java_src/src/test/java/com/google/crypto/tink/jwt/JwtEcdsaVerifyKeyManagerTest.java - third_party/tink - Git at Google

 // Copyright 2020 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 //
 ////////////////////////////////////////////////////////////////////////////////
 package com.google.crypto.tink.jwt;

 import static com.google.common.truth.Truth.assertThat;
 import static org.junit.Assert.assertThrows;

 import com.google.crypto.tink.KeyTypeManager;
 import com.google.crypto.tink.proto.JwtEcdsaAlgorithm;
 import com.google.crypto.tink.proto.JwtEcdsaKeyFormat;
 import com.google.crypto.tink.proto.JwtEcdsaPrivateKey;
 import com.google.crypto.tink.proto.JwtEcdsaPublicKey;
 import com.google.crypto.tink.proto.KeyData.KeyMaterialType;
 import com.google.crypto.tink.testing.TestUtil;
 import java.security.GeneralSecurityException;
 import junitparams.JUnitParamsRunner;
 import junitparams.Parameters;
 import org.junit.Test;
 import org.junit.runner.RunWith;

 /** Unit tests for EcdsaVerifyKeyManager. */
 @RunWith(JUnitParamsRunner.class)
 public final class JwtEcdsaVerifyKeyManagerTest {
   private final JwtEcdsaSignKeyManager signManager = new JwtEcdsaSignKeyManager();
   private final KeyTypeManager.KeyFactory<JwtEcdsaKeyFormat, JwtEcdsaPrivateKey> factory =
       signManager.keyFactory();
   private final JwtEcdsaVerifyKeyManager verifyManager = new JwtEcdsaVerifyKeyManager();

   private static Object[] parametersAlgo() {
     return new Object[] {JwtEcdsaAlgorithm.ES256, JwtEcdsaAlgorithm.ES384, JwtEcdsaAlgorithm.ES512};
   }

   @Test
   public void basics() throws Exception {
     assertThat(verifyManager.getKeyType())
         .isEqualTo("type.googleapis.com/google.crypto.tink.JwtEcdsaPublicKey");
     assertThat(verifyManager.getVersion()).isEqualTo(0);
     assertThat(verifyManager.keyMaterialType()).isEqualTo(KeyMaterialType.ASYMMETRIC_PUBLIC);
   }

   @Test
   public void validateKey_empty_throw() throws Exception {
     assertThrows(
         GeneralSecurityException.class,
         () -> verifyManager.validateKey(JwtEcdsaPublicKey.getDefaultInstance()));
   }

   @Test
   @Parameters(method = "parametersAlgo")
   public void validateKey_ok(JwtEcdsaAlgorithm algorithm) throws Exception {
     if (TestUtil.isTsan()) {
       // factory.createKey is too slow in Tsan.
       return;
     }
     JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();
     JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
     JwtEcdsaPublicKey publicKey = signManager.getPublicKey(privateKey);
     verifyManager.validateKey(publicKey);
   }

   @Test
   @Parameters(method = "parametersAlgo")
   public void createPrimitive_ok(JwtEcdsaAlgorithm algorithm) throws Exception {
     if (TestUtil.isTsan()) {
       // factory.createKey is too slow in Tsan.
       return;
     }
     JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();
     JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
     JwtEcdsaPublicKey publicKey = signManager.getPublicKey(privateKey);
     JwtPublicKeySign signer = signManager.getPrimitive(privateKey, JwtPublicKeySign.class);
     JwtPublicKeyVerify verifier = verifyManager.getPrimitive(publicKey, JwtPublicKeyVerify.class);
     RawJwt token = new RawJwt.Builder().build();
     JwtValidator validator = new JwtValidator.Builder().build();
     verifier.verifyAndDecode(signer.signAndEncode(token), validator);
   }

   @Test
   @Parameters(method = "parametersAlgo")
   public void createPrimitive_anotherKey_throw(JwtEcdsaAlgorithm algorithm) throws Exception {
     if (TestUtil.isTsan()) {
       // factory.createKey is too slow in Tsan.
       return;
     }
     JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();

     JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
     // Create a different key.
     JwtEcdsaPublicKey publicKey = signManager.getPublicKey(factory.createKey(keyFormat));
     JwtPublicKeySign signer = signManager.getPrimitive(privateKey, JwtPublicKeySign.class);
     JwtPublicKeyVerify verifier = verifyManager.getPrimitive(publicKey, JwtPublicKeyVerify.class);
     RawJwt token = new RawJwt.Builder().build();
     JwtValidator validator = new JwtValidator.Builder().build();
     assertThrows(
         GeneralSecurityException.class,
         () -> verifier.verifyAndDecode(signer.signAndEncode(token), validator));
   }
 }
	// Copyright 2020 Google LLC
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.
	//
	////////////////////////////////////////////////////////////////////////////////
	package com.google.crypto.tink.jwt;

	import static com.google.common.truth.Truth.assertThat;
	import static org.junit.Assert.assertThrows;

	import com.google.crypto.tink.KeyTypeManager;
	import com.google.crypto.tink.proto.JwtEcdsaAlgorithm;
	import com.google.crypto.tink.proto.JwtEcdsaKeyFormat;
	import com.google.crypto.tink.proto.JwtEcdsaPrivateKey;
	import com.google.crypto.tink.proto.JwtEcdsaPublicKey;
	import com.google.crypto.tink.proto.KeyData.KeyMaterialType;
	import com.google.crypto.tink.testing.TestUtil;
	import java.security.GeneralSecurityException;
	import junitparams.JUnitParamsRunner;
	import junitparams.Parameters;
	import org.junit.Test;
	import org.junit.runner.RunWith;

	/** Unit tests for EcdsaVerifyKeyManager. */
	@RunWith(JUnitParamsRunner.class)
	public final class JwtEcdsaVerifyKeyManagerTest {
	private final JwtEcdsaSignKeyManager signManager = new JwtEcdsaSignKeyManager();
	private final KeyTypeManager.KeyFactory<JwtEcdsaKeyFormat, JwtEcdsaPrivateKey> factory =
	signManager.keyFactory();
	private final JwtEcdsaVerifyKeyManager verifyManager = new JwtEcdsaVerifyKeyManager();

	private static Object[] parametersAlgo() {
	return new Object[] {JwtEcdsaAlgorithm.ES256, JwtEcdsaAlgorithm.ES384, JwtEcdsaAlgorithm.ES512};
	}

	@Test
	public void basics() throws Exception {
	assertThat(verifyManager.getKeyType())
	.isEqualTo("type.googleapis.com/google.crypto.tink.JwtEcdsaPublicKey");
	assertThat(verifyManager.getVersion()).isEqualTo(0);
	assertThat(verifyManager.keyMaterialType()).isEqualTo(KeyMaterialType.ASYMMETRIC_PUBLIC);
	}

	@Test
	public void validateKey_empty_throw() throws Exception {
	assertThrows(
	GeneralSecurityException.class,
	() -> verifyManager.validateKey(JwtEcdsaPublicKey.getDefaultInstance()));
	}

	@Test
	@Parameters(method = "parametersAlgo")
	public void validateKey_ok(JwtEcdsaAlgorithm algorithm) throws Exception {
	if (TestUtil.isTsan()) {
	// factory.createKey is too slow in Tsan.
	return;
	}
	JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();
	JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
	JwtEcdsaPublicKey publicKey = signManager.getPublicKey(privateKey);
	verifyManager.validateKey(publicKey);
	}

	@Test
	@Parameters(method = "parametersAlgo")
	public void createPrimitive_ok(JwtEcdsaAlgorithm algorithm) throws Exception {
	if (TestUtil.isTsan()) {
	// factory.createKey is too slow in Tsan.
	return;
	}
	JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();
	JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
	JwtEcdsaPublicKey publicKey = signManager.getPublicKey(privateKey);
	JwtPublicKeySign signer = signManager.getPrimitive(privateKey, JwtPublicKeySign.class);
	JwtPublicKeyVerify verifier = verifyManager.getPrimitive(publicKey, JwtPublicKeyVerify.class);
	RawJwt token = new RawJwt.Builder().build();
	JwtValidator validator = new JwtValidator.Builder().build();
	verifier.verifyAndDecode(signer.signAndEncode(token), validator);
	}

	@Test
	@Parameters(method = "parametersAlgo")
	public void createPrimitive_anotherKey_throw(JwtEcdsaAlgorithm algorithm) throws Exception {
	if (TestUtil.isTsan()) {
	// factory.createKey is too slow in Tsan.
	return;
	}
	JwtEcdsaKeyFormat keyFormat = JwtEcdsaKeyFormat.newBuilder().setAlgorithm(algorithm).build();

	JwtEcdsaPrivateKey privateKey = factory.createKey(keyFormat);
	// Create a different key.
	JwtEcdsaPublicKey publicKey = signManager.getPublicKey(factory.createKey(keyFormat));
	JwtPublicKeySign signer = signManager.getPrimitive(privateKey, JwtPublicKeySign.class);
	JwtPublicKeyVerify verifier = verifyManager.getPrimitive(publicKey, JwtPublicKeyVerify.class);
	RawJwt token = new RawJwt.Builder().build();
	JwtValidator validator = new JwtValidator.Builder().build();
	assertThrows(
	GeneralSecurityException.class,
	() -> verifier.verifyAndDecode(signer.signAndEncode(token), validator));
	}
	}