src.test.java.com.github.toolarium.security.signature.ChallengeResponseUtilTest Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of toolarium-security Show documentation
Defines the security library to cover common patterns.
There is a newer version: 1.1.3
/*
 * ChallengeResponseUtilTest.java
 *
 * Copyright by toolarium, all rights reserved.
 */
package com.github.toolarium.security.signature;

import static org.junit.jupiter.api.Assertions.assertEquals;
import static org.junit.jupiter.api.Assertions.assertNotNull;
import static org.junit.jupiter.api.Assertions.assertTrue;

import com.github.toolarium.security.pki.util.PKIUtil;
import java.security.GeneralSecurityException;
import java.security.KeyPair;
import java.security.Security;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.junit.jupiter.api.Test;


/**
 * Test the {@link ChallengeResponseUtil}.
 * 
 * @author patrick
 */
public class ChallengeResponseUtilTest {
    private static final String BC = "BC";
    private static final String RSA = "RSA";
    private static final String SHA1WITH_RSA = "SHA1withRSA";
    private static final String DSA = "DSA";
    private static final String SHA1WITH_DSA = "SHA1withDSA";
    private static final String EC = "EC";
    private static final String SHA256WITH_RSA = "SHA256withRSA";
    private static final String SHA256WITH_ECDSA = "SHA256withECDSA";


    /**
     * Test getChallenge.
     *
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testGetChallenge() throws GeneralSecurityException {
        byte[] challenge = ChallengeResponseUtil.getInstance().getChallenge(32);
        assertNotNull(challenge);
        assertEquals(challenge.length, 44);
    }

    
    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testDSA512() throws GeneralSecurityException {
        doChallengeResponse(null, DSA, 512, SHA1WITH_DSA, 32);
        doChallengeResponse(null, DSA, 512, SHA1WITH_DSA, 64);
        doChallengeResponse(null, DSA, 512, SHA1WITH_DSA, 128);
        doChallengeResponse(null, DSA, 512, SHA1WITH_DSA, 256);
    }

    
    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testDSA1024() throws GeneralSecurityException {
        doChallengeResponse(null, DSA, 1024, SHA1WITH_DSA, 32);
        doChallengeResponse(null, DSA, 1024, SHA1WITH_DSA, 64);
        doChallengeResponse(null, DSA, 1024, SHA1WITH_DSA, 128);
        doChallengeResponse(null, DSA, 1024, SHA1WITH_DSA, 256);
    }


    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testRSA512() throws GeneralSecurityException {
        doChallengeResponse(null, RSA, 512, SHA1WITH_RSA, 32);
        doChallengeResponse(null, RSA, 512, SHA1WITH_RSA, 64);
        doChallengeResponse(null, RSA, 512, SHA1WITH_RSA, 128);
        doChallengeResponse(null, RSA, 512, SHA1WITH_RSA, 256);
    }

    
    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testRSA1024() throws GeneralSecurityException {
        doChallengeResponse(null, RSA, 1024, SHA1WITH_RSA, 32);
        doChallengeResponse(null, RSA, 1024, SHA1WITH_RSA, 64);
        doChallengeResponse(null, RSA, 1024, SHA1WITH_RSA, 128);
        doChallengeResponse(null, RSA, 1024, SHA1WITH_RSA, 256);
    }


    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testRSA2048() throws GeneralSecurityException {
        Security.addProvider(new BouncyCastleProvider());
        doChallengeResponse(BC, RSA, 2024, SHA256WITH_RSA, 32);
        doChallengeResponse(BC, RSA, 2024, SHA256WITH_RSA, 64);
        doChallengeResponse(BC, RSA, 2024, SHA256WITH_RSA, 128);
        doChallengeResponse(BC, RSA, 2024, SHA256WITH_RSA, 256);
    }

    
    /**
     * Test
     * 
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    @Test
    public void testEC256() throws GeneralSecurityException {
        Security.addProvider(new BouncyCastleProvider());
        doChallengeResponse(BC, EC, 256, SHA256WITH_ECDSA, 32);
        doChallengeResponse(BC, EC, 256, SHA256WITH_ECDSA, 64);
        doChallengeResponse(BC, EC, 256, SHA256WITH_ECDSA, 128);
        doChallengeResponse(BC, EC, 256, SHA256WITH_ECDSA, 256);
    }

    
    /**
     * Test the challenge response
     *
     * @param provider the provider
     * @param genAlgorithm the algorithm
     * @param size the size
     * @param algorithm the algorithm
     * @param challengeLength the length of the challenge
     * @throws GeneralSecurityException occurs, if the test contains errors.
     */
    protected void doChallengeResponse(String provider, String genAlgorithm, int size, String algorithm, int challengeLength) throws GeneralSecurityException {
        KeyPair keyPair = PKIUtil.getInstance().generateKeyPair(provider, genAlgorithm, size);

        // generate challenge
        byte[] challenge = ChallengeResponseUtil.getInstance().getChallenge(challengeLength);

        // generate response of the given challenge
        byte[] response = ChallengeResponseUtil.getInstance().generateResponse(provider, algorithm, keyPair.getPrivate(), challenge);

        // verify the response and the challenge
        assertTrue(ChallengeResponseUtil.getInstance().checkResponse(provider, algorithm, keyPair.getPublic(), challenge, response));
    }
}