Merge branch '1794-auth-enveloped-recipients-kek-keyagree' into 'main'

Add auth enveloped recipients for KEK and KeyAgree

See merge request root/bc-java!53

Author: dghgit

pkix/src/main/java/org/bouncycastle/cms/jcajce/CMSInputAEADDecryptor.java

@@ -0,0 +1,52 @@
+package org.bouncycastle.cms.jcajce;
+
+import java.io.InputStream;
+import java.io.OutputStream;
+
+import javax.crypto.Cipher;
+
+import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
+import org.bouncycastle.cms.InputStreamWithMAC;
+import org.bouncycastle.jcajce.io.CipherInputStream;
+import org.bouncycastle.operator.InputAEADDecryptor;
+
+class CMSInputAEADDecryptor
+    implements InputAEADDecryptor
+{
+    private final AlgorithmIdentifier contentEncryptionAlgorithm;
+
+    private final Cipher dataCipher;
+
+    private InputStream inputStream;
+
+    CMSInputAEADDecryptor(AlgorithmIdentifier contentEncryptionAlgorithm, Cipher dataCipher)
+    {
+        this.contentEncryptionAlgorithm = contentEncryptionAlgorithm;
+        this.dataCipher = dataCipher;
+    }
+
+    public AlgorithmIdentifier getAlgorithmIdentifier()
+    {
+        return contentEncryptionAlgorithm;
+    }
+
+    public InputStream getInputStream(InputStream dataIn)
+    {
+        inputStream = dataIn;
+        return new CipherInputStream(dataIn, dataCipher);
+    }
+
+    public OutputStream getAADStream()
+    {
+        return new JceAADStream(dataCipher);
+    }
+
+    public byte[] getMAC()
+    {
+        if (inputStream instanceof InputStreamWithMAC)
+        {
+            return ((InputStreamWithMAC)inputStream).getMAC();
+        }
+        return null;
+    }
+}

pkix/src/main/java/org/bouncycastle/cms/jcajce/JceAADStream.java

@@ -8,7 +8,7 @@
 class JceAADStream
     extends OutputStream
 {
-     private static final byte[] SINGLE_BYTE = new byte[1];
+     private final byte[] SINGLE_BYTE = new byte[1];
      private Cipher cipher;
 
      JceAADStream(Cipher cipher)

pkix/src/main/java/org/bouncycastle/cms/jcajce/JceKEKAuthEnvelopedRecipient.java

@@ -0,0 +1,33 @@
+package org.bouncycastle.cms.jcajce;
+
+import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
+import org.bouncycastle.cms.CMSException;
+import org.bouncycastle.cms.RecipientOperator;
+
+import javax.crypto.Cipher;
+import javax.crypto.SecretKey;
+
+import java.security.Key;
+
+/**
+ * A recipient for CMS authenticated enveloped data encrypted with a KEK (Key Encryption Key).
+ * Handles key extraction and decryption of the content.
+ */
+public class JceKEKAuthEnvelopedRecipient
+    extends JceKEKRecipient
+{
+    public JceKEKAuthEnvelopedRecipient(SecretKey recipientKey)
+    {
+        super(recipientKey);
+    }
+
+    public RecipientOperator getRecipientOperator(AlgorithmIdentifier keyEncryptionAlgorithm, final AlgorithmIdentifier contentEncryptionAlgorithm, byte[] encryptedContentEncryptionKey)
+        throws CMSException
+    {
+        Key secretKey = extractSecretKey(keyEncryptionAlgorithm, contentEncryptionAlgorithm, encryptedContentEncryptionKey);
+
+        final Cipher dataCipher = contentHelper.createContentCipher(secretKey, contentEncryptionAlgorithm);
+
+        return new RecipientOperator(new CMSInputAEADDecryptor(contentEncryptionAlgorithm, dataCipher));
+    }
+}

pkix/src/main/java/org/bouncycastle/cms/jcajce/JceKeyAgreeAuthEnvelopedRecipient.java

