javax.crypto.AEADBadTagException Java Examples
The following examples show how to use
javax.crypto.AEADBadTagException.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: ChannelCrypterNettyTestBase.java From grpc-java with Apache License 2.0 | 6 votes |
|
@Test
public void replayMessage() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt = createFrameEncrypt(message);
client.encrypt(frameEncrypt.out, frameEncrypt.plain);
FrameDecrypt frameDecrypt1 = frameDecryptOfEncrypt(frameEncrypt);
FrameDecrypt frameDecrypt2 = frameDecryptOfEncrypt(frameEncrypt);
server.decrypt(frameDecrypt1.out, frameDecrypt1.tag, frameDecrypt1.ciphertext);
try {
server.decrypt(frameDecrypt2.out, frameDecrypt2.tag, frameDecrypt2.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().containsMatch(DECRYPTION_FAILURE_MESSAGE_RE);
}
}
Example #2
| Source File: ChannelCrypterNettyTestBase.java From grpc-nebula-java with Apache License 2.0 | 6 votes |
|
@Test
public void replayMessage() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt = createFrameEncrypt(message);
client.encrypt(frameEncrypt.out, frameEncrypt.plain);
FrameDecrypt frameDecrypt1 = frameDecryptOfEncrypt(frameEncrypt);
FrameDecrypt frameDecrypt2 = frameDecryptOfEncrypt(frameEncrypt);
server.decrypt(frameDecrypt1.out, frameDecrypt1.tag, frameDecrypt1.ciphertext);
try {
server.decrypt(frameDecrypt2.out, frameDecrypt2.tag, frameDecrypt2.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().contains(DECRYPTION_FAILURE_MESSAGE);
}
}
Example #3
| Source File: ChannelCrypterNettyTestBase.java From grpc-nebula-java with Apache License 2.0 | 6 votes |
|
@Test
public void skipMessage() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt1 = createFrameEncrypt(message);
client.encrypt(frameEncrypt1.out, frameEncrypt1.plain);
FrameEncrypt frameEncrypt2 = createFrameEncrypt(message);
client.encrypt(frameEncrypt2.out, frameEncrypt2.plain);
FrameDecrypt frameDecrypt = frameDecryptOfEncrypt(frameEncrypt2);
try {
client.decrypt(frameDecrypt.out, frameDecrypt.tag, frameDecrypt.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().contains(DECRYPTION_FAILURE_MESSAGE);
}
}
Example #4
| Source File: CipherInputStreamExceptions.java From openjdk-jdk8u-backup with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #5
| Source File: CipherInputStreamExceptions.java From dragonwell8_jdk with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #6
| Source File: CipherInputStreamExceptions.java From TencentKona-8 with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #7
| Source File: CipherInputStreamExceptions.java From jdk8u60 with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #8
| Source File: CipherInputStreamExceptions.java From openjdk-jdk8u with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #9
| Source File: CipherInputStreamExceptions.java From openjdk-jdk9 with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #10
| Source File: CipherInputStreamExceptions.java From jdk8u-jdk with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #11
| Source File: CipherInputStreamExceptions.java From hottub with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #12
| Source File: CipherInputStreamExceptions.java From jdk8u_jdk with GNU General Public License v2.0 | 6 votes |
|
static void gcm_oneReadByteCorrupt() throws Exception {
System.out.println("Running gcm_oneReadByteCorrupt test");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
in.read();
System.out.println(" Fail. No exception thrown.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
}
}
Example #13
| Source File: KMSEncryptionProvider.java From credhub with Apache License 2.0 | 6 votes |
|
@Override
