Google Git
Sign in
apache / hbase-site / e3c8c83649cc6545b444ce0bc60de4ca5f95e341 / . / testapidocs / src-html / org / apache / hadoop / hbase / io / crypto / TestEncryption.html
blob: 56fc1f317b1ad183200116d488d259347969a0c8 [file] [log] [blame]
<!DOCTYPE HTML>
<html lang="en">
<head>
<!-- Generated by javadoc (17) -->
<title>Source code</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="description" content="source: package: org.apache.hadoop.hbase.io.crypto, class: TestEncryption">
<meta name="generator" content="javadoc/SourceToHTMLConverter">
<link rel="stylesheet" type="text/css" href="../../../../../../../stylesheet.css" title="Style">
</head>
<body class="source-page">
<main role="main">
<div class="source-container">
<pre><span class="source-line-no">001</span><span id="line-1">/*</span>
<span class="source-line-no">002</span><span id="line-2"> * Licensed to the Apache Software Foundation (ASF) under one</span>
<span class="source-line-no">003</span><span id="line-3"> * or more contributor license agreements. See the NOTICE file</span>
<span class="source-line-no">004</span><span id="line-4"> * distributed with this work for additional information</span>
<span class="source-line-no">005</span><span id="line-5"> * regarding copyright ownership. The ASF licenses this file</span>
<span class="source-line-no">006</span><span id="line-6"> * to you under the Apache License, Version 2.0 (the</span>
<span class="source-line-no">007</span><span id="line-7"> * "License"); you may not use this file except in compliance</span>
<span class="source-line-no">008</span><span id="line-8"> * with the License. You may obtain a copy of the License at</span>
<span class="source-line-no">009</span><span id="line-9"> *</span>
<span class="source-line-no">010</span><span id="line-10"> * http://www.apache.org/licenses/LICENSE-2.0</span>
<span class="source-line-no">011</span><span id="line-11"> *</span>
<span class="source-line-no">012</span><span id="line-12"> * Unless required by applicable law or agreed to in writing, software</span>
<span class="source-line-no">013</span><span id="line-13"> * distributed under the License is distributed on an "AS IS" BASIS,</span>
<span class="source-line-no">014</span><span id="line-14"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</span>
<span class="source-line-no">015</span><span id="line-15"> * See the License for the specific language governing permissions and</span>
<span class="source-line-no">016</span><span id="line-16"> * limitations under the License.</span>
<span class="source-line-no">017</span><span id="line-17"> */</span>
<span class="source-line-no">018</span><span id="line-18">package org.apache.hadoop.hbase.io.crypto;</span>
<span class="source-line-no">019</span><span id="line-19"></span>
<span class="source-line-no">020</span><span id="line-20">import static org.junit.Assert.assertEquals;</span>
<span class="source-line-no">021</span><span id="line-21">import static org.junit.Assert.assertTrue;</span>
<span class="source-line-no">022</span><span id="line-22"></span>
<span class="source-line-no">023</span><span id="line-23">import java.io.ByteArrayInputStream;</span>
<span class="source-line-no">024</span><span id="line-24">import java.io.ByteArrayOutputStream;</span>
<span class="source-line-no">025</span><span id="line-25">import java.security.Key;</span>
<span class="source-line-no">026</span><span id="line-26">import javax.crypto.spec.SecretKeySpec;</span>
<span class="source-line-no">027</span><span id="line-27">import org.apache.hadoop.conf.Configuration;</span>
<span class="source-line-no">028</span><span id="line-28">import org.apache.hadoop.hbase.HBaseClassTestRule;</span>
<span class="source-line-no">029</span><span id="line-29">import org.apache.hadoop.hbase.HBaseConfiguration;</span>
