2018-05-08 09:47:28 -04:00
|
|
|
/*
|
2021-01-08 21:32:54 +00:00
|
|
|
* Copyright (c) 2018, 2021, Oracle and/or its affiliates. All rights reserved.
|
2018-05-08 09:47:28 -04:00
|
|
|
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
|
|
|
|
*
|
|
|
|
* This code is free software; you can redistribute it and/or modify it
|
|
|
|
* under the terms of the GNU General Public License version 2 only, as
|
|
|
|
* published by the Free Software Foundation.
|
|
|
|
*
|
|
|
|
* This code is distributed in the hope that it will be useful, but WITHOUT
|
|
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
|
|
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
|
|
* version 2 for more details (a copy is included in the LICENSE file that
|
|
|
|
* accompanied this code).
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License version
|
|
|
|
* 2 along with this work; if not, write to the Free Software Foundation,
|
|
|
|
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
|
|
*
|
|
|
|
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
|
|
|
|
* or visit www.oracle.com if you need additional information or have any
|
|
|
|
* questions.
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
|
|
|
* @test
|
|
|
|
* @bug 8184359
|
|
|
|
* @summary KeyLength support test for DiffieHellman, EC, XDH.
|
|
|
|
* Arguments order <KeyExchangeAlgorithm> <Provider> <KeyGenAlgorithm> <keyLen>
|
|
|
|
* @library /test/lib
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 512
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 768
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 832
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 1024
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 2048
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 3072
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 4096
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 6144
|
|
|
|
* @run main KeySizeTest DiffieHellman SunJCE DiffieHellman 8192
|
2020-03-25 12:41:14 -07:00
|
|
|
* @run main/othervm KeySizeTest ECDH SunEC EC 256
|
2020-09-25 02:40:36 +00:00
|
|
|
* @run main/othervm KeySizeTest ECDH SunEC EC 384
|
|
|
|
* @run main/othervm KeySizeTest ECDH SunEC EC 521
|
2018-05-08 09:47:28 -04:00
|
|
|
* @run main KeySizeTest XDH SunEC XDH 255
|
|
|
|
* @run main KeySizeTest XDH SunEC XDH 448
|
|
|
|
*/
|
|
|
|
import java.math.BigInteger;
|
|
|
|
import java.security.KeyFactory;
|
|
|
|
import java.security.KeyPair;
|
|
|
|
import java.security.KeyPairGenerator;
|
|
|
|
import java.security.interfaces.ECPrivateKey;
|
|
|
|
import java.security.interfaces.ECPublicKey;
|
|
|
|
import java.security.interfaces.XECPrivateKey;
|
|
|
|
import java.security.interfaces.XECPublicKey;
|
|
|
|
import java.security.spec.PKCS8EncodedKeySpec;
|
|
|
|
import java.security.spec.X509EncodedKeySpec;
|
|
|
|
import java.security.spec.NamedParameterSpec;
|
|
|
|
import java.util.Arrays;
|
2021-01-08 21:32:54 +00:00
|
|
|
import java.util.HexFormat;
|
2018-05-08 09:47:28 -04:00
|
|
|
import javax.crypto.KeyAgreement;
|
|
|
|
import javax.crypto.interfaces.DHPrivateKey;
|
|
|
|
import javax.crypto.interfaces.DHPublicKey;
|
|
|
|
|
|
|
|
public class KeySizeTest {
|
|
|
|
|
|
|
|
public static void main(String[] args) throws Exception {
|
|
|
|
|
|
|
|
String kaAlgo = args[0];
|
|
|
|
String provider = args[1];
|
|
|
|
String kpgAlgo = args[2];
|
|
|
|
int keySize = Integer.parseInt(args[3]);
|
|
|
|
testKeyAgreement(provider, kaAlgo, kpgAlgo, keySize);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Perform KeyAgreement operation.
|
|
|
|
*/
|
|
|
|
private static void testKeyAgreement(String provider, String kaAlgo,
|
|
|
|
String kpgAlgo, int keySize) throws Exception {
|
|
|
|
|
|
|
|
KeyPairGenerator kpg = KeyPairGenerator.getInstance(kpgAlgo, provider);
|
|
|
|
kpg.initialize(keySize);
|
|
|
|
KeyPair kp = kpg.generateKeyPair();
|
|
|
|
// Test standard Key attributes.
|
|
|
|
testKeyAttributes(provider, kpgAlgo, kp, keySize);
|
|
|
|
// Test KeyAgreement.
|
|
|
|
KeyAgreement ka = KeyAgreement.getInstance(kaAlgo, provider);
|
|
|
|
ka.init(kp.getPrivate());
|
|
|
|
ka.doPhase(kp.getPublic(), true);
|
|
|
|
ka.generateSecret();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Test standard Key attributes.
