More test improvements.

atholbro · atholbro · commit a348b435e054 · 2026-03-05T22:33:12.000-05:00
diff --git a/paseto/src/main/kotlin/net/aholbrook/paseto/crypto/Ecdsa.kt b/paseto/src/main/kotlin/net/aholbrook/paseto/crypto/Ecdsa.kt
@@ -4,6 +4,7 @@ import net.aholbrook.paseto.exception.ByteArrayLengthException
 import net.aholbrook.paseto.exception.KeyV3Exception
 import org.bouncycastle.asn1.ASN1ObjectIdentifier
 import org.bouncycastle.asn1.ASN1Primitive
+import org.bouncycastle.asn1.DERBitString
 import org.bouncycastle.asn1.pkcs.PrivateKeyInfo
 import org.bouncycastle.asn1.sec.ECPrivateKey
 import org.bouncycastle.asn1.sec.SECObjectIdentifiers
@@ -220,8 +221,10 @@ internal fun p384EncodeSkSec1(sk: ByteArray): ByteArray {
         throw KeyV3Exception("Invalid P-384 private key")
     }
 
+    val publicKey = DERBitString(params.g.multiply(d).normalize().getEncoded(false))
+
     @Suppress("MagicNumber")
-    val secretKey = ECPrivateKey(384, d, null, SECObjectIdentifiers.secp384r1)
+    val secretKey = ECPrivateKey(384, d, publicKey, SECObjectIdentifiers.secp384r1)
     return secretKey.encoded
 }
 
@@ -261,7 +264,7 @@ internal fun p384EncodePkSpki(pk: ByteArray): ByteArray {
 
     return SubjectPublicKeyInfo(
         AlgorithmIdentifier(X9ObjectIdentifiers.id_ecPublicKey, SECObjectIdentifiers.secp384r1),
-        q.getEncoded(true),
+        q.getEncoded(false), // false only for saving keys
     ).encoded
 }
 
diff --git a/paseto/src/main/kotlin/net/aholbrook/paseto/protocol/Key.kt b/paseto/src/main/kotlin/net/aholbrook/paseto/protocol/Key.kt
@@ -74,7 +74,10 @@ class AsymmetricPublicKey private constructor(private val material: ByteArray, v
 
             Version.V3 -> p384EncodePkSpki(material)
 
-            Version.V2, Version.V4 -> Ed25519PublicKeyParameters(material, 0).let {
+            Version.V2, Version.V4 -> Ed25519PublicKeyParameters(
+                material.copyOfRange(0, ED25519_SECRETKEYBYTES - ED25519_PUBLICKEYBYTES),
+                0
+            ).let {
                 SubjectPublicKeyInfo(
                     AlgorithmIdentifier(EdECObjectIdentifiers.id_Ed25519),
                     it.encoded,
@@ -174,7 +177,7 @@ class AsymmetricPublicKey private constructor(private val material: ByteArray, v
             )
 
             Version.V3 -> ofRawBytes(
-                p384SkToPk(secretKey.getKeyMaterialFor(Version.V1, Purpose.PUBLIC)),
+                p384SkToPk(secretKey.getKeyMaterialFor(Version.V3, Purpose.PUBLIC)),
                 Version.V3,
             )
 
@@ -214,26 +217,31 @@ class AsymmetricSecretKey private constructor(private val material: ByteArray, v
     fun toHex(): String = Hex.toHexString(material)
     fun toBase64Url(): String = Base64.UrlSafe.encode(material)
     fun toPem(): String {
-        val der = when (version) {
-            Version.V1 -> material
+        val (der, type) = when (version) {
+            Version.V1 -> Pair(material, "PRIVATE KEY")
 
-            Version.V3 -> p384EncodeSkSec1(material)
+            Version.V3 -> Pair(p384EncodeSkSec1(material), "EC PRIVATE KEY")
 
