bcgit
diff --git a/‎prov/src/main/java/org/bouncycastle/jcajce/provider/util/AsymmetricAlgorithmProvider.java‎
Lines changed: 19 additions & 0 deletions b/‎prov/src/main/java/org/bouncycastle/jcajce/provider/util/AsymmetricAlgorithmProvider.java‎
Lines changed: 19 additions & 0 deletions
diff --git a/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Dilithium.java‎
Lines changed: 9 additions & 9 deletions b/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Dilithium.java‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Falcon.java‎
Lines changed: 4 additions & 5 deletions b/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Falcon.java‎
Lines changed: 4 additions & 5 deletions
diff --git a/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Kyber.java‎
Lines changed: 8 additions & 0 deletions b/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/Kyber.java‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/dilithium/DilithiumKeyFactorySpi.java‎
Lines changed: 77 additions & 39 deletions b/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/dilithium/DilithiumKeyFactorySpi.java‎
Lines changed: 77 additions & 39 deletions
diff --git a/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/falcon/FalconKeyFactorySpi.java‎
Lines changed: 35 additions & 40 deletions b/‎prov/src/main/java/org/bouncycastle/pqc/jcajce/provider/falcon/FalconKeyFactorySpi.java‎
Lines changed: 35 additions & 40 deletions
@@ -1,9 +1,11 @@
 package org.bouncycastle.jcajce.provider.util;
 
+import java.security.KeyFactorySpi;
 import java.util.Map;
 
 import org.bouncycastle.asn1.ASN1ObjectIdentifier;
 import org.bouncycastle.jcajce.provider.config.ConfigurableProvider;
+import org.bouncycastle.jcajce.provider.symmetric.AES;
 
 public abstract class AsymmetricAlgorithmProvider
     extends AlgorithmProvider
@@ -99,6 +101,23 @@ protected void addKeyPairGeneratorAlgorithm(
         }
     }
 
+    protected void addKeyFactoryAlgorithm(
+        ConfigurableProvider provider,
+        String algorithm,
+        String className,
+        ASN1ObjectIdentifier oid,
+        AsymmetricKeyInfoConverter keyInfoConverter)
+    {
+        provider.addAlgorithm("KeyFactory." + algorithm, className);
+        if (oid != null)
+        {
+            provider.addAlgorithm("Alg.Alias.KeyFactory." + oid, algorithm);
+            provider.addAlgorithm("Alg.Alias.KeyFactory.OID." + oid, algorithm);
+
+            provider.addKeyInfoConverter(oid, keyInfoConverter);
+        }
+    }
+
     protected void addKeyGeneratorAlgorithm(
         ConfigurableProvider provider,
         String algorithm,
 
@@ -5,6 +5,7 @@
 import org.bouncycastle.jcajce.provider.util.AsymmetricAlgorithmProvider;
 import org.bouncycastle.jcajce.provider.util.AsymmetricKeyInfoConverter;
 import org.bouncycastle.pqc.jcajce.provider.dilithium.DilithiumKeyFactorySpi;
+import org.bouncycastle.pqc.jcajce.provider.falcon.FalconKeyFactorySpi;
 
 public class Dilithium
 {
@@ -20,6 +21,14 @@ public Mappings()
         public void configure(ConfigurableProvider provider)
         {
             provider.addAlgorithm("KeyFactory.DILITHIUM", PREFIX + "DilithiumKeyFactorySpi");
+
+            addKeyFactoryAlgorithm(provider, "DILITHIUM2", PREFIX + "DilithiumKeyFactorySpi$Base2", BCObjectIdentifiers.dilithium2, new DilithiumKeyFactorySpi.Base2());
+            addKeyFactoryAlgorithm(provider, "DILITHIUM3", PREFIX + "DilithiumKeyFactorySpi$Base3", BCObjectIdentifiers.dilithium3, new DilithiumKeyFactorySpi.Base3());
+            addKeyFactoryAlgorithm(provider, "DILITHIUM5", PREFIX + "DilithiumKeyFactorySpi$Base5", BCObjectIdentifiers.dilithium5, new DilithiumKeyFactorySpi.Base5());
+            addKeyFactoryAlgorithm(provider, "DILITHIUM2-AES", PREFIX + "DilithiumKeyFactorySpi$Base2_AES", BCObjectIdentifiers.dilithium2_aes, new DilithiumKeyFactorySpi.Base2());
+            addKeyFactoryAlgorithm(provider, "DILITHIUM3-AES", PREFIX + "DilithiumKeyFactorySpi$Base3_AES", BCObjectIdentifiers.dilithium3_aes, new DilithiumKeyFactorySpi.Base3());
+            addKeyFactoryAlgorithm(provider, "DILITHIUM5-AES", PREFIX + "DilithiumKeyFactorySpi$Base5_AES", BCObjectIdentifiers.dilithium5_aes, new DilithiumKeyFactorySpi.Base5());
+
             provider.addAlgorithm("KeyPairGenerator.DILITHIUM", PREFIX + "DilithiumKeyPairGeneratorSpi");
 
