openssl-projects
diff --git a/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/AESBlockCipherSpi.java‎
Lines changed: 5 additions & 2 deletions b/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/AESBlockCipherSpi.java‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/ARIABlockCipherSpi.java‎
Lines changed: 3 additions & 3 deletions b/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/ARIABlockCipherSpi.java‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/BlockCipherSpi.java‎
Lines changed: 20 additions & 3 deletions b/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/BlockCipherSpi.java‎
Lines changed: 20 additions & 3 deletions
diff --git a/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/CAMELLIABlockCipherSpi.java‎
Lines changed: 4 additions & 3 deletions b/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/CAMELLIABlockCipherSpi.java‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/SM4BlockCipherSpi.java‎
Lines changed: 12 additions & 3 deletions b/‎jostle/src/main/java/org/openssl/jostle/jcajce/provider/SM4BlockCipherSpi.java‎
Lines changed: 12 additions & 3 deletions
diff --git a/‎jostle/src/main/java9/org/openssl/jostle/jcajce/provider/BlockCipherSpi.java‎
Lines changed: 20 additions & 4 deletions b/‎jostle/src/main/java9/org/openssl/jostle/jcajce/provider/BlockCipherSpi.java‎
Lines changed: 20 additions & 4 deletions
diff --git a/‎jostle/src/test/java/org/openssl/jostle/test/crypto/AESAgreementTest.java‎
Lines changed: 47 additions & 0 deletions b/‎jostle/src/test/java/org/openssl/jostle/test/crypto/AESAgreementTest.java‎
Lines changed: 47 additions & 0 deletions
@@ -27,12 +27,12 @@ class AESBlockCipherSpi extends BlockCipherSpi
 
     AESBlockCipherSpi(OSSLCipher cipher)
     {
-        super(cipher);
+        super(cipher,"AES");
     }
 
     AESBlockCipherSpi(OSSLCipher cipher, OSSLMode mode)
     {
-        super(cipher, mode);
+        super(cipher, mode,"AES");
     }
 
     protected void determineOSSLCipher(int keySize) throws InvalidKeyException
@@ -65,20 +65,23 @@ protected void determineOSSLCipher(int keySize) throws InvalidKeyException
     @Override
     protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException
     {
+
         determineOSSLCipher(key.getEncoded().length);
         super.engineInit(opmode, key, random);
     }
 
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+
         determineOSSLCipher(key.getEncoded().length);
         super.engineInit(opmode, key, params, random);
     }
 
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+
         determineOSSLCipher(key.getEncoded().length);
         // TODO: we should have a list of ParameterSpec to try here.
         try
 
@@ -20,15 +20,15 @@ class ARIABlockCipherSpi extends BlockCipherSpi
 
      ARIABlockCipherSpi()
     {
-        super(null);
+        super(null,"ARIA");
     }
 
      ARIABlockCipherSpi(OSSLCipher cipher) {
-        super(cipher);
+        super(cipher,"ARIA");
     }
 
      ARIABlockCipherSpi(OSSLCipher cipher, OSSLMode mode) {
-        super(cipher, mode);
+        super(cipher, mode,"ARIA");
     }
 
     protected void determineOSSLCipher(int keySize) throws InvalidKeyException
 
@@ -27,6 +27,8 @@ class BlockCipherSpi extends CipherSpi
 {
     final OSSLCipher mandatedCipher;
     final OSSLMode mandatedMode;
+    final String keyAlgorithm;
+
     OSSLCipher osslCipher;
     OSSLMode osslMode;
     int padding;
@@ -41,22 +43,25 @@ class BlockCipherSpi extends CipherSpi
             GCMParameterSpec.class,
     };
 
-    BlockCipherSpi(Object params)
+    BlockCipherSpi(Object params, String expectedKeyAlgorithm)
     {
         mandatedCipher = null;
         mandatedMode = null;
+        this.keyAlgorithm = expectedKeyAlgorithm;
     }
 
