jdk-sandbox: test/jdk/sun/security/rsa/TestKeyPairGenerator.java@56aaa6cb3693 (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	2	* Copyright (c) 2003, 2018, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
90ce3da70b43 Initial load duke parents: diff changeset	7	* published by the Free Software Foundation.
90ce3da70b43 Initial load duke parents: diff changeset	8	*
90ce3da70b43 Initial load duke parents: diff changeset	9	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	10	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	11	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	12	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	13	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	14	*
90ce3da70b43 Initial load duke parents: diff changeset	15	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	16	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	17	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	18	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	19	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	20	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	21	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	22	*/
90ce3da70b43 Initial load duke parents: diff changeset	23
90ce3da70b43 Initial load duke parents: diff changeset	24	/**
90ce3da70b43 Initial load duke parents: diff changeset	25	* @test
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	26	* @bug 4853305 4865198 4888410 4963723 8146293
2 90ce3da70b43 Initial load duke parents: diff changeset	27	* @summary Verify that the RSA KeyPairGenerator works
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	28	* @library /test/lib
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	29	* @build jdk.test.lib.SigTestUtil
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	30	* @run main TestKeyPairGenerator
2 90ce3da70b43 Initial load duke parents: diff changeset	31	* @author Andreas Sterbenz
30046 cf2c86e1819e 8078334: Mark regression tests using randomness darcy parents: 12685 diff changeset	32	* @key randomness
2 90ce3da70b43 Initial load duke parents: diff changeset	33	*/
90ce3da70b43 Initial load duke parents: diff changeset	34
90ce3da70b43 Initial load duke parents: diff changeset	35	import java.io.*;
90ce3da70b43 Initial load duke parents: diff changeset	36	import java.util.*;
90ce3da70b43 Initial load duke parents: diff changeset	37	import java.math.BigInteger;
90ce3da70b43 Initial load duke parents: diff changeset	38
90ce3da70b43 Initial load duke parents: diff changeset	39	import java.security.*;
90ce3da70b43 Initial load duke parents: diff changeset	40	import java.security.interfaces.*;
90ce3da70b43 Initial load duke parents: diff changeset	41	import java.security.spec.*;
90ce3da70b43 Initial load duke parents: diff changeset	42
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	43	import jdk.test.lib.SigTestUtil;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	44	import static jdk.test.lib.SigTestUtil.SignatureType;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	45
2 90ce3da70b43 Initial load duke parents: diff changeset	46	public class TestKeyPairGenerator {
90ce3da70b43 Initial load duke parents: diff changeset	47
90ce3da70b43 Initial load duke parents: diff changeset	48	private static Provider provider;
90ce3da70b43 Initial load duke parents: diff changeset	49
90ce3da70b43 Initial load duke parents: diff changeset	50	private static byte[] data;
90ce3da70b43 Initial load duke parents: diff changeset	51
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	52	private static void testSignature(SignatureType type, String mdAlg,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	53	PrivateKey privateKey, PublicKey publicKey) throws
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	54	NoSuchAlgorithmException, InvalidKeyException, SignatureException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	55	System.out.println("Testing against " + mdAlg + "...");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	56	String sigAlg = SigTestUtil.generateSigAlg(type, mdAlg);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	57	Signature s = Signature.getInstance(sigAlg, provider);
2 90ce3da70b43 Initial load duke parents: diff changeset	58	s.initSign(privateKey);
90ce3da70b43 Initial load duke parents: diff changeset	59	s.update(data);
