.bigEndianToInt(keyiv[0], 0);
+            K1 = Pack.bigEndianToLong(keyiv[0], 4);
+            K2 = Pack.bigEndianToLong(keyiv[0], 12);
         }
         else
         {