Use PGPDataEncryptorBuilder as parameter in PGPKeyEncryptionMethodGenerator.generate

Author: gefeili

pg/src/main/java/org/bouncycastle/openpgp/PGPEncryptedDataGenerator.java

@@ -9,21 +9,16 @@
 import org.bouncycastle.bcpg.AEADEncDataPacket;
 import org.bouncycastle.bcpg.BCPGHeaderObject;
 import org.bouncycastle.bcpg.BCPGOutputStream;
-import org.bouncycastle.bcpg.ContainedPacket;
 import org.bouncycastle.bcpg.HashAlgorithmTags;
 import org.bouncycastle.bcpg.PacketTags;
-import org.bouncycastle.bcpg.PublicKeyEncSessionPacket;
-import org.bouncycastle.bcpg.SymmetricEncDataPacket;
 import org.bouncycastle.bcpg.SymmetricEncIntegrityPacket;
 import org.bouncycastle.bcpg.SymmetricKeyAlgorithmTags;
-import org.bouncycastle.bcpg.SymmetricKeyEncSessionPacket;
 import org.bouncycastle.openpgp.operator.PBEKeyEncryptionMethodGenerator;
 import org.bouncycastle.openpgp.operator.PGPAEADDataEncryptor;
 import org.bouncycastle.openpgp.operator.PGPDataEncryptor;
 import org.bouncycastle.openpgp.operator.PGPDataEncryptorBuilder;
 import org.bouncycastle.openpgp.operator.PGPDigestCalculator;
 import org.bouncycastle.openpgp.operator.PGPKeyEncryptionMethodGenerator;
-import org.bouncycastle.openpgp.operator.PublicKeyKeyEncryptionMethodGenerator;
 import org.bouncycastle.util.io.TeeOutputStream;
 
 /**
@@ -259,26 +254,10 @@ else if (directS2K)
         PGPDataEncryptor dataEncryptor = dataEncryptorBuilder.build(messageKey);
         digestCalc = dataEncryptor.getIntegrityCalculator();
         BCPGHeaderObject encOut;
-        int version = (dataEncryptor instanceof PGPAEADDataEncryptor ? (isV5StyleAEAD ? 5 : 6) : 4); // OpenPGP v4, v5 or v6
         for (int i = 0; i < methods.size(); i++)
         {
             PGPKeyEncryptionMethodGenerator method = methods.get(i);
-            int packetVersion = 0;
-            if (method instanceof PBEKeyEncryptionMethodGenerator)
-            {
-                PBEKeyEncryptionMethodGenerator mGen = (PBEKeyEncryptionMethodGenerator)method;
-                mGen.setKekAlgorithm(mGen.getSessionKeyWrapperAlgorithm(defAlgorithm));
-                if (version >= 5)
-                {
-                    mGen.setAEADAlgorithm(dataEncryptorBuilder.getAeadAlgorithm());
-                }
-                packetVersion = version;
-            }
-            else if (method instanceof PublicKeyKeyEncryptionMethodGenerator)
-            {
-                packetVersion = version != 6 ? PublicKeyEncSessionPacket.VERSION_3 : PublicKeyEncSessionPacket.VERSION_6;
-            }
-            pOut.writePacket(method.generate(packetVersion, sessionInfo));
+            pOut.writePacket(method.generate(dataEncryptorBuilder, sessionInfo));
         }
         try
         {
@@ -292,14 +271,14 @@ else if (method instanceof PublicKeyKeyEncryptionMethodGenerator)
                 {
                     byte[] iv = aeadDataEncryptor.getIV();
                     encOut = new AEADEncDataPacket(
-                        dataEncryptorBuilder.getAlgorithm(), aeadDataEncryptor.getAEADAlgorithm(), aeadDataEncryptor.getChunkSize(), iv);
+                        defAlgorithm, aeadDataEncryptor.getAEADAlgorithm(), aeadDataEncryptor.getChunkSize(), iv);
                     ivOrSaltLen = iv.length;
                 }
                 else // data is encrypted by v2 SEIPD (AEAD), so write v6 SKESK packet
                 {
                     //AEAD(HKDF(S2K(passphrase), info), secrets, packetprefix)
                     encOut = SymmetricEncIntegrityPacket.createVersion2Packet(
-                        dataEncryptorBuilder.getAlgorithm(),
+                        defAlgorithm,
                         aeadDataEncryptor.getAEADAlgorithm(),
                         aeadDataEncryptor.getChunkSize(),
                         salt);

pg/src/main/java/org/bouncycastle/openpgp/operator/PBEKeyEncryptionMethodGenerator.java

@@ -117,21 +117,6 @@ public PBEKeyEncryptionMethodGenerator setSessionKeyWrapperAlgorithm(int wrapAlg
         return this;
     }
 