             Version.V2, Version.V4 -> {
                 val rawKey = if (material.size == ED25519_SECRETKEYBYTES) {
                     material.copyOfRange(0, ED25519_PUBLICKEYBYTES)
                 } else {
                     material
                 }
-                PrivateKeyInfo(
-                    AlgorithmIdentifier(EdECObjectIdentifiers.id_Ed25519),
-                    DEROctetString(rawKey),
-                ).encoded
+
+                Pair(
+                    PrivateKeyInfo(
+                        AlgorithmIdentifier(EdECObjectIdentifiers.id_Ed25519),
+                        DEROctetString(rawKey),
+                    ).encoded,
+                    "PRIVATE KEY"
+                )
             }
         }
+
         return StringWriter().also { sw ->
             PemWriter(sw).use { pw ->
-                pw.writeObject(PemObject("PRIVATE KEY", der))
+                pw.writeObject(PemObject(type, der))
             }
         }.toString()
     }
diff --git a/paseto/src/test/kotlin/net/aholbrook/paseto/crypto/EcdsaTests.kt b/paseto/src/test/kotlin/net/aholbrook/paseto/crypto/EcdsaTests.kt
@@ -31,6 +31,7 @@ import org.junit.jupiter.api.Test
 import org.junit.jupiter.params.ParameterizedTest
 import org.junit.jupiter.params.provider.ValueSource
 import java.math.BigInteger
+import kotlin.io.encoding.Base64
 
 private val secretKey = p384Generate().first
 private val publicKey = p384SkToPk(secretKey)
@@ -405,18 +406,11 @@ class EcdsaTests {
 
     @Test
     fun `p384EncodeSkPkcs8 works correctly`() {
-        val sk = byteArrayOf(
-            10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12, -6, -121,
-            89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83, -112, -61,
-            85, -54,
-        )
+        val sk = Base64.Pem.decode("Cmkv/SheuJd0qmqoN3/0yFLQpaIM+odZcM10CjA3eZxErnMEJqTRw4XaIVOQw1XK")
 
         val encoded = p384EncodeSkPkcs8(sk)
-        encoded shouldBe byteArrayOf(
-            48, 87, 2, 1, 0, 48, 16, 6, 7, 42, -122, 72, -50, 61, 2, 1, 6, 5, 43, -127, 4, 0, 34, 4, 64, 48, 62, 2, 1,
-            1, 4, 48, 10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12,
-            -6, -121, 89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83,
-            -112, -61, 85, -54, -96, 7, 6, 5, 43, -127, 4, 0, 34,
+        encoded shouldBe Base64.Pem.decode(
+            "MFcCAQAwEAYHKoZIzj0CAQYFK4EEACIEQDA+AgEBBDAKaS/9KF64l3Sqaqg3f/TIUtClogz6h1lwzXQKMDd5nESucwQmpNHDhdohU5DDVcqgBwYFK4EEACI=",
         )
     }
 
@@ -453,19 +447,12 @@ class EcdsaTests {
 
     @Test
     fun `p384DecodeSkPkcs8 works correctly`() {
-        val encoded = byteArrayOf(
-            48, 87, 2, 1, 0, 48, 16, 6, 7, 42, -122, 72, -50, 61, 2, 1, 6, 5, 43, -127, 4, 0, 34, 4, 64, 48, 62, 2, 1,
-            1, 4, 48, 10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12,
-            -6, -121, 89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83,
-            -112, -61, 85, -54, -96, 7, 6, 5, 43, -127, 4, 0, 34,
+        val encoded = Base64.Pem.decode(
+            "MFcCAQAwEAYHKoZIzj0CAQYFK4EEACIEQDA+AgEBBDAKaS/9KF64l3Sqaqg3f/TIUtClogz6h1lwzXQKMDd5nESucwQmpNHDhdohU5DDVcqgBwYFK4EEACI=",
         )
 
         val sk = p384DecodeSkPkcs8(encoded)
-        sk shouldBe byteArrayOf(
-            10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12, -6, -121,
-            89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83, -112, -61,
-            85, -54,
-        )
+        sk shouldBe Base64.Pem.decode("Cmkv/SheuJd0qmqoN3/0yFLQpaIM+odZcM10CjA3eZxErnMEJqTRw4XaIVOQw1XK")
     }
 
