bcgit
diff --git a/‎mail/src/main/java/org/bouncycastle/mail/smime/SMIMEEnvelopedUtil.java‎
Lines changed: 6 additions & 7 deletions b/‎mail/src/main/java/org/bouncycastle/mail/smime/SMIMEEnvelopedUtil.java‎
Lines changed: 6 additions & 7 deletions
diff --git a/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthEnvelopedDataStreamGenerator.java‎
Lines changed: 25 additions & 18 deletions b/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthEnvelopedDataStreamGenerator.java‎
Lines changed: 25 additions & 18 deletions
diff --git a/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthEnvelopedGenerator.java‎
Lines changed: 0 additions & 10 deletions b/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthEnvelopedGenerator.java‎
Lines changed: 0 additions & 10 deletions
diff --git a/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthenticatedDataStreamGenerator.java‎
Lines changed: 6 additions & 5 deletions b/‎pkix/src/main/java/org/bouncycastle/cms/CMSAuthenticatedDataStreamGenerator.java‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎pkix/src/main/java/org/bouncycastle/cms/CMSEnvelopedDataStreamGenerator.java‎
Lines changed: 7 additions & 23 deletions b/‎pkix/src/main/java/org/bouncycastle/cms/CMSEnvelopedDataStreamGenerator.java‎
Lines changed: 7 additions & 23 deletions
diff --git a/‎pkix/src/main/java/org/bouncycastle/cms/CMSUtils.java‎
Lines changed: 8 additions & 3 deletions b/‎pkix/src/main/java/org/bouncycastle/cms/CMSUtils.java‎
Lines changed: 8 additions & 3 deletions
diff --git a/‎pkix/src/main/jdk1.1/org/bouncycastle/cms/CMSAbsentContent.java‎
Lines changed: 1 addition & 1 deletion b/‎pkix/src/main/jdk1.1/org/bouncycastle/cms/CMSAbsentContent.java‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎pkix/src/main/jdk1.1/org/bouncycastle/cms/CMSProcessableByteArray.java‎
Lines changed: 1 addition & 1 deletion b/‎pkix/src/main/jdk1.1/org/bouncycastle/cms/CMSProcessableByteArray.java‎
Lines changed: 1 addition & 1 deletion
@@ -1,7 +1,6 @@
 package org.bouncycastle.mail.smime;
 
 import java.util.HashSet;
-import java.util.Set;
 
 import javax.mail.MessagingException;
 import javax.mail.internet.MimeBodyPart;
@@ -13,13 +12,13 @@
 
 public class SMIMEEnvelopedUtil
 {
-    private static Set<ASN1ObjectIdentifier> authOIDs = new HashSet<ASN1ObjectIdentifier>();
+    private static final HashSet<ASN1ObjectIdentifier> AUTH_OIDS = new HashSet<ASN1ObjectIdentifier>();
 
     static
     {
-        authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);
-        authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);
-        authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);
+        AUTH_OIDS.add(NISTObjectIdentifiers.id_aes128_GCM);
+        AUTH_OIDS.add(NISTObjectIdentifiers.id_aes192_GCM);
+        AUTH_OIDS.add(NISTObjectIdentifiers.id_aes256_GCM);
     }
 
     /**
@@ -32,7 +31,7 @@ public class SMIMEEnvelopedUtil
      */
     public static RecipientInformationStore getRecipientInfos(MimeBodyPart message) throws MessagingException, CMSException
     {
-        if(message.getContentType().equals(SMIMEAuthEnvelopedGenerator.AUTH_ENVELOPED_DATA_CONTENT_TYPE))
+        if (message.getContentType().equals(SMIMEAuthEnvelopedGenerator.AUTH_ENVELOPED_DATA_CONTENT_TYPE))
         {
             return new SMIMEAuthEnveloped(message).getRecipientInfos();
         }
@@ -48,7 +47,7 @@ public static RecipientInformationStore getRecipientInfos(MimeBodyPart message)
      */
     public static SMIMEEnvelopedGenerator createGenerator(ASN1ObjectIdentifier algorithm)
     {
-        if (authOIDs.contains(algorithm))
+        if (AUTH_OIDS.contains(algorithm))
         {
             return new SMIMEAuthEnvelopedGenerator();
         }
 