             addKeyPairGeneratorAlgorithm(provider, "DILITHIUM2", PREFIX + "DilithiumKeyPairGeneratorSpi$Base2", BCObjectIdentifiers.dilithium2);
@@ -37,15 +46,6 @@ public void configure(ConfigurableProvider provider)
             addSignatureAlgorithm(provider, "DILITHIUM2-AES", PREFIX + "SignatureSpi$Base2_AES", BCObjectIdentifiers.dilithium2_aes);
             addSignatureAlgorithm(provider, "DILITHIUM3-AES", PREFIX + "SignatureSpi$Base3_AES", BCObjectIdentifiers.dilithium3_aes);
             addSignatureAlgorithm(provider, "DILITHIUM5-AES", PREFIX + "SignatureSpi$Base5_AES", BCObjectIdentifiers.dilithium5_aes);
-
-            AsymmetricKeyInfoConverter keyFact = new DilithiumKeyFactorySpi();
-
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium2, "DILITHIUM", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium3, "DILITHIUM", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium5, "DILITHIUM", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium2_aes, "DILITHIUM", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium3_aes, "DILITHIUM", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.dilithium5_aes, "DILITHIUM", keyFact);
         }
     }
 }
@@ -20,6 +20,10 @@ public Mappings()
         public void configure(ConfigurableProvider provider)
         {
             provider.addAlgorithm("KeyFactory.FALCON", PREFIX + "FalconKeyFactorySpi");
+
+            addKeyFactoryAlgorithm(provider, "FALCON-512", PREFIX + "FalconKeyFactorySpi$Falcon512", BCObjectIdentifiers.falcon_512, new FalconKeyFactorySpi.Falcon512());
+            addKeyFactoryAlgorithm(provider, "FALCON-1024", PREFIX + "FalconKeyFactorySpi$Falcon1024", BCObjectIdentifiers.falcon_1024,  new FalconKeyFactorySpi.Falcon1024());
+
             provider.addAlgorithm("KeyPairGenerator.FALCON", PREFIX + "FalconKeyPairGeneratorSpi");
 
             addKeyPairGeneratorAlgorithm(provider, "FALCON-512", PREFIX + "FalconKeyPairGeneratorSpi$Falcon512", BCObjectIdentifiers.falcon_512);
@@ -29,11 +33,6 @@ public void configure(ConfigurableProvider provider)
 
