Reformatting in tls

peterdettman · peterdettman · commit 94607c5f081d · 2025-01-06T17:47:14.000+07:00
diff --git a/tls/src/main/java/org/bouncycastle/tls/NamedGroup.java b/tls/src/main/java/org/bouncycastle/tls/NamedGroup.java
@@ -117,7 +117,7 @@ public class NamedGroup
     public static final int MLKEM1024 = 0x1024;
 
     /* Names of the actual underlying elliptic curves (not necessarily matching the NamedGroup names). */
-    private static final String[] CURVE_NAMES = new String[] { "sect163k1", "sect163r1", "sect163r2", "sect193r1",
+    private static final String[] CURVE_NAMES = new String[]{ "sect163k1", "sect163r1", "sect163r2", "sect193r1",
         "sect193r2", "sect233k1", "sect233r1", "sect239k1", "sect283k1", "sect283r1", "sect409k1", "sect409r1",
         "sect571k1", "sect571r1", "secp160k1", "secp160r1", "secp160r2", "secp192k1", "secp192r1", "secp224k1",
         "secp224r1", "secp256k1", "secp256r1", "secp384r1", "secp521r1", "brainpoolP256r1", "brainpoolP384r1",
@@ -126,7 +126,7 @@ public class NamedGroup
         "GostR3410-2001-CryptoPro-C", "Tc26-Gost-3410-12-512-paramSetA", "Tc26-Gost-3410-12-512-paramSetB",
         "Tc26-Gost-3410-12-512-paramSetC", "sm2p256v1" };
 
-    private static final String[] FINITE_FIELD_NAMES = new String[] { "ffdhe2048", "ffdhe3072", "ffdhe4096",
+    private static final String[] FINITE_FIELD_NAMES = new String[]{ "ffdhe2048", "ffdhe3072", "ffdhe4096",
         "ffdhe6144", "ffdhe8192" };
 
     public static boolean canBeNegotiated(int namedGroup, ProtocolVersion version)
diff --git a/tls/src/main/java/org/bouncycastle/tls/SimulatedTlsSRPIdentityManager.java b/tls/src/main/java/org/bouncycastle/tls/SimulatedTlsSRPIdentityManager.java
@@ -36,7 +36,7 @@ public static SimulatedTlsSRPIdentityManager getRFC5054Default(TlsCrypto crypto,
 
         TlsSRPConfig srpConfig = new TlsSRPConfig();
 
-        srpConfig.setExplicitNG(new BigInteger[] { group.getN(), group.getG() });
+        srpConfig.setExplicitNG(new BigInteger[]{ group.getN(), group.getG() });
 
         return new SimulatedTlsSRPIdentityManager(group, crypto.createSRP6VerifierGenerator(srpConfig), mac);
     }
diff --git a/tls/src/main/java/org/bouncycastle/tls/TlsDHUtils.java b/tls/src/main/java/org/bouncycastle/tls/TlsDHUtils.java
@@ -101,7 +101,7 @@ public static int getNamedGroupForDHParameters(BigInteger p, BigInteger g)
 
     public static DHGroup getStandardGroupForDHParameters(BigInteger p, BigInteger g)
     {
-        DHGroup[] standardGroups = new DHGroup[] { DHStandardGroups.rfc7919_ffdhe2048,
+        DHGroup[] standardGroups = new DHGroup[]{ DHStandardGroups.rfc7919_ffdhe2048,
             DHStandardGroups.rfc7919_ffdhe3072, DHStandardGroups.rfc7919_ffdhe4096, DHStandardGroups.rfc7919_ffdhe6144,
             DHStandardGroups.rfc7919_ffdhe8192, DHStandardGroups.rfc3526_1536, DHStandardGroups.rfc3526_2048,
             DHStandardGroups.rfc3526_3072, DHStandardGroups.rfc3526_4096, DHStandardGroups.rfc3526_6144,
diff --git a/tls/src/main/java/org/bouncycastle/tls/crypto/impl/jcajce/srp/SRP6Util.java b/tls/src/main/java/org/bouncycastle/tls/crypto/impl/jcajce/srp/SRP6Util.java
@@ -8,7 +8,7 @@
 
 class SRP6Util
 {
-    private static final byte[] colon = new byte[] { (byte)':' };
+    private static final byte[] COLON = new byte[]{ (byte)':' };
 