<span class="source-line-no">030</span><span id="line-30">import org.apache.hadoop.hbase.HConstants;</span>
<span class="source-line-no">031</span><span id="line-31">import org.apache.hadoop.hbase.testclassification.MiscTests;</span>
<span class="source-line-no">032</span><span id="line-32">import org.apache.hadoop.hbase.testclassification.SmallTests;</span>
<span class="source-line-no">033</span><span id="line-33">import org.apache.hadoop.hbase.util.Bytes;</span>
<span class="source-line-no">034</span><span id="line-34">import org.junit.ClassRule;</span>
<span class="source-line-no">035</span><span id="line-35">import org.junit.Test;</span>
<span class="source-line-no">036</span><span id="line-36">import org.junit.experimental.categories.Category;</span>
<span class="source-line-no">037</span><span id="line-37">import org.slf4j.Logger;</span>
<span class="source-line-no">038</span><span id="line-38">import org.slf4j.LoggerFactory;</span>
<span class="source-line-no">039</span><span id="line-39"></span>
<span class="source-line-no">040</span><span id="line-40">@Category({ MiscTests.class, SmallTests.class })</span>
<span class="source-line-no">041</span><span id="line-41">public class TestEncryption {</span>
<span class="source-line-no">042</span><span id="line-42"> @ClassRule</span>
<span class="source-line-no">043</span><span id="line-43"> public static final HBaseClassTestRule CLASS_RULE =</span>
<span class="source-line-no">044</span><span id="line-44"> HBaseClassTestRule.forClass(TestEncryption.class);</span>
<span class="source-line-no">045</span><span id="line-45"></span>
<span class="source-line-no">046</span><span id="line-46"> private static final Logger LOG = LoggerFactory.getLogger(TestEncryption.class);</span>
<span class="source-line-no">047</span><span id="line-47"></span>
<span class="source-line-no">048</span><span id="line-48"> @Test</span>
<span class="source-line-no">049</span><span id="line-49"> public void testSmallBlocks() throws Exception {</span>
<span class="source-line-no">050</span><span id="line-50"> byte[] key = new byte[16];</span>
<span class="source-line-no">051</span><span id="line-51"> Bytes.secureRandom(key);</span>
<span class="source-line-no">052</span><span id="line-52"> byte[] iv = new byte[16];</span>
<span class="source-line-no">053</span><span id="line-53"> Bytes.secureRandom(iv);</span>
<span class="source-line-no">054</span><span id="line-54"> for (int size : new int[] { 4, 8, 16, 32, 64, 128, 256, 512 }) {</span>
<span class="source-line-no">055</span><span id="line-55"> checkTransformSymmetry(key, iv, getRandomBlock(size));</span>
<span class="source-line-no">056</span><span id="line-56"> }</span>
<span class="source-line-no">057</span><span id="line-57"> }</span>
<span class="source-line-no">058</span><span id="line-58"></span>
<span class="source-line-no">059</span><span id="line-59"> @Test</span>
<span class="source-line-no">060</span><span id="line-60"> public void testLargeBlocks() throws Exception {</span>
<span class="source-line-no">061</span><span id="line-61"> byte[] key = new byte[16];</span>
<span class="source-line-no">062</span><span id="line-62"> Bytes.secureRandom(key);</span>
<span class="source-line-no">063</span><span id="line-63"> byte[] iv = new byte[16];</span>
<span class="source-line-no">064</span><span id="line-64"> Bytes.secureRandom(iv);</span>
<span class="source-line-no">065</span><span id="line-65"> for (int size : new int[] { 256 * 1024, 512 * 1024, 1024 * 1024 }) {</span>
<span class="source-line-no">066</span><span id="line-66"> checkTransformSymmetry(key, iv, getRandomBlock(size));</span>
<span class="source-line-no">067</span><span id="line-67"> }</span>
<span class="source-line-no">068</span><span id="line-68"> }</span>
<span class="source-line-no">069</span><span id="line-69"></span>
