relates to #1228 - simplified use of PGPSessionKeyEncryptedData

dghgit · dghgit · commit 49c371e0ae98 · 2022-10-05T19:28:11.000+11:00
diff --git a/pg/src/main/java/org/bouncycastle/openpgp/PGPEncryptedDataList.java b/pg/src/main/java/org/bouncycastle/openpgp/PGPEncryptedDataList.java
@@ -191,11 +191,10 @@ public Iterator<PGPEncryptedData> iterator()
      * Create a decryption method using a {@link PGPSessionKey}. This method can be used to decrypt messages which do not
      * contain a SKESK or PKESK packet using a session key.
      *
-     * @param sessionKey session key for message decryption
      * @return session key encrypted data
      */
-    public PGPSessionKeyEncryptedData makeSessionKeyEncryptedData(PGPSessionKey sessionKey)
+    public PGPSessionKeyEncryptedData extractSessionKeyEncryptedData()
     {
-        return new PGPSessionKeyEncryptedData(sessionKey, data);
+        return new PGPSessionKeyEncryptedData(data);
     }
 }
diff --git a/pg/src/main/java/org/bouncycastle/openpgp/PGPPBEEncryptedData.java b/pg/src/main/java/org/bouncycastle/openpgp/PGPPBEEncryptedData.java
@@ -112,6 +112,9 @@ public InputStream getDataStream(
         }
     }
 
+    /**
+     * @deprecated will be removed in 1.74, use PGPEncryptedDataList.extractSessionKeyEncryptedData() and then apply the dataDecryptorFactory.
+     */
     public InputStream getDataStream(
         SessionKeyDataDecryptorFactory dataDecryptorFactory)
         throws PGPException
diff --git a/pg/src/main/java/org/bouncycastle/openpgp/PGPPublicKeyEncryptedData.java b/pg/src/main/java/org/bouncycastle/openpgp/PGPPublicKeyEncryptedData.java
@@ -108,6 +108,9 @@ public InputStream getDataStream(
         return getDataStream(dataDecryptorFactory, getSessionKey(dataDecryptorFactory));
     }
 
+    /**
+     * @deprecated will be removed in 1.74, use PGPEncryptedDataList.extractSessionKeyEncryptedData() and then apply the dataDecryptorFactory.
+     */
     public InputStream getDataStream(
         SessionKeyDataDecryptorFactory dataDecryptorFactory)
         throws PGPException
diff --git a/pg/src/main/java/org/bouncycastle/openpgp/PGPSessionKeyEncryptedData.java b/pg/src/main/java/org/bouncycastle/openpgp/PGPSessionKeyEncryptedData.java
@@ -5,15 +5,18 @@
 import org.bouncycastle.bcpg.InputStreamPacket;
 import org.bouncycastle.openpgp.operator.SessionKeyDataDecryptorFactory;
 
+/**
+ * The basis of PGP encrypted data - encrypted data encrypted using a symmetric session key.
+ */
 public class PGPSessionKeyEncryptedData
     extends PGPSymmetricEncryptedData
 {
     private final PGPSessionKey sessionKey;
 
-    PGPSessionKeyEncryptedData(PGPSessionKey sessionKey, InputStreamPacket encData)
+    PGPSessionKeyEncryptedData(InputStreamPacket encData)
     {
         super(encData);
-        this.sessionKey = sessionKey;
+        this.sessionKey = null;
     }
 
     @Override
diff --git a/pg/src/test/java/org/bouncycastle/openpgp/test/PGPSessionKeyTest.java b/pg/src/test/java/org/bouncycastle/openpgp/test/PGPSessionKeyTest.java
@@ -214,10 +214,9 @@ private void verifyJcePBEDecryptorFactoryFromSessionKeyCanDecryptDataSuccessfull
 
         PGPObjectFactory objectFactory = new BcPGPObjectFactory(msgArmorIn);
         PGPEncryptedDataList encryptedDataList = (PGPEncryptedDataList)objectFactory.nextObject();
-        PGPPBEEncryptedData encryptedData = (PGPPBEEncryptedData)encryptedDataList.iterator().next();
+        PGPSessionKeyEncryptedData encryptedData = encryptedDataList.extractSessionKeyEncryptedData();
 
