Java 类org.bouncycastle.asn1.cms.RecipientInfo 实例源码

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

private static void readRecipientInfo(
    List infos, RecipientInfo info, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    ASN1Encodable recipInfo = info.getInfo();
    if (recipInfo instanceof KeyTransRecipientInfo)
    {
        infos.add(new KeyTransRecipientInformation(
            (KeyTransRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KEKRecipientInfo)
    {
        infos.add(new KEKRecipientInformation(
            (KEKRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
    else if (recipInfo instanceof KeyAgreeRecipientInfo)
    {
        KeyAgreeRecipientInformation.readRecipientInfo(infos,
            (KeyAgreeRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData);
    }
    else if (recipInfo instanceof PasswordRecipientInfo)
    {
        infos.add(new PasswordRecipientInformation(
            (PasswordRecipientInfo)recipInfo, messageAlgorithm, secureReadable, additionalData));
    }
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

public final RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    try
    {
        ASN1OctetString encryptedKey = new DEROctetString(wrapper.generateWrappedKey(contentEncryptionKey));

        return new RecipientInfo(new KEKRecipientInfo(kekIdentifier, wrapper.getAlgorithmIdentifier(), encryptedKey));
    }
    catch (OperatorException e)
    {
        throw new CMSException("exception wrapping content key: " + e.getMessage(), e);
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    OriginatorIdentifierOrKey originator = new OriginatorIdentifierOrKey(
            createOriginatorPublicKey(originatorKeyInfo));

    ASN1EncodableVector params = new ASN1EncodableVector();
    params.add(keyEncryptionOID);
    params.add(DERNull.INSTANCE);
    AlgorithmIdentifier keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID, DERNull.INSTANCE);
    AlgorithmIdentifier keyAgreeAlg = new AlgorithmIdentifier(keyAgreementOID, keyEncAlg);

    ASN1Sequence recipients = generateRecipientEncryptedKeys(keyAgreeAlg, keyEncAlg, contentEncryptionKey);
    ASN1Encodable userKeyingMaterial = getUserKeyingMaterial(keyAgreeAlg);

    if (userKeyingMaterial != null)
    {
        try
        {
            return new RecipientInfo(new KeyAgreeRecipientInfo(originator, new DEROctetString(userKeyingMaterial),
                keyAgreeAlg, recipients));
        }
        catch (IOException e)
        {
            throw new CMSException("unable to encode userKeyingMaterial: " + e.getMessage(), e);
        }
    }
    else
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, null,
            keyAgreeAlg, recipients));
    }
}

private ASN1Primitive createDERForRecipient(byte[] in, X509Certificate cert) 
    throws IOException,  
           GeneralSecurityException 
{

    String s = "1.2.840.113549.3.2";

    AlgorithmParameterGenerator algorithmparametergenerator = AlgorithmParameterGenerator.getInstance(s);
    AlgorithmParameters algorithmparameters = algorithmparametergenerator.generateParameters();
    ByteArrayInputStream bytearrayinputstream = new ByteArrayInputStream(algorithmparameters.getEncoded("ASN.1"));
    ASN1InputStream asn1inputstream = new ASN1InputStream(bytearrayinputstream);
    ASN1Primitive derobject = asn1inputstream.readObject();
    KeyGenerator keygenerator = KeyGenerator.getInstance(s);
    keygenerator.init(128);
    SecretKey secretkey = keygenerator.generateKey();
    Cipher cipher = Cipher.getInstance(s);
    cipher.init(1, secretkey, algorithmparameters);
    byte[] abyte1 = cipher.doFinal(in);
    DEROctetString deroctetstring = new DEROctetString(abyte1);
    KeyTransRecipientInfo keytransrecipientinfo = computeRecipientInfo(cert, secretkey.getEncoded());
    DERSet derset = new DERSet(new RecipientInfo(keytransrecipientinfo));
    AlgorithmIdentifier algorithmidentifier = new AlgorithmIdentifier(new ASN1ObjectIdentifier(s), derobject);
    EncryptedContentInfo encryptedcontentinfo = 
        new EncryptedContentInfo(PKCSObjectIdentifiers.data, algorithmidentifier, deroctetstring);
    EnvelopedData env = new EnvelopedData(null, derset, encryptedcontentinfo, (org.bouncycastle.asn1.ASN1Set) null);
    ContentInfo contentinfo = 
        new ContentInfo(PKCSObjectIdentifiers.envelopedData, env);
    return contentinfo.toASN1Primitive();        
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

public final RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    try
    {
        ASN1OctetString encryptedKey = new DEROctetString(wrapper.generateWrappedKey(contentEncryptionKey));

        return new RecipientInfo(new KEKRecipientInfo(kekIdentifier, wrapper.getAlgorithmIdentifier(), encryptedKey));
    }
    catch (OperatorException e)
    {
        throw new CMSException("exception wrapping content key: " + e.getMessage(), e);
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    OriginatorIdentifierOrKey originator = new OriginatorIdentifierOrKey(
            createOriginatorPublicKey(originatorKeyInfo));