<span class="source-line-no">070</span><span id="line-70"> @Test</span>
<span class="source-line-no">071</span><span id="line-71"> public void testOddSizedBlocks() throws Exception {</span>
<span class="source-line-no">072</span><span id="line-72"> byte[] key = new byte[16];</span>
<span class="source-line-no">073</span><span id="line-73"> Bytes.secureRandom(key);</span>
<span class="source-line-no">074</span><span id="line-74"> byte[] iv = new byte[16];</span>
<span class="source-line-no">075</span><span id="line-75"> Bytes.secureRandom(iv);</span>
<span class="source-line-no">076</span><span id="line-76"> for (int size : new int[] { 3, 7, 11, 23, 47, 79, 119, 175 }) {</span>
<span class="source-line-no">077</span><span id="line-77"> checkTransformSymmetry(key, iv, getRandomBlock(size));</span>
<span class="source-line-no">078</span><span id="line-78"> }</span>
<span class="source-line-no">079</span><span id="line-79"> }</span>
<span class="source-line-no">080</span><span id="line-80"></span>
<span class="source-line-no">081</span><span id="line-81"> @Test</span>
<span class="source-line-no">082</span><span id="line-82"> public void testTypicalHFileBlocks() throws Exception {</span>
<span class="source-line-no">083</span><span id="line-83"> byte[] key = new byte[16];</span>
<span class="source-line-no">084</span><span id="line-84"> Bytes.secureRandom(key);</span>
<span class="source-line-no">085</span><span id="line-85"> byte[] iv = new byte[16];</span>
<span class="source-line-no">086</span><span id="line-86"> Bytes.secureRandom(iv);</span>
<span class="source-line-no">087</span><span id="line-87"> for (int size : new int[] { 4 * 1024, 8 * 1024, 64 * 1024, 128 * 1024 }) {</span>
<span class="source-line-no">088</span><span id="line-88"> checkTransformSymmetry(key, iv, getRandomBlock(size));</span>
<span class="source-line-no">089</span><span id="line-89"> }</span>
<span class="source-line-no">090</span><span id="line-90"> }</span>
<span class="source-line-no">091</span><span id="line-91"></span>
<span class="source-line-no">092</span><span id="line-92"> @Test</span>
<span class="source-line-no">093</span><span id="line-93"> public void testIncrementIV() {</span>
<span class="source-line-no">094</span><span id="line-94"> byte[] iv = new byte[] { 1, 2, 3 };</span>
<span class="source-line-no">095</span><span id="line-95"> byte[] iv_neg = new byte[] { -3, -13, 25 };</span>
<span class="source-line-no">096</span><span id="line-96"> Encryption.incrementIv(iv);</span>
<span class="source-line-no">097</span><span id="line-97"> assertTrue(Bytes.equals(iv, new byte[] { 2, 2, 3 }));</span>
<span class="source-line-no">098</span><span id="line-98"></span>
<span class="source-line-no">099</span><span id="line-99"> Encryption.incrementIv(iv, 255);</span>
<span class="source-line-no">100</span><span id="line-100"> assertTrue(Bytes.equals(iv, new byte[] { 1, 3, 3 }));</span>
<span class="source-line-no">101</span><span id="line-101"></span>
<span class="source-line-no">102</span><span id="line-102"> Encryption.incrementIv(iv, 1024);</span>
<span class="source-line-no">103</span><span id="line-103"> assertTrue(Bytes.equals(iv, new byte[] { 1, 7, 3 }));</span>
<span class="source-line-no">104</span><span id="line-104"></span>
<span class="source-line-no">105</span><span id="line-105"> Encryption.incrementIv(iv_neg);</span>
<span class="source-line-no">106</span><span id="line-106"> assertTrue(Bytes.equals(iv_neg, new byte[] { -2, -13, 25 }));</span>
<span class="source-line-no">107</span><span id="line-107"></span>
<span class="source-line-no">108</span><span id="line-108"> Encryption.incrementIv(iv_neg, 5);</span>
<span class="source-line-no">109</span><span id="line-109"> assertTrue(Bytes.equals(iv_neg, new byte[] { 3, -12, 25 }));</span>