public String decrypt(final EncryptionKey key, final byte[] encryptedValue, final byte[] nonce) throws Exception {
final DecryptRequest request = DecryptRequest.newBuilder().setCipher(ByteString.copyFrom(encryptedValue)).build();
final DecryptResponse response;
try {
response = blockingStub.decrypt(request);
} catch (final StatusRuntimeException e) {
if (e.getStatus().getCode() == Status.Code.INVALID_ARGUMENT) {
throw new AEADBadTagException(e.getMessage());
}
LOGGER.error("Error for request: " + request.getCipher(), e);
throw e;
}
return response.getPlain().toString(CHARSET);
}
Example #14
| Source File: ChannelCrypterNettyTestBase.java From grpc-java with Apache License 2.0 | 6 votes |
|
@Test
public void skipMessage() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt1 = createFrameEncrypt(message);
client.encrypt(frameEncrypt1.out, frameEncrypt1.plain);
FrameEncrypt frameEncrypt2 = createFrameEncrypt(message);
client.encrypt(frameEncrypt2.out, frameEncrypt2.plain);
FrameDecrypt frameDecrypt = frameDecryptOfEncrypt(frameEncrypt2);
try {
client.decrypt(frameDecrypt.out, frameDecrypt.tag, frameDecrypt.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().containsMatch(DECRYPTION_FAILURE_MESSAGE_RE);
}
}
Example #15
| Source File: TsiTest.java From grpc-nebula-java with Apache License 2.0 | 5 votes |
|
/** Test corrupted tag. */
public static void corruptedTagTest(Handshakers handshakers, RegisterRef ref)
throws GeneralSecurityException {
performHandshake(DEFAULT_TRANSPORT_BUFFER_SIZE, handshakers);
TsiFrameProtector sender = handshakers.getClient().createFrameProtector(alloc);
TsiFrameProtector receiver = handshakers.getServer().createFrameProtector(alloc);
String message = "hello world";
ByteBuf plaintextBuffer = Unpooled.wrappedBuffer(message.getBytes(UTF_8));
final List<ByteBuf> protectOut = new ArrayList<>();
List<Object> unprotectOut = new ArrayList<>();
sender.protectFlush(
Collections.singletonList(plaintextBuffer),
new Consumer<ByteBuf>() {
@Override
public void accept(ByteBuf buf) {
protectOut.add(buf);
}
},
alloc);
assertThat(protectOut.size()).isEqualTo(1);
ByteBuf protect = ref.register(protectOut.get(0));
int tagIdx = protect.writerIndex() - 1;
protect.setByte(tagIdx, protect.getByte(tagIdx) + 1);
try {
receiver.unprotect(protect, unprotectOut, alloc);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().contains(DECRYPTION_FAILURE_RE);
}
sender.destroy();
receiver.destroy();
}
Example #16
| Source File: ChannelCrypterNettyTestBase.java From grpc-java with Apache License 2.0 | 5 votes |
|
@Test
public void reflection() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt = createFrameEncrypt(message);
client.encrypt(frameEncrypt.out, frameEncrypt.plain);
FrameDecrypt frameDecrypt = frameDecryptOfEncrypt(frameEncrypt);
try {
client.decrypt(frameDecrypt.out, frameDecrypt.tag, frameDecrypt.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().containsMatch(DECRYPTION_FAILURE_MESSAGE_RE);
}
}
Example #17
| Source File: FakeChannelCrypter.java From grpc-java with Apache License 2.0 | 5 votes |
|
@Override
public void decrypt(ByteBuf out, ByteBuf tag, List<ByteBuf> ciphertext)
throws GeneralSecurityException {
checkState(!destroyCalled);
for (ByteBuf buf : ciphertext) {
out.writeBytes(buf);
}
while (tag.isReadable()) {
if (tag.readByte() != TAG_BYTE) {
throw new AEADBadTagException("Tag mismatch!");
}
}
}
Example #18
| Source File: LunaKeyProxyTest.java From credhub with Apache License 2.0 | 5 votes |
|
@Test
public void isMatchingCanary_whenDecryptThrowsAEADBadTagException_returnsFalse() throws Exception {
subject = new LunaKeyProxy(encryptionKey,
new PasswordEncryptionService(new TestPasswordKeyProxyFactory()) {
@Override
