org.bouncycastle.jcajce.spec.PrfUtils Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of bc-fips-debug Show documentation
The FIPS 140-2 Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms certified to FIPS 140-2 level 1. This jar contains the debug version JCE provider and low-level API for the BC-FJA version 1.0.2.3, FIPS Certificate #3514. Please note the debug jar is not certified.
There is a newer version: 2.0.0
Show newest version
package org.bouncycastle.jcajce.spec;

import java.util.HashMap;
import java.util.Map;

import org.bouncycastle.asn1.ASN1ObjectIdentifier;
import org.bouncycastle.asn1.DERNull;
import org.bouncycastle.asn1.cryptopro.CryptoProObjectIdentifiers;
import org.bouncycastle.asn1.iana.IANAObjectIdentifiers;
import org.bouncycastle.asn1.iso.ISOIECObjectIdentifiers;
import org.bouncycastle.asn1.nist.NISTObjectIdentifiers;
import org.bouncycastle.asn1.oiw.OIWObjectIdentifiers;
import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
import org.bouncycastle.asn1.teletrust.TeleTrusTObjectIdentifiers;
import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
import org.bouncycastle.crypto.Algorithm;
import org.bouncycastle.crypto.fips.FipsSHS;
import org.bouncycastle.crypto.general.SecureHash;

class PrfUtils
{
    private static Map hmacAlgIds = new HashMap();
    private static Map digestOIDs = new HashMap();

    static
    {
        hmacAlgIds.put(FipsSHS.Algorithm.SHA1_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA1, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA224_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA224, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA256_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA256, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA384_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA384, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA512_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA512, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA512_224_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA512_224, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA512_256_HMAC, new AlgorithmIdentifier(PKCSObjectIdentifiers.id_hmacWithSHA512_256, DERNull.INSTANCE));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA3_224_HMAC, new AlgorithmIdentifier(NISTObjectIdentifiers.id_hmacWithSHA3_224));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA3_256_HMAC, new AlgorithmIdentifier(NISTObjectIdentifiers.id_hmacWithSHA3_256));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA3_384_HMAC, new AlgorithmIdentifier(NISTObjectIdentifiers.id_hmacWithSHA3_384));
        hmacAlgIds.put(FipsSHS.Algorithm.SHA3_512_HMAC, new AlgorithmIdentifier(NISTObjectIdentifiers.id_hmacWithSHA3_512));
        hmacAlgIds.put(FipsSHS.Algorithm.KMAC128, new AlgorithmIdentifier(NISTObjectIdentifiers.id_KmacWithSHAKE128));
        hmacAlgIds.put(FipsSHS.Algorithm.KMAC256, new AlgorithmIdentifier(NISTObjectIdentifiers.id_KmacWithSHAKE256));
        hmacAlgIds.put(SecureHash.Algorithm.GOST3411_HMAC, new AlgorithmIdentifier(CryptoProObjectIdentifiers.gostR3411Hmac, DERNull.INSTANCE));
        hmacAlgIds.put(SecureHash.Algorithm.RIPEMD160_HMAC, new AlgorithmIdentifier(IANAObjectIdentifiers.hmacRIPEMD160, DERNull.INSTANCE));
        hmacAlgIds.put(SecureHash.Algorithm.TIGER_HMAC, new AlgorithmIdentifier(IANAObjectIdentifiers.hmacTIGER, DERNull.INSTANCE));

        digestOIDs.put(FipsSHS.Algorithm.SHA1, OIWObjectIdentifiers.idSHA1);
        digestOIDs.put(FipsSHS.Algorithm.SHA224, NISTObjectIdentifiers.id_sha224);
        digestOIDs.put(FipsSHS.Algorithm.SHA256, NISTObjectIdentifiers.id_sha256);
        digestOIDs.put(FipsSHS.Algorithm.SHA384, NISTObjectIdentifiers.id_sha384);
        digestOIDs.put(FipsSHS.Algorithm.SHA512, NISTObjectIdentifiers.id_sha512);
        digestOIDs.put(FipsSHS.Algorithm.SHA512_224, NISTObjectIdentifiers.id_sha512_224);
        digestOIDs.put(FipsSHS.Algorithm.SHA512_256, NISTObjectIdentifiers.id_sha512_256);
        digestOIDs.put(FipsSHS.Algorithm.SHA3_224, NISTObjectIdentifiers.id_sha3_224);
        digestOIDs.put(FipsSHS.Algorithm.SHA3_256, NISTObjectIdentifiers.id_sha3_256);
        digestOIDs.put(FipsSHS.Algorithm.SHA3_384, NISTObjectIdentifiers.id_sha3_384);
        digestOIDs.put(FipsSHS.Algorithm.SHA3_512, NISTObjectIdentifiers.id_sha3_512);
        digestOIDs.put(FipsSHS.Algorithm.KMAC128, NISTObjectIdentifiers.id_KmacWithSHAKE128);
        digestOIDs.put(FipsSHS.Algorithm.KMAC256, NISTObjectIdentifiers.id_KmacWithSHAKE256);
        digestOIDs.put(SecureHash.Algorithm.RIPEMD160, TeleTrusTObjectIdentifiers.ripemd160);
        digestOIDs.put(SecureHash.Algorithm.RIPEMD256, TeleTrusTObjectIdentifiers.ripemd256);
        digestOIDs.put(SecureHash.Algorithm.WHIRLPOOL, ISOIECObjectIdentifiers.whirlpool);
    }

    static AlgorithmIdentifier getAlgorithmIdentifier(Algorithm prfAlg)
    {
        AlgorithmIdentifier algId = hmacAlgIds.get(prfAlg);

        if (algId == null)
        {
            throw new IllegalArgumentException("Unknown PRF requested: " + prfAlg.getName());
        }

        return algId;
    }

    public static ASN1ObjectIdentifier getObjectIdentifier(Algorithm prfAlgorithm)
    {
        ASN1ObjectIdentifier oid = digestOIDs.get(prfAlgorithm);

        if (oid == null)
        {
            if (hmacAlgIds.containsKey(prfAlgorithm))
            {
                return hmacAlgIds.get(prfAlgorithm).getAlgorithm();
            }
            throw new IllegalArgumentException("Unrecognized digest requested: " + prfAlgorithm.getName());
        }

        return oid;
    }
}