jdk-24/test/jdk/com/oracle/security/ucrypto/CipherSignNotSupported.java

/*
 * Copyright (c) 2014, 2015, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.
 *
 * This code is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * version 2 for more details (a copy is included in the LICENSE file that
 * accompanied this code).
 *
 * You should have received a copy of the GNU General Public License version
 * 2 along with this work; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
 *
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
 * or visit www.oracle.com if you need additional information or have any
 * questions.
 */

/**
 * @test
 * @bug 8029849 8132082 8133535
 * @summary Make sure signing via encrypt and verifying via decrypt are not
 * supported by OracleUcrypto provider.
 * @author Anthony Scarpino
 * @key randomness
 */

import java.util.Random;
import java.security.*;
import java.security.interfaces.*;
import java.security.spec.RSAPrivateKeySpec;
import javax.crypto.Cipher;

public class CipherSignNotSupported extends UcryptoTest {

    public static void main(String[] args) throws Exception {
        main(new CipherSignNotSupported(), null);
    }

    public void doTest(Provider p) throws Exception {
        Cipher c = null;
        Random random = new Random();
        byte[] pt = new byte[117];
        byte[] ct = new byte[200];
        random.nextBytes(pt);

        try {
            c = Cipher.getInstance("RSA/ECB/PKCS1Padding", p);
        } catch (NoSuchAlgorithmException e) {
            if (System.getProperty("os.version").compareTo("5.10") == 0) {
                System.out.println("RSA not supported in S10");
                return;
            }
            throw e;
        }

        KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
        kpg.initialize(1024);
        KeyPair kp = kpg.generateKeyPair();

        // Encryption
        c.init(Cipher.ENCRYPT_MODE, kp.getPublic());
        ct = c.doFinal(pt);
        // Decryption
        PrivateKey[] privKeys = new PrivateKey[2];
        privKeys[0] = kp.getPrivate();
        if (privKeys[0] instanceof RSAPrivateCrtKey) {
            RSAPrivateCrtKey k = (RSAPrivateCrtKey) privKeys[0];
            KeyFactory kf = KeyFactory.getInstance("RSA");
            privKeys[1] = kf.generatePrivate
                (new RSAPrivateKeySpec(k.getModulus(), k.getPrivateExponent()));
        } else {
            privKeys = new PrivateKey[] {privKeys[0]};
        }

        for (PrivateKey pk : privKeys) {
            System.out.println("Testing " + pk);
            c.init(Cipher.DECRYPT_MODE, pk);
            c.doFinal(ct);

            // Sign
            try {
                c.init(Cipher.ENCRYPT_MODE, pk);
                ct = c.doFinal(pt);
                throw new RuntimeException("Encrypt operation should have failed.");
            } catch (InvalidKeyException e) {
                if (!e.getMessage().contains("RSAPublicKey required for encryption")) {
                    System.out.println("Wrong exception thrown.");
                    throw e;
                }
            }
        }

        // Verify
        try {
            c.init(Cipher.DECRYPT_MODE, kp.getPublic());
            c.doFinal(ct);
            throw new RuntimeException("Decrypt operation should have failed.");
        } catch (InvalidKeyException e) {
            if (!e.getMessage().contains("RSAPrivateKey required for decryption")) {
                System.out.println("Wrong exception thrown.");
                throw e;
            }
        }

        System.out.println("Pass");
    }
}
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`/*`
8132082: Let OracleUcrypto accept RSAPrivateKey Reviewed-by: xuelei, valeriep, coffeys 2015-09-04 12:28:01 +00:00			`* Copyright (c) 2014, 2015, Oracle and/or its affiliates. All rights reserved.`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.`
			`*`
			`* This code is free software; you can redistribute it and/or modify it`
			`* under the terms of the GNU General Public License version 2 only, as`
			`* published by the Free Software Foundation.`
			`*`
			`* This code is distributed in the hope that it will be useful, but WITHOUT`
			`* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or`
			`* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License`
			`* version 2 for more details (a copy is included in the LICENSE file that`
			`* accompanied this code).`
			`*`
			`* You should have received a copy of the GNU General Public License version`
			`* 2 along with this work; if not, write to the Free Software Foundation,`
			`* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.`
			`*`
			`* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA`
			`* or visit www.oracle.com if you need additional information or have any`
			`* questions.`
			`*/`