@@ -2,7 +2,6 @@
 
 import java.io.IOException;
 import java.io.OutputStream;
-import java.util.Collections;
 
 import org.bouncycastle.asn1.ASN1EncodableVector;
 import org.bouncycastle.asn1.ASN1Integer;
@@ -57,17 +56,6 @@ public void setBEREncodeRecipients(
         _berEncodeRecipientSet = berEncodeRecipientSet;
     }
 
-    private OutputStream doOpen(
-        ASN1ObjectIdentifier dataType,
-        OutputStream out,
-        OutputAEADEncryptor encryptor)
-        throws IOException, CMSException
-    {
-        ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(encryptor.getKey(), recipientInfoGenerators);
-
-        return open(dataType, out, recipientInfos, encryptor);
-    }
-
     protected OutputStream open(
         ASN1ObjectIdentifier dataType,
         OutputStream out,
@@ -124,22 +112,41 @@ protected OutputStream open(
     }
 
     /**
-     * generate an enveloped object that contains an CMS Enveloped Data object using the given encryptor.
+     * Generate authenticated-enveloped-data using the given encryptor, and marking the encapsulated
+     * bytes as being of type DATA.
+     * <p>
+     * <b>Stream handling note:</b> Closing the returned stream finalizes the CMS structure but <b>does
+     * not close</b> the underlying output stream. The caller remains responsible for managing the
+     * lifecycle of {@code out}.
+     *
+     * @param out the output stream to write the CMS structure to
+     * @param encryptor the cipher to use for encryption
+     * @return an output stream that writes encrypted and authenticated content
+     */
+    public OutputStream open(OutputStream out, OutputAEADEncryptor encryptor) throws CMSException, IOException
+    {
+        return open(CMSObjectIdentifiers.data, out, encryptor);
+    }
+
+    /**
+     * Generate authenticated-enveloped-data using the given encryptor, and marking the encapsulated
+     * bytes as being of the passed in type.
      * <p>
      * <b>Stream handling note:</b> Closing the returned stream finalizes the CMS structure but
      * <b>does not close</b> the underlying output stream. The caller remains responsible for
      * managing the lifecycle of {@code out}.
      *
+     * @param dataType the type of the data being written to the object.
      * @param out the output stream to write the CMS structure to
      * @param encryptor the cipher to use for encryption
      * @return an output stream that writes encrypted and authenticated content
      */
-    public OutputStream open(
-        OutputStream out,
-        OutputAEADEncryptor encryptor)
+    public OutputStream open(ASN1ObjectIdentifier dataType, OutputStream out, OutputAEADEncryptor encryptor)
         throws CMSException, IOException
     {
-        return doOpen(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()), out, encryptor);
+        ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(encryptor.getKey(), recipientInfoGenerators);
+
+        return open(dataType, out, recipientInfos, encryptor);
     }
 
     private class CMSAuthEnvelopedDataOutputStream
@@ -206,7 +213,7 @@ public void close()
 
             _envGen.addObject(new DEROctetString(_encryptor.getMAC()));
 
-            CMSUtils.addAttriSetToGenerator(_envGen, unauthAttrsGenerator, 2, Collections.EMPTY_MAP);
+            CMSUtils.addAttriSetToGenerator(_envGen, unauthAttrsGenerator, 2, CMSUtils.getEmptyParameters());
 
             _envGen.close();
             _cGen.close();
 
