ttomcat-1778514358873.zip-extract/apache-tomcat-11.0.18-src/test/org/apache/catalina/realm/TestSecretKeyCredentialHandler.java

/* * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements. See the NOTICE file distributed with * this work for additional information regarding copyright ownership. * The ASF licenses this file to You under the Apache License, Version 2.0 * (the "License"); you may not use this file except in compliance with * the License. You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.apache.catalina.realm; import java.security.NoSuchAlgorithmException; import org.junit.Assert; import org.junit.Test; public class TestSecretKeyCredentialHandler { private static final String[] ALGORITHMS = { "PBKDF2WithHmacSHA1", "PBEWithMD5AndDES" }; private static final String[] PASSWORDS = { "password", "$!&#%!%@$#@*^$%&%%#!!*%$%&#@!^" }; private static final int[] KEYLENGTHS = { 8, 111, 256 }; private static final int[] SALTLENGTHS = { 1, 7, 12, 20 }; private static final int[] ITERATIONS = { 1, 2111, 10000 }; @Test public void testGeneral() throws Exception { for (String digest : ALGORITHMS) { for (String password : PASSWORDS) { for (int saltLength : SALTLENGTHS) { for (int iterations : ITERATIONS) { for (int keyLength : KEYLENGTHS) { doTest(password, digest, saltLength, iterations, keyLength, true); } } } } } } @Test public void testZeroSalt() throws NoSuchAlgorithmException { doTest(PASSWORDS[0], ALGORITHMS[0], 0, ITERATIONS[0], KEYLENGTHS[0], false); } @Test public void testZeroIterations() throws NoSuchAlgorithmException { doTest(PASSWORDS[0], ALGORITHMS[0], SALTLENGTHS[0], 0, KEYLENGTHS[0], false); } @Test public void testZeroKeyLength() throws NoSuchAlgorithmException { doTest(PASSWORDS[0], ALGORITHMS[0], SALTLENGTHS[0], ITERATIONS[0], 0, false); } private void doTest(String password, String digest, int saltLength, int iterations, int keyLength, boolean expectMatch) throws NoSuchAlgorithmException { SecretKeyCredentialHandler pbech = new SecretKeyCredentialHandler(); SecretKeyCredentialHandler verifier = new SecretKeyCredentialHandler(); pbech.setAlgorithm(digest); pbech.setIterations(iterations); pbech.setSaltLength(saltLength); pbech.setKeyLength(keyLength); verifier.setAlgorithm(digest); String storedCredential = pbech.mutate(password); if (expectMatch) { Assert.assertTrue( "[" + digest + "] [" + saltLength + "] [" + iterations + "] [" + keyLength + "] [" + password + "] [" + storedCredential + "]", verifier.matches(password, storedCredential)); } else { Assert.assertFalse( "[" + digest + "] [" + saltLength + "] [" + iterations + "] [" + keyLength + "] [" + password + "] [" + storedCredential + "]", verifier.matches(password, storedCredential)); } } }