     private static BigInteger ZERO = BigInteger.valueOf(0);
     private static BigInteger ONE = BigInteger.valueOf(1);
@@ -26,7 +26,7 @@ public static BigInteger calculateU(TlsHash digest, BigInteger N, BigInteger A,
     public static BigInteger calculateX(TlsHash digest, BigInteger N, byte[] salt, byte[] identity, byte[] password)
     {
         digest.update(identity, 0, identity.length);
-        digest.update(colon, 0, 1);
+        digest.update(COLON, 0, 1);
         digest.update(password, 0, password.length);
 
         byte[] output = digest.calculateHash();
diff --git a/tls/src/test/java/org/bouncycastle/jsse/provider/test/ECDSACredentialsTest.java b/tls/src/test/java/org/bouncycastle/jsse/provider/test/ECDSACredentialsTest.java
@@ -126,10 +126,10 @@ private void implTestECDSACredentials(int port, String protocol, int namedGroup)
         X509Certificate caCert = TestUtils.generateRootCert(caKeyPair);
 
         KeyStore serverKs = createKeyStore();
-        serverKs.setKeyEntry("server", caKeyPair.getPrivate(), keyPass, new X509Certificate[] { caCert });
+        serverKs.setKeyEntry("server", caKeyPair.getPrivate(), keyPass, new X509Certificate[]{ caCert });
 
         KeyStore clientKs = createKeyStore();
-        clientKs.setKeyEntry("client", caKeyPair.getPrivate(), keyPass, new X509Certificate[] { caCert });
+        clientKs.setKeyEntry("client", caKeyPair.getPrivate(), keyPass, new X509Certificate[]{ caCert });
 
         TestProtocolUtil.runClientAndServer(new ECDSAServer(port, protocol, serverKs, keyPass, caCert),
             new ECDSAClient(port, protocol, clientKs, keyPass, caCert));
diff --git a/tls/src/test/java/org/bouncycastle/jsse/provider/test/KeyManagerFactoryTest.java b/tls/src/test/java/org/bouncycastle/jsse/provider/test/KeyManagerFactoryTest.java
@@ -199,7 +199,7 @@ private KeyStore getEcKeyStore(boolean agreement)
 
         ks.load(null, PASSWORD);
 
-        ks.setKeyEntry("test", ePair.getPrivate(), PASSWORD, new Certificate[] { eCert, iCert });
+        ks.setKeyEntry("test", ePair.getPrivate(), PASSWORD, new Certificate[]{ eCert, iCert });
 
         ks.setCertificateEntry("root", rCert);
 
@@ -230,7 +230,7 @@ private KeyStore getRsaKeyStore(boolean encryption)
 
         ks.load(null, PASSWORD);
 
-        ks.setKeyEntry("test", ePair.getPrivate(), PASSWORD, new Certificate[] { eCert, iCert });
+        ks.setKeyEntry("test", ePair.getPrivate(), PASSWORD, new Certificate[]{ eCert, iCert });
 
         ks.setCertificateEntry("root", rCert);
 
@@ -248,14 +248,14 @@ private void implTestKeyManager(BCX509ExtendedKeyManager manager, String keyType
         BCX509Key key = manager.chooseServerKeyBC(new String[]{ keyType }, null, null);
         assertNotNull(key);
 
-        alias = manager.chooseServerAlias(keyType, new Principal[] { new X500Principal("CN=TLS Test") }, null);
+        alias = manager.chooseServerAlias(keyType, new Principal[]{ new X500Principal("CN=TLS Test") }, null);
         assertNull(alias);
 
-        key = manager.chooseServerKeyBC(new String[]{ keyType }, new Principal[] { new X500Principal("CN=TLS Test") },
+        key = manager.chooseServerKeyBC(new String[]{ keyType }, new Principal[]{ new X500Principal("CN=TLS Test") },
             null);
         assertNull(key);
 
