added support for generating EdDSA keys from JVM EdEC key spec classes.

Author: dghgit

prov/src/main/jdk1.15/org/bouncycastle/jcajce/provider/asymmetric/edec/KeyFactorySpi.java

@@ -5,29 +5,31 @@
 import java.security.Key;
 import java.security.PrivateKey;
 import java.security.PublicKey;
+import java.security.spec.EdECPrivateKeySpec;
+import java.security.spec.EdECPublicKeySpec;
 import java.security.spec.InvalidKeySpecException;
 import java.security.spec.KeySpec;
+import java.security.spec.NamedParameterSpec;
 import java.security.spec.X509EncodedKeySpec;
 
 import org.bouncycastle.asn1.ASN1Encoding;
-import org.bouncycastle.asn1.ASN1InputStream;
 import org.bouncycastle.asn1.ASN1ObjectIdentifier;
 import org.bouncycastle.asn1.ASN1OctetString;
 import org.bouncycastle.asn1.ASN1Primitive;
 import org.bouncycastle.asn1.ASN1Sequence;
-import org.bouncycastle.asn1.DEROctetString;
-import org.bouncycastle.internal.asn1.edec.EdECObjectIdentifiers;
 import org.bouncycastle.asn1.pkcs.PrivateKeyInfo;
 import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
 import org.bouncycastle.asn1.x509.SubjectPublicKeyInfo;
 import org.bouncycastle.crypto.CipherParameters;
+import org.bouncycastle.crypto.params.AsymmetricKeyParameter;
 import org.bouncycastle.crypto.params.Ed25519PrivateKeyParameters;
 import org.bouncycastle.crypto.params.Ed25519PublicKeyParameters;
 import org.bouncycastle.crypto.params.Ed448PublicKeyParameters;
 import org.bouncycastle.crypto.params.X25519PublicKeyParameters;
 import org.bouncycastle.crypto.params.X448PublicKeyParameters;
 import org.bouncycastle.crypto.util.OpenSSHPrivateKeyUtil;
 import org.bouncycastle.crypto.util.OpenSSHPublicKeyUtil;
+import org.bouncycastle.internal.asn1.edec.EdECObjectIdentifiers;
 import org.bouncycastle.jcajce.interfaces.EdDSAPublicKey;
 import org.bouncycastle.jcajce.interfaces.XDHPublicKey;
 import org.bouncycastle.jcajce.provider.asymmetric.util.BaseKeyFactorySpi;
@@ -144,7 +146,32 @@ protected PrivateKey engineGeneratePrivate(
             {
                 return new BC15EdDSAPrivateKey((Ed25519PrivateKeyParameters)parameters);
             }
-            throw new IllegalStateException("openssh private key not Ed25519 private key");
+            throw new InvalidKeySpecException("openssh private key not Ed25519 private key");
+        }
+        else if (keySpec instanceof EdECPrivateKeySpec)
+        {
+            EdECPrivateKeySpec edSpec = (EdECPrivateKeySpec)keySpec;
+            try
+            {
+                AsymmetricKeyParameter parameters;
+                if (NamedParameterSpec.ED448.getName().equalsIgnoreCase(edSpec.getParams().getName()))
+                {
+                    parameters = SignatureSpi.getEd448PrivateKey(edSpec.getBytes());
+                }
+                else if (NamedParameterSpec.ED25519.getName().equalsIgnoreCase(edSpec.getParams().getName()))
+                {
+                    parameters = SignatureSpi.getEd25519PrivateKey(edSpec.getBytes());
+                }
+                else
+                {
+                    throw new InvalidKeySpecException("unrecognized named parameters: " + edSpec.getParams().getName());
+                }
+                return new BC15EdDSAPrivateKey(parameters);
+            }
+            catch (InvalidKeyException e)
+            {
+                throw new InvalidKeySpecException(e.getMessage(), e);
+            }
         }
 
         return super.engineGeneratePrivate(keySpec);
@@ -210,6 +237,31 @@ else if (keySpec instanceof RawEncodedKeySpec)
                 throw new InvalidKeySpecException("factory not a specific type, cannot recognise raw encoding");
             }
         }
+        else if (keySpec instanceof EdECPublicKeySpec)
+        {
+            EdECPublicKeySpec edSpec = (EdECPublicKeySpec)keySpec;
+            try
+            {
+                AsymmetricKeyParameter parameters;
+                if (NamedParameterSpec.ED448.getName().equalsIgnoreCase(edSpec.getParams().getName()))
+                {
+                    parameters = SignatureSpi.getEd448PublicKey(edSpec.getPoint());
+                }
+                else if (NamedParameterSpec.ED25519.getName().equalsIgnoreCase(edSpec.getParams().getName()))
+                {
+                    parameters = SignatureSpi.getEd25519PublicKey(edSpec.getPoint());
+                }
+                else
+                {
+                    throw new InvalidKeySpecException("unrecognized named parameters: " + edSpec.getParams().getName());
+                }
+                return new BC15EdDSAPublicKey(parameters);
+            }
+            catch (InvalidKeyException e)
+            {
+                throw new InvalidKeySpecException(e.getMessage(), e);
+            }
+        }
         else if (keySpec instanceof OpenSSHPublicKeySpec)
         {
             CipherParameters parameters = OpenSSHPublicKeyUtil.parsePublicKey(((OpenSSHPublicKeySpec)keySpec).getEncoded());
@@ -218,7 +270,7 @@ else if (keySpec instanceof OpenSSHPublicKeySpec)
                 return new BC15EdDSAPublicKey(new byte[0], ((Ed25519PublicKeyParameters)parameters).getEncoded());
             }
 