			`/**`
			`* @test`
8133535: Better exception messaging in Ucrypto code Reviewed-by: igerasim 2015-09-16 11:23:25 +00:00			`* @bug 8029849 8132082 8133535`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`* @summary Make sure signing via encrypt and verifying via decrypt are not`
			`* supported by OracleUcrypto provider.`
			`* @author Anthony Scarpino`
8078334: Mark regression tests using randomness Reviewed-by: xuelei, alanb 2015-04-29 17:25:53 +00:00			`* @key randomness`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`*/`

			`import java.util.Random;`
8132082: Let OracleUcrypto accept RSAPrivateKey Reviewed-by: xuelei, valeriep, coffeys 2015-09-04 12:28:01 +00:00			`import java.security.*;`
			`import java.security.interfaces.*;`
			`import java.security.spec.RSAPrivateKeySpec;`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`import javax.crypto.Cipher;`

			`public class CipherSignNotSupported extends UcryptoTest {`

			`public static void main(String[] args) throws Exception {`
			`main(new CipherSignNotSupported(), null);`
			`}`

			`public void doTest(Provider p) throws Exception {`
			`Cipher c = null;`
			`Random random = new Random();`
			`byte[] pt = new byte[117];`
			`byte[] ct = new byte[200];`
			`random.nextBytes(pt);`

			`try {`
			`c = Cipher.getInstance("RSA/ECB/PKCS1Padding", p);`
			`} catch (NoSuchAlgorithmException e) {`
			`if (System.getProperty("os.version").compareTo("5.10") == 0) {`
			`System.out.println("RSA not supported in S10");`
			`return;`
			`}`
			`throw e;`
			`}`

			`KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");`
			`kpg.initialize(1024);`
			`KeyPair kp = kpg.generateKeyPair();`

			`// Encryption`
			`c.init(Cipher.ENCRYPT_MODE, kp.getPublic());`
			`ct = c.doFinal(pt);`
			`// Decryption`
8132082: Let OracleUcrypto accept RSAPrivateKey Reviewed-by: xuelei, valeriep, coffeys 2015-09-04 12:28:01 +00:00			`PrivateKey[] privKeys = new PrivateKey[2];`
			`privKeys[0] = kp.getPrivate();`
			`if (privKeys[0] instanceof RSAPrivateCrtKey) {`
			`RSAPrivateCrtKey k = (RSAPrivateCrtKey) privKeys[0];`
			`KeyFactory kf = KeyFactory.getInstance("RSA");`
			`privKeys[1] = kf.generatePrivate`
			`(new RSAPrivateKeySpec(k.getModulus(), k.getPrivateExponent()));`
			`} else {`
			`privKeys = new PrivateKey[] {privKeys[0]};`
			`}`

			`for (PrivateKey pk : privKeys) {`
			`System.out.println("Testing " + pk);`
			`c.init(Cipher.DECRYPT_MODE, pk);`
			`c.doFinal(ct);`

			`// Sign`
			`try {`
			`c.init(Cipher.ENCRYPT_MODE, pk);`
			`ct = c.doFinal(pt);`
			`throw new RuntimeException("Encrypt operation should have failed.");`
			`} catch (InvalidKeyException e) {`
8133535: Better exception messaging in Ucrypto code Reviewed-by: igerasim 2015-09-16 11:23:25 +00:00			`if (!e.getMessage().contains("RSAPublicKey required for encryption")) {`
8132082: Let OracleUcrypto accept RSAPrivateKey Reviewed-by: xuelei, valeriep, coffeys 2015-09-04 12:28:01 +00:00			`System.out.println("Wrong exception thrown.");`
			`throw e;`
			`}`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`}`
			`}`
8132082: Let OracleUcrypto accept RSAPrivateKey Reviewed-by: xuelei, valeriep, coffeys 2015-09-04 12:28:01 +00:00
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`// Verify`
			`try {`
			`c.init(Cipher.DECRYPT_MODE, kp.getPublic());`
			`c.doFinal(ct);`
			`throw new RuntimeException("Decrypt operation should have failed.");`
			`} catch (InvalidKeyException e) {`
8133535: Better exception messaging in Ucrypto code Reviewed-by: igerasim 2015-09-16 11:23:25 +00:00			`if (!e.getMessage().contains("RSAPrivateKey required for decryption")) {`
8046002: Move Ucrypto to the open jdk repo Move Ucrypto related sources, tests to openJDK Reviewed-by: mullan 2014-10-20 21:18:48 +00:00			`System.out.println("Wrong exception thrown.");`
			`throw e;`
			`}`
			`}`

			`System.out.println("Pass");`
			`}`
			`}`