MCL/sf/os/security: crypto/weakcryptospi/source/pkcs12kdf/GenTestDKs.java@cd501b96611d (annotated)

19 cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	1	/*
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	2	* Copyright (c) 1998-2009 Nokia Corporation and/or its subsidiary(-ies).
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	3	* All rights reserved.
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	4	* This component and the accompanying materials are made available
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	5	* under the terms of the License "Eclipse Public License v1.0"
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	6	* which accompanies this distribution, and is available
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	7	* at the URL "http://www.eclipse.org/legal/epl-v10.html".
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	8	*
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	9	* Initial Contributors:
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	10	* Nokia Corporation - initial contribution.
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	11	*
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	12	* Contributors:
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	13	*
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	14	* Description:
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	15	* This program generates keys with Bouncy Castle for compatibility testing.
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	16	*
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	17	*/
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	18
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	19
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	20	import java.security.SecureRandom;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	21	import org.bouncycastle.crypto.PBEParametersGenerator;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	22	import org.bouncycastle.crypto.digests.SHA1Digest;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	23	import org.bouncycastle.crypto.generators.PKCS12ParametersGenerator;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	24	import org.bouncycastle.crypto.params.KeyParameter;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	25
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	26	public class GenTestDKs
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	27	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	28	public static void main(String[] args)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	29	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	30	PKCS12ParametersGenerator pgen = new PKCS12ParametersGenerator(new SHA1Digest());
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	31
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	32	// SB.4: key lengths for defined OIDs
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	33	// (168 for triple DES will first exercise chaining.)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	34	final int[] keyLens = {40, 128, 168, 368};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	35
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	36	// SB.4 iteration count is recommended to be 1024 or more
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	37	final int[] iterCounts = {1, 2, 4, 8, 128, 1024, 1536, 2048};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	38
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	39	// SB.4 salt should be same length as hash function output
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	40	// (=160 bits for SHA1.)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	41	byte[][] salts = new byte[3][];
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	42	salts[0] = new byte[] {'S', 'A', 'L', 'T'};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	43	System.out.println("4 byte salt");
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	44	printByteArray(salts[0]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	45
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	46	// calls to nextBytes() are only executed once
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	47	/* SecureRandom sr;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	48	try { sr = SecureRandom.getInstance("SHA1PRNG", "SUN"); }
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	49	catch (Exception e)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	50	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	51	System.err.println("UNABLE TO GET RANDOM SOURCE");
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	52	return;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	53	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	54	*/
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	55	// salts[1] = new byte[160 / 8];
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	56	// sr.nextBytes(salts[1]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	57	salts[1] = new byte[]
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	58	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	59	(byte) 0x1d, (byte) 0x56, (byte) 0x50, (byte) 0x78,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	60	(byte) 0xc3, (byte) 0x50, (byte) 0x6f, (byte) 0x89,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	61	(byte) 0xbd, (byte) 0xa7, (byte) 0x3b, (byte) 0xb6,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	62	(byte) 0xe3, (byte) 0xe5, (byte) 0xb8, (byte) 0xa3,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	63	(byte) 0x68, (byte) 0x3d, (byte) 0xd3, (byte) 0x62
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	64	};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	65	System.out.println("20 byte salt (same size as SHA1 output)");
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	66	printByteArray(salts[1]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	67
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	68	// salts[2] = new byte[200 / 8];
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	69	// sr.nextBytes(salts[2]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	70	salts[2] = new byte[]
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	71	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	72	(byte) 0xe2, (byte) 0x2c, (byte) 0x7b, (byte) 0x03,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	73	(byte) 0x16, (byte) 0x3a, (byte) 0xe5, (byte) 0x47,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	74	(byte) 0xf8, (byte) 0x23, (byte) 0x9d, (byte) 0xa4,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	75	(byte) 0x0d, (byte) 0x6f, (byte) 0x46, (byte) 0xd7,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	76	(byte) 0x9e, (byte) 0xa3, (byte) 0xc6, (byte) 0xff,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	77	(byte) 0xb3, (byte) 0xf0, (byte) 0x4e, (byte) 0xbe,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	78	(byte) 0x61
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	79	};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	80	System.out.println("25 byte salt");
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	81	printByteArray(salts[2]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	82
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	83	final String passwds[] = {"0000", "0001", "PSWD", "password", "abcdefghijklmnopqrstuvwxyz"};
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	84
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	85	for (int keyLenIdx = 0; keyLenIdx < keyLens.length; ++keyLenIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	86	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	87	for (int iterIdx = 0; iterIdx < iterCounts.length; ++iterIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	88	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	89	for (int saltIdx = 0; saltIdx < salts.length; ++saltIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	90	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	91	for (int pwdIdx = 0; pwdIdx < passwds.length; ++pwdIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	92	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	93	testKey(pgen, keyLens[keyLenIdx], iterCounts[iterIdx], passwds[pwdIdx], salts[saltIdx]);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	94	} // for (int pwdIdx = 0; pwdIdx < passwds.length; ++pwdIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	95	} // for (int saltIdx = 0; saltIdx < salts.length; ++saltIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	96	} // for (int iterIdx = 0; iterIdx < iterCounts.length; ++iterIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	97	} // for (int keyLenIdx = 0; keyLenIdx < keyLens.length; ++keyLenIdx)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	98	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	99
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	100	private static void testKey(
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	101	PKCS12ParametersGenerator pgen,
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	102	int keyLen, int iterCount, String password, byte[] salt)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	103	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	104	System.out.println(
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	105	"key len = " + keyLen + ", iter count = " + iterCount
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	106	+ ", password = \"" + password + "\", salt len = " + salt.length);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	107
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	108	char[] pwChars = password.toCharArray();
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	109	byte[] pwBytes = PBEParametersGenerator.PKCS12PasswordToBytes(pwChars);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	110
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	111	pgen.init(pwBytes, salt, iterCount);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	112	KeyParameter kp = (KeyParameter) pgen.generateDerivedParameters(keyLen);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	113	printByteArray(kp.getKey());
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	114	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	115
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	116	private static void printByteArray(byte[] a)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	117	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	118	final int BLOCK_SIZE = 16;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	119	int keyLen = a.length;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	120	int rowCount = keyLen / BLOCK_SIZE;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	121	if ((keyLen % BLOCK_SIZE) != 0)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	122	++rowCount;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	123
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	124	for (int row = 0; row < rowCount; ++row)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	125	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	126	int start = row * BLOCK_SIZE;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	127	int end = Math.min(start + BLOCK_SIZE, keyLen);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	128
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	129	StringBuffer line = new StringBuffer("[" + hexStr(start, 4) + "]");
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	130
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	131	for (int i = start; i < end; ++i)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	132	line.append(" " + hexStr(a[i], 2));
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	133	System.out.println(line);
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	134	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	135	System.out.println();
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	136	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	137
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	138	private static String hexStr(int val, int width)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	139	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	140	StringBuffer result = new StringBuffer();
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	141	while (--width >= 0)
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	142	{
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	143	int bitPos = 4 * width;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	144	int nybble = (val & (0xf << bitPos)) >> bitPos;
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	145	result.append(Integer.toHexString(nybble));
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	146	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	147
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	148	return result.toString();
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	149	}
cd501b96611d Revision: 200945 Mikko Sunikka <mikko.sunikka@nokia.com> parents: diff changeset	150	}

author	Mikko Sunikka <mikko.sunikka@nokia.com>
	Fri, 06 Nov 2009 13:21:00 +0200
changeset 19	cd501b96611d
permissions	-rw-r--r--