|
|
|
|
*/
|
|
|
|
private static void testKeyAttributes(String provider, String kpgAlgo,
|
|
|
|
KeyPair kp, int keySize) throws Exception {
|
|
|
|
|
|
|
|
KeyFactory kf = KeyFactory.getInstance(kpgAlgo, provider);
|
|
|
|
switch (kpgAlgo) {
|
|
|
|
case "DiffieHellman":
|
|
|
|
// Verify PrivateKey attributes.
|
|
|
|
DHPrivateKey dhPri = (DHPrivateKey) kp.getPrivate();
|
|
|
|
BigInteger p = dhPri.getParams().getP();
|
|
|
|
if (p.bitLength() != keySize) {
|
|
|
|
throw new Exception(String.format("Invalid modulus size: "
|
|
|
|
+ "%s/%s", p.bitLength(), keySize));
|
|
|
|
}
|
|
|
|
if (!p.isProbablePrime(128)) {
|
|
|
|
throw new Exception("The modulus is composite!");
|
|
|
|
}
|
|
|
|
PKCS8EncodedKeySpec dhPriSpec
|
|
|
|
= new PKCS8EncodedKeySpec(dhPri.getEncoded());
|
|
|
|
DHPrivateKey dhPriDecod
|
|
|
|
= (DHPrivateKey) kf.generatePrivate(dhPriSpec);
|
|
|
|
equals(dhPri.getX(), dhPriDecod.getX());
|
|
|
|
equals(dhPri.getFormat(), dhPriDecod.getFormat());
|
|
|
|
equals(dhPri.getEncoded(), dhPriDecod.getEncoded());
|
|
|
|
equals(dhPri.getParams().getG(), dhPriDecod.getParams().getG());
|
|
|
|
equals(dhPri.getParams().getL(), dhPriDecod.getParams().getL());
|
|
|
|
equals(dhPri.getParams().getP(), dhPriDecod.getParams().getP());
|
|
|
|
|
|
|
|
// Verify PublicKey attributes.
|
|
|
|
DHPublicKey dhPub = (DHPublicKey) kp.getPublic();
|
|
|
|
p = dhPub.getParams().getP();
|
|
|
|
if (p.bitLength() != keySize) {
|
|
|
|
throw new Exception(String.format("Invalid modulus size: "
|
|
|
|
+ "%s/%s", p.bitLength(), keySize));
|
|
|
|
}
|
|
|
|
X509EncodedKeySpec dhPubSpec
|
|
|
|
= new X509EncodedKeySpec(dhPub.getEncoded());
|
|
|
|
DHPublicKey dhPubDecod
|
|
|
|
= (DHPublicKey) kf.generatePublic(dhPubSpec);
|
|
|
|
equals(dhPub.getY(), dhPubDecod.getY());
|
|
|
|
equals(dhPub.getFormat(), dhPubDecod.getFormat());
|
|
|
|
equals(dhPub.getEncoded(), dhPubDecod.getEncoded());
|
|
|
|
equals(dhPub.getParams().getG(), dhPubDecod.getParams().getG());
|
|
|
|
equals(dhPub.getParams().getL(), dhPubDecod.getParams().getL());
|
|
|
|
equals(dhPub.getParams().getP(), dhPubDecod.getParams().getP());
|
|
|
|
|
|
|
|
BigInteger left = BigInteger.ONE;
|
|
|
|
BigInteger right = p.subtract(BigInteger.ONE);
|
|
|
|
BigInteger x = dhPri.getX();
|
|
|
|
if ((x.compareTo(left) <= 0) || (x.compareTo(right) >= 0)) {
|
|
|
|
throw new Exception(
|
|
|
|
"X outside range [2, p - 2]: x: " + x + " p: " + p);
|
|
|
|
}
|
|
|
|
BigInteger y = dhPub.getY();
|
|
|
|
if ((y.compareTo(left) <= 0) || (y.compareTo(right) >= 0)) {
|
|
|
|
throw new Exception(
|
|
|
|
"Y outside range [2, p - 2]: x: " + x + " p: " + p);
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case "EC":
|
|
|
|
// Verify PrivateKey attributes.
|
|
|
|
ECPrivateKey ecPriv = (ECPrivateKey) kp.getPrivate();
|
|
|
|
PKCS8EncodedKeySpec ecPriSpec
|
|
|
|
= new PKCS8EncodedKeySpec(ecPriv.getEncoded());
|
|
|
|
ECPrivateKey ecPriDecod
|
|
|
|
= (ECPrivateKey) kf.generatePrivate(ecPriSpec);
|
|
|
|
equals(ecPriv.getS(), ecPriDecod.getS());
|
|
|
|
equals(ecPriv.getFormat(), ecPriDecod.getFormat());
|
|
|
|
equals(ecPriv.getEncoded(), ecPriDecod.getEncoded());
|
|
|
|
equals(ecPriv.getParams().getCofactor(),
|
|
|
|
ecPriDecod.getParams().getCofactor());
|
|
|
|
equals(ecPriv.getParams().getCurve(),
|
|
|
|
ecPriDecod.getParams().getCurve());
|
|
|
|
equals(ecPriv.getParams().getGenerator(),
|
|
|
|
ecPriDecod.getParams().getGenerator());
|
|
|
|
equals(ecPriv.getParams().getOrder(),
|
|
|
|
ecPriDecod.getParams().getOrder());
|
|
|
|
|
|
|
|
// Verify PublicKey attributes.
