Abstract core KEM functionality out of DHKEM 2/2

jmcrawford45 · web-flow · commit 928626d6ced6 · 2025-01-13T16:29:04.000-05:00
This change was missed in the initial port of #1664. Without this change, customers cannot provide a non-DH KEM
diff --git a/core/src/main/java/org/bouncycastle/crypto/hpke/HPKE.java b/core/src/main/java/org/bouncycastle/crypto/hpke/HPKE.java
@@ -70,6 +70,25 @@ public HPKE(byte mode, short kemId, short kdfId, short aeadId)
 
     }
 
+    public HPKE(byte mode, short kemId, short kdfId, short aeadId, KEM kem, int encSize)
+    {
+        this.mode = mode;
+        this.kemId = kemId;
+        this.kdfId = kdfId;
+        this.aeadId = aeadId;
+        this.hkdf = new HKDF(kdfId);
+        this.kem = kem;
+        if (aeadId == aead_AES_GCM128)
+        {
+            Nk = 16;
+        }
+        else
+        {
+            Nk = 32;
+        }
+        this.encSize = encSize;
+    }
+
     public int getEncSize()
     {
         return kem.getEncryptionSize();
