Example 41 with KeyData
use of com.google.crypto.tink.proto.KeyData in project tink by google.
the class AesCtrHmacStreamingKeyManagerTest method testNewKeyMultipleTimes.
@Test
public void testNewKeyMultipleTimes() throws Exception {
AesCtrHmacStreamingKeyFormat keyFormat = AesCtrHmacStreamingKeyFormat.newBuilder().setParams(keyParams).setKeySize(16).build();
ByteString serializedKeyFormat = ByteString.copyFrom(keyFormat.toByteArray());
Set<String> keys = new TreeSet<String>();
// Calls newKey multiple times and make sure that they generate different keys.
int numTests = 27;
for (int i = 0; i < numTests / 3; i++) {
AesCtrHmacStreamingKey key = (AesCtrHmacStreamingKey) keyManager.newKey(keyFormat);
keys.add(TestUtil.hexEncode(key.getKeyValue().toByteArray()));
assertEquals(16, key.getKeyValue().toByteArray().length);
key = (AesCtrHmacStreamingKey) keyManager.newKey(serializedKeyFormat);
keys.add(TestUtil.hexEncode(key.getKeyValue().toByteArray()));
assertEquals(16, key.getKeyValue().toByteArray().length);
KeyData keyData = keyManager.newKeyData(serializedKeyFormat);
key = AesCtrHmacStreamingKey.parseFrom(keyData.getValue());
keys.add(TestUtil.hexEncode(key.getKeyValue().toByteArray()));
assertEquals(16, key.getKeyValue().toByteArray().length);
}
assertEquals(numTests, keys.size());
}
Also used :
ByteString(com.google.protobuf.ByteString)
TreeSet(java.util.TreeSet)
AesCtrHmacStreamingKey(com.google.crypto.tink.proto.AesCtrHmacStreamingKey)
AesCtrHmacStreamingKeyFormat(com.google.crypto.tink.proto.AesCtrHmacStreamingKeyFormat)
ByteString(com.google.protobuf.ByteString)
KeyData(com.google.crypto.tink.proto.KeyData)
Test(org.junit.Test)
Example 42 with KeyData
use of com.google.crypto.tink.proto.KeyData in project tink by google.
the class KeysetManager method newKey.
@GuardedBy("this")
private synchronized Keyset.Key newKey(KeyTemplate keyTemplate) throws GeneralSecurityException {
KeyData keyData = Registry.newKeyData(keyTemplate);
int keyId = newKeyId();
OutputPrefixType outputPrefixType = keyTemplate.getOutputPrefixType();
if (outputPrefixType == OutputPrefixType.UNKNOWN_PREFIX) {
outputPrefixType = OutputPrefixType.TINK;
}
return Keyset.Key.newBuilder().setKeyData(keyData).setKeyId(keyId).setStatus(KeyStatusType.ENABLED).setOutputPrefixType(outputPrefixType).build();
}
Also used :
OutputPrefixType(com.google.crypto.tink.proto.OutputPrefixType)
KeyData(com.google.crypto.tink.proto.KeyData)
GuardedBy(javax.annotation.concurrent.GuardedBy)
Example 43 with KeyData
use of com.google.crypto.tink.proto.KeyData in project tink by google.
the class RegistryTest method testGetPrimitives_KeysetWithNoPrimaryKey_shouldThrowException.
@Test
public void testGetPrimitives_KeysetWithNoPrimaryKey_shouldThrowException() throws Exception {
// Create a keyset without a primary key.
KeyData key1 = Registry.newKeyData(MacKeyTemplates.HMAC_SHA256_128BITTAG);
KeysetHandle keysetHandle = KeysetHandle.fromKeyset(Keyset.newBuilder().addKey(Keyset.Key.newBuilder().setKeyData(key1).setKeyId(1).setStatus(KeyStatusType.ENABLED).setOutputPrefixType(OutputPrefixType.TINK).build()).build());
// No primary key.
try {
Registry.getPrimitives(keysetHandle);
fail("Invalid keyset. Expect GeneralSecurityException");
} catch (GeneralSecurityException e) {
assertExceptionContains(e, "keyset doesn't contain a valid primary key");
}
}
Also used :
GeneralSecurityException(java.security.GeneralSecurityException)
KeyData(com.google.crypto.tink.proto.KeyData)
Test(org.junit.Test)
Example 44 with KeyData
use of com.google.crypto.tink.proto.KeyData in project tink by google.
the class RegistryTest method testGetPrimitives_KeysetWithMultiplePrimaryKeys_shouldThrowException.
@Test
public void testGetPrimitives_KeysetWithMultiplePrimaryKeys_shouldThrowException() throws Exception {
// Multiple primary keys.