public String decrypt(final Key key, final byte[] encryptedValue, final byte[] nonce)
throws Exception {
throw new AEADBadTagException();
}
});
assertThat(subject.matchesCanary(mock(EncryptionKeyCanary.class)), equalTo(false));
}
Example #19
| Source File: EncryptionKeyCanaryMapperTest.java From credhub with Apache License 2.0 | 5 votes |
|
@Test
public void mapUuidsToKeys_whenTheActiveKeyIsTheOnlyKey_whenThereIsNoMatchingCanaryInTheDatabase_whenDecryptingWithTheWrongKeyRaisesAnInternalException_itShouldCreateACanaryForTheKey()
throws Exception {
when(encryptionKeysConfiguration.isKeyCreationEnabled()).thenReturn(true);
when(encryptionKeysConfiguration.getProviders().get(0).getKeys()).thenReturn(asList(activeKeyData));
when(encryptionKeysConfiguration.getProviders()).thenReturn(asList(activeProvider));
final EncryptionKeyCanary nonMatchingCanary = new EncryptionKeyCanary();
nonMatchingCanary.setUuid(UUID.randomUUID());
nonMatchingCanary.setEncryptedCanaryValue("fake-non-matching-encrypted-value".getBytes(UTF_8));
nonMatchingCanary.setNonce("fake-non-matching-nonce".getBytes(UTF_8));
when(encryptionKeyCanaryDataService.findAll())
.thenReturn(asArrayList(nonMatchingCanary));
when(encryptionService
.decrypt(activeKey, nonMatchingCanary.getEncryptedCanaryValue(),
nonMatchingCanary.getNonce()))
.thenThrow(new AEADBadTagException());
when(encryptionKeyCanaryDataService.save(any(EncryptionKeyCanary.class)))
.thenReturn(activeKeyCanary);
when(encryptionService.encrypt(any(EncryptionKey.class), eq(CANARY_VALUE))).thenReturn(new EncryptedValue(
null,
"fake-encrypted-value",
"fake-nonce"));
subject = new EncryptionKeyCanaryMapper(encryptionKeyCanaryDataService,
encryptionKeysConfiguration, timedRetry, providerFactory);
subject.mapUuidsToKeys(keySet);
assertCanaryValueWasEncryptedAndSavedToDatabase();
}
Example #20
| Source File: TsiTest.java From grpc-nebula-java with Apache License 2.0 | 5 votes |
|
/** Test reflected ciphertext. */
public static void reflectedCiphertextTest(Handshakers handshakers, RegisterRef ref)
throws GeneralSecurityException {
performHandshake(DEFAULT_TRANSPORT_BUFFER_SIZE, handshakers);
TsiFrameProtector sender = handshakers.getClient().createFrameProtector(alloc);
TsiFrameProtector receiver = handshakers.getServer().createFrameProtector(alloc);
String message = "hello world";
ByteBuf plaintextBuffer = Unpooled.wrappedBuffer(message.getBytes(UTF_8));
final List<ByteBuf> protectOut = new ArrayList<>();
List<Object> unprotectOut = new ArrayList<>();
sender.protectFlush(
Collections.singletonList(plaintextBuffer),
new Consumer<ByteBuf>() {
@Override
public void accept(ByteBuf buf) {
protectOut.add(buf);
}
},
alloc);
assertThat(protectOut.size()).isEqualTo(1);
ByteBuf protect = ref.register(protectOut.get(0));
try {
sender.unprotect(protect.slice(), unprotectOut, alloc);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().contains(DECRYPTION_FAILURE_RE);
}
sender.destroy();
receiver.destroy();
}
Example #21
| Source File: TsiTest.java From grpc-java with Apache License 2.0 | 5 votes |
|
/** Test reflected ciphertext. */
public static void reflectedCiphertextTest(Handshakers handshakers, RegisterRef ref)
throws GeneralSecurityException {
performHandshake(DEFAULT_TRANSPORT_BUFFER_SIZE, handshakers);
TsiFrameProtector sender = handshakers.getClient().createFrameProtector(alloc);
TsiFrameProtector receiver = handshakers.getServer().createFrameProtector(alloc);
String message = "hello world";
ByteBuf plaintextBuffer = Unpooled.wrappedBuffer(message.getBytes(UTF_8));
final List<ByteBuf> protectOut = new ArrayList<>();
List<Object> unprotectOut = new ArrayList<>();
sender.protectFlush(
Collections.singletonList(plaintextBuffer),
new Consumer<ByteBuf>() {