@@ -43,14 +43,4 @@ public void setOriginatorInfo(OriginatorInformation originatorInfo)
     {
         this.originatorInfo = originatorInfo.toASN1Structure();
     }
-
-    /**
-     * Add a generator to produce the recipient info required.
-     *
-     * @param recipientGenerator a generator of a recipient info object.
-     */
-    public void addRecipientInfoGenerator(RecipientInfoGenerator recipientGenerator)
-    {
-        recipientInfoGenerators.add(recipientGenerator);
-    }
 }
@@ -47,7 +47,6 @@ public class CMSAuthenticatedDataStreamGenerator
 //    private Object              _unprotectedAttributes = null;
     private int bufferSize;
     private boolean berEncodeRecipientSet;
-    private MacCalculator macCalculator;
 
     /**
      * base constructor
@@ -133,8 +132,6 @@ public OutputStream open(
         DigestCalculator     digestCalculator)
         throws CMSException
     {
-        this.macCalculator = macCalculator;
-
         try
         {
             ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(macCalculator.getKey(), recipientInfoGenerators);
@@ -254,7 +251,11 @@ public void close()
 
             if (digestCalculator != null)
             {
-                parameters = Collections.unmodifiableMap(getBaseParameters(contentType, digestCalculator.getAlgorithmIdentifier(), macCalculator.getAlgorithmIdentifier(), digestCalculator.getDigest()));
+                AlgorithmIdentifier digestAlgID = digestCalculator.getAlgorithmIdentifier();
+                AlgorithmIdentifier macAlgID = macCalculator.getAlgorithmIdentifier();
+
+                parameters = Collections.unmodifiableMap(
+                    getBaseParameters(contentType, digestAlgID, macAlgID, digestCalculator.getDigest()));
 
                 if (authGen == null)
                 {
@@ -273,7 +274,7 @@ public void close()
             }
             else
             {
-                parameters = Collections.EMPTY_MAP;
+                parameters = CMSUtils.getEmptyParameters();
             }
 
             envGen.addObject(new DEROctetString(macCalculator.getMac()));
 
@@ -2,7 +2,6 @@
 
 import java.io.IOException;
 import java.io.OutputStream;
-import java.util.Collections;
 
 import org.bouncycastle.asn1.ASN1EncodableVector;
 import org.bouncycastle.asn1.ASN1Integer;
@@ -77,17 +76,6 @@ private ASN1Integer getVersion(ASN1EncodableVector recipientInfos)
         return new ASN1Integer(EnvelopedData.calculateVersion(originatorInfo, new DLSet(recipientInfos), null));
     }
 
-    private OutputStream doOpen(
-        ASN1ObjectIdentifier dataType,
-        OutputStream         out,
-        OutputEncryptor      encryptor)
-        throws IOException, CMSException
-    {
-        ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(encryptor.getKey(), recipientInfoGenerators);
-
-        return open(dataType, out, recipientInfos, encryptor);
-    }
-
     protected OutputStream open(
         ASN1ObjectIdentifier dataType,
         OutputStream         out,
@@ -147,26 +135,22 @@ protected OutputStream open(
      * generate an enveloped object that contains an CMS Enveloped Data
      * object using the given encryptor.
      */
-    public OutputStream open(
-        OutputStream    out,
-        OutputEncryptor encryptor)
-        throws CMSException, IOException
+    public OutputStream open(OutputStream out, OutputEncryptor encryptor) throws CMSException, IOException
     {
-        return doOpen(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()), out, encryptor);
+        return open(CMSObjectIdentifiers.data, out, encryptor);
     }
 
     /**
      * generate an enveloped object that contains an CMS Enveloped Data
      * object using the given encryptor and marking the data as being of the passed
      * in type.
      */
-    public OutputStream open(
-        ASN1ObjectIdentifier dataType,
-        OutputStream         out,
-        OutputEncryptor      encryptor)
+    public OutputStream open(ASN1ObjectIdentifier dataType, OutputStream out, OutputEncryptor encryptor)
         throws CMSException, IOException
     {
-        return doOpen(dataType, out, encryptor);
+        ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(encryptor.getKey(), recipientInfoGenerators);
+
+        return open(dataType, out, recipientInfos, encryptor);
     }
 
     private class CmsEnvelopedDataOutputStream
@@ -229,7 +213,7 @@ public void close()
             }
             _eiGen.close();
 