     @Test
@@ -574,17 +561,11 @@ class EcdsaTests {
 
     @Test
     fun `p384EncodeSkSec1 works correctly`() {
-        val sk = byteArrayOf(
-            10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12, -6, -121,
-            89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83, -112, -61,
-            85, -54,
-        )
+        val sk = Base64.Pem.decode("Cmkv/SheuJd0qmqoN3/0yFLQpaIM+odZcM10CjA3eZxErnMEJqTRw4XaIVOQw1XK")
 
         val encoded = p384EncodeSkSec1(sk)
-        encoded shouldBe byteArrayOf(
-            48, 62, 2, 1, 1, 4, 48, 10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48,
-            -91, -94, 12, -6, -121, 89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123,
-            -38, 33, 83, -112, -61, 85, -54, -96, 7, 6, 5, 43, -127, 4, 0, 34,
+        encoded shouldBe Base64.Pem.decode(
+            "MIGkAgEBBDAKaS/9KF64l3Sqaqg3f/TIUtClogz6h1lwzXQKMDd5nESucwQmpNHDhdohU5DDVcqgBwYFK4EEACKhZANiAAQg6yyTeUvTOgcNWvv/q69vIHTi3qX5P7pJzaRtMkKXuW/vWRzzfGGszn52GbqO9ZUvvfwE35divaZY5MJ5e55HR9XdWS1ty+AKgq0BUopX1NLYgppngincGmpPFI4YEjU=",
         )
     }
 
@@ -621,18 +602,10 @@ class EcdsaTests {
 
     @Test
     fun `p384DecodeSkSec1 works correctly`() {
-        val encoded = byteArrayOf(
-            48, 62, 2, 1, 1, 4, 48, 10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48,
-            -91, -94, 12, -6, -121, 89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123,
-            -38, 33, 83, -112, -61, 85, -54, -96, 7, 6, 5, 43, -127, 4, 0, 34,
-        )
+        val encoded = Base64.Pem.decode("MD4CAQEEMAppL/0oXriXdKpqqDd/9MhS0KWiDPqHWXDNdAowN3mcRK5zBCak0cOF2iFTkMNVyqAHBgUrgQQAIg==")
 
         val sk = p384DecodeSkSec1(encoded)
-        sk shouldBe byteArrayOf(
-            10, 105, 47, -3, 40, 94, -72, -105, 116, -86, 106, -88, 55, 127, -12, -56, 82, -48, -91, -94, 12, -6, -121,
-            89, 112, -51, 116, 10, 48, 55, 121, -100, 68, -82, 115, 4, 38, -92, -47, -61, -123, -38, 33, 83, -112, -61,
-            85, -54,
-        )
+        sk shouldBe Base64.Pem.decode("Cmkv/SheuJd0qmqoN3/0yFLQpaIM+odZcM10CjA3eZxErnMEJqTRw4XaIVOQw1XK")
     }
 
     @Test
@@ -716,34 +689,20 @@ class EcdsaTests {
 
     @Test
     fun `p384EncodePkSpki works correctly`() {
-        val pk = byteArrayOf(
-            3, -46, 91, 61, -87, 49, -70, 0, -50, 92, -48, 21, 98, 64, -113, -5, -17, 46, -6, -83, 20, 95, -26, -2,
-            -119, 84, 1, -14, -13, -64, 11, -3, 71, 110, 102, 102, 53, 100, -15, 105, 61, -87, 8, -70, -122, 86, -116,
-            -4, -125,
-        )
+        val pk = Base64.Pem.decode("A9JbPakxugDOXNAVYkCP++8u+q0UX+b+iVQB8vPAC/1HbmZmNWTxaT2pCLqGVoz8gw==")
 
         val encoded = p384EncodePkSpki(pk)
-        encoded shouldBe byteArrayOf(
-            48, 70, 48, 16, 6, 7, 42, -122, 72, -50, 61, 2, 1, 6, 5, 43, -127, 4, 0, 34, 3, 50, 0, 3, -46, 91, 61, -87,
-            49, -70, 0, -50, 92, -48, 21, 98, 64, -113, -5, -17, 46, -6, -83, 20, 95, -26, -2, -119, 84, 1, -14, -13,
-            -64, 11, -3, 71, 110, 102, 102, 53, 100, -15, 105, 61, -87, 8, -70, -122, 86, -116, -4, -125,
+        encoded shouldBe Base64.Pem.decode(
+            "MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE0ls9qTG6AM5c0BViQI/77y76rRRf5v6JVAHy88AL/UduZmY1ZPFpPakIuoZWjPyDezBTtokEMtobGzLAHPkKdZF09L+BOcN0zFANkDm2TUkF+sRKbjcAiD0JqFSHYdeD",
         )
     }
 