@Override
public void accept(ByteBuf buf) {
protectOut.add(buf);
}
},
alloc);
assertThat(protectOut.size()).isEqualTo(1);
ByteBuf protect = ref.register(protectOut.get(0));
try {
sender.unprotect(protect.slice(), unprotectOut, alloc);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().containsMatch(DECRYPTION_FAILURE_RE);
}
sender.destroy();
receiver.destroy();
}
Example #22
| Source File: FakeChannelCrypter.java From grpc-nebula-java with Apache License 2.0 | 5 votes |
|
@Override
public void decrypt(ByteBuf out, ByteBuf tag, List<ByteBuf> ciphertext)
throws GeneralSecurityException {
checkState(!destroyCalled);
for (ByteBuf buf : ciphertext) {
out.writeBytes(buf);
}
while (tag.isReadable()) {
if (tag.readByte() != TAG_BYTE) {
throw new AEADBadTagException("Tag mismatch!");
}
}
}
Example #23
| Source File: CipherInputStreamExceptions.java From jdk8u_jdk with GNU General Public License v2.0 | 5 votes |
|
static void gcm_AEADBadTag() throws Exception {
Cipher c;
byte[] read = new byte[200];
System.out.println("Running gcm_AEADBadTag");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
int size = in.read(read);
throw new RuntimeException("Fail: CipherInputStream.read() " +
"returned " + size + " and didn't throw an exception.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
} finally {
in.close();
}
}
Example #24
| Source File: GCMParameterSpecTest.java From jdk8u_jdk with GNU General Public License v2.0 | 5 votes |
|
public static void main(String[] args) throws Exception {
newGCMParameterSpecFail(-1, bytes);
newGCMParameterSpecFail(128, null);
newGCMParameterSpecPass(128, bytes);
newGCMParameterSpecFail(-1, bytes, 2, 4);
newGCMParameterSpecFail(128, null, 2, 4);
newGCMParameterSpecFail(128, bytes, -2, 4);
newGCMParameterSpecFail(128, bytes, 2, -4);
newGCMParameterSpecFail(128, bytes, 2, 15); // one too many
newGCMParameterSpecPass(128, bytes, 2, 14); // ok.
newGCMParameterSpecPass(96, bytes, 4, 4);
newGCMParameterSpecPass(96, bytes, 0, 0);
// Might as well check the Exception constructors.
try {
new AEADBadTagException();
new AEADBadTagException("Bad Tag Seen");
} catch (Exception e) {
e.printStackTrace();
failed++;
}
if (failed != 0) {
throw new Exception("Test(s) failed");
}
}
Example #25
| Source File: GCMParameterSpecTest.java From openjdk-8 with GNU General Public License v2.0 | 5 votes |
|
public static void main(String[] args) throws Exception {
newGCMParameterSpecFail(-1, bytes);
newGCMParameterSpecFail(128, null);
newGCMParameterSpecPass(128, bytes);
newGCMParameterSpecFail(-1, bytes, 2, 4);
newGCMParameterSpecFail(128, null, 2, 4);
newGCMParameterSpecFail(128, bytes, -2, 4);
newGCMParameterSpecFail(128, bytes, 2, -4);
newGCMParameterSpecFail(128, bytes, 2, 15); // one too many
newGCMParameterSpecPass(128, bytes, 2, 14); // ok.
newGCMParameterSpecPass(96, bytes, 4, 4);
newGCMParameterSpecPass(96, bytes, 0, 0);
// Might as well check the Exception constructors.
try {
new AEADBadTagException();
new AEADBadTagException("Bad Tag Seen");
} catch (Exception e) {
e.printStackTrace();
failed++;
}
if (failed != 0) {
throw new Exception("Test(s) failed");
}
}
Example #26
| Source File: GCMParameterSpecTest.java From openjdk-8-source with GNU General Public License v2.0 | 5 votes |
|
public static void main(String[] args) throws Exception {
newGCMParameterSpecFail(-1, bytes);
newGCMParameterSpecFail(128, null);
newGCMParameterSpecPass(128, bytes);
newGCMParameterSpecFail(-1, bytes, 2, 4);
newGCMParameterSpecFail(128, null, 2, 4);
newGCMParameterSpecFail(128, bytes, -2, 4);
newGCMParameterSpecFail(128, bytes, 2, -4);
newGCMParameterSpecFail(128, bytes, 2, 15); // one too many
newGCMParameterSpecPass(128, bytes, 2, 14); // ok.