-    BlockCipherSpi(OSSLCipher osslCipher)
+    BlockCipherSpi(OSSLCipher osslCipher, String expectedKeyAlgorithm)
     {
         mandatedCipher = osslCipher;
         mandatedMode = null;
+        this.keyAlgorithm = expectedKeyAlgorithm;
     }
 
-    BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode)
+    BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode, String expectedKeyAlgorithm)
     {
         mandatedCipher = osslCipher;
         mandatedMode = osslMode;
+        this.keyAlgorithm = expectedKeyAlgorithm;
     }
 
     @Override
@@ -126,6 +131,7 @@ protected AlgorithmParameters engineGetParameters()
     @Override
     protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException
     {
+        validateKeyAlg(key);
         synchronized (this)
         {
             ensureNativeReference();
@@ -150,6 +156,7 @@ protected void engineInit(int opmode, Key key, SecureRandom random) throws Inval
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+        validateKeyAlg(key);
         synchronized (this)
         {
             ensureNativeReference();
@@ -197,6 +204,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, Se
     protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
 
+        validateKeyAlg(key);
         AlgorithmParameterSpec paramSpec = null;
 
         if (params != null)
@@ -486,4 +494,13 @@ protected boolean overlap(int inputOffset, int inputLen, int outputOffset, int o
         return inputOffset == outputOffset || Math.max(inputOffset, outputOffset) <= Math.min(inputOffset + inputLen, outputOffset + outputLen);
     }
 
+    protected void validateKeyAlg(Key key) throws InvalidKeyException
+    {
+        if (keyAlgorithm.equals(key.getAlgorithm()))
+        {
+            return;
+        }
+        throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());
+    }
+
 }
@@ -20,15 +20,15 @@ class CAMELLIABlockCipherSpi extends BlockCipherSpi
 
      CAMELLIABlockCipherSpi()
     {
-        super(null);
+        super(null,"CAMELLIA");
     }
 
      CAMELLIABlockCipherSpi(OSSLCipher cipher) {
-        super(cipher);
+        super(cipher,"CAMELLIA");
     }
 
      CAMELLIABlockCipherSpi(OSSLCipher cipher, OSSLMode mode) {
-        super(cipher, mode);
+        super(cipher, mode,"CAMELLIA");
     }
 
     protected void determineOSSLCipher(int keySize) throws InvalidKeyException
@@ -77,6 +77,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameters params, Secur
     {
         determineOSSLCipher(key.getEncoded().length);
         // TODO: we should have a list of ParameterSpec to try here.
+
         try
         {
             super.engineInit(opmode, key, params.getParameterSpec(IvParameterSpec.class), random);
 
@@ -20,17 +20,17 @@ class SM4BlockCipherSpi extends BlockCipherSpi
 
     SM4BlockCipherSpi()
     {
-        super(null);
+        super(null, "SM4");
     }
 
     SM4BlockCipherSpi(OSSLCipher cipher)
     {
-        super(cipher);
+        super(cipher, "SM4");
     }
 
     SM4BlockCipherSpi(OSSLCipher cipher, OSSLMode mode)
     {
-        super(cipher, mode);
+        super(cipher, mode, "SM4");
     }
 
     protected void determineOSSLCipher(int keySize) throws InvalidKeyException
@@ -57,20 +57,29 @@ protected void determineOSSLCipher(int keySize) throws InvalidKeyException
     @Override
     protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException
     {
+        validateKeyAlg(key);
         determineOSSLCipher(key.getEncoded().length);
         super.engineInit(opmode, key, random);
     }
 
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+        if (!"SM4".equalsIgnoreCase(key.getAlgorithm()))
+        {
+            throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());
+        }
         determineOSSLCipher(key.getEncoded().length);
         super.engineInit(opmode, key, params, random);
     }
 
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+        if (!"SM4".equalsIgnoreCase(key.getAlgorithm()))
+        {
+            throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());
+        }
         determineOSSLCipher(key.getEncoded().length);
         // TODO: we should have a list of ParameterSpec to try here.
         try
 