    AlgorithmIdentifier keyEncAlg;
    if (CMSUtils.isDES(keyEncryptionOID.getId()) || keyEncryptionOID.equals(PKCSObjectIdentifiers.id_alg_CMSRC2wrap))
    {
        keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID, DERNull.INSTANCE);
    }
    else
    {
        keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID);
    }

    AlgorithmIdentifier keyAgreeAlg = new AlgorithmIdentifier(keyAgreementOID, keyEncAlg);

    ASN1Sequence recipients = generateRecipientEncryptedKeys(keyAgreeAlg, keyEncAlg, contentEncryptionKey);
    byte[] userKeyingMaterial = getUserKeyingMaterial(keyAgreeAlg);

    if (userKeyingMaterial != null)
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, new DEROctetString(userKeyingMaterial),
                keyAgreeAlg, recipients));

    }
    else
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, null, keyAgreeAlg, recipients));
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    byte[] iv = new byte[blockSize];     /// TODO: set IV size properly!

    if (random == null)
    {
        random = new SecureRandom();
    }

    random.nextBytes(iv);

    if (keyDerivationAlgorithm == null)
    {
        byte[] salt = new byte[20];

        random.nextBytes(salt);

        keyDerivationAlgorithm = new AlgorithmIdentifier(PKCSObjectIdentifiers.id_PBKDF2, new PBKDF2Params(salt, 1024));
    }

    byte[] derivedKey = calculateDerivedKey(schemeID, keyDerivationAlgorithm, keySize);

    AlgorithmIdentifier kekAlgorithmId = new AlgorithmIdentifier(kekAlgorithm, new DEROctetString(iv));

    byte[] encryptedKeyBytes = generateEncryptedBytes(kekAlgorithmId, derivedKey, contentEncryptionKey);

    ASN1OctetString encryptedKey = new DEROctetString(encryptedKeyBytes);

    ASN1EncodableVector v = new ASN1EncodableVector();
    v.add(kekAlgorithm);
    v.add(new DEROctetString(iv));

    AlgorithmIdentifier keyEncryptionAlgorithm = new AlgorithmIdentifier(
        PKCSObjectIdentifiers.id_alg_PWRI_KEK, new DERSequence(v));

    return new RecipientInfo(new PasswordRecipientInfo(keyDerivationAlgorithm,
        keyEncryptionAlgorithm, encryptedKey));
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

public final RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    try
    {
        ASN1OctetString encryptedKey = new DEROctetString(wrapper.generateWrappedKey(contentEncryptionKey));

        return new RecipientInfo(new KEKRecipientInfo(kekIdentifier, wrapper.getAlgorithmIdentifier(), encryptedKey));
    }
    catch (OperatorException e)
    {
        throw new CMSException("exception wrapping content key: " + e.getMessage(), e);
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    OriginatorIdentifierOrKey originator = new OriginatorIdentifierOrKey(
            createOriginatorPublicKey(originatorKeyInfo));

    AlgorithmIdentifier keyEncAlg;
    if (CMSUtils.isDES(keyEncryptionOID.getId()) || keyEncryptionOID.equals(PKCSObjectIdentifiers.id_alg_CMSRC2wrap))
    {
        keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID, DERNull.INSTANCE);
    }
    else
    {
        keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID);
    }

    AlgorithmIdentifier keyAgreeAlg = new AlgorithmIdentifier(keyAgreementOID, keyEncAlg);

    ASN1Sequence recipients = generateRecipientEncryptedKeys(keyAgreeAlg, keyEncAlg, contentEncryptionKey);
    byte[] userKeyingMaterial = getUserKeyingMaterial(keyAgreeAlg);

    if (userKeyingMaterial != null)
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, new DEROctetString(userKeyingMaterial),
                keyAgreeAlg, recipients));

    }
    else
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, null, keyAgreeAlg, recipients));
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    byte[] iv = new byte[blockSize];     /// TODO: set IV size properly!

    if (random == null)
    {
        random = new SecureRandom();
    }

    random.nextBytes(iv);

    if (keyDerivationAlgorithm == null)
    {
        byte[] salt = new byte[20];

        random.nextBytes(salt);

        keyDerivationAlgorithm = new AlgorithmIdentifier(PKCSObjectIdentifiers.id_PBKDF2, new PBKDF2Params(salt, 1024));
    }

    byte[] derivedKey = calculateDerivedKey(schemeID, keyDerivationAlgorithm, keySize);

    AlgorithmIdentifier kekAlgorithmId = new AlgorithmIdentifier(kekAlgorithm, new DEROctetString(iv));

    byte[] encryptedKeyBytes = generateEncryptedBytes(kekAlgorithmId, derivedKey, contentEncryptionKey);

    ASN1OctetString encryptedKey = new DEROctetString(encryptedKeyBytes);

