Google Git
Sign in
fuchsia / third_party / tink / 7a59397ba3c086dc03649b95176fbca1dde61934 / . / java / src / test / java / com / google / crypto / tink / signature / PublicKeyVerifyCatalogueTest.java
blob: aaf80eb05d803e5a5dedd0103d48da2dd335ae24 [file] [log] [blame]
// Copyright 2017 Google Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////
package com.google.crypto.tink.signature;
import static com.google.common.truth.Truth.assertThat;
import static org.junit.Assert.assertEquals;
import static org.junit.Assert.fail;
import com.google.crypto.tink.KeyManager;
import com.google.crypto.tink.PublicKeyVerify;
import com.google.crypto.tink.proto.KeyTypeEntry;
import com.google.crypto.tink.proto.RegistryConfig;
import java.security.GeneralSecurityException;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.junit.runners.JUnit4;
/** Tests for PublicKeyVerifyCatalogue. */
@RunWith(JUnit4.class)
public class PublicKeyVerifyCatalogueTest {
@Test
public void testBasic() throws Exception {
PublicKeyVerifyCatalogue catalogue = new PublicKeyVerifyCatalogue();
// Check a single key type for verifying, incl. case-insensitve primitive name.
String keyType = "type.googleapis.com/google.crypto.tink.Ed25519PublicKey";
{
KeyManager<PublicKeyVerify> manager = catalogue.getKeyManager(keyType, "PublicKeyVerify", 0);
assertThat(manager.doesSupport(keyType)).isTrue();
}
{
KeyManager<PublicKeyVerify> manager = catalogue.getKeyManager(keyType, "PUBLicKeYVerIFY", 0);
assertThat(manager.doesSupport(keyType)).isTrue();
}
{
KeyManager<PublicKeyVerify> manager = catalogue.getKeyManager(keyType, "PUBLICKEYVERIFY", 0);
assertThat(manager.doesSupport(keyType)).isTrue();
}
// Check all entries from the current SignatureConfig.
RegistryConfig config = SignatureConfig.TINK_1_0_0;
int count = 0;
for (KeyTypeEntry entry : config.getEntryList()) {
if ("PublicKeyVerify".equals(entry.getPrimitiveName())) {
count = count + 1;
KeyManager<PublicKeyVerify> manager =
catalogue.getKeyManager(
entry.getTypeUrl(), "publickeyverify", entry.getKeyManagerVersion());
assertThat(manager.doesSupport(entry.getTypeUrl())).isTrue();
}
}
assertEquals(2, count);
}
@Test
public void testErrors() throws Exception {
PublicKeyVerifyCatalogue catalogue = new PublicKeyVerifyCatalogue();
String keyType = "type.googleapis.com/google.crypto.tink.EcdsaPublicKey";
// Wrong primitive name.
try {
catalogue.getKeyManager(keyType, "aead", 0);
fail("Expected GeneralSecurityException");
} catch (GeneralSecurityException e) {
assertThat(e.toString()).contains("No support for primitive");
}
// Wrong key manager version.
try {
catalogue.getKeyManager(keyType, "publickeyverify", 1);
fail("Expected GeneralSecurityException");
} catch (GeneralSecurityException e) {
assertThat(e.toString()).contains("No key manager");
assertThat(e.toString()).contains("version at least");
}
// Wrong key type.
try {
catalogue.getKeyManager("some.unknown.key.type", "publickeyverify", 0);
fail("Expected GeneralSecurityException");
} catch (GeneralSecurityException e) {
assertThat(e.toString()).contains("No support for primitive");
assertThat(e.toString()).contains("with key type");
}
}
}