s.update(msg1a);
byte[] sig = s.sign();
if (!arrayEquals(sig1a, sig))
{
return new SimpleTestResult(false, "PSS Sign test expected " + new String(Hex.encode(sig1a)) + " got " + new String(Hex.encode(sig)));
}
s = Signature.getInstance("SHA1withRSAandMGF1", "BC");
s.initVerify(pubKey);
s.update(msg1a);
if (!s.verify(sig1a))
{
return new SimpleTestResult(false, "SHA1 signature verification failed");
}
s = Signature.getInstance("SHA1withRSAandMGF1", "BC");
s.setParameter(PSSParameterSpec.DEFAULT);
s.initVerify(pubKey);
s.update(msg1a);
if (!s.verify(sig1a))
{
return new SimpleTestResult(false, "SHA1 signature verification with default parameters failed");
}
AlgorithmParameters pss = s.getParameters();
if (!arrayEquals(pss.getEncoded(), new byte[] { 0x30, 0x00 }))
{
return new SimpleTestResult(false, "failed default encoding test.");
}
s = Signature.getInstance("SHA256withRSA/PSS", "BC");
s.initSign(privKey, new FixedRandom(slt1a));
s.update(msg1a);
sig = s.sign();
pss = s.getParameters();
if (!arrayEquals(sig1b, sig))
{
return new SimpleTestResult(false, "PSS Sign test expected " + new String(Hex.encode(sig1b)) + " got " + new String(Hex.encode(sig)));
}
s = Signature.getInstance("SHA256withRSAandMGF1", "BC");
s.setParameter(pss.getParameterSpec(PSSParameterSpec.class));
s.initVerify(pubKey);
s.update(msg1a);
if (!s.verify(sig1b))
{
return new SimpleTestResult(false, "SHA256 signature verification failed");
}
//
// 512 test -with zero salt length
//
s = Signature.getInstance("SHA512withRSAandMGF1", "BC");
s.setParameter(new PSSParameterSpec("SHA-512", "MGF1", new MGF1ParameterSpec("SHA-512"), 0, 1));
s.initSign(privKey);
s.update(msg1a);
sig = s.sign();
pss = s.getParameters();
if (!arrayEquals(sig1c, sig))
{
return new SimpleTestResult(false, "PSS Sign test expected " + new String(Hex.encode(sig1c)) + " got " + new String(Hex.encode(sig)));
}
s = Signature.getInstance("SHA512withRSAandMGF1", "BC");
s.setParameter(pss.getParameterSpec(PSSParameterSpec.class));
s.initVerify(pubKey);
s.update(msg1a);
if (!s.verify(sig1c))
{
return new SimpleTestResult(false, "SHA512 signature verification failed");
}
return new SimpleTestResult(true, getName() + ": Okay");
}
catch (Exception e)
{
return new SimpleTestResult(false, getName() + ": exception - " + e.toString(), e);
}
}