-        SessionKeyDataDecryptorFactory decryptorFactory = new JceSessionKeyDataDecryptorFactoryBuilder().build(
-            new PGPSessionKey(PBE_ENC_SESSIONKEY_ALG, Hex.decode(PBE_ENC_SESSIONKEY)));
+        SessionKeyDataDecryptorFactory decryptorFactory = new JceSessionKeyDataDecryptorFactoryBuilder().build(new PGPSessionKey(PBE_ENC_SESSIONKEY_ALG, Hex.decode(PBE_ENC_SESSIONKEY)));
         InputStream decrypted = encryptedData.getDataStream(decryptorFactory);
 
         objectFactory = new BcPGPObjectFactory(decrypted);
@@ -292,9 +291,10 @@ private void decryptMessageWithoutEskUsingSessionKey()
         isEquals(0, encryptedData.size()); // there is no encrypted session key packet
 
         // Add decryption method using a session key
-        PGPSessionKeyEncryptedData sessionKeyEncData = encryptedData.makeSessionKeyEncryptedData(sessionKey);
+        PGPSessionKeyEncryptedData sessionKeyEncData = encryptedData.extractSessionKeyEncryptedData();
 
         SessionKeyDataDecryptorFactory decryptorFactory = new BcSessionKeyDataDecryptorFactory(sessionKey);
+
         InputStream decrypted = sessionKeyEncData.getDataStream(decryptorFactory);
 
         objectFactory = new BcPGPObjectFactory(decrypted);

Original file line number	Diff line number	Diff line change
`@@ -191,11 +191,10 @@ public Iterator<PGPEncryptedData> iterator()`
`191`	`191`	`* Create a decryption method using a {@link PGPSessionKey}. This method can be used to decrypt messages which do not`
`192`	`192`	`* contain a SKESK or PKESK packet using a session key.`
`193`	`193`	`*`
`194`		`- * @param sessionKey session key for message decryption`
`195`	`194`	`* @return session key encrypted data`
`196`	`195`	`*/`
`197`		`- public PGPSessionKeyEncryptedData makeSessionKeyEncryptedData(PGPSessionKey sessionKey)`
	`196`	`+ public PGPSessionKeyEncryptedData extractSessionKeyEncryptedData()`
`198`	`197`	`{`
`199`		`- return new PGPSessionKeyEncryptedData(sessionKey, data);`
	`198`	`+ return new PGPSessionKeyEncryptedData(data);`
`200`	`199`	`}`
`201`	`200`	`}`
Original file line number	Diff line number	Diff line change
`@@ -112,6 +112,9 @@ public InputStream getDataStream(`
`112`	`112`	`}`
`113`	`113`	`}`
`114`	`114`
	`115`	`+ /**`
	`116`	`+ * @deprecated will be removed in 1.74, use PGPEncryptedDataList.extractSessionKeyEncryptedData() and then apply the dataDecryptorFactory.`
	`117`	`+ */`
`115`	`118`	`public InputStream getDataStream(`
`116`	`119`	`SessionKeyDataDecryptorFactory dataDecryptorFactory)`
`117`	`120`	`throws PGPException`
Original file line number	Diff line number	Diff line change
`@@ -108,6 +108,9 @@ public InputStream getDataStream(`
`108`	`108`	`return getDataStream(dataDecryptorFactory, getSessionKey(dataDecryptorFactory));`
`109`	`109`	`}`
`110`	`110`
	`111`	`+ /**`
	`112`	`+ * @deprecated will be removed in 1.74, use PGPEncryptedDataList.extractSessionKeyEncryptedData() and then apply the dataDecryptorFactory.`
	`113`	`+ */`
`111`	`114`	`public InputStream getDataStream(`
`112`	`115`	`SessionKeyDataDecryptorFactory dataDecryptorFactory)`
`113`	`116`	`throws PGPException`
Original file line number	Diff line number	Diff line change
`@@ -5,15 +5,18 @@`
`5`	`5`	`import org.bouncycastle.bcpg.InputStreamPacket;`
`6`	`6`	`import org.bouncycastle.openpgp.operator.SessionKeyDataDecryptorFactory;`
`7`	`7`
	`8`	`+/**`
	`9`	`+ * The basis of PGP encrypted data - encrypted data encrypted using a symmetric session key.`
	`10`	`+ */`
`8`	`11`	`public class PGPSessionKeyEncryptedData`
`9`	`12`	`extends PGPSymmetricEncryptedData`
`10`	`13`	`{`
`11`	`14`	`private final PGPSessionKey sessionKey;`
`12`	`15`
`13`		`- PGPSessionKeyEncryptedData(PGPSessionKey sessionKey, InputStreamPacket encData)`
	`16`	`+ PGPSessionKeyEncryptedData(InputStreamPacket encData)`
`14`	`17`	`{`
`15`	`18`	`super(encData);`
`16`		`- this.sessionKey = sessionKey;`
	`19`	`+ this.sessionKey = null;`
`17`	`20`	`}`
`18`	`21`
`19`	`22`	`@Override`