Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
PojavLauncherTeam
GitHub Repository: PojavLauncherTeam/openjdk-multiarch-jdk8u
 Path: blob/aarch64-shenandoah-jdk8u272-b10/jdk/test/sun/security/pkcs/pkcs7/PKCS7VerifyTest.java
38854 views
1
/*

2
 * Copyright (c) 2015, 2016, Oracle and/or its affiliates. All rights reserved.

3
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

4
 *

5
 * This code is free software; you can redistribute it and/or modify it

6
 * under the terms of the GNU General Public License version 2 only, as

7
 * published by the Free Software Foundation.

8
 *

9
 * This code is distributed in the hope that it will be useful, but WITHOUT

10
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

11
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

12
 * version 2 for more details (a copy is included in the LICENSE file that

13
 * accompanied this code).

14
 *

15
 * You should have received a copy of the GNU General Public License version

16
 * 2 along with this work; if not, write to the Free Software Foundation,

17
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

18
 *

19
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

20
 * or visit www.oracle.com if you need additional information or have any

21
 * questions.

22
 */

23


24
/*

25
 * @test

26
 * @bug 8048357

27
 * @summary Read signed data in one or more PKCS7 objects from individual files,

28
 * verify SignerInfos and certificate chain.

29
 * @run main/othervm -Djava.security.properties=${test.src}/reenable.jar.alg.props PKCS7VerifyTest PKCS7TEST.DSA.base64

30
 * @run main/othervm -Djava.security.properties=${test.src}/reenable.jar.alg.props PKCS7VerifyTest PKCS7TEST.DSA.base64 PKCS7TEST.SF

31
 */

32
import java.io.ByteArrayInputStream;

33
import java.io.File;

34
import java.io.FileInputStream;

35
import java.nio.file.Files;

36
import java.nio.file.Path;

37
import java.nio.file.Paths;

38
import java.security.Security;

39
import java.security.cert.X509Certificate;

40
import java.util.Base64;

41
import java.util.HashMap;

42
import java.util.Map;

43
import sun.security.pkcs.PKCS7;

44
import sun.security.pkcs.SignerInfo;

45


46
public class PKCS7VerifyTest {

47


48
    static final String TESTSRC = System.getProperty("test.src", ".");

49
    static final String FS = File.separator;

50
    static final String FILEPATH = TESTSRC + FS + "jarsigner" + FS + "META-INF"

51
            + FS;

52


53
    public static void main(String[] args) throws Exception {

54
        if (args.length == 0) {

55
            throw new RuntimeException("usage: java JarVerify <file1> <file2>");

56
        }

57


58
        // The command " java PKCS7VerifyTest file1 [file2] "

59
        // treats file1 as containing the DER encoding of a PKCS7 signed data

60
        // object. If file2 is absent, the program verifies that some signature

61
        // (SignerInfo) file1 correctly signs the data contained in the

62
        // ContentInfo component of the PKCS7 object encoded by file1. If file2

63
        // is present, the program verifies file1 contains a correct signature

64
        // for the contents of file2.

65


66
        PKCS7 pkcs7;

67
        byte[] data;

68


69
        // to avoid attaching binary DSA file, the DSA file was encoded

70
        // in Base64, decode encoded Base64 DSA file below

71
        byte[] base64Bytes = Files.readAllBytes(Paths.get(FILEPATH + args[0]));

72
        pkcs7 = new PKCS7(new ByteArrayInputStream(

73
                Base64.getMimeDecoder().decode(base64Bytes)));

74
        if (args.length < 2) {

75
            data = null;

76
        } else {

77
            data = Files.readAllBytes(Paths.get(FILEPATH + args[1]));

78


79
        }

80


81
        SignerInfo[] signerInfos = pkcs7.verify(data);

82


83
        if (signerInfos == null) {

84
            throw new RuntimeException("no signers verify");

85
        }

86
        System.out.println("Verifying SignerInfos:");

87
        for (SignerInfo signerInfo : signerInfos) {

88
            System.out.println(signerInfo.toString());

89
        }

90


91
        X509Certificate certs[] = pkcs7.getCertificates();

92


93
        HashMap<String, X509Certificate> certTable = new HashMap(certs.length);

94
        for (X509Certificate cert : certs) {

95
            certTable.put(cert.getSubjectDN().toString(), cert);

96
        }

97


98
        // try to verify all the certs

99
        for (Map.Entry<String, X509Certificate> entry : certTable.entrySet()) {

100


101
            X509Certificate cert = entry.getValue();

102
            X509Certificate issuerCert = certTable

103
                    .get(cert.getIssuerDN().toString());

104


105
            System.out.println("Subject: " + cert.getSubjectDN());

106
            if (issuerCert == null) {

107
                System.out.println("Issuer certificate not found");

108
            } else {

109
                System.out.println("Issuer:  " + cert.getIssuerDN());

110
                cert.verify(issuerCert.getPublicKey());

111
                System.out.println("Cert verifies.");

112
            }

113
            System.out.println();

114
        }

115
    }

116


117
}

118


119