github:115 fix to s2kUsage if previously none

dghgit · dghgit · commit 81a5be7e59b5 · 2015-06-24T08:56:23.000+10:00
diff --git a/pg/src/main/java/org/bouncycastle/openpgp/PGPSecretKey.java b/pg/src/main/java/org/bouncycastle/openpgp/PGPSecretKey.java
@@ -323,6 +323,16 @@ public long getKeyID()
         return pub.getKeyID();
     }
 
+    /**
+     * Return the S2K usage associated with this key.
+     *
+     * @return the key's S2K usage
+     */
+    public int getS2KUsage()
+    {
+        return secret.getS2KUsage();
+    }
+
     /**
      * Return the S2K used to process this key
      *
@@ -682,6 +692,10 @@ public static PGPSecretKey copyWithNewPassword(
         }
         else
         {
+            if (s2kUsage == SecretKeyPacket.USAGE_NONE)
+            {
+                s2kUsage = SecretKeyPacket.USAGE_CHECKSUM;
+            }
             if (key.secret.getPublicKeyPacket().getVersion() < 4)
             {
                 // Version 2 or 3 - RSA Keys only
diff --git a/pg/src/test/java/org/bouncycastle/openpgp/test/PGPKeyRingTest.java b/pg/src/test/java/org/bouncycastle/openpgp/test/PGPKeyRingTest.java
@@ -11,6 +11,7 @@
 import javax.crypto.Cipher;
 
 import org.bouncycastle.bcpg.HashAlgorithmTags;
+import org.bouncycastle.bcpg.SecretKeyPacket;
 import org.bouncycastle.bcpg.SymmetricKeyAlgorithmTags;
 import org.bouncycastle.jce.provider.BouncyCastleProvider;
 import org.bouncycastle.jce.spec.ElGamalParameterSpec;
@@ -2355,9 +2356,9 @@ private void rewrapTest()
                 // this should succeed
                 PGPPrivateKey privTmp = pgpKey.extractPrivateKey(null);
 
-                if (pgpKey.getKeyID() != oldKeyID)
+                if (pgpKey.getKeyID() != oldKeyID || pgpKey.getS2KUsage() != SecretKeyPacket.USAGE_NONE)
                 {
-                    fail("key ID mismatch");
+                    fail("usage/key ID mismatch");
                 }
             }
 
@@ -2379,9 +2380,9 @@ private void rewrapTest()
                 // this should succeed
                 PGPPrivateKey privTmp = pgpKey.extractPrivateKey(new JcePBESecretKeyDecryptorBuilder(new JcaPGPDigestCalculatorProviderBuilder().setProvider("BC").build()).setProvider("BC").build(newPass));
 
-                if (pgpKey.getKeyID() != oldKeyID)
+                if (pgpKey.getKeyID() != oldKeyID || pgpKey.getS2KUsage() != SecretKeyPacket.USAGE_CHECKSUM)
                 {
-                    fail("key ID mismatch");
+                    fail("usage/key ID mismatch");
                 }
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -323,6 +323,16 @@ public long getKeyID()`
`323`	`323`	`return pub.getKeyID();`
`324`	`324`	`}`
`325`	`325`
	`326`	`+ /**`
	`327`	`+ * Return the S2K usage associated with this key.`
	`328`	`+ *`
	`329`	`+ * @return the key's S2K usage`
	`330`	`+ */`
	`331`	`+ public int getS2KUsage()`
	`332`	`+ {`
	`333`	`+ return secret.getS2KUsage();`
	`334`	`+ }`
	`335`	`+`
`326`	`336`	`/**`
`327`	`337`	`* Return the S2K used to process this key`
`328`	`338`	`*`
`@@ -682,6 +692,10 @@ public static PGPSecretKey copyWithNewPassword(`
`682`	`692`	`}`
`683`	`693`	`else`
`684`	`694`	`{`
	`695`	`+ if (s2kUsage == SecretKeyPacket.USAGE_NONE)`
	`696`	`+ {`
	`697`	`+ s2kUsage = SecretKeyPacket.USAGE_CHECKSUM;`
	`698`	`+ }`
`685`	`699`	`if (key.secret.getPublicKeyPacket().getVersion() < 4)`
`686`	`700`	`{`
`687`	`701`	`// Version 2 or 3 - RSA Keys only`
Original file line number	Diff line number	Diff line change
`@@ -11,6 +11,7 @@`
`11`	`11`	`import javax.crypto.Cipher;`
`12`	`12`
`13`	`13`	`import org.bouncycastle.bcpg.HashAlgorithmTags;`
	`14`	`+import org.bouncycastle.bcpg.SecretKeyPacket;`
`14`	`15`	`import org.bouncycastle.bcpg.SymmetricKeyAlgorithmTags;`
`15`	`16`	`import org.bouncycastle.jce.provider.BouncyCastleProvider;`
`16`	`17`	`import org.bouncycastle.jce.spec.ElGamalParameterSpec;`
`@@ -2355,9 +2356,9 @@ private void rewrapTest()`
`2355`	`2356`	`// this should succeed`
`2356`	`2357`	`PGPPrivateKey privTmp = pgpKey.extractPrivateKey(null);`
`2357`	`2358`
`2358`		`- if (pgpKey.getKeyID() != oldKeyID)`
	`2359`	`+ if (pgpKey.getKeyID() != oldKeyID \|\| pgpKey.getS2KUsage() != SecretKeyPacket.USAGE_NONE)`
`2359`	`2360`	`{`
`2360`		`- fail("key ID mismatch");`
	`2361`	`+ fail("usage/key ID mismatch");`
`2361`	`2362`	`}`
`2362`	`2363`	`}`
`2363`	`2364`
`@@ -2379,9 +2380,9 @@ private void rewrapTest()`
`2379`	`2380`	`// this should succeed`
`2380`	`2381`	`PGPPrivateKey privTmp = pgpKey.extractPrivateKey(new JcePBESecretKeyDecryptorBuilder(new JcaPGPDigestCalculatorProviderBuilder().setProvider("BC").build()).setProvider("BC").build(newPass));`
`2381`	`2382`
`2382`		`- if (pgpKey.getKeyID() != oldKeyID)`
	`2383`	`+ if (pgpKey.getKeyID() != oldKeyID \|\| pgpKey.getS2KUsage() != SecretKeyPacket.USAGE_CHECKSUM)`
`2383`	`2384`	`{`
`2384`		`- fail("key ID mismatch");`
	`2385`	`+ fail("usage/key ID mismatch");`
`2385`	`2386`	`}`
`2386`	`2387`	`}`
`2387`	`2388`	`}`