-        alias = manager.chooseServerAlias(keyType, new Principal[] { new X500Principal("CN=TLS Test CA") }, null);
+        alias = manager.chooseServerAlias(keyType, new Principal[]{ new X500Principal("CN=TLS Test CA") }, null);
         assertNotNull(alias);
         assertNotNull(manager.getCertificateChain(alias));
         assertNotNull(manager.getPrivateKey(alias));
diff --git a/tls/src/test/java/org/bouncycastle/tls/crypto/test/TlsCryptoTest.java b/tls/src/test/java/org/bouncycastle/tls/crypto/test/TlsCryptoTest.java
@@ -444,7 +444,7 @@ public void testHKDF() throws IOException
 
     public void testHKDFExpandLimit()
     {
-        int[] hashes = new int[] { CryptoHashAlgorithm.md5, CryptoHashAlgorithm.sha1, CryptoHashAlgorithm.sha224,
+        int[] hashes = new int[]{ CryptoHashAlgorithm.md5, CryptoHashAlgorithm.sha1, CryptoHashAlgorithm.sha224,
             CryptoHashAlgorithm.sha256, CryptoHashAlgorithm.sha384, CryptoHashAlgorithm.sha512,
             CryptoHashAlgorithm.sm3, CryptoHashAlgorithm.gostr3411_2012_256 };
 
@@ -561,7 +561,7 @@ public void testSignatures12() throws Exception
         }
 
         // Signature algorithms usable with HashAlgorithm.Intrinsic in TLS 1.2
-        short[] intrinsicSignatureAlgorithms = new short[] { SignatureAlgorithm.ed25519, SignatureAlgorithm.ed448,
+        short[] intrinsicSignatureAlgorithms = new short[]{ SignatureAlgorithm.ed25519, SignatureAlgorithm.ed448,
             SignatureAlgorithm.gostr34102012_256, SignatureAlgorithm.gostr34102012_512,
             SignatureAlgorithm.rsa_pss_pss_sha256, SignatureAlgorithm.rsa_pss_pss_sha384,
             SignatureAlgorithm.rsa_pss_pss_sha512, SignatureAlgorithm.rsa_pss_rsae_sha256,
@@ -587,7 +587,7 @@ public void testSignatures12() throws Exception
 