-    /**
-     * the {@link SymmetricKeyAlgorithmTags encryption algorithm} being used to wrap the session key
-     * */
-    public PBEKeyEncryptionMethodGenerator setKekAlgorithm(int kekAlgorithm)
-    {
-        this.kekAlgorithm = kekAlgorithm;
-        return this;
-    }
-
-    public PBEKeyEncryptionMethodGenerator setAEADAlgorithm(int aeadAlgorithm)
-    {
-        this.aeadAlgorithm = aeadAlgorithm;
-        return this;
-    }
-
     /**
      * Return the key wrapping algorithm this PBE key method is associated with.
      *
@@ -194,7 +179,8 @@ public byte[] getKey(int encAlgorithm)
      * SKESKv6 packets are used with Symmetrically-Encrypted Integrity-Protected Data (SEIPD) packets of
      * version 2 only.
      * A SKESKv6 packet MUST NOT precede a SEIPDv1, OED or SED packet.
-     * @param sessionInfo  session data generated by the encrypted data generator.
+     *
+     * @param sessionInfo session data generated by the encrypted data generator.
      * @return a packet encoding the provided information and the configuration of this instance.
      * @throws PGPException if an error occurs constructing the packet.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc9580.html#name-version-4-symmetric-key-enc">
@@ -204,10 +190,11 @@ public byte[] getKey(int encAlgorithm)
      * @see <a href="https://www.rfc-editor.org/rfc/rfc9580.html#name-version-6-symmetric-key-enc">
      * RFC9580 - Symmetric-Key Encrypted Session-Key Packet version 6</a>
      */
-    public ContainedPacket generate(int version, byte[] sessionInfo)
+    public ContainedPacket generate(PGPDataEncryptorBuilder dataEncryptorBuilder, byte[] sessionInfo)
         throws PGPException
     {
-        if (version == SymmetricKeyEncSessionPacket.VERSION_4)
+        int kekAlgorithm = getSessionKeyWrapperAlgorithm(dataEncryptorBuilder.getAlgorithm());
+        if (dataEncryptorBuilder.getAeadAlgorithm() <= 0)
         {
             if (sessionInfo == null)
             {
@@ -224,8 +211,10 @@ public ContainedPacket generate(int version, byte[] sessionInfo)
 
             return SymmetricKeyEncSessionPacket.createV4Packet(kekAlgorithm, s2k, encryptSessionInfo(kekAlgorithm, key, nSessionInfo));
         }
-        else if (version == SymmetricKeyEncSessionPacket.VERSION_5 || version == SymmetricKeyEncSessionPacket.VERSION_6)
+        else
         {
+            int aeadAlgorithm = dataEncryptorBuilder.getAeadAlgorithm();
+            int version = dataEncryptorBuilder.isV5StyleAEAD() ? SymmetricKeyEncSessionPacket.VERSION_5 : SymmetricKeyEncSessionPacket.VERSION_6;
             byte[] ikm = getKey(kekAlgorithm);
             byte[] info = new byte[]{
                 (byte)0xC3,
@@ -257,7 +246,6 @@ else if (version == SymmetricKeyEncSessionPacket.VERSION_5 || version == Symmetr
                 return SymmetricKeyEncSessionPacket.createV6Packet(kekAlgorithm, aeadAlgorithm, iv, s2k, esk, tag);
             }
         }
-        throw new PGPException("Unexpected version number");
     }
 
     protected byte[] getSessionKey(byte[] sessionInfo)

pg/src/main/java/org/bouncycastle/openpgp/operator/PGPKeyEncryptionMethodGenerator.java

@@ -9,6 +9,7 @@
  */
 public interface PGPKeyEncryptionMethodGenerator
 {
-    ContainedPacket generate(int version, byte[] sessionInfo)
+
+    ContainedPacket generate(PGPDataEncryptorBuilder dataEncryptorBuilder, byte[] sessionInfo)
         throws PGPException;
 }

pg/src/main/java/org/bouncycastle/openpgp/operator/PublicKeyKeyEncryptionMethodGenerator.java

@@ -184,10 +184,10 @@ private byte[] convertToEncodedMPI(byte[] encryptedSessionInfo)
      * @see <a href="https://www.rfc-editor.org/rfc/rfc9580.html#name-version-3-public-key-encryp">
      * RFC9580 - Version 3 Public Key Encrypted Session Key Packet</a>
      */
-    public ContainedPacket generate(int version, byte[] sessionInfo)
+    public ContainedPacket generate(PGPDataEncryptorBuilder dataEncryptorBuilder, byte[] sessionInfo)
         throws PGPException
     {
-        if (version == PublicKeyEncSessionPacket.VERSION_3)
+        if (dataEncryptorBuilder.getAeadAlgorithm() <= 0 || dataEncryptorBuilder.isV5StyleAEAD())
         {
             long keyId;
             if (useWildcardRecipient)
@@ -202,7 +202,7 @@ public ContainedPacket generate(int version, byte[] sessionInfo)
             byte[][] encodedEncSessionInfo = encodeEncryptedSessionInfo(encryptedSessionInfo);
             return PublicKeyEncSessionPacket.createV3PKESKPacket(keyId, pubKey.getAlgorithm(), encodedEncSessionInfo);
         }
-        else if (version == PublicKeyEncSessionPacket.VERSION_6)
+        else
         {
             byte[] keyFingerprint;
             int keyVersion;
@@ -224,7 +224,6 @@ else if (version == PublicKeyEncSessionPacket.VERSION_6)
             byte[][] encodedEncSessionInfo = encodeEncryptedSessionInfo(encryptedSessionInfo);
             return PublicKeyEncSessionPacket.createV6PKESKPacket(keyVersion, keyFingerprint, pubKey.getAlgorithm(), encodedEncSessionInfo);
         }
-        throw new PGPException("Unexpected version number");
     }
 
     /**