90ce3da70b43 Initial load duke parents: diff changeset	60	byte[] sig = s.sign();
90ce3da70b43 Initial load duke parents: diff changeset	61	s.initVerify(publicKey);
90ce3da70b43 Initial load duke parents: diff changeset	62	s.update(data);
90ce3da70b43 Initial load duke parents: diff changeset	63	boolean result = s.verify(sig);
90ce3da70b43 Initial load duke parents: diff changeset	64	if (result == false) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	65	throw new RuntimeException("Verification failed");
2 90ce3da70b43 Initial load duke parents: diff changeset	66	}
90ce3da70b43 Initial load duke parents: diff changeset	67	}
90ce3da70b43 Initial load duke parents: diff changeset	68
90ce3da70b43 Initial load duke parents: diff changeset	69	private static void test(PrivateKey privateKey, PublicKey publicKey) throws Exception {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	70
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	71	int testSize = ((RSAPublicKey)publicKey).getModulus().bitLength();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	72	System.out.println("modulus size = " + testSize);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	73
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	74	Iterable<String> md_alg_pkcs15 =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	75	SigTestUtil.getDigestAlgorithms(SignatureType.RSA, testSize);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	76	md_alg_pkcs15.forEach(mdAlg -> {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	77	try {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	78	testSignature(SignatureType.RSA, mdAlg, privateKey, publicKey);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	79	} catch (NoSuchAlgorithmException \| InvalidKeyException \|
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	80	SignatureException ex) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	81	throw new RuntimeException(ex);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	82	}
2 90ce3da70b43 Initial load duke parents: diff changeset	83	}
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	84	);
2 90ce3da70b43 Initial load duke parents: diff changeset	85	}
90ce3da70b43 Initial load duke parents: diff changeset	86
90ce3da70b43 Initial load duke parents: diff changeset	87	// regression test for 4865198
90ce3da70b43 Initial load duke parents: diff changeset	88	private static void testInvalidSignature(KeyPair kp1, KeyPair kp2) throws Exception {
90ce3da70b43 Initial load duke parents: diff changeset	89	System.out.println("Testing signature with incorrect key...");
90ce3da70b43 Initial load duke parents: diff changeset	90	Signature sig = Signature.getInstance("MD5withRSA", provider);
90ce3da70b43 Initial load duke parents: diff changeset	91	sig.initSign(kp1.getPrivate());
90ce3da70b43 Initial load duke parents: diff changeset	92	byte[] data = new byte[100];
90ce3da70b43 Initial load duke parents: diff changeset	93	sig.update(data);
90ce3da70b43 Initial load duke parents: diff changeset	94	byte[] signature = sig.sign();
90ce3da70b43 Initial load duke parents: diff changeset	95	sig.initVerify(kp1.getPublic());
90ce3da70b43 Initial load duke parents: diff changeset	96	sig.update(data);
90ce3da70b43 Initial load duke parents: diff changeset	97	if (sig.verify(signature) == false) {
90ce3da70b43 Initial load duke parents: diff changeset	98	throw new Exception("verification failed");
90ce3da70b43 Initial load duke parents: diff changeset	99	}
90ce3da70b43 Initial load duke parents: diff changeset	100	sig.initVerify(kp2.getPublic());
90ce3da70b43 Initial load duke parents: diff changeset	101	sig.update(data);
90ce3da70b43 Initial load duke parents: diff changeset	102	// verify needs to return false and not throw an Exception
7526 78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	103	try {
78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	104	if (sig.verify(signature)) {
78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	105	throw new Exception("verification unexpectedly succeeded");
78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	106	}
78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	107	} catch (SignatureException se) {
78a87adede1e 6896700: Validation of signatures succeed when it should fail weijun parents: 5506 diff changeset	108	// Yet another kind of failure, OK.