-            CMSUtils.addAttriSetToGenerator(_envGen, unprotectedAttributeGenerator, 1, Collections.EMPTY_MAP);
+            CMSUtils.addAttriSetToGenerator(_envGen, unprotectedAttributeGenerator, 1, CMSUtils.getEmptyParameters());
 
             _envGen.close();
             _cGen.close();
 
@@ -492,7 +492,7 @@ static ASN1Set processAuthAttrSet(CMSAttributeTableGenerator authAttrsGenerator,
         ASN1Set authenticatedAttrSet = null;
         if (authAttrsGenerator != null)
         {
-            AttributeTable attrTable = authAttrsGenerator.getAttributes(Collections.EMPTY_MAP);
+            AttributeTable attrTable = authAttrsGenerator.getAttributes(getEmptyParameters());
 
             authenticatedAttrSet = new DERSet(attrTable.toASN1EncodableVector());
             encryptor.getAADStream().write(authenticatedAttrSet.getEncoded(ASN1Encoding.DER));
@@ -521,12 +521,12 @@ static AttributeTable getAttributesTable(ASN1SetParser set)
 
     static ASN1Set getAttrDLSet(CMSAttributeTableGenerator gen)
     {
-        return (gen != null) ? new DLSet(gen.getAttributes(Collections.EMPTY_MAP).toASN1EncodableVector()) : null;
+        return (gen != null) ? new DLSet(gen.getAttributes(getEmptyParameters()).toASN1EncodableVector()) : null;
     }
 
     static ASN1Set getAttrBERSet(CMSAttributeTableGenerator gen)
     {
-        return (gen != null) ? new BERSet(gen.getAttributes(Collections.EMPTY_MAP).toASN1EncodableVector()) : null;
+        return (gen != null) ? new BERSet(gen.getAttributes(getEmptyParameters()).toASN1EncodableVector()) : null;
     }
 
     static byte[] encodeObj(
@@ -540,4 +540,9 @@ static byte[] encodeObj(
 
         return null;
     }
+
+    static Map getEmptyParameters()
+    {
+        return Collections.EMPTY_MAP;
+    }
 }
@@ -17,7 +17,7 @@ public class CMSAbsentContent
 
     public CMSAbsentContent()
     {
-        this(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()));
+        this(CMSObjectIdentifiers.data);
     }
 
     public CMSAbsentContent(
 
@@ -21,7 +21,7 @@ public class CMSProcessableByteArray
     public CMSProcessableByteArray(
         byte[]  bytes)
     {
-        this(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()), bytes);
+        this(CMSObjectIdentifiers.data, bytes);
     }
 
