added use of OAEP and RSA/ECB/OAEPPadding to provide better support for SunJCE (relates to github #1277)

dghgit · dghgit · commit 77b8334b258f · 2022-11-21T07:27:50.000+11:00
diff --git a/pkix/src/main/java/org/bouncycastle/operator/jcajce/OperatorHelper.java b/pkix/src/main/java/org/bouncycastle/operator/jcajce/OperatorHelper.java
@@ -68,6 +68,7 @@ class OperatorHelper
 
         asymmetricWrapperAlgNames.put(PKCSObjectIdentifiers.rsaEncryption, "RSA/ECB/PKCS1Padding");
         asymmetricWrapperAlgNames.put(OIWObjectIdentifiers.elGamalAlgorithm, "Elgamal/ECB/PKCS1Padding");
+        asymmetricWrapperAlgNames.put(PKCSObjectIdentifiers.id_RSAES_OAEP, "RSA/ECB/OAEPPadding");
 
         asymmetricWrapperAlgNames.put(CryptoProObjectIdentifiers.gostR3410_2001, "ECGOST3410");
 
@@ -264,24 +265,43 @@ Cipher createSymmetricWrapper(ASN1ObjectIdentifier algorithm)
     AlgorithmParameters createAlgorithmParameters(AlgorithmIdentifier cipherAlgId)
         throws OperatorCreationException
     {
-        AlgorithmParameters parameters;
+        AlgorithmParameters parameters = null;
 
         if (cipherAlgId.getAlgorithm().equals(PKCSObjectIdentifiers.rsaEncryption))
         {
             return null;
         }
 
-        try
+        if (cipherAlgId.getAlgorithm().equals(PKCSObjectIdentifiers.id_RSAES_OAEP))
         {
-            parameters = helper.createAlgorithmParameters(cipherAlgId.getAlgorithm().getId());
-        }
-        catch (NoSuchAlgorithmException e)
-        {
-            return null;   // There's a good chance there aren't any!
+            try
+            {
+                parameters = helper.createAlgorithmParameters("OAEP");
+            }
+            catch (NoSuchAlgorithmException e)
+            {
+                // try below
+            }
+            catch (NoSuchProviderException e)
+            {
+                throw new OperatorCreationException("cannot create algorithm parameters: " + e.getMessage(), e);
+            }
         }
-        catch (NoSuchProviderException e)
+
+        if (parameters == null)
         {
-            throw new OperatorCreationException("cannot create algorithm parameters: " + e.getMessage(), e);
+            try
+            {
+                parameters = helper.createAlgorithmParameters(cipherAlgId.getAlgorithm().getId());
+            }
+            catch (NoSuchAlgorithmException e)
+            {
+                return null;   // There's a good chance there aren't any!
+            }
+            catch (NoSuchProviderException e)
+            {
+                throw new OperatorCreationException("cannot create algorithm parameters: " + e.getMessage(), e);
+            }
         }
 
         try