newGCMParameterSpecPass(96, bytes, 4, 4);
newGCMParameterSpecPass(96, bytes, 0, 0);
// Might as well check the Exception constructors.
try {
new AEADBadTagException();
new AEADBadTagException("Bad Tag Seen");
} catch (Exception e) {
e.printStackTrace();
failed++;
}
if (failed != 0) {
throw new Exception("Test(s) failed");
}
}
Example #27
| Source File: ChannelCrypterNettyTestBase.java From grpc-nebula-java with Apache License 2.0 | 5 votes |
|
@Test
public void reflection() throws GeneralSecurityException {
String message = "Hello world";
FrameEncrypt frameEncrypt = createFrameEncrypt(message);
client.encrypt(frameEncrypt.out, frameEncrypt.plain);
FrameDecrypt frameDecrypt = frameDecryptOfEncrypt(frameEncrypt);
try {
client.decrypt(frameDecrypt.out, frameDecrypt.tag, frameDecrypt.ciphertext);
fail("Exception expected");
} catch (AEADBadTagException ex) {
assertThat(ex).hasMessageThat().contains(DECRYPTION_FAILURE_MESSAGE);
}
}
Example #28
| Source File: CipherInputStreamExceptions.java From hottub with GNU General Public License v2.0 | 5 votes |
|
static void gcm_AEADBadTag() throws Exception {
Cipher c;
byte[] read = new byte[200];
System.out.println("Running gcm_AEADBadTag");
// Encrypt 100 bytes with AES/GCM/PKCS5Padding
byte[] ct = encryptedText("GCM", 100);
// Corrupt the encrypted message
ct = corruptGCM(ct);
// Create stream for decryption
CipherInputStream in = getStream("GCM", ct);
try {
int size = in.read(read);
throw new RuntimeException("Fail: CipherInputStream.read() " +
"returned " + size + " and didn't throw an exception.");
} catch (IOException e) {
Throwable ec = e.getCause();
if (ec instanceof AEADBadTagException) {
System.out.println(" Pass.");
} else {
System.out.println(" Fail: " + ec.getMessage());
throw new RuntimeException(ec);
}
} finally {
in.close();
}
}
Example #29
| Source File: GCMParameterSpecTest.java From hottub with GNU General Public License v2.0 | 5 votes |
|
public static void main(String[] args) throws Exception {
newGCMParameterSpecFail(-1, bytes);
newGCMParameterSpecFail(128, null);
newGCMParameterSpecPass(128, bytes);
newGCMParameterSpecFail(-1, bytes, 2, 4);
newGCMParameterSpecFail(128, null, 2, 4);
newGCMParameterSpecFail(128, bytes, -2, 4);
newGCMParameterSpecFail(128, bytes, 2, -4);
newGCMParameterSpecFail(128, bytes, 2, 15); // one too many
newGCMParameterSpecPass(128, bytes, 2, 14); // ok.
newGCMParameterSpecPass(96, bytes, 4, 4);
newGCMParameterSpecPass(96, bytes, 0, 0);
// Might as well check the Exception constructors.
try {
new AEADBadTagException();
new AEADBadTagException("Bad Tag Seen");
} catch (Exception e) {
e.printStackTrace();
failed++;
}
if (failed != 0) {
throw new Exception("Test(s) failed");
}
}
Example #30
| Source File: ExternalKeyProxyTest.java From credhub with Apache License 2.0 | 5 votes |
|
@Test
public void matchesCanary_shouldReturnFalse_IfTheInternalKeyWasWrong() throws Exception {
when(encryptionProvider.decrypt(any(), any(), any())).thenThrow(AEADBadTagException.class);
subject = new ExternalKeyProxy(encryptionKeyMetadata, encryptionProvider);
assertFalse(subject.matchesCanary(encryptionKeyCanary));
}