@@ -34,6 +34,7 @@ class BlockCipherSpi extends CipherSpi
     OSSLBlockCipherRefWrapper refWrapper;
     int blockSize;
     int opMode;
+    final String keyAlgorithm;
 
     private static int BUF_SIZE = 1024;
 
@@ -42,22 +43,25 @@ class BlockCipherSpi extends CipherSpi
             GCMParameterSpec.class,
     };
 
-    BlockCipherSpi(Object params)
+    BlockCipherSpi(Object params, String keyAlgorithm)
     {
         mandatedCipher = null;
         mandatedMode = null;
+        this.keyAlgorithm = keyAlgorithm;
     }
 
-    BlockCipherSpi(OSSLCipher osslCipher)
+    BlockCipherSpi(OSSLCipher osslCipher, String keyAlgorithm)
     {
         mandatedCipher = osslCipher;
         mandatedMode = null;
+        this.keyAlgorithm = keyAlgorithm;
     }
 
-    BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode)
+    BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode, String keyAlgorithm)
     {
         mandatedCipher = osslCipher;
         mandatedMode = osslMode;
+        this.keyAlgorithm = keyAlgorithm;
     }
 
     @Override
@@ -133,6 +137,7 @@ protected AlgorithmParameters engineGetParameters()
     @Override
     protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException
     {
+        validateKeyAlg(key);
         try
         {
             ensureNativeReference();
@@ -160,6 +165,7 @@ protected void engineInit(int opmode, Key key, SecureRandom random) throws Inval
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
+        validateKeyAlg(key);
         try
         {
             ensureNativeReference();
@@ -209,7 +215,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, Se
     @Override
     protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException
     {
-
+        validateKeyAlg(key);
         AlgorithmParameterSpec paramSpec = null;
 
         if (params != null)
@@ -243,6 +249,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameters params, Secur
     @Override
     protected void engineUpdateAAD(byte[] src, int offset, int len)
     {
+
         try
         {
             len = NISelector.BlockCipherNI.updateAAD(
@@ -515,4 +522,13 @@ protected boolean overlap(int inputOffset, int inputLen, int outputOffset, int o
         return inputOffset == outputOffset || Math.max(inputOffset, outputOffset) <= Math.min(inputOffset + inputLen, outputOffset + outputLen);
     }
 
+    protected void validateKeyAlg(Key key) throws InvalidKeyException
+    {
+        if (keyAlgorithm.equals(key.getAlgorithm()))
+        {
+            return;
+        }
+        throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());
+    }
+
 }
@@ -14,6 +14,7 @@
 import javax.crypto.spec.GCMParameterSpec;
 import javax.crypto.spec.IvParameterSpec;
 import javax.crypto.spec.SecretKeySpec;
+import java.security.InvalidKeyException;
 import java.security.SecureRandom;
 import java.security.Security;
 import java.util.ArrayList;
@@ -1127,6 +1128,52 @@ public void aesGCMWithTagLen() throws Exception
         }
     }
 
