add tests for DER and JOSE signatures

lbalmaceda · lbalmaceda · commit 81328c1bff5d · 2016-11-07T12:38:10.000-03:00
diff --git a/lib/src/main/java/com/auth0/jwtdecodejava/algorithms/ECDSAAlgorithm.java b/lib/src/main/java/com/auth0/jwtdecodejava/algorithms/ECDSAAlgorithm.java
@@ -46,7 +46,7 @@ public void verify(String[] jwtParts) throws SignatureVerificationException {
     private boolean isDERSignature(byte[] signature) {
         // DER Structure: http://crypto.stackexchange.com/a/1797
         // Should begin with 0x30 and have exactly the expected length
-        return signature[0] == 0x30 && signature.length == ecNumberSize * 2;
+        return signature[0] == 0x30 && signature.length != ecNumberSize * 2;
     }
 
     private byte[] JOSEToDER(byte[] joseSignature) throws SignatureException {
diff --git a/lib/src/test/java/com/auth0/jwtdecodejava/algorithms/ECDSAAlgorithmTest.java b/lib/src/test/java/com/auth0/jwtdecodejava/algorithms/ECDSAAlgorithmTest.java
@@ -23,9 +23,20 @@ public class ECDSAAlgorithmTest {
     @Rule
     public ExpectedException exception = ExpectedException.none();
 
+    //JOSE Signatures obtained using Node 'jwa' lib: https://github.com/brianloveswords/node-jwa
+    //DER Signatures obtained from source JOSE signature using 'ecdsa-sig-formatter' lib: https://github.com/Brightspace/node-ecdsa-sig-formatter
+    
     @Test
-    public void shouldPassECDSA256Verification() throws Exception {
-        String jwt = "eyJhbGciOiJFUzI1NiJ9.eyJpc3MiOiJhdXRoMCJ9.W9qfN1b80B9hnMo49WL8THrOsf1vEjOhapeFemPMGySzxTcgfyudS5esgeBTO908X5SLdAr5jMwPUPBs9b6nNg";
+    public void shouldPassECDSA256VerificationWithJOSESignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzI1NiJ9.eyJpc3MiOiJhdXRoMCJ9.4iVk3-Y0v4RT4_9IaQlp-8dZ_4fsTzIylgrPTDLrEvTHBTyVS3tgPbr2_IZfLETtiKRqCg0aQ5sh9eIsTTwB1g";
+        PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_256, "EC");
+        Algorithm algorithm = Algorithm.ECDSA256(key);
+        algorithm.verify(jwt.split("\\."));
+    }
+
+    @Test
+    public void shouldPassECDSA256VerificationWithDERSignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzI1NiJ9.eyJpc3MiOiJhdXRoMCJ9.MEYCIQDiJWTf5jS/hFPj/0hpCWn7x1n/h+xPMjKWCs9MMusS9AIhAMcFPJVLe2A9uvb8hl8sRO2IpGoKDRpDmyH14ixNPAHW";
         PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_256, "EC");
         Algorithm algorithm = Algorithm.ECDSA256(key);
         algorithm.verify(jwt.split("\\."));
@@ -41,8 +52,16 @@ public void shouldFailECDSA256VerificationWithInvalidPublicKey() throws Exceptio
     }
 
     @Test
-    public void shouldPassECDSA384Verification() throws Exception {
-        String jwt = "eyJhbGciOiJFUzM4NCJ9.eyJpc3MiOiJhdXRoMCJ9._k5h1KyO-NE0R2_HAw0-XEc0bGT5atv29SxHhOGC9JDqUHeUdptfCK_ljQ01nLVt2OQWT2SwGs-TuyHDFmhPmPGFZ9wboxvq_ieopmYqhQilNAu-WF-frioiRz9733fU";
+    public void shouldPassECDSA384VerificationWithJOSESignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzM4NCJ9.eyJpc3MiOiJhdXRoMCJ9.50UU5VKNdF1wfykY8jQBKpvuHZoe6IZBJm5NvoB8bR-hnRg6ti-CHbmvoRtlLfnHfwITa_8cJMy6TenMC2g63GQHytc8rYoXqbwtS4R0Ko_AXbLFUmfxnGnMC6v4MS_z";
+        PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_384, "EC");
+        Algorithm algorithm = Algorithm.ECDSA384(key);
+        algorithm.verify(jwt.split("\\."));
+    }
+
+    @Test
+    public void shouldPassECDSA384VerificationWithDERSignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzM4NCJ9.eyJpc3MiOiJhdXRoMCJ9.MGUCMQDnRRTlUo10XXB/KRjyNAEqm+4dmh7ohkEmbk2+gHxtH6GdGDq2L4Idua+hG2Ut+ccCMH8CE2v/HCTMuk3pzAtoOtxkB8rXPK2KF6m8LUuEdCqPwF2yxVJn8ZxpzAur+DEv8w==";
         PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_384, "EC");
         Algorithm algorithm = Algorithm.ECDSA384(key);
         algorithm.verify(jwt.split("\\."));
@@ -58,8 +77,16 @@ public void shouldFailECDSA384VerificationWithInvalidPublicKey() throws Exceptio
     }
 
