@@ -427,7 +427,7 @@ public HMACKey cmacKdf(KMPreSharedKey preSharedKey, byte[] label, short labelSta
427427 short keyOutLen = n * 16 ;
428428 //Convert Hmackey to AES Key as the algorithm is ALG_AES_CMAC_128.
429429 KMHmacKey hmacKey = ((KMHmacKey ) preSharedKey );
430- hmacKey .getKey (tmpArray , (short ) 0 );
430+ hmacKey .hmacKey . getKey (tmpArray , (short ) 0 );
431431 aesKeys [KEYSIZE_256_OFFSET ].setKey (tmpArray , (short ) 0 );
432432 //Initialize the key derivation function.
433433 kdf .init (aesKeys [KEYSIZE_256_OFFSET ], Signature .MODE_SIGN );
@@ -473,20 +473,20 @@ public short hmacSign(byte[] keyBuf, short keyStart, short keyLength,
473473 @ Override
474474 public short hmacSign (Object key ,
475475 byte [] data , short dataStart , short dataLength , byte [] mac , short macStart ) {
476- if (!(key instanceof KMHmacKey )) {
477- KMException .throwIt (KMError .INVALID_ARGUMENT );
478- }
479- KMHmacKey hmacKey = (KMHmacKey ) key ;
480- return hmacSign (hmacKey .getKey () , data , dataStart , dataLength , mac , macStart );
476+ if (!(key instanceof KMHmacKey )) {
477+ KMException .throwIt (KMError .INVALID_ARGUMENT );
478+ }
479+ KMHmacKey hmacKey = (KMHmacKey ) key ;
480+ return hmacSign (hmacKey .hmacKey , data , dataStart , dataLength , mac , macStart );
481481 }
482482
483483 @ Override
484484 public short hmacKDF (KMMasterKey masterkey , byte [] data , short dataStart ,
485485 short dataLength , byte [] signature , short signatureStart ) {
486486 try {
487487 KMAESKey aesKey = (KMAESKey ) masterkey ;
488- short keyLen = (short ) (aesKey .getKeySizeBits () / 8 );
489- aesKey .getKey (tmpArray , (short ) 0 );
488+ short keyLen = (short ) (aesKey .aesKey . getSize () / 8 );
489+ aesKey .aesKey . getKey (tmpArray , (short ) 0 );
490490 return hmacSign (tmpArray , (short ) 0 , keyLen , data , dataStart , dataLength ,
491491 signature , signatureStart );
492492 } finally {
@@ -498,7 +498,7 @@ public short hmacKDF(KMMasterKey masterkey, byte[] data, short dataStart,
498498 public boolean hmacVerify (KMComputedHmacKey key , byte [] data , short dataStart ,
499499 short dataLength , byte [] mac , short macStart , short macLength ) {
500500 KMHmacKey hmacKey = (KMHmacKey ) key ;
501- hmacSignature .init (hmacKey .getKey () , Signature .MODE_VERIFY );
501+ hmacSignature .init (hmacKey .hmacKey , Signature .MODE_VERIFY );
502502 return hmacSignature .verify (data , dataStart , dataLength , mac , macStart ,
503503 macLength );
504504 }
@@ -602,7 +602,7 @@ public KMOperation createSymmetricCipher(short alg, short purpose, short macLeng
602602 }
603603 // Get the KeyObject from the operation and update the key with the secret key material.
604604 KMKeyObject keyObj = operation .getKeyObject ();
605- Key key = (Key )keyObj .getKeyObjectInstance () ;
605+ Key key = (Key )keyObj .keyObjectInst ;
606606 switch (secretLength ) {
607607 case 32 :
608608 case 16 :
@@ -634,7 +634,7 @@ public KMOperation createHmacSignerVerifier(short purpose, short digest,
634634 }
635635 // Get the KeyObject from the operation and update the key with the secret key material.
636636 KMKeyObject keyObj = operation .getKeyObject ();
637- HMACKey key = (HMACKey )keyObj .getKeyObjectInstance () ;
637+ HMACKey key = (HMACKey )keyObj .keyObjectInst ;
638638 key .setKey (secret , secretStart , secretLength );
639639 ((KMOperationImpl ) operation ).init (key , digest , null , (short ) 0 , (short ) 0 );
640640 return operation ;
@@ -649,7 +649,7 @@ private KMOperation createHmacSignerVerifier(short purpose, short digest, HMACKe
649649 KMType .HMAC , KMType .INVALID_VALUE , KMType .INVALID_VALUE , KMType .INVALID_VALUE , (short )0 , isTrustedConf );
650650 // Get the KeyObject from the operation and update the key with the secret key material.