+    @Test
+    public void testRejectIncorrectKeyAlgorithm() throws Exception
+    {
+        SecretKeySpec wrongSpec = new SecretKeySpec(new byte[16], "ARIA");
+
+        try {
+            Cipher cipher = Cipher.getInstance("AES/ECB/NoPadding",JostleProvider.PROVIDER_NAME);
+            cipher.init(Cipher.ENCRYPT_MODE, wrongSpec);
+            Assertions.fail("Should have thrown an exception");
+        } catch (InvalidKeyException ikes) {
+            Assertions.assertEquals("unsupported key algorithm ARIA",ikes.getMessage());
+        }
+
+        try {
+            Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding",JostleProvider.PROVIDER_NAME);
+            cipher.init(Cipher.ENCRYPT_MODE, wrongSpec, new IvParameterSpec(new byte[16]));
+            Assertions.fail("Should have thrown an exception");
+        } catch (InvalidKeyException ikes) {
+            Assertions.assertEquals("unsupported key algorithm ARIA",ikes.getMessage());
+        }
+
+        try {
+            Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding",JostleProvider.PROVIDER_NAME);
+            org.openssl.jostle.test.crypto.DummyParams params = new org.openssl.jostle.test.crypto.DummyParams();
+            params.init(new byte[16]);
+            cipher.init(Cipher.ENCRYPT_MODE, wrongSpec, params);
+            Assertions.fail("Should have thrown an exception");
+        } catch (InvalidKeyException ikes) {
+            Assertions.assertEquals("unsupported key algorithm ARIA",ikes.getMessage());
+        }
+
+
+        // Correct spec
+        Cipher cipher = Cipher.getInstance("AES/ECB/NoPadding", JostleProvider.PROVIDER_NAME);
+        cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(new byte[16], "AES"));
+
+        cipher = Cipher.getInstance("AES/CBC/NoPadding", JostleProvider.PROVIDER_NAME);
+        cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(new byte[16], "AES"), new IvParameterSpec(new byte[16]));
+
+        cipher = Cipher.getInstance("AES/CBC/NoPadding", JostleProvider.PROVIDER_NAME);
+        org.openssl.jostle.test.crypto.DummyParams params = new org.openssl.jostle.test.crypto.DummyParams();
+        params.init(new byte[16]);
+        cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(new byte[16], "AES"), params);
+    }
+    
+    
     private String pad(int len)
     {
         char[] buf = new char[len];
Original file line number	Diff line number	Diff line change
`@@ -27,12 +27,12 @@ class AESBlockCipherSpi extends BlockCipherSpi`
`27`	`27`
`28`	`28`	`AESBlockCipherSpi(OSSLCipher cipher)`
`29`	`29`	`{`
`30`		`- super(cipher);`
	`30`	`+ super(cipher,"AES");`
`31`	`31`	`}`
`32`	`32`
`33`	`33`	`AESBlockCipherSpi(OSSLCipher cipher, OSSLMode mode)`
`34`	`34`	`{`
`35`		`- super(cipher, mode);`
	`35`	`+ super(cipher, mode,"AES");`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
`@@ -65,20 +65,23 @@ protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
`65`	`65`	`@Override`
`66`	`66`	`protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException`
`67`	`67`	`{`
	`68`	`+`
`68`	`69`	`determineOSSLCipher(key.getEncoded().length);`
`69`	`70`	`super.engineInit(opmode, key, random);`
`70`	`71`	`}`
`71`	`72`
`72`	`73`	`@Override`
`73`	`74`	`protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`74`	`75`	`{`
	`76`	`+`
`75`	`77`	`determineOSSLCipher(key.getEncoded().length);`
