1 /*
2 * Copyright (c) 2012, 2015, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation.
8 *
9 * This code is distributed in the hope that it will be useful, but WITHOUT
10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
12 * version 2 for more details (a copy is included in the LICENSE file that
13 * accompanied this code).
14 *
15 * You should have received a copy of the GNU General Public License version
16 * 2 along with this work; if not, write to the Free Software Foundation,
17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18 *
19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20 * or visit www.oracle.com if you need additional information or have any
21 * questions.
22 */
23 /*
24 * @test
25 * @bug 7044060 8042967
26 * @run main/othervm/timeout=250 TestDSA2
27 * @summary verify that DSA signature works using SHA and SHA-224 and
28 * SHA-256 digests.
29 * @key randomness
30 */
31
32
33 import java.security.*;
34 import java.security.spec.*;
35 import java.security.interfaces.*;
36
37 public class TestDSA2 {
38
39 // NOTE: need to explictly specify provider since the more
40 // preferred provider SunPKCS11 provider only supports up
41 // 1024 bits.
42 private static final String PROV = "SUN";
43
44 private static final String[] SIG_ALGOS = {
45 "NONEwithDSA",
46 "SHA1withDSA",
47 "SHA224withDSA",
48 "SHA256withDSA",
49 "NONEwithDSAinP1363Format",
50 "SHA1withDSAinP1363Format",
51 "SHA224withDSAinP1363Format",
52 "SHA256withDSAinP1363Format"
53 };
54
55 private static final int[] KEYSIZES = {
56 1024, 2048
57 };
58
59 public static void main(String[] args) throws Exception {
60 boolean[] expectedToPass = { true, true, true, true,
61 true, true, true, true };
62 test(1024, expectedToPass);
63 boolean[] expectedToPass2 = { true, true, true, true,
64 true, true, true, true };
65 test(2048, expectedToPass2);
66 }
67
68 private static void test(int keySize, boolean[] testStatus)
69 throws Exception {
70 // Raw DSA requires the data to be exactly 20 bytes long. Use a
71 // 20-byte array for these tests so that the NONEwithDSA* algorithms
72 // don't complain.
73 byte[] data = "12345678901234567890".getBytes();
74 System.out.println("Test against key size: " + keySize);
75
76 KeyPairGenerator keyGen = KeyPairGenerator.getInstance("DSA", PROV);
77 keyGen.initialize(keySize, new SecureRandom());
78 KeyPair pair = keyGen.generateKeyPair();
79
80 if (testStatus.length != SIG_ALGOS.length) {
81 throw new RuntimeException("TestError: incorrect status array!");
82 }
83 for (int i = 0; i < SIG_ALGOS.length; i++) {
84 Signature dsa = Signature.getInstance(SIG_ALGOS[i], PROV);
85 try {
86 dsa.initSign(pair.getPrivate());
87 dsa.update(data);
88 byte[] sig = dsa.sign();
89 dsa.initVerify(pair.getPublic());
90 dsa.update(data);
91 boolean verifies = dsa.verify(sig);
92 if (verifies == testStatus[i]) {
93 System.out.println(SIG_ALGOS[i] + ": Passed");
94 } else {
95 System.out.println(SIG_ALGOS[i] + ": should " +
96 (testStatus[i]? "pass":"fail"));
97 throw new RuntimeException(SIG_ALGOS[i] + ": Unexpected Test result!");
98
99 }
100 } catch (Exception ex) {
101 if (testStatus[i]) {
102 ex.printStackTrace();
103 throw new RuntimeException(SIG_ALGOS[i] + ": Unexpected exception " + ex);
104 } else {
105 System.out.println(SIG_ALGOS[i] + ": Passed, expected " + ex);
106 }
107 }
108 }
109 }
110 }