651651 KMKeyObject keyObj = operation .getKeyObject ();
652- HMACKey key = (HMACKey )keyObj .getKeyObjectInstance () ;
652+ HMACKey key = (HMACKey )keyObj .keyObjectInst ;
653653 short len = hmacKey .getKey (tmpArray , (short ) 0 );
654654 key .setKey (tmpArray , (short ) 0 , len );
655655 ((KMOperationImpl ) operation ).init (key , digest , null , (short ) 0 , (short ) 0 );
@@ -716,8 +716,8 @@ public KMOperation initSymmetricOperation(byte purpose, byte alg, byte digest, b
716716 switch (interfaceType ) {
717717 case KMDataStoreConstants .INTERFACE_TYPE_MASTER_KEY :
718718 KMAESKey aesKey = (KMAESKey ) key ;
719- keyLen = (short ) (aesKey .getKeySizeBits () / 8 );
720- aesKey .getKey (tmpArray , (short ) 0 );
719+ keyLen = (short ) (aesKey .aesKey . getSize () / 8 );
720+ aesKey .aesKey . getKey (tmpArray , (short ) 0 );
721721 break ;
722722
723723 default :
@@ -743,7 +743,7 @@ public KMOperation initSymmetricOperation(byte purpose, byte alg, byte digest, b
743743 @ Override
744744 public KMOperation initTrustedConfirmationSymmetricOperation (KMComputedHmacKey computedHmacKey ) {
745745 KMHmacKey key = (KMHmacKey ) computedHmacKey ;
746- return createHmacSignerVerifier (KMType .VERIFY , KMType .SHA2_256 , key .getKey () , true );
746+ return createHmacSignerVerifier (KMType .VERIFY , KMType .SHA2_256 , key .hmacKey , true );
747747 }
748748
749749 public KMOperation createRsaSigner (short digest , short padding , byte [] secret ,
@@ -754,7 +754,7 @@ public KMOperation createRsaSigner(short digest, short padding, byte[] secret,
754754 KMType .INVALID_VALUE , KMType .INVALID_VALUE , secretLength , false );
755755 // Get the KeyObject from the operation and update the key with the secret key material.
756756 KMKeyObject keyObj = operation .getKeyObject ();
757- RSAPrivateKey key = (RSAPrivateKey )((KeyPair )(keyObj .getKeyObjectInstance () )).getPrivate ();
757+ RSAPrivateKey key = (RSAPrivateKey )((KeyPair )(keyObj .keyObjectInst )).getPrivate ();
758758 key .setExponent (secret , secretStart , secretLength );
759759 key .setModulus (modBuffer , modOff , modLength );
760760 ((KMOperationImpl ) operation ).init (key , digest , null , (short ) 0 , (short ) 0 );
@@ -769,7 +769,7 @@ public KMOperation createRsaDecipher(short padding, short mgfDigest, byte[] secr
769769 KMType .INVALID_VALUE , KMType .INVALID_VALUE , secretLength , false );
770770 // Get the KeyObject from the operation and update the key with the secret key material.
771771 KMKeyObject keyObj = operation .getKeyObject ();
772- RSAPrivateKey key = (RSAPrivateKey ) ((KeyPair )(keyObj .getKeyObjectInstance () )).getPrivate ();
772+ RSAPrivateKey key = (RSAPrivateKey ) ((KeyPair )(keyObj .keyObjectInst )).getPrivate ();
773773 key .setExponent (secret , secretStart , secretLength );
774774 key .setModulus (modBuffer , modOff , modLength );
775775 ((KMOperationImpl ) operation ).init (key , KMType .INVALID_VALUE , null , (short ) 0 , (short ) 0 );
@@ -783,7 +783,7 @@ public KMOperation createEcSigner(short digest, byte[] secret,
783783 .getOperationImpl (KMType .SIGN , alg , KMType .EC , KMType .INVALID_VALUE ,
784784 KMType .INVALID_VALUE , KMType .INVALID_VALUE , secretLength , false );
785785 KMKeyObject keyObj = operation .getKeyObject ();
786- ECPrivateKey key = (ECPrivateKey ) ((KeyPair )(keyObj .getKeyObjectInstance () )).getPrivate ();
786+ ECPrivateKey key = (ECPrivateKey ) ((KeyPair )(keyObj .keyObjectInst )).getPrivate ();
787787 key .setS (secret , secretStart , secretLength );
788788 ((KMOperationImpl ) operation ).init (key , digest , null , (short ) 0 , (short ) 0 );
789789 return operation ;
@@ -795,7 +795,7 @@ public KMOperation createKeyAgreement(byte[] secret, short secretStart,
795795 .getOperationImpl (KMType .AGREE_KEY , KeyAgreement .ALG_EC_SVDP_DH_PLAIN ,
796796 KMType .EC , KMType .INVALID_VALUE , KMType .INVALID_VALUE , KMType .INVALID_VALUE , (short )0 , false );
797797 KMKeyObject keyObj = operation .getKeyObject ();