`76`	`78`	`super.engineInit(opmode, key, params, random);`
`77`	`79`	`}`
`78`	`80`
`79`	`81`	`@Override`
`80`	`82`	`protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`81`	`83`	`{`
	`84`	`+`
`82`	`85`	`determineOSSLCipher(key.getEncoded().length);`
`83`	`86`	`// TODO: we should have a list of ParameterSpec to try here.`
`84`	`87`	`try`
Original file line number	Diff line number	Diff line change
`@@ -20,15 +20,15 @@ class ARIABlockCipherSpi extends BlockCipherSpi`
`20`	`20`
`21`	`21`	`ARIABlockCipherSpi()`
`22`	`22`	`{`
`23`		`- super(null);`
	`23`	`+ super(null,"ARIA");`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`ARIABlockCipherSpi(OSSLCipher cipher) {`
`27`		`- super(cipher);`
	`27`	`+ super(cipher,"ARIA");`
`28`	`28`	`}`
`29`	`29`
`30`	`30`	`ARIABlockCipherSpi(OSSLCipher cipher, OSSLMode mode) {`
`31`		`- super(cipher, mode);`
	`31`	`+ super(cipher, mode,"ARIA");`
`32`	`32`	`}`
`33`	`33`
`34`	`34`	`protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,8 @@ class BlockCipherSpi extends CipherSpi`
`27`	`27`	`{`
`28`	`28`	`final OSSLCipher mandatedCipher;`
`29`	`29`	`final OSSLMode mandatedMode;`
	`30`	`+ final String keyAlgorithm;`
	`31`	`+`
`30`	`32`	`OSSLCipher osslCipher;`
`31`	`33`	`OSSLMode osslMode;`
`32`	`34`	`int padding;`
`@@ -41,22 +43,25 @@ class BlockCipherSpi extends CipherSpi`
`41`	`43`	`GCMParameterSpec.class,`
`42`	`44`	`};`
`43`	`45`
`44`		`- BlockCipherSpi(Object params)`
	`46`	`+ BlockCipherSpi(Object params, String expectedKeyAlgorithm)`
`45`	`47`	`{`
`46`	`48`	`mandatedCipher = null;`
`47`	`49`	`mandatedMode = null;`
	`50`	`+ this.keyAlgorithm = expectedKeyAlgorithm;`
`48`	`51`	`}`
`49`	`52`
`50`		`- BlockCipherSpi(OSSLCipher osslCipher)`
	`53`	`+ BlockCipherSpi(OSSLCipher osslCipher, String expectedKeyAlgorithm)`
`51`	`54`	`{`
`52`	`55`	`mandatedCipher = osslCipher;`
`53`	`56`	`mandatedMode = null;`
	`57`	`+ this.keyAlgorithm = expectedKeyAlgorithm;`
`54`	`58`	`}`
`55`	`59`
`56`		`- BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode)`
	`60`	`+ BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode, String expectedKeyAlgorithm)`
`57`	`61`	`{`
`58`	`62`	`mandatedCipher = osslCipher;`
`59`	`63`	`mandatedMode = osslMode;`
	`64`	`+ this.keyAlgorithm = expectedKeyAlgorithm;`
`60`	`65`	`}`
`61`	`66`
`62`	`67`	`@Override`
`@@ -126,6 +131,7 @@ protected AlgorithmParameters engineGetParameters()`
`126`	`131`	`@Override`
`127`	`132`	`protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException`
`128`	`133`	`{`
	`134`	`+ validateKeyAlg(key);`
`129`	`135`	`synchronized (this)`
`130`	`136`	`{`
`131`	`137`	`ensureNativeReference();`
`@@ -150,6 +156,7 @@ protected void engineInit(int opmode, Key key, SecureRandom random) throws Inval`
`150`	`156`	`@Override`
`151`	`157`	`protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`152`	`158`	`{`
	`159`	`+ validateKeyAlg(key);`
`153`	`160`	`synchronized (this)`
`154`	`161`	`{`
`155`	`162`	`ensureNativeReference();`
`@@ -197,6 +204,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, Se`
`197`	`204`	`protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`198`	`205`	`{`
`199`	`206`
	`207`	`+ validateKeyAlg(key);`
`200`	`208`	`AlgorithmParameterSpec paramSpec = null;`
`201`	`209`
`202`	`210`	`if (params != null)`
`@@ -486,4 +494,13 @@ protected boolean overlap(int inputOffset, int inputLen, int outputOffset, int o`
