dealt with explicit naming for OEAP for cross-provider support - relates to github #953

Author: dghgit

pkix/src/main/java/org/bouncycastle/operator/jcajce/JceAsymmetricKeyUnwrapper.java

@@ -97,7 +97,7 @@ public GenericKey generateUnwrappedKey(AlgorithmIdentifier encryptedKeyAlgorithm
         {
             Key sKey = null;
 
-            Cipher keyCipher = helper.createAsymmetricWrapper(this.getAlgorithmIdentifier().getAlgorithm(), extraMappings);
+            Cipher keyCipher = helper.createAsymmetricWrapper(this.getAlgorithmIdentifier(), extraMappings);
             AlgorithmParameters algParams = helper.createAlgorithmParameters(this.getAlgorithmIdentifier());
 
             try

pkix/src/main/java/org/bouncycastle/operator/jcajce/JceAsymmetricKeyWrapper.java

@@ -235,7 +235,7 @@ public byte[] generateWrappedKey(GenericKey encryptionKey)
         }
         else
         {
-            Cipher keyEncryptionCipher = helper.createAsymmetricWrapper(getAlgorithmIdentifier().getAlgorithm(), extraMappings);
+            Cipher keyEncryptionCipher = helper.createAsymmetricWrapper(getAlgorithmIdentifier(), extraMappings);
             AlgorithmParameters algParams = null;
 
             try

pkix/src/main/java/org/bouncycastle/operator/jcajce/JceKTSKeyUnwrapper.java

@@ -57,7 +57,7 @@ public GenericKey generateUnwrappedKey(AlgorithmIdentifier encryptedKeyAlgorithm
         throws OperatorException
     {
         GenericHybridParameters params = GenericHybridParameters.getInstance(this.getAlgorithmIdentifier().getParameters());
-        Cipher keyCipher = helper.createAsymmetricWrapper(this.getAlgorithmIdentifier().getAlgorithm(), extraMappings);
+        Cipher keyCipher = helper.createAsymmetricWrapper(this.getAlgorithmIdentifier(), extraMappings);
         String symmetricWrappingAlg = helper.getWrappingAlgorithmName(params.getDem().getAlgorithm());
         RsaKemParameters kemParameters = RsaKemParameters.getInstance(params.getKem().getParameters());
         int keySizeInBits = kemParameters.getKeyLength().intValue() * 8;

pkix/src/main/java/org/bouncycastle/operator/jcajce/JceKTSKeyWrapper.java

@@ -77,7 +77,7 @@ public JceKTSKeyWrapper setSecureRandom(SecureRandom random)
     public byte[] generateWrappedKey(GenericKey encryptionKey)
         throws OperatorException
     {
-        Cipher keyEncryptionCipher = helper.createAsymmetricWrapper(getAlgorithmIdentifier().getAlgorithm(), new HashMap());
+        Cipher keyEncryptionCipher = helper.createAsymmetricWrapper(getAlgorithmIdentifier(), new HashMap());
 
         try
         {

pkix/src/main/java/org/bouncycastle/operator/jcajce/OperatorHelper.java

@@ -23,15 +23,19 @@
 import javax.crypto.Cipher;
 import javax.crypto.KeyAgreement;
 
+import org.bouncycastle.asn1.ASN1Encodable;
 import org.bouncycastle.asn1.ASN1Integer;
 import org.bouncycastle.asn1.ASN1ObjectIdentifier;
 import org.bouncycastle.asn1.ASN1Sequence;
+import org.bouncycastle.asn1.DERNull;
+import org.bouncycastle.asn1.DERSequence;
 import org.bouncycastle.asn1.cryptopro.CryptoProObjectIdentifiers;
 import org.bouncycastle.asn1.kisa.KISAObjectIdentifiers;
 import org.bouncycastle.asn1.nist.NISTObjectIdentifiers;
 import org.bouncycastle.asn1.ntt.NTTObjectIdentifiers;
 import org.bouncycastle.asn1.oiw.OIWObjectIdentifiers;
 import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
+import org.bouncycastle.asn1.pkcs.RSAESOAEPparams;
 import org.bouncycastle.asn1.pkcs.RSASSAPSSparams;
 import org.bouncycastle.asn1.teletrust.TeleTrusTObjectIdentifiers;
 import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
@@ -55,6 +59,10 @@ class OperatorHelper
 
     private static DefaultSignatureNameFinder sigFinder = new DefaultSignatureNameFinder();
 