     @Test
-    public void shouldPassECDSA512Verification() throws Exception {
-        String jwt = "eyJhbGciOiJFUzUxMiJ9.eyJpc3MiOiJhdXRoMCJ9.AZgdopFFsN0amCSs2kOucXdpylD31DEm5ChK1PG0_gq5Mf47MrvVph8zHSVuvcrXzcE1U3VxeCg89mYW1H33Y-8iAF0QFkdfTUQIWKNObH543WNMYYssv3OtOj0znPv8atDbaF8DMYAtcT1qdmaSJRhx-egRE9HGZkinPh9CfLLLt58X";
+    public void shouldPassECDSA512VerificationWithJOSESignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzUxMiJ9.eyJpc3MiOiJhdXRoMCJ9.AeCJPDIsSHhwRSGZCY6rspi8zekOw0K9qYMNridP1Fu9uhrA1QrG-EUxXlE06yvmh2R7Rz0aE7kxBwrnq8L8aOBCAYAsqhzPeUvyp8fXjjgs0Eto5I0mndE2QHlgcMSFASyjHbU8wD2Rq7ZNzGQ5b2MZfpv030WGUajT-aZYWFUJHVg2";
+        PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_512, "EC");
+        Algorithm algorithm = Algorithm.ECDSA512(key);
+        algorithm.verify(jwt.split("\\."));
+    }
+
+    @Test
+    public void shouldPassECDSA512VerificationWithDERSignature() throws Exception {
+        String jwt = "eyJhbGciOiJFUzUxMiJ9.eyJpc3MiOiJhdXRoMCJ9.MIGIAkIB4Ik8MixIeHBFIZkJjquymLzN6Q7DQr2pgw2uJ0/UW726GsDVCsb4RTFeUTTrK+aHZHtHPRoTuTEHCuerwvxo4EICQgGALKocz3lL8qfH1444LNBLaOSNJp3RNkB5YHDEhQEsox21PMA9kau2TcxkOW9jGX6b9N9FhlGo0/mmWFhVCR1YNg==";
         PublicKey key = readPublicKeyFromFile(PUBLIC_KEY_FILE_512, "EC");
         Algorithm algorithm = Algorithm.ECDSA512(key);
         algorithm.verify(jwt.split("\\."));
diff --git a/lib/src/test/resources/ec256-key-private.pem b/lib/src/test/resources/ec256-key-private.pem
@@ -0,0 +1,5 @@
+-----BEGIN PRIVATE KEY-----
+MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgPGJGAm4X1fvBuC1z
+SpO/4Izx6PXfNMaiKaS5RUkFqEGhRANCAARCBvmeksd3QGTrVs2eMrrfa7CYF+sX
+sjyGg+Bo5mPKGH4Gs8M7oIvoP9pb/I85tdebtKlmiCZHAZE5w4DfJSV6
+-----END PRIVATE KEY-----
diff --git a/lib/src/test/resources/ec384-key-private.pem b/lib/src/test/resources/ec384-key-private.pem
@@ -0,0 +1,6 @@
+-----BEGIN PRIVATE KEY-----
+MIG2AgEAMBAGByqGSM49AgEGBSuBBAAiBIGeMIGbAgEBBDCVWQsOJHjKD0I4cXOY
+Jm4G8i5c7IMhFbxFq57OUlrTVmND43dvvNW1oQ6i6NiXEQWhZANiAASezSGlAu4w
+AaJe4676mQM0F/5slI+EkdptRJdfsQP9mNxe7RdzHgcSw7j/Wxa45nlnFnFrPPL4
+viJKOBRxMB1jjVA9my9PixxJGoB22qDQwFbP8ldmEp6abwdBsXNaePM=
+-----END PRIVATE KEY-----
diff --git a/lib/src/test/resources/ec512-key-private.pem b/lib/src/test/resources/ec512-key-private.pem
@@ -0,0 +1,7 @@
+-----BEGIN PRIVATE KEY-----
+MIHtAgEAMBAGByqGSM49AgEGBSuBBAAjBIHVMIHSAgEBBEHzl1DpZSQJ8YhCbN/u
+vo5SOu0BjDDX9Gub6zsBW6B2TxRzb5sBeQaWVscDUZha4Xr1HEWpVtua9+nEQU/9
+Aq9Pl6GBiQOBhgAEAJhvCa6S89ePqlLO6MRV9KQqHvdAITDAf/WRDcvCmfrrNuov
++j4gQXO12ohIukPCHM9rYms8Eqciz3gaxVTxZD4CAA8i2k9H6ew9iSh1qXa1kLxi
+yzMBqmAmmg4u/SroD6OleG56SwZVbWx+KIINB6r/PQVciGX8FjwgR/mbLHotVZYD
+-----END PRIVATE KEY-----

Original file line number	Diff line number	Diff line change
`@@ -46,7 +46,7 @@ public void verify(String[] jwtParts) throws SignatureVerificationException {`
`46`	`46`	`private boolean isDERSignature(byte[] signature) {`
`47`	`47`	`// DER Structure: http://crypto.stackexchange.com/a/1797`
`48`	`48`	`// Should begin with 0x30 and have exactly the expected length`
`49`		`- return signature[0] == 0x30 && signature.length == ecNumberSize * 2;`
	`49`	`+ return signature[0] == 0x30 && signature.length != ecNumberSize * 2;`
`50`	`50`	`}`
`51`	`51`
`52`	`52`	`private byte[] JOSEToDER(byte[] joseSignature) throws SignatureException {`