     public void testSignatures13() throws Exception
     {
-        int[] signatureSchemes = new int[] { SignatureScheme.ecdsa_brainpoolP256r1tls13_sha256,
+        int[] signatureSchemes = new int[]{ SignatureScheme.ecdsa_brainpoolP256r1tls13_sha256,
             SignatureScheme.ecdsa_brainpoolP384r1tls13_sha384, SignatureScheme.ecdsa_brainpoolP512r1tls13_sha512,
             SignatureScheme.ecdsa_secp256r1_sha256, SignatureScheme.ecdsa_secp384r1_sha384,
             SignatureScheme.ecdsa_secp521r1_sha512, SignatureScheme.ed25519, SignatureScheme.ed448,
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/DTLSRawKeysProtocolTest.java b/tls/src/test/java/org/bouncycastle/tls/test/DTLSRawKeysProtocolTest.java
@@ -41,7 +41,7 @@ private void testClientSendsExtensionButServerDoesNotSupportIt(ProtocolVersion t
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.X509,
                 (short) -1,
-                new short[] {CertificateType.RawPublicKey, CertificateType.X509},
+                new short[]{ CertificateType.RawPublicKey, CertificateType.X509 },
                 null,
                 generateKeyPair(),
                 tlsVersion);
@@ -70,14 +70,14 @@ private void testExtensionsAreOmittedIfSpecifiedButOnlyContainX509(ProtocolVersi
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.X509,
                 CertificateType.X509,
-                new short[] {CertificateType.X509},
-                new short[] {CertificateType.X509},
+                new short[]{ CertificateType.X509 },
+                new short[]{ CertificateType.X509 },
                 generateKeyPair(),
                 tlsVersion);
         MockRawKeysTlsServer server = new MockRawKeysTlsServer(
                 CertificateType.X509,
                 CertificateType.X509,
-                new short[] {CertificateType.X509},
+                new short[]{ CertificateType.X509 },
                 generateKeyPair(),
                 tlsVersion);
         pumpData(client, server);
@@ -106,14 +106,14 @@ private void testBothSidesUseRawKey(ProtocolVersion tlsVersion) throws Exception
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.RawPublicKey,
                 CertificateType.RawPublicKey,
-                new short[] {CertificateType.RawPublicKey},
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
+                new short[]{ CertificateType.RawPublicKey },
                 generateKeyPair(),
                 tlsVersion);
         MockRawKeysTlsServer server = new MockRawKeysTlsServer(
                 CertificateType.RawPublicKey,
                 CertificateType.RawPublicKey,
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
                 generateKeyPair(),
                 tlsVersion);
         pumpData(client, server);
@@ -135,7 +135,7 @@ private void testServerUsesRawKeyAndClientIsAnonymous(ProtocolVersion tlsVersion
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.RawPublicKey,
                 (short) -1,
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
                 null,
                 generateKeyPair(),
                 tlsVersion);
@@ -164,7 +164,7 @@ private void testServerUsesRawKeyAndClientUsesX509(ProtocolVersion tlsVersion) t
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.RawPublicKey,
                 CertificateType.X509,
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
                 null,
                 generateKeyPair(),
                 tlsVersion);
@@ -194,13 +194,13 @@ private void testServerUsesX509AndClientUsesRawKey(ProtocolVersion tlsVersion) t
                 CertificateType.X509,
                 CertificateType.RawPublicKey,
                 null,
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
                 generateKeyPair(),
                 tlsVersion);
         MockRawKeysTlsServer server = new MockRawKeysTlsServer(
                 CertificateType.X509,
                 CertificateType.RawPublicKey,
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
                 generateKeyPair(),
                 tlsVersion);
         pumpData(client, server);
@@ -227,13 +227,13 @@ private void testClientSendsClientCertExtensionButServerHasNoCommonTypes(Protoco
                     CertificateType.X509,
                     CertificateType.RawPublicKey,
                     null,
-                    new short[] {CertificateType.RawPublicKey},
+                    new short[]{ CertificateType.RawPublicKey },
                     generateKeyPair(),
                     tlsVersion);
             MockRawKeysTlsServer server = new MockRawKeysTlsServer(
                     CertificateType.X509,
                     CertificateType.X509,
-                    new short[] {CertificateType.X509},
+                    new short[]{ CertificateType.X509 },
                     generateKeyPair(),
                     tlsVersion);
             pumpData(client, server);
@@ -266,14 +266,14 @@ private void testClientSendsServerCertExtensionButServerHasNoCommonTypes(Protoco
             MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                     CertificateType.RawPublicKey,
                     CertificateType.RawPublicKey,
-                    new short[] {CertificateType.RawPublicKey},
+                    new short[]{ CertificateType.RawPublicKey },
                     null,
                     generateKeyPair(),
                     tlsVersion);
             MockRawKeysTlsServer server = new MockRawKeysTlsServer(
                     CertificateType.X509,
                     CertificateType.RawPublicKey,
-                    new short[] {CertificateType.RawPublicKey},
+                    new short[]{ CertificateType.RawPublicKey },
                     generateKeyPair(),
                     tlsVersion);
             pumpData(client, server);
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/MockPSKDTLSClient.java b/tls/src/test/java/org/bouncycastle/tls/test/MockPSKDTLSClient.java
@@ -101,7 +101,7 @@ public void notifyServerCertificate(TlsServerCertificate serverCertificate) thro
                     throw new TlsFatalAlert(AlertDescription.bad_certificate);
                 }
 
-                String[] trustedCertResources = new String[] { "x509-server-rsa-enc.pem" };
+                String[] trustedCertResources = new String[]{ "x509-server-rsa-enc.pem" };
 
                 TlsCertificate[] certPath = TlsTestUtils.getTrustedCertPath(context.getCrypto(), chain[0],
                     trustedCertResources);
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/MockPSKTls13Client.java b/tls/src/test/java/org/bouncycastle/tls/test/MockPSKTls13Client.java
@@ -36,7 +36,7 @@ class MockPSKTls13Client
 
