JceTlsSecret (tls 1.0.16 API)

java.lang.Object
- org.bouncycastle.tls.crypto.impl.AbstractTlsSecret
- - org.bouncycastle.tls.crypto.impl.jcajce.JceTlsSecret

All Implemented Interfaces:

TlsSecret
```
public class JceTlsSecret
extends AbstractTlsSecret
```
JCE support class for handling TLS secrets and deriving key material and other secrets from them.

Field Summary

Fields
Modifier and Type Field and Description

protected JcaTlsCrypto crypto
- Fields inherited from class org.bouncycastle.tls.crypto.impl.AbstractTlsSecret
  data

Fields
Modifier and Type	Field and Description
`protected JcaTlsCrypto`	`crypto`

Constructor Summary

Constructors
Constructor and Description

JceTlsSecret(JcaTlsCrypto crypto, byte[] data)

Constructors
Constructor and Description
`JceTlsSecret(JcaTlsCrypto crypto, byte[] data)`

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`static JceTlsSecret`	`convert(JcaTlsCrypto crypto, TlsSecret secret)`
`TlsSecret`	`deriveUsingPRF(int prfAlgorithm, java.lang.String label, byte[] seed, int length)` Return a new secret based on applying a PRF to this one.
`protected AbstractTlsCrypto`	`getCrypto()`
`TlsSecret`	`hkdfExpand(int cryptoHashAlgorithm, byte[] info, int length)` RFC 5869 HKDF-Expand function, with this secret's data as the pseudo-random key ('prk').
`TlsSecret`	`hkdfExtract(int cryptoHashAlgorithm, TlsSecret ikm)` RFC 5869 HKDF-Extract function, with this secret's data as the 'salt'.
`protected void`	`hmacHash(int cryptoHashAlgorithm, byte[] secret, int secretOff, int secretLen, byte[] seed, byte[] output)`
`protected byte[]`	`prf_SSL(byte[] seed, int length)`
`protected byte[]`	`prf(int prfAlgorithm, java.lang.String label, byte[] seed, int length)`
`protected void`	`updateMac(javax.crypto.Mac mac)`

Methods inherited from class org.bouncycastle.tls.crypto.impl.AbstractTlsSecret
calculateHMAC, checkAlive, copyData, destroy, encrypt, extract, isAlive

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail
- crypto
```
protected final JcaTlsCrypto crypto
```

Constructor Detail

JceTlsSecret

public JceTlsSecret(JcaTlsCrypto crypto,
                    byte[] data)

Method Detail
- convert
```
public static JceTlsSecret convert(JcaTlsCrypto crypto,
                                   TlsSecret secret)
```
- deriveUsingPRF
```
public TlsSecret deriveUsingPRF(int prfAlgorithm,
                                java.lang.String label,
                                byte[] seed,
                                int length)
```
  Description copied from interface: TlsSecret
  
  Return a new secret based on applying a PRF to this one.
  
  Parameters:
  
  prfAlgorithm - PRF algorithm to use.
  
  label - the label details.
  
  seed - the seed details.
  
  length - the size (in bytes) of the secret to generate.
  
  Returns:
  
  the new secret.
- hkdfExpand
```
public TlsSecret hkdfExpand(int cryptoHashAlgorithm,
                            byte[] info,
                            int length)
```
  Description copied from interface: TlsSecret
  
  RFC 5869 HKDF-Expand function, with this secret's data as the pseudo-random key ('prk').
  
  Parameters:
  
  cryptoHashAlgorithm - the hash algorithm to instantiate HMAC with. See CryptoHashAlgorithm for values.
  
  info - optional context and application specific information (can be zero-length).
  
  length - length of output keying material in octets.
  
  Returns:
  
  output keying material (of 'length' octets).
- hkdfExtract
```
public TlsSecret hkdfExtract(int cryptoHashAlgorithm,
                             TlsSecret ikm)
```
  Description copied from interface: TlsSecret
  
  RFC 5869 HKDF-Extract function, with this secret's data as the 'salt'. The TlsSecret does not keep a copy of the data. After this call, any attempt to use the TlsSecret will result in an IllegalStateException being thrown.
  
  Parameters:
  
  cryptoHashAlgorithm - the hash algorithm to instantiate HMAC with. See CryptoHashAlgorithm for values.
  
  ikm - input keying material.
  
  Returns:
  
  a pseudo-random key (of HashLen octets).
- getCrypto
```
protected AbstractTlsCrypto getCrypto()
```
  Specified by:
  
  getCrypto in class AbstractTlsSecret
- hmacHash
```
protected void hmacHash(int cryptoHashAlgorithm,
                        byte[] secret,
                        int secretOff,
                        int secretLen,
                        byte[] seed,
                        byte[] output)
                 throws java.security.GeneralSecurityException
```
  Throws:
  
  java.security.GeneralSecurityException
- prf
```
protected byte[] prf(int prfAlgorithm,
                     java.lang.String label,
                     byte[] seed,
                     int length)
              throws java.security.GeneralSecurityException
```
  Throws:
  
  java.security.GeneralSecurityException
- prf_SSL
```
protected byte[] prf_SSL(byte[] seed,
                         int length)
                  throws java.security.GeneralSecurityException
```
  Throws:
  
  java.security.GeneralSecurityException
- updateMac
```
protected void updateMac(javax.crypto.Mac mac)
```

Class JceTlsSecret

Field Summary

Fields inherited from class org.bouncycastle.tls.crypto.impl.AbstractTlsSecret

Constructor Summary

Method Summary

Methods inherited from class org.bouncycastle.tls.crypto.impl.AbstractTlsSecret

Methods inherited from class java.lang.Object

Field Detail

crypto

Constructor Detail

JceTlsSecret

Method Detail

convert

deriveUsingPRF

hkdfExpand

hkdfExtract

getCrypto

hmacHash

prf

prf_SSL

updateMac