Package org.xbill.DNS

Source Code of org.xbill.DNS.DNSSECWithLunaProviderTest

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
package org.xbill.DNS;

import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.Security;
import java.security.Signature;

import junit.framework.TestCase;

import org.xbill.DNS.DNSSEC.Algorithm;

import com.chrysalisits.crypto.LunaJCAProvider;
import com.chrysalisits.crypto.LunaTokenManager;
import com.chrysalisits.cryptox.LunaJCEProvider;

public class DNSSECWithLunaProviderTest extends TestCase {

  private static final String SIGNATURE_ALGORITHM = "SHA1withRSA";
  private static final String KEY_ALGORITHM = "RSA";
  int algorithm = Algorithm.RSASHA1;
  String partitionName = "dns";
  String partitionPassword = "xX0x-XXXX-XxXx-xXxX";
  LunaTokenManager tokenManager = LunaTokenManager.getInstance();
  String lunaJCEProvider = "LunaJCEProvider";
  String lunaJCAProvider = "LunaJCAProvider";
  byte[] toSign = "The quick brown fox jumped over the lazy dog.".getBytes();

  public void setUp() {
    Security.addProvider(new LunaJCEProvider());
    Security.addProvider(new LunaJCAProvider());
    tokenManager.Login(partitionName, partitionPassword);
  }

  public void tearDown() {
    tokenManager.Logout();
  }

  public void testSignHSM() throws Exception {

    KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance(KEY_ALGORITHM, lunaJCAProvider);
    keyPairGenerator.initialize(512);
    KeyPair keyPair = keyPairGenerator.generateKeyPair();

    Signature signer = Signature.getInstance(SIGNATURE_ALGORITHM, lunaJCAProvider);
    signer.initSign(keyPair.getPrivate());
    signer.update(toSign);
    byte[] signature = signer.sign();
    assertNotNull(signature);

    // verify the signature
    Signature verifier = Signature.getInstance(SIGNATURE_ALGORITHM, lunaJCAProvider);
    verifier.initVerify(keyPair.getPublic());
    verifier.update(toSign);
    boolean verify = verifier.verify(signature);
    assertTrue(verify);

  }

  public void testSignWithDNSSECAndHSM() throws Exception {

    // generate a signature
    KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance(KEY_ALGORITHM, lunaJCAProvider);
    keyPairGenerator.initialize(512);
    KeyPair keyPair = keyPairGenerator.generateKeyPair();
    byte[] signature = DNSSEC.sign(keyPair.getPrivate(), keyPair.getPublic(), algorithm, toSign, lunaJCAProvider);
    assertNotNull(signature);

    // verify the signature
    Signature verifier = Signature.getInstance(DNSSEC.algString(algorithm), lunaJCAProvider);
    verifier.initVerify(keyPair.getPublic());
    verifier.update(toSign);
    boolean verify = verifier.verify(signature);
    assertTrue(verify);
  }

  public void testSignWithDNSSECAndSoftware() throws Exception {

    // generate a signature
    KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance(KEY_ALGORITHM);
    keyPairGenerator.initialize(512);
    KeyPair keyPair = keyPairGenerator.generateKeyPair();
    byte[] signature = DNSSEC.sign(keyPair.getPrivate(), keyPair.getPublic(), algorithm, toSign);
    assertNotNull(signature);

    // verify the signature
    Signature verifier = Signature.getInstance(DNSSEC.algString(algorithm));
    verifier.initVerify(keyPair.getPublic());
    verifier.update(toSign);
    boolean verify = verifier.verify(signature);
    assertTrue(verify);
  }
}
TOP

Related Classes of org.xbill.DNS.DNSSECWithLunaProviderTest

  • com.chrysalisits.crypto.LunaJCAProvider
  • com.chrysalisits.cryptox.LunaJCEProvider
  • java.security.Signature
  • java.security.KeyPair
  • java.security.KeyPairGenerator
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.