 //    public short[] getPskKeyExchangeModes()
 //    {
-//        return new short[] { PskKeyExchangeMode.psk_dhe_ke, PskKeyExchangeMode.psk_ke };
+//        return new short[]{ PskKeyExchangeMode.psk_dhe_ke, PskKeyExchangeMode.psk_ke };
 //    }
 
     protected Vector getProtocolNames()
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/MockPSKTls13Server.java b/tls/src/test/java/org/bouncycastle/tls/test/MockPSKTls13Server.java
@@ -46,7 +46,7 @@ protected Vector getProtocolNames()
     protected int[] getSupportedCipherSuites()
     {
         return TlsUtils.getSupportedCipherSuites(getCrypto(),
-            new int[] { CipherSuite.TLS_AES_128_CCM_8_SHA256, CipherSuite.TLS_AES_128_CCM_SHA256,
+            new int[]{ CipherSuite.TLS_AES_128_CCM_8_SHA256, CipherSuite.TLS_AES_128_CCM_SHA256,
                 CipherSuite.TLS_AES_128_GCM_SHA256, CipherSuite.TLS_CHACHA20_POLY1305_SHA256 });
     }
 
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/MockRawKeysTlsClient.java b/tls/src/test/java/org/bouncycastle/tls/test/MockRawKeysTlsClient.java
@@ -55,7 +55,7 @@ class MockRawKeysTlsClient
 
     protected ProtocolVersion[] getSupportedVersions()
     {
-        return new ProtocolVersion[] {tlsVersion};
+        return new ProtocolVersion[]{tlsVersion};
     }
 
     protected int[] getSupportedCipherSuites()
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/MockSRPTlsClient.java b/tls/src/test/java/org/bouncycastle/tls/test/MockSRPTlsClient.java
@@ -124,7 +124,7 @@ public void notifyServerCertificate(TlsServerCertificate serverCertificate) thro
                     throw new TlsFatalAlert(AlertDescription.bad_certificate);
                 }
 
-                String[] trustedCertResources = new String[] { "x509-server-dsa.pem", "x509-server-rsa_pss_256.pem",
+                String[] trustedCertResources = new String[]{ "x509-server-dsa.pem", "x509-server-rsa_pss_256.pem",
                     "x509-server-rsa_pss_384.pem", "x509-server-rsa_pss_512.pem", "x509-server-rsa-sign.pem" };
 
                 TlsCertificate[] certPath = TlsTestUtils.getTrustedCertPath(context.getCrypto(), chain[0],
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/OCSPTest.java b/tls/src/test/java/org/bouncycastle/tls/test/OCSPTest.java
@@ -111,7 +111,7 @@ public void testOCSPResponder()
 
         OCSPResponder responder = new TestOCSPResponderImpl(server);
 
-        Certificate certs = new Certificate(new TlsCertificate[] {
+        Certificate certs = new Certificate(new TlsCertificate[]{
             crypto.createCertificate(cert1.getEncoded()),
             crypto.createCertificate(cert2.getEncoded())});
 
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/TestOCSPCertServer.java b/tls/src/test/java/org/bouncycastle/tls/test/TestOCSPCertServer.java
@@ -66,7 +66,7 @@ public TestOCSPCertServer()
         X509Certificate ocspCert = CertChainUtil.createEndEntityCert(
             "CN=OCSP Signing Certificate", signKP.getPublic(), interKP.getPrivate(), interCert, KeyPurposeId.id_kp_OCSPSigning);
 
-        this.chain = new X509CertificateHolder[] {
+        this.chain = new X509CertificateHolder[]{
             new X509CertificateHolder(ocspCert.getEncoded()),
             new X509CertificateHolder(interCert.getEncoded()) };
     }
@@ -100,7 +100,7 @@ public PKIXIdentity issueClientCert(String subjectName, boolean markRevoked)
         }
 
         return new PKIXIdentity(PrivateKeyInfo.getInstance(eeKP.getPrivate().getEncoded()),
-            new X509CertificateHolder[] {
+            new X509CertificateHolder[]{
                 new X509CertificateHolder(endEntityCert.getEncoded()),
                 new X509CertificateHolder(interCert.getEncoded())});
     }
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/TlsClientRawKeysTest.java b/tls/src/test/java/org/bouncycastle/tls/test/TlsClientRawKeysTest.java
@@ -40,8 +40,8 @@ static void runTest(InetAddress address, int port, ProtocolVersion tlsVersion) t
         MockRawKeysTlsClient client = new MockRawKeysTlsClient(
                 CertificateType.RawPublicKey,
                 CertificateType.RawPublicKey,
-                new short[] {CertificateType.RawPublicKey},
-                new short[] {CertificateType.RawPublicKey},
+                new short[]{ CertificateType.RawPublicKey },
+                new short[]{ CertificateType.RawPublicKey },
                 new Ed25519PrivateKeyParameters(new SecureRandom()),
                 tlsVersion);
         TlsClientProtocol protocol = openTlsConnection(address, port, client);
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/TlsRawKeysProtocolTest.java b/tls/src/test/java/org/bouncycastle/tls/test/TlsRawKeysProtocolTest.java
diff --git a/tls/src/test/java/org/bouncycastle/tls/test/TlsServerRawKeysTest.java b/tls/src/test/java/org/bouncycastle/tls/test/TlsServerRawKeysTest.java

Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@ public static SimulatedTlsSRPIdentityManager getRFC5054Default(TlsCrypto crypto,`
`36`	`36`
`37`	`37`	`TlsSRPConfig srpConfig = new TlsSRPConfig();`
`38`	`38`
`39`		`- srpConfig.setExplicitNG(new BigInteger[] { group.getN(), group.getG() });`
	`39`	`+ srpConfig.setExplicitNG(new BigInteger[]{ group.getN(), group.getG() });`
`40`	`40`
`41`	`41`	`return new SimulatedTlsSRPIdentityManager(group, crypto.createSRP6VerifierGenerator(srpConfig), mac);`
`42`	`42`	`}`
Original file line number	Diff line number	Diff line change
`@@ -101,7 +101,7 @@ public static int getNamedGroupForDHParameters(BigInteger p, BigInteger g)`
`101`	`101`
`102`	`102`	`public static DHGroup getStandardGroupForDHParameters(BigInteger p, BigInteger g)`
`103`	`103`	`{`
`104`		`- DHGroup[] standardGroups = new DHGroup[] { DHStandardGroups.rfc7919_ffdhe2048,`
	`104`	`+ DHGroup[] standardGroups = new DHGroup[]{ DHStandardGroups.rfc7919_ffdhe2048,`
`105`	`105`	`DHStandardGroups.rfc7919_ffdhe3072, DHStandardGroups.rfc7919_ffdhe4096, DHStandardGroups.rfc7919_ffdhe6144,`
`106`	`106`	`DHStandardGroups.rfc7919_ffdhe8192, DHStandardGroups.rfc3526_1536, DHStandardGroups.rfc3526_2048,`
`107`	`107`	`DHStandardGroups.rfc3526_3072, DHStandardGroups.rfc3526_4096, DHStandardGroups.rfc3526_6144,`
Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`
`9`	`9`	`class SRP6Util`
`10`	`10`	`{`
`11`		`- private static final byte[] colon = new byte[] { (byte)':' };`
	`11`	`+ private static final byte[] COLON = new byte[]{ (byte)':' };`
`12`	`12`
`13`	`13`	`private static BigInteger ZERO = BigInteger.valueOf(0);`
`14`	`14`	`private static BigInteger ONE = BigInteger.valueOf(1);`
`@@ -26,7 +26,7 @@ public static BigInteger calculateU(TlsHash digest, BigInteger N, BigInteger A,`
`26`	`26`	`public static BigInteger calculateX(TlsHash digest, BigInteger N, byte[] salt, byte[] identity, byte[] password)`
`27`	`27`	`{`
`28`	`28`	`digest.update(identity, 0, identity.length);`
`29`		`- digest.update(colon, 0, 1);`
	`29`	`+ digest.update(COLON, 0, 1);`
`30`	`30`	`digest.update(password, 0, password.length);`
`31`	`31`
`32`	`32`	`byte[] output = digest.calculateHash();`
Original file line number	Diff line number	Diff line change
`@@ -101,7 +101,7 @@ public void notifyServerCertificate(TlsServerCertificate serverCertificate) thro`
`101`	`101`	`throw new TlsFatalAlert(AlertDescription.bad_certificate);`
`102`	`102`	`}`
`103`	`103`
`104`		`- String[] trustedCertResources = new String[] { "x509-server-rsa-enc.pem" };`
	`104`	`+ String[] trustedCertResources = new String[]{ "x509-server-rsa-enc.pem" };`
`105`	`105`
`106`	`106`	`TlsCertificate[] certPath = TlsTestUtils.getTrustedCertPath(context.getCrypto(), chain[0],`
`107`	`107`	`trustedCertResources);`