             addSignatureAlgorithm(provider, "FALCON-512", PREFIX + "SignatureSpi$Falcon512", BCObjectIdentifiers.falcon_512);
             addSignatureAlgorithm(provider, "FALCON-1024", PREFIX + "SignatureSpi$Falcon1024", BCObjectIdentifiers.falcon_1024);
-
-            AsymmetricKeyInfoConverter keyFact = new FalconKeyFactorySpi();
-
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.falcon_512, "FALCON", keyFact);
-            registerKeyFactoryOid(provider, BCObjectIdentifiers.falcon_1024, "FALCON", keyFact);
         }
     }
 }
@@ -20,6 +20,14 @@ public Mappings()
         public void configure(ConfigurableProvider provider)
         {
             provider.addAlgorithm("KeyFactory.KYBER", PREFIX + "KyberKeyFactorySpi");
+
+            addKeyFactoryAlgorithm(provider, "KYBER512", PREFIX + "KyberKeyFactorySpi$Kyber512", BCObjectIdentifiers.kyber512, new KyberKeyFactorySpi.Kyber512());
+            addKeyFactoryAlgorithm(provider, "KYBER768", PREFIX + "KyberKeyFactorySpi$Kyber768", BCObjectIdentifiers.kyber768, new KyberKeyFactorySpi.Kyber768());
+            addKeyFactoryAlgorithm(provider, "KYBER1024", PREFIX + "KyberKeyFactorySpi$Kyber1024", BCObjectIdentifiers.kyber1024, new KyberKeyFactorySpi.Kyber1024());
+            addKeyFactoryAlgorithm(provider, "KYBER512-AES", PREFIX + "KyberKeyFactorySpi$Kyber512_AES", BCObjectIdentifiers.kyber512_aes, new KyberKeyFactorySpi.Kyber512_AES());
+            addKeyFactoryAlgorithm(provider, "KYBER768-AES", PREFIX + "KyberKeyFactorySpi$Kyber768_AES", BCObjectIdentifiers.kyber768_aes, new KyberKeyFactorySpi.Kyber768_AES());
+            addKeyFactoryAlgorithm(provider, "KYBER1024-AES", PREFIX + "KyberKeyFactorySpi$Kyber1024_AES", BCObjectIdentifiers.kyber1024_aes, new KyberKeyFactorySpi.Kyber1024_AES());
+
             provider.addAlgorithm("KeyPairGenerator.KYBER", PREFIX + "KyberKeyPairGeneratorSpi");
 
             addKeyPairGeneratorAlgorithm(provider, "KYBER512", PREFIX + "KyberKeyPairGeneratorSpi$Kyber512", BCObjectIdentifiers.kyber512);
 
@@ -4,64 +4,48 @@
 import java.security.InvalidKeyException;
 import java.security.Key;
 import java.security.KeyFactorySpi;
+import java.security.NoSuchAlgorithmException;
 import java.security.PrivateKey;
 import java.security.PublicKey;
 import java.security.spec.InvalidKeySpecException;
 import java.security.spec.KeySpec;
 import java.security.spec.PKCS8EncodedKeySpec;
 import java.security.spec.X509EncodedKeySpec;
+import java.util.HashSet;
+import java.util.Set;
 
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
 import org.bouncycastle.asn1.ASN1Primitive;
+import org.bouncycastle.asn1.bc.BCObjectIdentifiers;
 import org.bouncycastle.asn1.pkcs.PrivateKeyInfo;
 import org.bouncycastle.asn1.x509.SubjectPublicKeyInfo;
 import org.bouncycastle.jcajce.provider.util.AsymmetricKeyInfoConverter;
+import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumParameters;
+import org.bouncycastle.pqc.jcajce.provider.util.BaseKeyFactorySpi;
 
 public class DilithiumKeyFactorySpi
-    extends KeyFactorySpi
-    implements AsymmetricKeyInfoConverter
+    extends BaseKeyFactorySpi
 {
-    public PrivateKey engineGeneratePrivate(KeySpec keySpec)
-            throws InvalidKeySpecException
-    {
-        if (keySpec instanceof PKCS8EncodedKeySpec)
-        {
-            // get the DER-encoded Key according to PKCS#8 from the spec
-            byte[] encKey = ((PKCS8EncodedKeySpec)keySpec).getEncoded();
+    private static final Set<ASN1ObjectIdentifier> keyOids = new HashSet<ASN1ObjectIdentifier>();
 
-            try
-            {
-                return generatePrivate(PrivateKeyInfo.getInstance(ASN1Primitive.fromByteArray(encKey)));
-            }
-            catch (Exception e)
-            {
-                throw new InvalidKeySpecException(e.toString());
-            }
-        }
-
-        throw new InvalidKeySpecException("Unsupported key specification: "
-                + keySpec.getClass() + ".");
+    static
+    {
+        keyOids.add(BCObjectIdentifiers.dilithium2);
+        keyOids.add(BCObjectIdentifiers.dilithium3);
+        keyOids.add(BCObjectIdentifiers.dilithium5);
+        keyOids.add(BCObjectIdentifiers.dilithium2_aes);
+        keyOids.add(BCObjectIdentifiers.dilithium3_aes);
+        keyOids.add(BCObjectIdentifiers.dilithium5_aes);
     }
 