2 90ce3da70b43 Initial load duke parents: diff changeset	109	}
90ce3da70b43 Initial load duke parents: diff changeset	110	}
90ce3da70b43 Initial load duke parents: diff changeset	111
90ce3da70b43 Initial load duke parents: diff changeset	112	public static void main(String[] args) throws Exception {
90ce3da70b43 Initial load duke parents: diff changeset	113	long start = System.currentTimeMillis();
90ce3da70b43 Initial load duke parents: diff changeset	114	provider = Security.getProvider("SunRsaSign");
90ce3da70b43 Initial load duke parents: diff changeset	115	data = new byte[2048];
90ce3da70b43 Initial load duke parents: diff changeset	116	// keypair generation is very slow, test only a few short keys
90ce3da70b43 Initial load duke parents: diff changeset	117	int[] keyLengths = {512, 512, 1024};
90ce3da70b43 Initial load duke parents: diff changeset	118	BigInteger[] pubExps = {null, BigInteger.valueOf(3), null};
90ce3da70b43 Initial load duke parents: diff changeset	119	KeyPair[] keyPairs = new KeyPair[3];
90ce3da70b43 Initial load duke parents: diff changeset	120	new Random().nextBytes(data);
90ce3da70b43 Initial load duke parents: diff changeset	121	KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", provider);
90ce3da70b43 Initial load duke parents: diff changeset	122	for (int i = 0; i < keyLengths.length; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	123	int len = keyLengths[i];
90ce3da70b43 Initial load duke parents: diff changeset	124	BigInteger exp = pubExps[i];
90ce3da70b43 Initial load duke parents: diff changeset	125	System.out.println("Generating " + len + " bit keypair...");
90ce3da70b43 Initial load duke parents: diff changeset	126	if (exp == null) {
90ce3da70b43 Initial load duke parents: diff changeset	127	kpg.initialize(len);
90ce3da70b43 Initial load duke parents: diff changeset	128	} else {
90ce3da70b43 Initial load duke parents: diff changeset	129	kpg.initialize(new RSAKeyGenParameterSpec(len, exp));
90ce3da70b43 Initial load duke parents: diff changeset	130	}
90ce3da70b43 Initial load duke parents: diff changeset	131	KeyPair kp = kpg.generateKeyPair();
90ce3da70b43 Initial load duke parents: diff changeset	132	keyPairs[i] = kp;
90ce3da70b43 Initial load duke parents: diff changeset	133	RSAPublicKey publicKey = (RSAPublicKey)kp.getPublic();
90ce3da70b43 Initial load duke parents: diff changeset	134	System.out.println(publicKey);
90ce3da70b43 Initial load duke parents: diff changeset	135	RSAPrivateCrtKey privateKey = (RSAPrivateCrtKey)kp.getPrivate();
90ce3da70b43 Initial load duke parents: diff changeset	136	if (publicKey.getModulus().equals(privateKey.getModulus()) == false) {
90ce3da70b43 Initial load duke parents: diff changeset	137	throw new Exception("Moduli do not match");
90ce3da70b43 Initial load duke parents: diff changeset	138	}
90ce3da70b43 Initial load duke parents: diff changeset	139	if (publicKey.getPublicExponent().equals(privateKey.getPublicExponent()) == false) {
90ce3da70b43 Initial load duke parents: diff changeset	140	throw new Exception("Exponents do not match");
90ce3da70b43 Initial load duke parents: diff changeset	141	}
90ce3da70b43 Initial load duke parents: diff changeset	142	int keyLen = publicKey.getModulus().bitLength();
90ce3da70b43 Initial load duke parents: diff changeset	143	if ((keyLen > len) \|\| (keyLen < len - 1)) {
90ce3da70b43 Initial load duke parents: diff changeset	144	throw new Exception("Incorrect key length: " + keyLen);
90ce3da70b43 Initial load duke parents: diff changeset	145	}
90ce3da70b43 Initial load duke parents: diff changeset	146	if (exp != null) {
90ce3da70b43 Initial load duke parents: diff changeset	147	if (exp.equals(publicKey.getPublicExponent()) == false) {
90ce3da70b43 Initial load duke parents: diff changeset	148	throw new Exception("Incorrect exponent");
90ce3da70b43 Initial load duke parents: diff changeset	149	}
90ce3da70b43 Initial load duke parents: diff changeset	150	}
90ce3da70b43 Initial load duke parents: diff changeset	151	test(privateKey, publicKey);
90ce3da70b43 Initial load duke parents: diff changeset	152	}
90ce3da70b43 Initial load duke parents: diff changeset	153	testInvalidSignature(keyPairs[0], keyPairs[1]);
90ce3da70b43 Initial load duke parents: diff changeset	154	testInvalidSignature(keyPairs[0], keyPairs[2]);
90ce3da70b43 Initial load duke parents: diff changeset	155	testInvalidSignature(keyPairs[2], keyPairs[0]);
90ce3da70b43 Initial load duke parents: diff changeset	156	long stop = System.currentTimeMillis();
90ce3da70b43 Initial load duke parents: diff changeset	157	System.out.println("All tests passed (" + (stop - start) + " ms).");
90ce3da70b43 Initial load duke parents: diff changeset	158	}
90ce3da70b43 Initial load duke parents: diff changeset	159	}

author	wetmore
	Fri, 11 May 2018 15:53:12 -0700
branch	JDK-8145252-TLS13-branch
changeset 56542	56aaa6cb3693
parent 47216	71c04702a3d5
permissions	-rw-r--r--