|
|
|
|
ECPublicKey ecPub = (ECPublicKey) kp.getPublic();
|
|
|
|
X509EncodedKeySpec ecPubSpec
|
|
|
|
= new X509EncodedKeySpec(ecPub.getEncoded());
|
|
|
|
ECPublicKey ecPubDecod
|
|
|
|
= (ECPublicKey) kf.generatePublic(ecPubSpec);
|
|
|
|
equals(ecPub.getW(), ecPubDecod.getW());
|
|
|
|
equals(ecPub.getFormat(), ecPubDecod.getFormat());
|
|
|
|
equals(ecPub.getEncoded(), ecPubDecod.getEncoded());
|
|
|
|
equals(ecPub.getParams().getCofactor(),
|
|
|
|
ecPubDecod.getParams().getCofactor());
|
|
|
|
equals(ecPub.getParams().getCurve(),
|
|
|
|
ecPubDecod.getParams().getCurve());
|
|
|
|
equals(ecPub.getParams().getGenerator(),
|
|
|
|
ecPubDecod.getParams().getGenerator());
|
|
|
|
equals(ecPub.getParams().getOrder(),
|
|
|
|
ecPubDecod.getParams().getOrder());
|
|
|
|
break;
|
|
|
|
case "XDH":
|
|
|
|
// Verify PrivateKey attributes.
|
|
|
|
XECPrivateKey xdhPri = (XECPrivateKey) kp.getPrivate();
|
|
|
|
PKCS8EncodedKeySpec xdhPriSpec
|
|
|
|
= new PKCS8EncodedKeySpec(xdhPri.getEncoded());
|
|
|
|
XECPrivateKey xdhPriDec
|
|
|
|
= (XECPrivateKey) kf.generatePrivate(xdhPriSpec);
|
|
|
|
equals(xdhPri.getScalar().get(), xdhPriDec.getScalar().get());
|
|
|
|
equals(xdhPri.getFormat(), xdhPriDec.getFormat());
|
|
|
|
equals(xdhPri.getEncoded(), xdhPriDec.getEncoded());
|
|
|
|
equals(((NamedParameterSpec) xdhPri.getParams()).getName(),
|
|
|
|
((NamedParameterSpec) xdhPriDec.getParams()).getName());
|
|
|
|
|
|
|
|
// Verify PublicKey attributes.
|
|
|
|
XECPublicKey xdhPub = (XECPublicKey) kp.getPublic();
|
|
|
|
X509EncodedKeySpec xdhPubSpec
|
|
|
|
= new X509EncodedKeySpec(xdhPub.getEncoded());
|
|
|
|
XECPublicKey xdhPubDec
|
|
|
|
= (XECPublicKey) kf.generatePublic(xdhPubSpec);
|
|
|
|
equals(xdhPub.getU(), xdhPubDec.getU());
|
|
|
|
equals(xdhPub.getFormat(), xdhPubDec.getFormat());
|
|
|
|
equals(xdhPub.getEncoded(), xdhPubDec.getEncoded());
|
|
|
|
equals(((NamedParameterSpec) xdhPub.getParams()).getName(),
|
|
|
|
((NamedParameterSpec) xdhPubDec.getParams()).getName());
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
throw new RuntimeException("Invalid Algo name " + kpgAlgo);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
private static boolean equals(Object actual, Object expected) {
|
|
|
|
boolean equals = actual.equals(expected);
|
|
|
|
if (!equals) {
|
|
|
|
throw new RuntimeException(String.format("Actual: %s, Expected: %s",
|
|
|
|
actual, expected));
|
|
|
|
}
|
|
|
|
return equals;
|
|
|
|
}
|
|
|
|
|
|
|
|
private static boolean equals(byte[] actual, byte[] expected) {
|
|
|
|
boolean equals = Arrays.equals(actual, expected);
|
|
|
|
if (!equals) {
|
2021-01-08 21:32:54 +00:00
|
|
|
throw new RuntimeException(String.format("Actual array: %s, Expected array:%s",
|
|
|
|
HexFormat.of().withUpperCase().formatHex(actual),
|
|
|
|
HexFormat.of().withUpperCase().formatHex(expected)));
|
2018-05-08 09:47:28 -04:00
|
|
|
}
|
|
|
|
return equals;
|
|
|
|
}
|
|
|
|
}
|