Mercurial Mercurial > jdk-sandbox / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
test/jdk/sun/security/pkcs11/Signature/SigInteropPSS.java
author chegar
Thu, 17 Oct 2019 20:54:25 +0100
branchdatagramsocketimpl-branch
changeset 58679 9c3209ff7550
parent 58678 9cf78a70fa4f
parent 55530 6aa047de311b
permissions -rw-r--r--
datagramsocketimpl-branch: merge with default
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
55332
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     1
 
/*
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     2
 
 * Copyright (c) 2019, Oracle and/or its affiliates. All rights reserved.
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     3
 
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     4
 
 *
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     5
 
 * This code is free software; you can redistribute it and/or modify it
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     6
 
 * under the terms of the GNU General Public License version 2 only, as
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     7
 
 * published by the Free Software Foundation.
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     8
 
 *
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
     9
 
 * This code is distributed in the hope that it will be useful, but WITHOUT
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    10
 
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    11
 
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    12
 
 * version 2 for more details (a copy is included in the LICENSE file that
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    13
 
 * accompanied this code).
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    14
 
 *
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    15
 
 * You should have received a copy of the GNU General Public License version
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    16
 
 * 2 along with this work; if not, write to the Free Software Foundation,
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    17
 
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    18
 
 *
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    19
 
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    20
 
 * or visit www.oracle.com if you need additional information or have any
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    21
 
 * questions.
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    22
 
 */
f492567244ab 8080462: Update SunPKCS11 provider with PKCS11 v2.40 support
valeriep
parents:
diff changeset 
    23
 












f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    24


import java.security.*;













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    25


import java.security.spec.*;













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    26


import java.security.interfaces.*;













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    27














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    28


/*













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    29


 * @test








55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    30


 * @bug 8080462 8226651








55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    31


 * @summary testing interoperability of PSS signatures of PKCS11 provider













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    32


 *         against SunRsaSign provider













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    33


 * @library /test/lib ..













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    34


 * @modules jdk.crypto.cryptoki













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    35


 * @run main/othervm SigInteropPSS













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    36


 */













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    37


public class SigInteropPSS extends PKCS11Test {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    38














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    39


    private static final byte[] MSG =













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    40


        "Interoperability test between SunRsaSign and SunPKCS11".getBytes();













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    41














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    42


    private static final String[] DIGESTS = {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    43


        "SHA-224", "SHA-256", "SHA-384", "SHA-512"













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    44


    };













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    45














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    46


    public static void main(String[] args) throws Exception {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    47


        main(new SigInteropPSS(), args);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    48


    }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    49














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    50


    @Override













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    51


    public void main(Provider p) throws Exception {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    52


        Signature sigPkcs11;













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    53


        try {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    54


            sigPkcs11 = Signature.getInstance("RSASSA-PSS", p);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    55


        } catch (NoSuchAlgorithmException e) {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    56


            System.out.println("Skip testing RSASSA-PSS" +













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    57


                " due to no support");













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    58


            return;













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    59


        }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    60














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    61


        Signature sigSunRsaSign =













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    62


                Signature.getInstance("RSASSA-PSS", "SunRsaSign");













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    63














f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    64


        KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", p);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    65


        kpg.initialize(3072);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    66


        KeyPair kp = kpg.generateKeyPair();













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    67









55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    68


        runTest(sigSunRsaSign, sigPkcs11, kp);













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    69


        runTest(sigPkcs11, sigSunRsaSign, kp);













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    70









55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    71


        System.out.println("Test passed");













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    72


    }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    73









55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    74


    static void runTest(Signature signer, Signature verifier, KeyPair kp)













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    75


            throws Exception {








55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    76


        System.out.println("\tSign using " + signer.getProvider().getName());













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    77


        System.out.println("\tVerify using " + verifier.getProvider().getName());













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    78









55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    79


        for (String hash : DIGESTS) {













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    80


            for (String mgfHash : DIGESTS) {













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    81


                System.out.println("\tDigest = " + hash);













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    82


                System.out.println("\tMGF = MGF1_" + mgfHash);













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    83














6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    84


                PSSParameterSpec params = new PSSParameterSpec(hash, "MGF1",













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    85


                    new MGF1ParameterSpec(mgfHash), 0, 1);













6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    86









55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    87


                signer.setParameter(params);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    88


                signer.initSign(kp.getPrivate());













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    89


                verifier.setParameter(params);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    90


                verifier.initVerify(kp.getPublic());








55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    91









55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    92


                signer.update(MSG);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    93


                byte[] sigBytes = signer.sign();













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    94


                verifier.update(MSG);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    95


                boolean isValid = verifier.verify(sigBytes);













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    96


                if (isValid) {













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    97


                    System.out.println("\tPSS Signature verified");













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




    98


                } else {








55530






6aa047de311b
8226651: Setting the mgfHash in CK_RSA_PKCS_PSS_PARAMS has no effect



valeriep


parents: 
55332

diff
changeset




    99


                    throw new RuntimeException("ERROR verifying PSS Signature");








55332






f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




   100


                }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




   101


            }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




   102


        }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




   103


    }













f492567244ab
8080462: Update SunPKCS11 provider with PKCS11 v2.40 support



valeriep


parents: 

diff
changeset




   104


}















jdk-sandbox