-    public PublicKey engineGeneratePublic(KeySpec keySpec)
-            throws InvalidKeySpecException
+    public DilithiumKeyFactorySpi()
     {
-        if (keySpec instanceof X509EncodedKeySpec)
-        {
-            // get the DER-encoded Key according to X.509 from the spec
-            byte[] encKey = ((X509EncodedKeySpec)keySpec).getEncoded();
-
-            // decode the SubjectPublicKeyInfo data structure to the pki object
-            try
-            {
-                return generatePublic(SubjectPublicKeyInfo.getInstance(encKey));
-            }
-            catch (Exception e)
-            {
-                throw new InvalidKeySpecException(e.toString());
-            }
-        }
+        super(keyOids);
+    }
 
-        throw new InvalidKeySpecException("Unknown key specification: " + keySpec + ".");
+    public DilithiumKeyFactorySpi(ASN1ObjectIdentifier keyOid)
+    {
+        super(keyOid);
     }
 
     public final KeySpec engineGetKeySpec(Key key, Class keySpec)
@@ -113,4 +97,58 @@ public PublicKey generatePublic(SubjectPublicKeyInfo keyInfo)
     {
         return new BCDilithiumPublicKey(keyInfo);
     }
+
+    public static class Base2
+        extends DilithiumKeyFactorySpi
+    {
+        public Base2()
+        {
+            super(BCObjectIdentifiers.dilithium2);
+        }
+    }
+
+    public static class Base3
+        extends DilithiumKeyFactorySpi
+    {
+        public Base3()
+        {
+            super(BCObjectIdentifiers.dilithium3);
+        }
+    }
+
+    public static class Base5
+        extends DilithiumKeyFactorySpi
+    {
+        public Base5()
+        {
+            super(BCObjectIdentifiers.dilithium5);
+        }
+    }
+
+    public static class Base2_AES
+        extends DilithiumKeyFactorySpi
+    {
+        public Base2_AES()
+        {
+            super(BCObjectIdentifiers.dilithium2_aes);
+        }
+    }
+
+    public static class Base3_AES
+        extends DilithiumKeyFactorySpi
+    {
+        public Base3_AES()
+        {
+            super(BCObjectIdentifiers.dilithium3_aes);
+        }
+    }
+
+    public static class Base5_AES
+        extends DilithiumKeyFactorySpi
+    {
+        public Base5_AES()
+        {
+            super(BCObjectIdentifiers.dilithium5_aes);
+        }
+    }
 }
@@ -10,58 +10,35 @@
 import java.security.spec.KeySpec;
 import java.security.spec.PKCS8EncodedKeySpec;
 import java.security.spec.X509EncodedKeySpec;
+import java.util.HashSet;
+import java.util.Set;
 
-import org.bouncycastle.asn1.ASN1Primitive;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.bc.BCObjectIdentifiers;
 import org.bouncycastle.asn1.pkcs.PrivateKeyInfo;
 import org.bouncycastle.asn1.x509.SubjectPublicKeyInfo;
 import org.bouncycastle.jcajce.provider.util.AsymmetricKeyInfoConverter;
+import org.bouncycastle.pqc.jcajce.provider.util.BaseKeyFactorySpi;
 
 public class FalconKeyFactorySpi
-    extends KeyFactorySpi
-    implements AsymmetricKeyInfoConverter
+    extends BaseKeyFactorySpi
 {
-    public PrivateKey engineGeneratePrivate(KeySpec keySpec)
-            throws InvalidKeySpecException
-    {
-        if (keySpec instanceof PKCS8EncodedKeySpec)
-        {
-            // get the DER-encoded Key according to PKCS#8 from the spec
-            byte[] encKey = ((PKCS8EncodedKeySpec)keySpec).getEncoded();
+    private static final Set<ASN1ObjectIdentifier> keyOids = new HashSet<ASN1ObjectIdentifier>();
 
-            try
-            {
-                return generatePrivate(PrivateKeyInfo.getInstance(ASN1Primitive.fromByteArray(encKey)));
-            }
-            catch (Exception e)
-            {
-                throw new InvalidKeySpecException(e.toString());
-            }
-        }
-
-        throw new InvalidKeySpecException("Unsupported key specification: "
-                + keySpec.getClass() + ".");
+    static
+    {
+        keyOids.add(BCObjectIdentifiers.falcon_512);
+        keyOids.add(BCObjectIdentifiers.falcon_1024);
     }
 
-    public PublicKey engineGeneratePublic(KeySpec keySpec)
-            throws InvalidKeySpecException
+    public FalconKeyFactorySpi()
     {
-        if (keySpec instanceof X509EncodedKeySpec)
-        {
-            // get the DER-encoded Key according to X.509 from the spec
-            byte[] encKey = ((X509EncodedKeySpec)keySpec).getEncoded();
-
-            // decode the SubjectPublicKeyInfo data structure to the pki object
-            try
-            {
-                return generatePublic(SubjectPublicKeyInfo.getInstance(encKey));
-            }
-            catch (Exception e)
-            {
-                throw new InvalidKeySpecException(e.toString());
-            }
-        }
+        super(keyOids);
+    }
 
-        throw new InvalidKeySpecException("Unknown key specification: " + keySpec + ".");
+    public FalconKeyFactorySpi(ASN1ObjectIdentifier keyOid)
+    {
+        super(keyOid);
     }
 
     public final KeySpec engineGetKeySpec(Key key, Class keySpec)
@@ -113,4 +90,22 @@ public PublicKey generatePublic(SubjectPublicKeyInfo keyInfo)
     {
         return new BCFalconPublicKey(keyInfo);
     }
+
+    public static class Falcon512
+        extends FalconKeyFactorySpi
+    {
+        public Falcon512()
+        {
+            super(BCObjectIdentifiers.falcon_512);
+        }
+    }
+
+    public static class Falcon1024
+        extends FalconKeyFactorySpi
+    {
+        public Falcon1024()
+        {
+            super(BCObjectIdentifiers.falcon_1024);
+        }
+    }
 }
Original file line number	Diff line number	Diff line change
`@@ -20,6 +20,10 @@ public Mappings()`
`20`	`20`	`public void configure(ConfigurableProvider provider)`
`21`	`21`	`{`
`22`	`22`	`provider.addAlgorithm("KeyFactory.FALCON", PREFIX + "FalconKeyFactorySpi");`
	`23`	`+`
	`24`	`+ addKeyFactoryAlgorithm(provider, "FALCON-512", PREFIX + "FalconKeyFactorySpi$Falcon512", BCObjectIdentifiers.falcon_512, new FalconKeyFactorySpi.Falcon512());`
	`25`	`+ addKeyFactoryAlgorithm(provider, "FALCON-1024", PREFIX + "FalconKeyFactorySpi$Falcon1024", BCObjectIdentifiers.falcon_1024, new FalconKeyFactorySpi.Falcon1024());`
	`26`	`+`
`23`	`27`	`provider.addAlgorithm("KeyPairGenerator.FALCON", PREFIX + "FalconKeyPairGeneratorSpi");`
`24`	`28`
`25`	`29`	`addKeyPairGeneratorAlgorithm(provider, "FALCON-512", PREFIX + "FalconKeyPairGeneratorSpi$Falcon512", BCObjectIdentifiers.falcon_512);`
`@@ -29,11 +33,6 @@ public void configure(ConfigurableProvider provider)`
`29`	`33`
`30`	`34`	`addSignatureAlgorithm(provider, "FALCON-512", PREFIX + "SignatureSpi$Falcon512", BCObjectIdentifiers.falcon_512);`
`31`	`35`	`addSignatureAlgorithm(provider, "FALCON-1024", PREFIX + "SignatureSpi$Falcon1024", BCObjectIdentifiers.falcon_1024);`
`32`		`-`
`33`		`- AsymmetricKeyInfoConverter keyFact = new FalconKeyFactorySpi();`
`34`		`-`
`35`		`- registerKeyFactoryOid(provider, BCObjectIdentifiers.falcon_512, "FALCON", keyFact);`
`36`		`- registerKeyFactoryOid(provider, BCObjectIdentifiers.falcon_1024, "FALCON", keyFact);`
`37`	`36`	`}`
`38`	`37`	`}`
`39`	`38`	`}`