`486`	`494`	`return inputOffset == outputOffset \|\| Math.max(inputOffset, outputOffset) <= Math.min(inputOffset + inputLen, outputOffset + outputLen);`
`487`	`495`	`}`
`488`	`496`
	`497`	`+ protected void validateKeyAlg(Key key) throws InvalidKeyException`
	`498`	`+ {`
	`499`	`+ if (keyAlgorithm.equals(key.getAlgorithm()))`
	`500`	`+ {`
	`501`	`+ return;`
	`502`	`+ }`
	`503`	`+ throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());`
	`504`	`+ }`
	`505`	`+`
`489`	`506`	`}`
Original file line number	Diff line number	Diff line change
`@@ -20,15 +20,15 @@ class CAMELLIABlockCipherSpi extends BlockCipherSpi`
`20`	`20`
`21`	`21`	`CAMELLIABlockCipherSpi()`
`22`	`22`	`{`
`23`		`- super(null);`
	`23`	`+ super(null,"CAMELLIA");`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`CAMELLIABlockCipherSpi(OSSLCipher cipher) {`
`27`		`- super(cipher);`
	`27`	`+ super(cipher,"CAMELLIA");`
`28`	`28`	`}`
`29`	`29`
`30`	`30`	`CAMELLIABlockCipherSpi(OSSLCipher cipher, OSSLMode mode) {`
`31`		`- super(cipher, mode);`
	`31`	`+ super(cipher, mode,"CAMELLIA");`
`32`	`32`	`}`
`33`	`33`
`34`	`34`	`protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
`@@ -77,6 +77,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameters params, Secur`
`77`	`77`	`{`
`78`	`78`	`determineOSSLCipher(key.getEncoded().length);`
`79`	`79`	`// TODO: we should have a list of ParameterSpec to try here.`
	`80`	`+`
`80`	`81`	`try`
`81`	`82`	`{`
`82`	`83`	`super.engineInit(opmode, key, params.getParameterSpec(IvParameterSpec.class), random);`
Original file line number	Diff line number	Diff line change
`@@ -20,17 +20,17 @@ class SM4BlockCipherSpi extends BlockCipherSpi`
`20`	`20`
`21`	`21`	`SM4BlockCipherSpi()`
`22`	`22`	`{`
`23`		`- super(null);`
	`23`	`+ super(null, "SM4");`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`SM4BlockCipherSpi(OSSLCipher cipher)`
`27`	`27`	`{`
`28`		`- super(cipher);`
	`28`	`+ super(cipher, "SM4");`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`SM4BlockCipherSpi(OSSLCipher cipher, OSSLMode mode)`
`32`	`32`	`{`
`33`		`- super(cipher, mode);`
	`33`	`+ super(cipher, mode, "SM4");`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
`@@ -57,20 +57,29 @@ protected void determineOSSLCipher(int keySize) throws InvalidKeyException`
`57`	`57`	`@Override`
`58`	`58`	`protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException`
`59`	`59`	`{`
	`60`	`+ validateKeyAlg(key);`
`60`	`61`	`determineOSSLCipher(key.getEncoded().length);`
`61`	`62`	`super.engineInit(opmode, key, random);`
`62`	`63`	`}`
`63`	`64`
`64`	`65`	`@Override`
`65`	`66`	`protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`66`	`67`	`{`
	`68`	`+ if (!"SM4".equalsIgnoreCase(key.getAlgorithm()))`
	`69`	`+ {`
	`70`	`+ throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());`
	`71`	`+ }`
`67`	`72`	`determineOSSLCipher(key.getEncoded().length);`
`68`	`73`	`super.engineInit(opmode, key, params, random);`
`69`	`74`	`}`
`70`	`75`
`71`	`76`	`@Override`
`72`	`77`	`protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`73`	`78`	`{`
	`79`	`+ if (!"SM4".equalsIgnoreCase(key.getAlgorithm()))`
	`80`	`+ {`
	`81`	`+ throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());`
	`82`	`+ }`
`74`	`83`	`determineOSSLCipher(key.getEncoded().length);`
`75`	`84`	`// TODO: we should have a list of ParameterSpec to try here.`
