stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
d752f19611
jdk-24/test/jdk/sun/security/pkcs11/Signature/SigInteropPSS2.java
Matthew Donovan 9a9ac1d005 8341927: Replace hardcoded security providers with new test.provider.name system property 
Reviewed-by: mullan, ascarpino, rhalade
2024-10-30 18:51:02 +00:00

103 lines
3.6 KiB
Java
Raw Blame History

/*
* Copyright (c) 2020, 2024, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License version 2 only, as
* published by the Free Software Foundation.
*
* This code is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* version 2 for more details (a copy is included in the LICENSE file that
* accompanied this code).
*
* You should have received a copy of the GNU General Public License version
* 2 along with this work; if not, write to the Free Software Foundation,
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
*
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
* or visit www.oracle.com if you need additional information or have any
* questions.
*/
import java.security.*;
import java.security.spec.*;
import java.security.interfaces.*;
/*
* @test
* @bug 8080462 8226651 8242332 8325164
* @summary testing interoperability of PSS signatures of PKCS11 provider
* against SunRsaSign provider
* @library /test/lib ..
* @modules jdk.crypto.cryptoki
* @run main/othervm SigInteropPSS2
*/
public class SigInteropPSS2 extends PKCS11Test {
private static final byte[] MSG =
"Interoperability test between SunRsaSign and SunPKCS11".getBytes();
private static final String[] DIGESTS = {
"SHA224", "SHA256", "SHA384", "SHA512",
"SHA3-224", "SHA3-256", "SHA3-384", "SHA3-512"
};
public static void main(String[] args) throws Exception {
main(new SigInteropPSS2(), args);
}
@Override
public void main(Provider p) throws Exception {
String providerName = System.getProperty("test.provider.name", "SunRsaSign");
Provider sunRsaSign = Security.getProvider(providerName);
Security.removeProvider(providerName);
Signature sigPkcs11;
Signature sigSunRsaSign =
Signature.getInstance("RSASSA-PSS", sunRsaSign);
KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", p);
kpg.initialize(3072);
KeyPair kp = kpg.generateKeyPair();
for (String digest : DIGESTS) {
try {
sigPkcs11 = Signature.getInstance(digest + "withRSASSA-PSS", p);
} catch (NoSuchAlgorithmException e) {
System.out.println("Skip testing " + digest + "withRSASSA-PSS" +
" due to no support");
continue;
}
runTest(sigPkcs11, sigSunRsaSign, kp);
}
System.out.println("Test passed");
}
static void runTest(Signature signer, Signature verifier, KeyPair kp)
throws Exception {
System.out.println("\tSign: " + signer.getProvider().getName());
System.out.println("\tVerify: " + verifier.getProvider().getName());
signer.initSign(kp.getPrivate());
signer.update(MSG);
byte[] sigBytes = signer.sign();
AlgorithmParameters signParams = signer.getParameters();
verifier.setParameter(signParams.getParameterSpec
(PSSParameterSpec.class));
verifier.initVerify(kp.getPublic());
verifier.update(MSG);
boolean isValid = verifier.verify(sigBytes);
if (isValid) {
System.out.println("\tPSS Signature verified");
} else {
throw new RuntimeException("ERROR verifying PSS Signature");
}
}
}
Reference in New Issue View Git Blame Copy Permalink