798- ECPrivateKey key = (ECPrivateKey ) ((KeyPair )(keyObj .getKeyObjectInstance () )).getPrivate ();
798+ ECPrivateKey key = (ECPrivateKey ) ((KeyPair )(keyObj .keyObjectInst )).getPrivate ();
799799 key .setS (secret , secretStart , secretLength );
800800 ((KMOperationImpl ) operation ).init (key , KMType .INVALID_VALUE , null , (short ) 0 , (short ) 0 );
801801 return operation ;
@@ -864,7 +864,7 @@ public KMMasterKey createMasterKey(KMMasterKey masterKey, short keySizeBits) {
864864 masterKey = new KMAESKey (key );
865865 short keyLen = (short ) (keySizeBits / 8 );
866866 getTrueRandomNumber (tmpArray , (short ) 0 , keyLen );
867- ((KMAESKey )masterKey ).setKey (tmpArray , (short ) 0 );
867+ ((KMAESKey )masterKey ).aesKey . setKey (tmpArray , (short ) 0 );
868868 }
869869 return (KMMasterKey ) masterKey ;
870870 } finally {
@@ -883,7 +883,7 @@ public KMPreSharedKey createPreSharedKey(KMPreSharedKey preSharedKey, byte[] key
883883 false );
884884 preSharedKey = new KMHmacKey (key );
885885 }
886- ((KMHmacKey )preSharedKey ).setKey (keyData , offset , length );
886+ ((KMHmacKey )preSharedKey ).hmacKey . setKey (keyData , offset , length );
887887 return (KMPreSharedKey ) preSharedKey ;
888888 }
889889
@@ -897,7 +897,7 @@ public KMComputedHmacKey createComputedHmacKey(KMComputedHmacKey computedHmacKey
897897 false );
898898 computedHmacKey = new KMHmacKey (key );
899899 }
900- ((KMHmacKey )computedHmacKey ).setKey (keyData , offset , length );
900+ ((KMHmacKey )computedHmacKey ).hmacKey . setKey (keyData , offset , length );
901901 return (KMComputedHmacKey ) computedHmacKey ;
902902 }
903903
@@ -933,7 +933,7 @@ public short ecSign256(KMAttestationKey ecPrivKey, byte[] inputDataBuf, short in
933933
934934 signer = Signature .OneShot .open (MessageDigest .ALG_SHA_256 ,
935935 Signature .SIG_CIPHER_ECDSA , Cipher .PAD_NULL );
936- signer .init (((KMECPrivateKey ) ecPrivKey ).getPrivateKey (), Signature .MODE_SIGN );
936+ signer .init (((KMECPrivateKey ) ecPrivKey ).ecKeyPair . getPrivate (), Signature .MODE_SIGN );
937937 return signer .sign (inputDataBuf , inputDataStart , inputDataLength ,
938938 outputDataBuf , outputDataStart );
939939 } finally {
@@ -1071,7 +1071,7 @@ public short ecSign256(KMDeviceUniqueKeyPair ecPrivKey, byte[] inputDataBuf,
10711071 try {
10721072 signer = Signature .OneShot .open (MessageDigest .ALG_SHA_256 ,
10731073 Signature .SIG_CIPHER_ECDSA , Cipher .PAD_NULL );
1074- signer .init (((KMECDeviceUniqueKey ) ecPrivKey ).getPrivateKey (), Signature .MODE_SIGN );
1074+ signer .init (((KMECDeviceUniqueKey ) ecPrivKey ).ecKeyPair . getPrivate (), Signature .MODE_SIGN );
10751075 return signer .sign (inputDataBuf , inputDataStart , inputDataLength ,
10761076 outputDataBuf , outputDataStart );
10771077 } finally {
@@ -1090,8 +1090,10 @@ public KMDeviceUniqueKeyPair createRkpDeviceUniqueKeyPair(KMDeviceUniqueKeyPair
10901090 poolMgr .initECKey (ecKeyPair );
10911091 key = new KMECDeviceUniqueKey (ecKeyPair );
10921092 }
1093- ((KMECDeviceUniqueKey ) key ).setS (privKey , privKeyOff , privKeyLen );
1094- ((KMECDeviceUniqueKey ) key ).setW (pubKey , pubKeyOff , pubKeyLen );
1093+ ECPrivateKey ecKeyPair = (ECPrivateKey ) ((KMECDeviceUniqueKey ) key ).ecKeyPair .getPrivate ();
1094+ ECPublicKey ecPublicKey = (ECPublicKey ) ((KMECDeviceUniqueKey ) key ).ecKeyPair .getPublic ();
1095+ ecKeyPair .setS (privKey , privKeyOff , privKeyLen );
1096+ ecPublicKey .setW (pubKey , pubKeyOff , pubKeyLen );
10951097 return (KMDeviceUniqueKeyPair ) key ;
10961098 }
10971099
@@ -1103,7 +1105,7 @@ public KMRkpMacKey createRkpMacKey(KMRkpMacKey rkpMacKey, byte[] keyData,
11031105 false );
11041106 rkpMacKey = new KMHmacKey (key );
11051107 }
1106- ((KMHmacKey ) rkpMacKey ).setKey (keyData , offset , length );
1108+ ((KMHmacKey ) rkpMacKey ).hmacKey . setKey (keyData , offset , length );
11071109 return rkpMacKey ;
11081110 }
11091111
0 commit comments