+    private static final RSAESOAEPparams oaepParams_sha256 = calculateDefForDigest(NISTObjectIdentifiers.id_sha256);
+    private static final RSAESOAEPparams oaepParams_sha384 = calculateDefForDigest(NISTObjectIdentifiers.id_sha384);
+    private static final RSAESOAEPparams oaepParams_sha512 = calculateDefForDigest(NISTObjectIdentifiers.id_sha512);
+
     static
     {
         oids.put(OIWObjectIdentifiers.idSHA1, "SHA1");
@@ -101,6 +109,17 @@ class OperatorHelper
         symmetricKeyAlgNames.put(PKCSObjectIdentifiers.RC2_CBC, "RC2");
     }
 
+    private static RSAESOAEPparams calculateDefForDigest(ASN1ObjectIdentifier digest)
+    {
+        AlgorithmIdentifier hashAlgorithm = new AlgorithmIdentifier(
+            digest,
+            DERNull.INSTANCE);
+        AlgorithmIdentifier maskGenAlgorithm = new AlgorithmIdentifier(
+            PKCSObjectIdentifiers.id_mgf1,
+            new AlgorithmIdentifier(digest, DERNull.INSTANCE));
+        return new RSAESOAEPparams(hashAlgorithm, maskGenAlgorithm, RSAESOAEPparams.DEFAULT_P_SOURCE_ALGORITHM);
+    }
+
     private JcaJceHelper helper;
 
     OperatorHelper(JcaJceHelper helper)
@@ -185,9 +204,10 @@ KeyAgreement createKeyAgreement(ASN1ObjectIdentifier algorithm)
         }
     }
 
-    Cipher createAsymmetricWrapper(ASN1ObjectIdentifier algorithm, Map extraAlgNames)
+    Cipher createAsymmetricWrapper(AlgorithmIdentifier algorithmID, Map extraAlgNames)
         throws OperatorCreationException
     {
+        ASN1ObjectIdentifier algorithm = algorithmID.getAlgorithm();
         try
         {
             String cipherName = null;
@@ -200,6 +220,35 @@ Cipher createAsymmetricWrapper(ASN1ObjectIdentifier algorithm, Map extraAlgNames
             if (cipherName == null)
             {
                 cipherName = (String)asymmetricWrapperAlgNames.get(algorithm);
+                if (cipherName.indexOf("OAEPPadding") > 0)
+                {
+                    ASN1Encodable params = algorithmID.getParameters().toASN1Primitive();
+                    if ((params instanceof ASN1Sequence))
+                    {
+                        ASN1Sequence paramSeq = ASN1Sequence.getInstance(params);
+                        if (paramSeq.size() == 0)
+                        {
+                            cipherName = "RSA/ECB/OAEPWithSHA-1AndMGF1Padding";
+                        }
+                        else if (paramSeq.size() >= 2)
+                        {
+                            // we only check the first 2 as pSource may be different
+                            paramSeq = new DERSequence(new ASN1Encodable[]{ paramSeq.getObjectAt(0), paramSeq.getObjectAt(1) });
+                            if (oaepParams_sha256.equals(paramSeq))
+                            {
+                                cipherName = "RSA/ECB/OAEPWithSHA-256AndMGF1Padding";
+                            }
+                            else if (oaepParams_sha512.equals(paramSeq))
+                            {
+                                cipherName = "RSA/ECB/OAEPWithSHA-512AndMGF1Padding";
+                            }
+                            else if (oaepParams_sha384.equals(paramSeq))
+                            {
+                                cipherName = "RSA/ECB/OAEPWithSHA-384AndMGF1Padding";
+                            }
+                        }
+                    }
+                }
             }
 
             if (cipherName != null)
@@ -223,6 +272,18 @@ Cipher createAsymmetricWrapper(ASN1ObjectIdentifier algorithm, Map extraAlgNames
                             // Ignore
                         }
                     }
+                    else if (cipherName.indexOf("ECB/OAEPWith") > 0)
+                    {
+                        int start = cipherName.indexOf("ECB");
+                        try
+                        {
+                            return helper.createCipher(cipherName.substring(0, start) + "NONE" + cipherName.substring(start + 3));
+                        }
+                        catch (NoSuchAlgorithmException ex)
+                        {
+                            // Ignore
+                        }
+                    }
                     // Ignore
                 }
             }

pkix/src/test/java/org/bouncycastle/cms/test/NewEnvelopedDataTest.java

@@ -1113,6 +1113,12 @@ public void testKeyTransOAEPSHA256()
         doTestKeyTransOAEPDefaultNamed("SHA-256");
     }
 
+    public void testKeyTransOAEPSHA384()
+        throws Exception
+    {
+        doTestKeyTransOAEPDefaultNamed("SHA-384");
+    }
+
     public void testKeyTransOAEPSHA1AndSHA256()
         throws Exception
     {