<span class="source-line-no">110</span><span id="line-110"> }</span>
<span class="source-line-no">111</span><span id="line-111"></span>
<span class="source-line-no">112</span><span id="line-112"> private void checkTransformSymmetry(byte[] keyBytes, byte[] iv, byte[] plaintext)</span>
<span class="source-line-no">113</span><span id="line-113"> throws Exception {</span>
<span class="source-line-no">114</span><span id="line-114"> LOG.info("checkTransformSymmetry: AES, plaintext length = " + plaintext.length);</span>
<span class="source-line-no">115</span><span id="line-115"></span>
<span class="source-line-no">116</span><span id="line-116"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">117</span><span id="line-117"> String algorithm = conf.get(HConstants.CRYPTO_KEY_ALGORITHM_CONF_KEY, HConstants.CIPHER_AES);</span>
<span class="source-line-no">118</span><span id="line-118"> Cipher aes = Encryption.getCipher(conf, algorithm);</span>
<span class="source-line-no">119</span><span id="line-119"> Key key = new SecretKeySpec(keyBytes, algorithm);</span>
<span class="source-line-no">120</span><span id="line-120"></span>
<span class="source-line-no">121</span><span id="line-121"> Encryptor e = aes.getEncryptor();</span>
<span class="source-line-no">122</span><span id="line-122"> e.setKey(key);</span>
<span class="source-line-no">123</span><span id="line-123"> e.setIv(iv);</span>
<span class="source-line-no">124</span><span id="line-124"> e.reset();</span>
<span class="source-line-no">125</span><span id="line-125"> ByteArrayOutputStream encOut = new ByteArrayOutputStream();</span>
<span class="source-line-no">126</span><span id="line-126"> Encryption.encrypt(encOut, plaintext, 0, plaintext.length, e);</span>
<span class="source-line-no">127</span><span id="line-127"> byte[] encrypted = encOut.toByteArray();</span>
<span class="source-line-no">128</span><span id="line-128"></span>
<span class="source-line-no">129</span><span id="line-129"> Decryptor d = aes.getDecryptor();</span>
<span class="source-line-no">130</span><span id="line-130"> d.setKey(key);</span>
<span class="source-line-no">131</span><span id="line-131"> d.setIv(iv);</span>
<span class="source-line-no">132</span><span id="line-132"> d.reset();</span>
<span class="source-line-no">133</span><span id="line-133"> ByteArrayInputStream encIn = new ByteArrayInputStream(encrypted);</span>
<span class="source-line-no">134</span><span id="line-134"> ByteArrayOutputStream decOut = new ByteArrayOutputStream();</span>
<span class="source-line-no">135</span><span id="line-135"> Encryption.decrypt(decOut, encIn, plaintext.length, d);</span>
<span class="source-line-no">136</span><span id="line-136"></span>
<span class="source-line-no">137</span><span id="line-137"> byte[] result = decOut.toByteArray();</span>
<span class="source-line-no">138</span><span id="line-138"> assertEquals("Decrypted result has different length than plaintext", result.length,</span>
<span class="source-line-no">139</span><span id="line-139"> plaintext.length);</span>
<span class="source-line-no">140</span><span id="line-140"> assertTrue("Transformation was not symmetric", Bytes.equals(result, plaintext));</span>
<span class="source-line-no">141</span><span id="line-141"> }</span>
<span class="source-line-no">142</span><span id="line-142"></span>
<span class="source-line-no">143</span><span id="line-143"> private byte[] getRandomBlock(int size) {</span>
<span class="source-line-no">144</span><span id="line-144"> byte[] b = new byte[size];</span>
<span class="source-line-no">145</span><span id="line-145"> Bytes.random(b);</span>
<span class="source-line-no">146</span><span id="line-146"> return b;</span>
<span class="source-line-no">147</span><span id="line-147"> }</span>
<span class="source-line-no">148</span><span id="line-148">}</span>
</pre>
</div>
</main>
</body>
</html>