-            throw new IllegalStateException("openssh public key not Ed25519 public key");
+            throw new InvalidKeySpecException("openssh public key not Ed25519 public key");
         }
 
         return super.engineGeneratePublic(keySpec);

prov/src/main/jdk1.15/org/bouncycastle/jcajce/provider/asymmetric/edec/SignatureSpi.java

@@ -83,7 +83,7 @@ else if (priv instanceof Ed448PrivateKeyParameters)
         signer.init(true, priv);
     }
 
-    private static Ed25519PrivateKeyParameters getEd25519PrivateKey(byte[] keyData)
+    static Ed25519PrivateKeyParameters getEd25519PrivateKey(byte[] keyData)
         throws InvalidKeyException
     {
         if (Ed25519PrivateKeyParameters.KEY_SIZE != keyData.length)
@@ -94,15 +94,15 @@ private static Ed25519PrivateKeyParameters getEd25519PrivateKey(byte[] keyData)
         return new Ed25519PrivateKeyParameters(keyData, 0);
     }
 
-    private static Ed25519PublicKeyParameters getEd25519PublicKey(EdECPoint point)
+    static Ed25519PublicKeyParameters getEd25519PublicKey(EdECPoint point)
         throws InvalidKeyException
     {
         byte[] keyData = getPublicKeyData(Ed25519PublicKeyParameters.KEY_SIZE, point);
 
         return new Ed25519PublicKeyParameters(keyData, 0);
     }
 
-    private static Ed448PrivateKeyParameters getEd448PrivateKey(byte[] keyData)
+    static Ed448PrivateKeyParameters getEd448PrivateKey(byte[] keyData)
         throws InvalidKeyException
     {
         if (Ed448PrivateKeyParameters.KEY_SIZE != keyData.length)
@@ -113,7 +113,7 @@ private static Ed448PrivateKeyParameters getEd448PrivateKey(byte[] keyData)
         return new Ed448PrivateKeyParameters(keyData, 0);
     }
 
-    private static Ed448PublicKeyParameters getEd448PublicKey(EdECPoint point)
+    static Ed448PublicKeyParameters getEd448PublicKey(EdECPoint point)
         throws InvalidKeyException
     {
         byte[] keyData = getPublicKeyData(Ed448PublicKeyParameters.KEY_SIZE, point);

prov/src/test/jdk1.15/org/bouncycastle/jcajce/provider/test/EdDSA15Test.java

@@ -6,23 +6,27 @@
 import java.security.KeyFactory;
 import java.security.KeyPair;
 import java.security.KeyPairGenerator;
+import java.security.PrivateKey;
 import java.security.PublicKey;
 import java.security.Signature;
 import java.security.cert.Certificate;
 import java.security.cert.CertificateFactory;
 import java.security.interfaces.EdECKey;
 import java.security.spec.AlgorithmParameterSpec;
+import java.security.spec.EdECPrivateKeySpec;
+import java.security.spec.EdECPublicKeySpec;
+import java.security.spec.KeySpec;
 import java.security.spec.NamedParameterSpec;
 import java.util.Base64;
 
-import org.bouncycastle.jcajce.interfaces.EdDSAPrivateKey;
-import org.bouncycastle.jcajce.spec.RawEncodedKeySpec;
-import org.bouncycastle.jcajce.spec.EdDSAParameterSpec;
-import org.bouncycastle.jce.provider.BouncyCastleProvider;
-
 import junit.framework.Test;
 import junit.framework.TestCase;
 import junit.framework.TestSuite;
+import org.bouncycastle.jcajce.interfaces.EdDSAPrivateKey;
+import org.bouncycastle.jcajce.spec.EdDSAParameterSpec;
+import org.bouncycastle.jcajce.spec.RawEncodedKeySpec;
+import org.bouncycastle.jce.provider.BouncyCastleProvider;
+import org.bouncycastle.util.Strings;
 
 public class EdDSA15Test
     extends TestCase
@@ -149,6 +153,40 @@ private void implTestInterop(String algorithm)
             implTestInteropCase(kpSunEC, sigSunEC, sigBC);
 //            implTestInteropCase(kpSunEC, sigSunEC, sigSunEC);
         }
+
+        KeyFactory sunKeyFact = KeyFactory.getInstance(algorithm, "SunEC");
+        KeyFactory bcKeyFact = KeyFactory.getInstance(algorithm, bc);
+        KeyPair kpSunEC = kpGenSunEC.generateKeyPair();
+
+        KeySpec pubSpec = sunKeyFact.getKeySpec(kpSunEC.getPublic(), EdECPublicKeySpec.class);
+        PublicKey pubKey = bcKeyFact.generatePublic(pubSpec);
+
+        KeySpec privSpec = sunKeyFact.getKeySpec(kpSunEC.getPrivate(), EdECPrivateKeySpec.class);
+        PrivateKey privKey = bcKeyFact.generatePrivate(privSpec);
+
+        sigBC.initSign(kpSunEC.getPrivate());
+
+        sigBC.update(Strings.toByteArray("Hello, world!"));
+
+        byte[] sig = sigBC.sign();
+
+        sigBC.initVerify(pubKey);
+
+        sigBC.update(Strings.toByteArray("Hello, world!"));
+
+        sigBC.verify(sig);
+
+        sigBC.initSign(privKey);
+
+        sigBC.update(Strings.toByteArray("Hello, world!"));
+
+        sig = sigBC.sign();
+
+        sigBC.initVerify(pubKey);
+
+        sigBC.update(Strings.toByteArray("Hello, world!"));
+
+        sigBC.verify(sig);
     }
 
     private void implTestInteropCase(KeyPair kp, Signature signer, Signature verifier)