1
/*
2
 * Copyright (c) 2010, 2020, Oracle and/or its affiliates. All rights reserved.
3
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4
 *
5
 * This code is free software; you can redistribute it and/or modify it
6
 * under the terms of the GNU General Public License version 2 only, as
7
 * published by the Free Software Foundation.
8
 *
9
 * This code is distributed in the hope that it will be useful, but WITHOUT
10
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
12
 * version 2 for more details (a copy is included in the LICENSE file that
13
 * accompanied this code).
14
 *
15
 * You should have received a copy of the GNU General Public License version
16
 * 2 along with this work; if not, write to the Free Software Foundation,
17
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18
 *
19
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20
 * or visit www.oracle.com if you need additional information or have any
21
 * questions.
22
 */
23

24
/*
25
 * @test
26
 * @bug 6695485 8242332
27
 * @summary Make sure initSign/initVerify() check RSA key lengths
28
 * @author Yu-Ching Valerie Peng
29
 * @library /test/lib ..
30
 * @modules jdk.crypto.cryptoki
31
 * @run main/othervm TestRSAKeyLength
32
 * @run main/othervm -Djava.security.manager=allow TestRSAKeyLength sm
33
 */
34

35
import java.security.InvalidKeyException;
36
import java.security.KeyPair;
37
import java.security.KeyPairGenerator;
38
import java.security.PrivateKey;
39
import java.security.Provider;
40
import java.security.PublicKey;
41
import java.security.Signature;
42
import java.security.SignedObject;
43

44
public class TestRSAKeyLength extends PKCS11Test {
45

46
    public static void main(String[] args) throws Exception {
47
        main(new TestRSAKeyLength(), args);
48
    }
49

50
    @Override
51
    public void main(Provider p) throws Exception {
52

53
        boolean isValidKeyLength[] = {
54
                true, true, true, false, false, true, true, false, false
55
        };
56
        String algos[] = {
57
                "SHA1withRSA", "SHA224withRSA", "SHA256withRSA",
58
                "SHA384withRSA", "SHA512withRSA", "SHA3-224withRSA",
59
                "SHA3-256withRSA", "SHA3-384withRSA", "SHA3-512withRSA"
60
        };
61
        KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", p);
62
        kpg.initialize(512);
63
        KeyPair kp = kpg.generateKeyPair();
64
        PrivateKey privKey = kp.getPrivate();
65
        PublicKey pubKey = kp.getPublic();
66

67
        if (algos.length != isValidKeyLength.length) {
68
            throw new Exception("Internal Error: number of test algos" +
69
                " and results length mismatch!");
70
        }
71
        for (int i = 0; i < algos.length; i++) {
72
            Signature sig = Signature.getInstance(algos[i], p);
73
            System.out.println("Testing RSA signature " + algos[i]);
74
            try {
75
                sig.initSign(privKey);
76
                if (!isValidKeyLength[i]) {
77
                    throw new Exception("initSign: Expected IKE not thrown!");
78
                }
79
            } catch (InvalidKeyException ike) {
80
                if (isValidKeyLength[i]) {
81
                    throw new Exception("initSign: Unexpected " + ike);
82
                }
83
            }
84
            try {
85
                sig.initVerify(pubKey);
86
                if (!isValidKeyLength[i]) {
87
                    throw new RuntimeException("initVerify: Expected IKE not thrown!");
88
                }
89
                new SignedObject("Test string for getSignature test.", privKey, sig);
90
            } catch (InvalidKeyException ike) {
91
                if (isValidKeyLength[i]) {
92
                    throw new Exception("initSign: Unexpected " + ike);
93
                }
94
            }
95
        }
96
    }
97
}
98

99