`76`	`85`	`try`
Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@ class BlockCipherSpi extends CipherSpi`
`34`	`34`	`OSSLBlockCipherRefWrapper refWrapper;`
`35`	`35`	`int blockSize;`
`36`	`36`	`int opMode;`
	`37`	`+ final String keyAlgorithm;`
`37`	`38`
`38`	`39`	`private static int BUF_SIZE = 1024;`
`39`	`40`
`@@ -42,22 +43,25 @@ class BlockCipherSpi extends CipherSpi`
`42`	`43`	`GCMParameterSpec.class,`
`43`	`44`	`};`
`44`	`45`
`45`		`- BlockCipherSpi(Object params)`
	`46`	`+ BlockCipherSpi(Object params, String keyAlgorithm)`
`46`	`47`	`{`
`47`	`48`	`mandatedCipher = null;`
`48`	`49`	`mandatedMode = null;`
	`50`	`+ this.keyAlgorithm = keyAlgorithm;`
`49`	`51`	`}`
`50`	`52`
`51`		`- BlockCipherSpi(OSSLCipher osslCipher)`
	`53`	`+ BlockCipherSpi(OSSLCipher osslCipher, String keyAlgorithm)`
`52`	`54`	`{`
`53`	`55`	`mandatedCipher = osslCipher;`
`54`	`56`	`mandatedMode = null;`
	`57`	`+ this.keyAlgorithm = keyAlgorithm;`
`55`	`58`	`}`
`56`	`59`
`57`		`- BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode)`
	`60`	`+ BlockCipherSpi(OSSLCipher osslCipher, OSSLMode osslMode, String keyAlgorithm)`
`58`	`61`	`{`
`59`	`62`	`mandatedCipher = osslCipher;`
`60`	`63`	`mandatedMode = osslMode;`
	`64`	`+ this.keyAlgorithm = keyAlgorithm;`
`61`	`65`	`}`
`62`	`66`
`63`	`67`	`@Override`
`@@ -133,6 +137,7 @@ protected AlgorithmParameters engineGetParameters()`
`133`	`137`	`@Override`
`134`	`138`	`protected void engineInit(int opmode, Key key, SecureRandom random) throws InvalidKeyException`
`135`	`139`	`{`
	`140`	`+ validateKeyAlg(key);`
`136`	`141`	`try`
`137`	`142`	`{`
`138`	`143`	`ensureNativeReference();`
`@@ -160,6 +165,7 @@ protected void engineInit(int opmode, Key key, SecureRandom random) throws Inval`
`160`	`165`	`@Override`
`161`	`166`	`protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`162`	`167`	`{`
	`168`	`+ validateKeyAlg(key);`
`163`	`169`	`try`
`164`	`170`	`{`
`165`	`171`	`ensureNativeReference();`
`@@ -209,7 +215,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameterSpec params, Se`
`209`	`215`	`@Override`
`210`	`216`	`protected void engineInit(int opmode, Key key, AlgorithmParameters params, SecureRandom random) throws InvalidKeyException, InvalidAlgorithmParameterException`
`211`	`217`	`{`
`212`		`-`
	`218`	`+ validateKeyAlg(key);`
`213`	`219`	`AlgorithmParameterSpec paramSpec = null;`
`214`	`220`
`215`	`221`	`if (params != null)`
`@@ -243,6 +249,7 @@ protected void engineInit(int opmode, Key key, AlgorithmParameters params, Secur`
`243`	`249`	`@Override`
`244`	`250`	`protected void engineUpdateAAD(byte[] src, int offset, int len)`
`245`	`251`	`{`
	`252`	`+`
`246`	`253`	`try`
`247`	`254`	`{`
`248`	`255`	`len = NISelector.BlockCipherNI.updateAAD(`
`@@ -515,4 +522,13 @@ protected boolean overlap(int inputOffset, int inputLen, int outputOffset, int o`
`515`	`522`	`return inputOffset == outputOffset \|\| Math.max(inputOffset, outputOffset) <= Math.min(inputOffset + inputLen, outputOffset + outputLen);`
`516`	`523`	`}`
`517`	`524`
	`525`	`+ protected void validateKeyAlg(Key key) throws InvalidKeyException`
	`526`	`+ {`
	`527`	`+ if (keyAlgorithm.equals(key.getAlgorithm()))`
	`528`	`+ {`
	`529`	`+ return;`
	`530`	`+ }`
	`531`	`+ throw new InvalidKeyException("unsupported key algorithm " + key.getAlgorithm());`
	`532`	`+ }`
	`533`	`+`
`518`	`534`	`}`