    ASN1EncodableVector v = new ASN1EncodableVector();
    v.add(kekAlgorithm);
    v.add(new DEROctetString(iv));

    AlgorithmIdentifier keyEncryptionAlgorithm = new AlgorithmIdentifier(
        PKCSObjectIdentifiers.id_alg_PWRI_KEK, new DERSequence(v));

    return new RecipientInfo(new PasswordRecipientInfo(keyDerivationAlgorithm,
        keyEncryptionAlgorithm, encryptedKey));
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

public final RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    try
    {
        ASN1OctetString encryptedKey = new DEROctetString(wrapper.generateWrappedKey(contentEncryptionKey));

        return new RecipientInfo(new KEKRecipientInfo(kekIdentifier, wrapper.getAlgorithmIdentifier(), encryptedKey));
    }
    catch (OperatorException e)
    {
        throw new CMSException("exception wrapping content key: " + e.getMessage(), e);
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    OriginatorIdentifierOrKey originator = new OriginatorIdentifierOrKey(
            createOriginatorPublicKey(originatorKeyInfo));

    ASN1EncodableVector params = new ASN1EncodableVector();
    params.add(keyEncryptionOID);
    params.add(DERNull.INSTANCE);
    AlgorithmIdentifier keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID, DERNull.INSTANCE);
    AlgorithmIdentifier keyAgreeAlg = new AlgorithmIdentifier(keyAgreementOID, keyEncAlg);

    ASN1Sequence recipients = generateRecipientEncryptedKeys(keyAgreeAlg, keyEncAlg, contentEncryptionKey);
    ASN1Encodable userKeyingMaterial = getUserKeyingMaterial(keyAgreeAlg);

    if (userKeyingMaterial != null)
    {
        try
        {
            return new RecipientInfo(new KeyAgreeRecipientInfo(originator, new DEROctetString(userKeyingMaterial),
                keyAgreeAlg, recipients));
        }
        catch (IOException e)
        {
            throw new CMSException("unable to encode userKeyingMaterial: " + e.getMessage(), e);
        }
    }
    else
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, null,
            keyAgreeAlg, recipients));
    }
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

public final RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    try
    {
        ASN1OctetString encryptedKey = new DEROctetString(wrapper.generateWrappedKey(contentEncryptionKey));

        return new RecipientInfo(new KEKRecipientInfo(kekIdentifier, wrapper.getAlgorithmIdentifier(), encryptedKey));
    }
    catch (OperatorException e)
    {
        throw new CMSException("exception wrapping content key: " + e.getMessage(), e);
    }
}

public RecipientInfo generate(GenericKey contentEncryptionKey)
    throws CMSException
{
    OriginatorIdentifierOrKey originator = new OriginatorIdentifierOrKey(
            createOriginatorPublicKey(originatorKeyInfo));

    ASN1EncodableVector params = new ASN1EncodableVector();
    params.add(keyEncryptionOID);
    params.add(DERNull.INSTANCE);
    AlgorithmIdentifier keyEncAlg = new AlgorithmIdentifier(keyEncryptionOID, DERNull.INSTANCE);
    AlgorithmIdentifier keyAgreeAlg = new AlgorithmIdentifier(keyAgreementOID, keyEncAlg);

    ASN1Sequence recipients = generateRecipientEncryptedKeys(keyAgreeAlg, keyEncAlg, contentEncryptionKey);
    ASN1Encodable userKeyingMaterial = getUserKeyingMaterial(keyAgreeAlg);

    if (userKeyingMaterial != null)
    {
        try
        {
            return new RecipientInfo(new KeyAgreeRecipientInfo(originator, new DEROctetString(userKeyingMaterial),
                keyAgreeAlg, recipients));
        }
        catch (IOException e)
        {
            throw new CMSException("unable to encode userKeyingMaterial: " + e.getMessage(), e);
        }
    }
    else
    {
        return new RecipientInfo(new KeyAgreeRecipientInfo(originator, null,
            keyAgreeAlg, recipients));
    }
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

static RecipientInformationStore buildRecipientInformationStore(
    ASN1Set recipientInfos, AlgorithmIdentifier messageAlgorithm, CMSSecureReadable secureReadable, AuthAttributesProvider additionalData)
{
    List infos = new ArrayList();
    for (int i = 0; i != recipientInfos.size(); i++)
    {
        RecipientInfo info = RecipientInfo.getInstance(recipientInfos.getObjectAt(i));

        readRecipientInfo(infos, info, messageAlgorithm, secureReadable, additionalData);
    }
    return new RecipientInformationStore(infos);
}

RecipientInfo generate(GenericKey contentEncryptionKey)
throws CMSException;

RecipientInfo generate(GenericKey contentEncryptionKey)
throws CMSException;

RecipientInfo generate(GenericKey contentEncryptionKey)
throws CMSException;

RecipientInfo generate(GenericKey contentEncryptionKey)
throws CMSException;

RecipientInfo generate(GenericKey contentEncryptionKey)
throws CMSException;