jdk-24/test/jdk/javax/crypto/Cipher/TestCipherMode.java

/*
 * Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.
 *
 * This code is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * version 2 for more details (a copy is included in the LICENSE file that
 * accompanied this code).
 *
 * You should have received a copy of the GNU General Public License version
 * 2 along with this work; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
 *
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
 * or visit www.oracle.com if you need additional information or have any
 * questions.
 */

/*
 * @test
 * @bug 4953556 8210838 8248268
 * @summary ensure that IllegalStateException is thrown if the
 * Cipher object is initialized with a wrong mode, e.g. WRAP_MODE
 * for update()/doFinal() calls.
 * @author Valerie Peng
 */


import java.security.*;
import java.security.spec.*;

import javax.crypto.*;
import javax.crypto.spec.SecretKeySpec;

public class TestCipherMode {

    private static final String[] TRANSFORMATIONS = {
        "DES/ECB/PKCS5Padding",
        "AES/KW/NoPadding",
        "AES/KW/PKCS5Padding",
        "AES/KWP/NoPadding",
    };

    private static final SecretKey DES_KEY =
            new SecretKeySpec(new byte[8], "DES");
    private static final SecretKey AES_KEY =
            new SecretKeySpec(new byte[16], "AES");

    public static void main(String[] argv) throws Exception {
        for (String t : TRANSFORMATIONS) {
            System.out.println("Testing SunJCE provider, Cipher " + t );

            TestCipherMode test = new TestCipherMode(t);
            System.out.println("Testing ENCRYPT_MODE...");
            test.checkMode(Cipher.ENCRYPT_MODE, "encryption");
            System.out.println("Testing DECRYPT_MODE...");
            test.checkMode(Cipher.DECRYPT_MODE, "decryption");
            System.out.println("Testing WRAP_MODE...");
            test.checkMode(Cipher.WRAP_MODE, "key wrapping");
            System.out.println("Testing UNWRAP_MODE...");
            test.checkMode(Cipher.UNWRAP_MODE, "key unwrapping");
        }
        System.out.println("All Tests Passed");
   }

    private Cipher c = null;
    private SecretKey key = null;

    private TestCipherMode(String transformation)
            throws NoSuchAlgorithmException, NoSuchProviderException,
            NoSuchPaddingException {
        c = Cipher.getInstance(transformation, "SunJCE");
        this.key = switch (transformation.split("/")[0]) {
            case "DES" -> DES_KEY;
            case "AES" -> AES_KEY;
            default -> throw new RuntimeException
                    ("Error: Unsupported key algorithm");
        };
    }

    private void checkMode(int mode, String opString) throws Exception {
        c.init(mode, key);

        switch (mode) {
        case Cipher.ENCRYPT_MODE:
        case Cipher.DECRYPT_MODE:
            // call wrap()/unwrap() and see if ISE is thrown.
            try {
                c.wrap(key);
                throw new Exception("ERROR: should throw ISE for wrap()");
            } catch (IllegalStateException ise) {
                System.out.println("expected ISE is thrown for wrap()");
            }
            try {
                c.unwrap(new byte[16], key.getAlgorithm(), Cipher.SECRET_KEY);
                throw new Exception("ERROR: should throw ISE for unwrap()");
            } catch (IllegalStateException ise) {
                System.out.println("expected ISE is thrown for unwrap()");
            }
            break;
        case Cipher.WRAP_MODE:
        case Cipher.UNWRAP_MODE:
            try {
                c.update(new byte[16]);
                throw new Exception("ERROR: should throw ISE for update()");
            } catch (IllegalStateException ise) {
                System.out.println("expected ISE is thrown for update()");
            }
            try {
                c.doFinal();
                throw new Exception("ERROR: should throw ISE for doFinal()");
            } catch (IllegalStateException ise) {
                System.out.println("expected ISE is thrown for doFinal()");
            }
            break;
        }
    }
}