     public CMSProcessableByteArray(
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,6 @@`
`1`	`1`	`package org.bouncycastle.mail.smime;`
`2`	`2`
`3`	`3`	`import java.util.HashSet;`
`4`		`-import java.util.Set;`
`5`	`4`
`6`	`5`	`import javax.mail.MessagingException;`
`7`	`6`	`import javax.mail.internet.MimeBodyPart;`
`@@ -13,13 +12,13 @@`
`13`	`12`
`14`	`13`	`public class SMIMEEnvelopedUtil`
`15`	`14`	`{`
`16`		`- private static Set<ASN1ObjectIdentifier> authOIDs = new HashSet<ASN1ObjectIdentifier>();`
	`15`	`+ private static final HashSet<ASN1ObjectIdentifier> AUTH_OIDS = new HashSet<ASN1ObjectIdentifier>();`
`17`	`16`
`18`	`17`	`static`
`19`	`18`	`{`
`20`		`- authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);`
`21`		`- authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);`
`22`		`- authOIDs.add(NISTObjectIdentifiers.id_aes128_GCM);`
	`19`	`+ AUTH_OIDS.add(NISTObjectIdentifiers.id_aes128_GCM);`
	`20`	`+ AUTH_OIDS.add(NISTObjectIdentifiers.id_aes192_GCM);`
	`21`	`+ AUTH_OIDS.add(NISTObjectIdentifiers.id_aes256_GCM);`
`23`	`22`	`}`
`24`	`23`
`25`	`24`	`/**`
`@@ -32,7 +31,7 @@ public class SMIMEEnvelopedUtil`
`32`	`31`	`*/`
`33`	`32`	`public static RecipientInformationStore getRecipientInfos(MimeBodyPart message) throws MessagingException, CMSException`
`34`	`33`	`{`
`35`		`- if(message.getContentType().equals(SMIMEAuthEnvelopedGenerator.AUTH_ENVELOPED_DATA_CONTENT_TYPE))`
	`34`	`+ if (message.getContentType().equals(SMIMEAuthEnvelopedGenerator.AUTH_ENVELOPED_DATA_CONTENT_TYPE))`
`36`	`35`	`{`
`37`	`36`	`return new SMIMEAuthEnveloped(message).getRecipientInfos();`
`38`	`37`	`}`
`@@ -48,7 +47,7 @@ public static RecipientInformationStore getRecipientInfos(MimeBodyPart message)`
`48`	`47`	`*/`
`49`	`48`	`public static SMIMEEnvelopedGenerator createGenerator(ASN1ObjectIdentifier algorithm)`
`50`	`49`	`{`
`51`		`- if (authOIDs.contains(algorithm))`
	`50`	`+ if (AUTH_OIDS.contains(algorithm))`
`52`	`51`	`{`
`53`	`52`	`return new SMIMEAuthEnvelopedGenerator();`
`54`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -43,14 +43,4 @@ public void setOriginatorInfo(OriginatorInformation originatorInfo)`
`43`	`43`	`{`
`44`	`44`	`this.originatorInfo = originatorInfo.toASN1Structure();`
`45`	`45`	`}`
`46`		`-`
`47`		`- /**`
`48`		`- * Add a generator to produce the recipient info required.`
`49`		`- *`
`50`		`- * @param recipientGenerator a generator of a recipient info object.`
`51`		`- */`
`52`		`- public void addRecipientInfoGenerator(RecipientInfoGenerator recipientGenerator)`
`53`		`- {`
`54`		`- recipientInfoGenerators.add(recipientGenerator);`
`55`		`- }`
`56`	`46`	`}`
Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,6 @@ public class CMSAuthenticatedDataStreamGenerator`
`47`	`47`	`// private Object _unprotectedAttributes = null;`
`48`	`48`	`private int bufferSize;`
`49`	`49`	`private boolean berEncodeRecipientSet;`
`50`		`- private MacCalculator macCalculator;`
`51`	`50`
`52`	`51`	`/**`
`53`	`52`	`* base constructor`
`@@ -133,8 +132,6 @@ public OutputStream open(`
`133`	`132`	`DigestCalculator digestCalculator)`
`134`	`133`	`throws CMSException`
`135`	`134`	`{`
`136`		`- this.macCalculator = macCalculator;`
`137`		`-`
`138`	`135`	`try`
`139`	`136`	`{`
`140`	`137`	`ASN1EncodableVector recipientInfos = CMSUtils.getRecipentInfos(macCalculator.getKey(), recipientInfoGenerators);`
`@@ -254,7 +251,11 @@ public void close()`
`254`	`251`
