use of com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey in project tink by google.
the class RsaSsaPkcs1SignKeyManagerTest method createCorruptedModulusPrimitive_throws.
@Test
public void createCorruptedModulusPrimitive_throws() throws Exception {
RsaSsaPkcs1KeyFormat format = createKeyFormat(HashType.SHA512, 4096, RSAKeyGenParameterSpec.F4);
RsaSsaPkcs1PrivateKey originalKey = factory.createKey(format);
byte[] originalN = originalKey.getPublicKey().getN().toByteArray();
originalN[0] = (byte) (originalN[0] ^ 0x01);
ByteString corruptedN = ByteString.copyFrom(originalN);
RsaSsaPkcs1PublicKey corruptedPub = RsaSsaPkcs1PublicKey.newBuilder().setVersion(originalKey.getPublicKey().getVersion()).setN(corruptedN).setE(originalKey.getPublicKey().getE()).build();
RsaSsaPkcs1PrivateKey corruptedKey = RsaSsaPkcs1PrivateKey.newBuilder().setVersion(originalKey.getVersion()).setPublicKey(corruptedPub).setD(originalKey.getD()).setP(originalKey.getP()).setQ(originalKey.getQ()).setDp(originalKey.getDp()).setDq(originalKey.getDq()).setCrt(originalKey.getCrt()).build();
assertThrows(GeneralSecurityException.class, () -> manager.getPrimitive(corruptedKey, PublicKeySign.class));
}
use of com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey in project tink by google.
the class RsaSsaPkcs1SignKeyManagerTest method checkKey.
private void checkKey(RsaSsaPkcs1PrivateKey privateKey) throws Exception {
RsaSsaPkcs1PublicKey publicKey = privateKey.getPublicKey();
assertThat(privateKey.getVersion()).isEqualTo(0);
assertThat(publicKey.getVersion()).isEqualTo(privateKey.getVersion());
BigInteger p = new BigInteger(1, privateKey.getP().toByteArray());
BigInteger q = new BigInteger(1, privateKey.getQ().toByteArray());
BigInteger n = new BigInteger(1, privateKey.getPublicKey().getN().toByteArray());
BigInteger d = new BigInteger(1, privateKey.getD().toByteArray());
BigInteger dp = new BigInteger(1, privateKey.getDp().toByteArray());
BigInteger dq = new BigInteger(1, privateKey.getDq().toByteArray());
BigInteger crt = new BigInteger(1, privateKey.getCrt().toByteArray());
assertThat(p).isGreaterThan(BigInteger.ONE);
assertThat(q).isGreaterThan(BigInteger.ONE);
assertEquals(n, p.multiply(q));
assertEquals(dp, d.mod(p.subtract(BigInteger.ONE)));
assertEquals(dq, d.mod(q.subtract(BigInteger.ONE)));
assertEquals(crt, q.modInverse(p));
}
use of com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey in project tink by google.
the class RsaSsaPkcs1VerifyKeyManagerTest method validateKey_smallModulus.
@Test
public void validateKey_smallModulus() throws Exception {
RsaSsaPkcs1PublicKey publicKey = nistTestVectors[0].publicKeyProto;
RsaSsaPkcs1PublicKey invalidKey = RsaSsaPkcs1PublicKey.newBuilder(publicKey).setN(ByteString.copyFrom(TestUtil.hexDecode("23"))).setE(ByteString.copyFrom(TestUtil.hexDecode("03"))).build();
assertThrows(GeneralSecurityException.class, () -> verifyManager.validateKey(invalidKey));
}
use of com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey in project tink by google.
the class RsaSsaPkcs1VerifyKeyManagerTest method validateKey_generated.
@Test
public void validateKey_generated() throws Exception {
if (TestUtil.isTsan()) {
// factory.createKey is too slow in Tsan.
return;
}
RsaSsaPkcs1KeyFormat keyFormat = RsaSsaPkcs1KeyFormat.newBuilder().setParams(RsaSsaPkcs1Params.newBuilder().setHashType(HashType.SHA256)).setModulusSizeInBits(3072).setPublicExponent(ByteString.copyFrom(RSAKeyGenParameterSpec.F4.toByteArray())).build();
RsaSsaPkcs1PrivateKey privateKey = factory.createKey(keyFormat);
RsaSsaPkcs1PublicKey publicKey = signManager.getPublicKey(privateKey);
verifyManager.validateKey(publicKey);
}
use of com.google.crypto.tink.proto.RsaSsaPkcs1PublicKey in project tink by google.
the class RsaSsaPkcs1VerifyKeyManagerTest method validateKey_wrongVersion.
@Test
public void validateKey_wrongVersion() throws Exception {
RsaSsaPkcs1PublicKey publicKey = nistTestVectors[0].publicKeyProto;
RsaSsaPkcs1PublicKey invalidKey = RsaSsaPkcs1PublicKey.newBuilder(publicKey).setVersion(1).build();
assertThrows(GeneralSecurityException.class, () -> verifyManager.validateKey(invalidKey));
}
Aggregations