org.bouncycastle.tls.crypto.impl.bc.BcTlsMLKem Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bctls-debug-jdk15to18 Show documentation
Show all versions of bctls-debug-jdk15to18 Show documentation
The Bouncy Castle Java APIs for TLS and DTLS, including a provider for the JSSE.
The newest version!
package org.bouncycastle.tls.crypto.impl.bc;
import java.io.IOException;
import org.bouncycastle.crypto.AsymmetricCipherKeyPair;
import org.bouncycastle.crypto.SecretWithEncapsulation;
import org.bouncycastle.pqc.crypto.mlkem.MLKEMPrivateKeyParameters;
import org.bouncycastle.pqc.crypto.mlkem.MLKEMPublicKeyParameters;
import org.bouncycastle.tls.crypto.TlsAgreement;
import org.bouncycastle.tls.crypto.TlsSecret;
public class BcTlsMLKem implements TlsAgreement
{
protected final BcTlsMLKemDomain domain;
protected MLKEMPrivateKeyParameters privateKey;
protected MLKEMPublicKeyParameters publicKey;
protected TlsSecret secret;
public BcTlsMLKem(BcTlsMLKemDomain domain)
{
this.domain = domain;
}
public byte[] generateEphemeral() throws IOException
{
if (domain.isServer())
{
SecretWithEncapsulation encap = domain.encapsulate(publicKey);
this.publicKey = null;
this.secret = domain.adoptLocalSecret(encap.getSecret());
return encap.getEncapsulation();
}
else
{
AsymmetricCipherKeyPair kp = domain.generateKeyPair();
this.privateKey = (MLKEMPrivateKeyParameters)kp.getPrivate();
return domain.encodePublicKey((MLKEMPublicKeyParameters)kp.getPublic());
}
}
public void receivePeerValue(byte[] peerValue) throws IOException
{
if (domain.isServer())
{
this.publicKey = domain.decodePublicKey(peerValue);
}
else
{
this.secret = domain.decapsulate(privateKey, peerValue);
this.privateKey = null;
}
}
public TlsSecret calculateSecret() throws IOException
{
TlsSecret secret = this.secret;
this.secret = null;
return secret;
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy