1 /*
2 * Copyright (c) 2003, 2015, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation.
8 *
9 * This code is distributed in the hope that it will be useful, but WITHOUT
10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
12 * version 2 for more details (a copy is included in the LICENSE file that
13 * accompanied this code).
14 *
15 * You should have received a copy of the GNU General Public License version
16 * 2 along with this work; if not, write to the Free Software Foundation,
17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18 *
19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20 * or visit www.oracle.com if you need additional information or have any
21 * questions.
22 */
23
24 /*
25 * @test
26 * @library ..
27 * @bug 4891312 8074460
28 * @summary verify that modPow() not broken by the special case for 65537 (use -Dseed=X to set PRNG seed)
29 * @author Andreas Sterbenz
30 * @key randomness
31 */
32
33 import java.math.BigInteger;
34
35 import java.security.*;
36 import java.security.spec.*;
37
38 public class ModPow65537 {
39
40 public static void main(String[] args) throws Exception {
41 // SunRsaSign uses BigInteger internally
42 KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "SunRsaSign");
43 kpg.initialize(new RSAKeyGenParameterSpec(512, BigInteger.valueOf(65537)));
44 KeyPair kp = kpg.generateKeyPair();
45 testSigning(kp);
46
47 kpg.initialize(new RSAKeyGenParameterSpec(512, BigInteger.valueOf(65539)));
48 kp = kpg.generateKeyPair();
49 testSigning(kp);
50
51 kpg.initialize(new RSAKeyGenParameterSpec(512, BigInteger.valueOf(3)));
52 kp = kpg.generateKeyPair();
53 testSigning(kp);
54
55 // basic known answer test
56 BigInteger base = new BigInteger("19058071224156864789844466979330892664777520457048234786139035643344145635582");
57 BigInteger mod = new BigInteger("75554098474976067521257305210610421240510163914613117319380559667371251381587");
58 BigInteger exp1 = BigInteger.valueOf(65537);
59 BigInteger exp2 = BigInteger.valueOf(75537);
60 BigInteger exp3 = new BigInteger("13456870775607312149");
61
62 BigInteger res1 = new BigInteger("5770048609366563851320890693196148833634112303472168971638730461010114147506");
63 BigInteger res2 = new BigInteger("63446979364051087123350579021875958137036620431381329472348116892915461751531");
64 BigInteger res3 = new BigInteger("39016891919893878823999350081191675846357272199067075794096200770872982089502");
65
66 if (base.modPow(exp1, mod).equals(res1) == false) {
67 throw new Exception("Error using " + exp1);
68 }
69 if (base.modPow(exp2, mod).equals(res2) == false) {
70 throw new Exception("Error using " + exp2);
71 }
72 if (base.modPow(exp3, mod).equals(res3) == false) {
73 throw new Exception("Error using " + exp3);
74 }
75
76 System.out.println("Passed");
77 }
78
79 private static void testSigning(KeyPair kp) throws Exception {
80 System.out.println(kp.getPublic());
81 byte[] data = new byte[1024];
82 RandomSeed rndSeed = new RandomSeed(false);
83 System.out.println("Random number generator seed = " + rndSeed.getSeed());
84 rndSeed.getRandom().nextBytes(data);
85
86 Signature sig = Signature.getInstance("SHA1withRSA", "SunRsaSign");
87 sig.initSign(kp.getPrivate());
88 sig.update(data);
89 byte[] sigBytes = sig.sign();
90
91 sig.initVerify(kp.getPublic());
92 sig.update(data);
93 if (sig.verify(sigBytes) == false) {
94 throw new Exception("signature verification failed");
95 }
96 System.out.println("OK");
97 }
98
99 }