`255`	`252`	`if (digestCalculator != null)`
`256`	`253`	`{`
`257`		`- parameters = Collections.unmodifiableMap(getBaseParameters(contentType, digestCalculator.getAlgorithmIdentifier(), macCalculator.getAlgorithmIdentifier(), digestCalculator.getDigest()));`
	`254`	`+ AlgorithmIdentifier digestAlgID = digestCalculator.getAlgorithmIdentifier();`
	`255`	`+ AlgorithmIdentifier macAlgID = macCalculator.getAlgorithmIdentifier();`
	`256`	`+`
	`257`	`+ parameters = Collections.unmodifiableMap(`
	`258`	`+ getBaseParameters(contentType, digestAlgID, macAlgID, digestCalculator.getDigest()));`
`258`	`259`
`259`	`260`	`if (authGen == null)`
`260`	`261`	`{`
`@@ -273,7 +274,7 @@ public void close()`
`273`	`274`	`}`
`274`	`275`	`else`
`275`	`276`	`{`
`276`		`- parameters = Collections.EMPTY_MAP;`
	`277`	`+ parameters = CMSUtils.getEmptyParameters();`
`277`	`278`	`}`
`278`	`279`
`279`	`280`	`envGen.addObject(new DEROctetString(macCalculator.getMac()));`
Original file line number	Diff line number	Diff line change
`@@ -492,7 +492,7 @@ static ASN1Set processAuthAttrSet(CMSAttributeTableGenerator authAttrsGenerator,`
`492`	`492`	`ASN1Set authenticatedAttrSet = null;`
`493`	`493`	`if (authAttrsGenerator != null)`
`494`	`494`	`{`
`495`		`- AttributeTable attrTable = authAttrsGenerator.getAttributes(Collections.EMPTY_MAP);`
	`495`	`+ AttributeTable attrTable = authAttrsGenerator.getAttributes(getEmptyParameters());`
`496`	`496`
`497`	`497`	`authenticatedAttrSet = new DERSet(attrTable.toASN1EncodableVector());`
`498`	`498`	`encryptor.getAADStream().write(authenticatedAttrSet.getEncoded(ASN1Encoding.DER));`
`@@ -521,12 +521,12 @@ static AttributeTable getAttributesTable(ASN1SetParser set)`
`521`	`521`
`522`	`522`	`static ASN1Set getAttrDLSet(CMSAttributeTableGenerator gen)`
`523`	`523`	`{`
`524`		`- return (gen != null) ? new DLSet(gen.getAttributes(Collections.EMPTY_MAP).toASN1EncodableVector()) : null;`
	`524`	`+ return (gen != null) ? new DLSet(gen.getAttributes(getEmptyParameters()).toASN1EncodableVector()) : null;`
`525`	`525`	`}`
`526`	`526`
`527`	`527`	`static ASN1Set getAttrBERSet(CMSAttributeTableGenerator gen)`
`528`	`528`	`{`
`529`		`- return (gen != null) ? new BERSet(gen.getAttributes(Collections.EMPTY_MAP).toASN1EncodableVector()) : null;`
	`529`	`+ return (gen != null) ? new BERSet(gen.getAttributes(getEmptyParameters()).toASN1EncodableVector()) : null;`
`530`	`530`	`}`
`531`	`531`
`532`	`532`	`static byte[] encodeObj(`
`@@ -540,4 +540,9 @@ static byte[] encodeObj(`
`540`	`540`
`541`	`541`	`return null;`
`542`	`542`	`}`
	`543`	`+`
	`544`	`+ static Map getEmptyParameters()`
	`545`	`+ {`
	`546`	`+ return Collections.EMPTY_MAP;`
	`547`	`+ }`
`543`	`548`	`}`
Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@ public class CMSAbsentContent`
`17`	`17`
`18`	`18`	`public CMSAbsentContent()`
`19`	`19`	`{`
`20`		`- this(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()));`
	`20`	`+ this(CMSObjectIdentifiers.data);`
`21`	`21`	`}`
`22`	`22`
`23`	`23`	`public CMSAbsentContent(`
Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@ public class CMSProcessableByteArray`
`21`	`21`	`public CMSProcessableByteArray(`
`22`	`22`	`byte[] bytes)`
`23`	`23`	`{`
`24`		`- this(new ASN1ObjectIdentifier(CMSObjectIdentifiers.data.getId()), bytes);`
	`24`	`+ this(CMSObjectIdentifiers.data, bytes);`
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`public CMSProcessableByteArray(`