KeyData key1 = Registry.newKeyData(MacKeyTemplates.HMAC_SHA256_128BITTAG);
KeysetHandle keysetHandle = KeysetHandle.fromKeyset(Keyset.newBuilder().addKey(Keyset.Key.newBuilder().setKeyData(key1).setKeyId(1).setStatus(KeyStatusType.ENABLED).setOutputPrefixType(OutputPrefixType.TINK).build()).addKey(Keyset.Key.newBuilder().setKeyData(key1).setKeyId(1).setStatus(KeyStatusType.ENABLED).setOutputPrefixType(OutputPrefixType.TINK).build()).setPrimaryKeyId(1).build());
try {
Registry.getPrimitives(keysetHandle);
fail("Invalid keyset. Expect GeneralSecurityException");
} catch (GeneralSecurityException e) {
assertExceptionContains(e, "keyset contains multiple primary keys");
}
}
Also used :
GeneralSecurityException(java.security.GeneralSecurityException)
KeyData(com.google.crypto.tink.proto.KeyData)
Test(org.junit.Test)
Example 45 with KeyData
use of com.google.crypto.tink.proto.KeyData in project tink by google.
the class KeysetHandleTest method testGetPublicKeysetHandle.
/**
* Tests a public keyset is extracted properly from a private keyset.
*/
@Test
public void testGetPublicKeysetHandle() throws Exception {
KeysetHandle privateHandle = KeysetHandle.generateNew(SignatureKeyTemplates.ECDSA_P256);
KeyData privateKeyData = privateHandle.getKeyset().getKey(0).getKeyData();
EcdsaPrivateKey privateKey = EcdsaPrivateKey.parseFrom(privateKeyData.getValue());
KeysetHandle publicHandle = privateHandle.getPublicKeysetHandle();
assertEquals(1, publicHandle.getKeyset().getKeyCount());
assertEquals(privateHandle.getKeyset().getPrimaryKeyId(), publicHandle.getKeyset().getPrimaryKeyId());
KeyData publicKeyData = publicHandle.getKeyset().getKey(0).getKeyData();
assertEquals(SignatureConfig.ECDSA_PUBLIC_KEY_TYPE_URL, publicKeyData.getTypeUrl());
assertEquals(KeyData.KeyMaterialType.ASYMMETRIC_PUBLIC, publicKeyData.getKeyMaterialType());
assertArrayEquals(privateKey.getPublicKey().toByteArray(), publicKeyData.getValue().toByteArray());
PublicKeySign signer = PublicKeySignFactory.getPrimitive(privateHandle);
PublicKeyVerify verifier = PublicKeyVerifyFactory.getPrimitive(publicHandle);
byte[] message = Random.randBytes(20);
try {
verifier.verify(signer.sign(message), message);
} catch (GeneralSecurityException e) {
fail("Should not fail: " + e);
}
}
Also used :
GeneralSecurityException(java.security.GeneralSecurityException)
EcdsaPrivateKey(com.google.crypto.tink.proto.EcdsaPrivateKey)
KeyData(com.google.crypto.tink.proto.KeyData)
Test(org.junit.Test)
Aggregations
KeyData (com.google.crypto.tink.proto.KeyData)66
Test (org.junit.Test)55
Keyset (com.google.crypto.tink.proto.Keyset)17
KeyTemplate (com.google.crypto.tink.KeyTemplate)16
KeyTemplate (com.google.crypto.tink.proto.KeyTemplate)11
GeneralSecurityException (java.security.GeneralSecurityException)10
ByteString (com.google.protobuf.ByteString)9
TreeSet (java.util.TreeSet)9
AesEaxKey (com.google.crypto.tink.proto.AesEaxKey)7
KeysetReader (com.google.crypto.tink.KeysetReader)6
ProtoKey (com.google.crypto.tink.tinkkey.internal.ProtoKey)6
StringReader (java.io.StringReader)6
KeysetHandle (com.google.crypto.tink.KeysetHandle)5
RsaSsaPssPublicKey (com.google.crypto.tink.proto.RsaSsaPssPublicKey)5
BufferedReader (java.io.BufferedReader)5
RSAPublicKey (java.security.interfaces.RSAPublicKey)5
DummyAead (com.google.crypto.tink.TestUtil.DummyAead)4
EcdsaPrivateKey (com.google.crypto.tink.proto.EcdsaPrivateKey)4
Ed25519PrivateKey (com.google.crypto.tink.proto.Ed25519PrivateKey)4
AesEaxKeyFormat (com.google.crypto.tink.proto.AesEaxKeyFormat)3