@@ -0,0 +1,35 @@
+package org.bouncycastle.cms.jcajce;
+
+import org.bouncycastle.asn1.ASN1OctetString;
+import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
+import org.bouncycastle.asn1.x509.SubjectPublicKeyInfo;
+import org.bouncycastle.cms.CMSException;
+import org.bouncycastle.cms.RecipientOperator;
+
+import javax.crypto.Cipher;
+
+import java.security.Key;
+import java.security.PrivateKey;
+
+/**
+ * A recipient class for CMS authenticated enveloped data using key agreement (Key Agreement Recipient).
+ * Handles private key-based key extraction and content decryption.
+ */
+public class JceKeyAgreeAuthEnvelopedRecipient
+    extends JceKeyAgreeRecipient
+{
+    public JceKeyAgreeAuthEnvelopedRecipient(PrivateKey recipientKey)
+    {
+        super(recipientKey);
+    }
+
+    public RecipientOperator getRecipientOperator(AlgorithmIdentifier keyEncryptionAlgorithm, final AlgorithmIdentifier contentEncryptionAlgorithm, SubjectPublicKeyInfo senderPublicKey, ASN1OctetString userKeyingMaterial, byte[] encryptedContentKey)
+        throws CMSException
+    {
+        Key secretKey = extractSecretKey(keyEncryptionAlgorithm, contentEncryptionAlgorithm, senderPublicKey, userKeyingMaterial, encryptedContentKey);
+
+        final Cipher dataCipher = contentHelper.createContentCipher(secretKey, contentEncryptionAlgorithm);
+
+        return new RecipientOperator(new CMSInputAEADDecryptor(contentEncryptionAlgorithm, dataCipher));
+    }
+}

pkix/src/main/java/org/bouncycastle/cms/jcajce/JceKeyTransAuthEnvelopedRecipient.java

@@ -1,19 +1,13 @@
 package org.bouncycastle.cms.jcajce;
 
-import java.io.IOException;
-import java.io.InputStream;
-import java.io.OutputStream;
 import java.security.Key;
 import java.security.PrivateKey;
 
 import javax.crypto.Cipher;
 
 import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
 import org.bouncycastle.cms.CMSException;
-import org.bouncycastle.cms.InputStreamWithMAC;
 import org.bouncycastle.cms.RecipientOperator;
-import org.bouncycastle.jcajce.io.CipherInputStream;
-import org.bouncycastle.operator.InputAEADDecryptor;
 
 public class JceKeyTransAuthEnvelopedRecipient
     extends JceKeyTransRecipient
@@ -30,60 +24,6 @@ public RecipientOperator getRecipientOperator(AlgorithmIdentifier keyEncryptionA
 
         final Cipher dataCipher = contentHelper.createContentCipher(secretKey, contentEncryptionAlgorithm);
 
-        return new RecipientOperator(new InputAEADDecryptor()
-        {
-            private InputStream inputStream;
-
-            public AlgorithmIdentifier getAlgorithmIdentifier()
-            {
-                return contentEncryptionAlgorithm;
-            }
-
-            public InputStream getInputStream(InputStream dataIn)
-            {
-                inputStream = dataIn;
-                return new CipherInputStream(dataIn, dataCipher);
-            }
-
-            public OutputStream getAADStream()
-            {
-                return new AADStream(dataCipher);
-            }
-
-            public byte[] getMAC()
-            {
-                if (inputStream instanceof InputStreamWithMAC)
-                {
-                    return ((InputStreamWithMAC)inputStream).getMAC();
-                }
-                return null;
-            }
-        });
-    }
-
-    private static class AADStream
-        extends OutputStream
-    {
-        private Cipher cipher;
-        private byte[] oneByte = new byte[1];
-
-        public AADStream(Cipher cipher)
-        {
-            this.cipher = cipher;
-        }
-
-        public void write(byte[] buf, int off, int len)
-            throws IOException
-        {
-            cipher.updateAAD(buf, off, len);
-        }
-
-        public void write(int b)
-            throws IOException
-        {
-            oneByte[0] = (byte)b;
-
-            cipher.updateAAD(oneByte);
-        }
+        return new RecipientOperator(new CMSInputAEADDecryptor(contentEncryptionAlgorithm, dataCipher));
     }
 }

pkix/src/test/java/org/bouncycastle/cms/test/AllTests.java

@@ -28,6 +28,7 @@ public static Test suite()
         suite.addTest(NewAuthenticatedDataStreamTest.suite());
         suite.addTest(NewCompressedDataStreamTest.suite());
         suite.addTest(NewSignedDataStreamTest.suite());
+        suite.addTest(NewAuthEnvelopedDataStreamTest.suite());
         suite.addTest(NewEnvelopedDataStreamTest.suite());
         suite.addTest(AuthEnvelopedDataTest.suite());