     @Test
     fun `p384DecodePkSpki works correctly`() {
-        val encoded = byteArrayOf(
-            48, 70, 48, 16, 6, 7, 42, -122, 72, -50, 61, 2, 1, 6, 5, 43, -127, 4, 0, 34, 3, 50, 0, 3, -46, 91, 61, -87,
-            49, -70, 0, -50, 92, -48, 21, 98, 64, -113, -5, -17, 46, -6, -83, 20, 95, -26, -2, -119, 84, 1, -14, -13,
-            -64, 11, -3, 71, 110, 102, 102, 53, 100, -15, 105, 61, -87, 8, -70, -122, 86, -116, -4, -125,
-        )
+        val encoded = Base64.Pem.decode("MEYwEAYHKoZIzj0CAQYFK4EEACIDMgAD0ls9qTG6AM5c0BViQI/77y76rRRf5v6JVAHy88AL/UduZmY1ZPFpPakIuoZWjPyD")
 
         val pk = p384DecodePkSpki(encoded)
-        pk shouldBe byteArrayOf(
-            3, -46, 91, 61, -87, 49, -70, 0, -50, 92, -48, 21, 98, 64, -113, -5, -17, 46, -6, -83, 20, 95, -26, -2,
-            -119, 84, 1, -14, -13, -64, 11, -3, 71, 110, 102, 102, 53, 100, -15, 105, 61, -87, 8, -70, -122, 86, -116,
-            -4, -125,
-        )
+        pk shouldBe Base64.Pem.decode("A9JbPakxugDOXNAVYkCP++8u+q0UX+b+iVQB8vPAC/1HbmZmNWTxaT2pCLqGVoz8gw==")
     }
 
     @Test
diff --git a/paseto/src/test/kotlin/net/aholbrook/paseto/protocol/KeyTests.kt b/paseto/src/test/kotlin/net/aholbrook/paseto/protocol/KeyTests.kt
@@ -17,6 +17,7 @@ import net.aholbrook.paseto.exception.KeyVersionException
 import net.aholbrook.paseto.exception.Pkcs12LoadException
 import net.aholbrook.paseto.keyV1Public
 import net.aholbrook.paseto.keyV2Public
+import net.aholbrook.paseto.keyV3Public
 import net.aholbrook.paseto.keyV4Local
 import net.aholbrook.paseto.keyV4Public
 import net.aholbrook.paseto.protocol.KeyPair.Companion.pkcs12Load
@@ -41,10 +42,14 @@ import kotlin.io.encoding.Base64
 class KeyTests {
     companion object {
         @JvmStatic
-        fun keyPairsAllVersions(): Stream<Arguments> = listOf(keyV1Public, keyV2Public, keyV4Public).map { Arguments.of(it) }.stream()
+        fun keyPairsAllVersions(): Stream<Arguments> = listOf(
+            keyV1Public, keyV2Public, keyV3Public, keyV4Public
+        ).map { Arguments.of(it) }.stream()
 
         @JvmStatic
-        fun allVersions(): Stream<Arguments> = listOf(Version.V1, Version.V2, Version.V4).map { Arguments.of(it) }.stream()
+        fun allVersions(): Stream<Arguments> = listOf(
+            Version.V1, Version.V2, Version.V3, Version.V4
+        ).map { Arguments.of(it) }.stream()
     }
 
     @ParameterizedTest
diff --git a/paseto/src/test/kotlin/net/aholbrook/paseto/protocol/TestVectors.kt b/paseto/src/test/kotlin/net/aholbrook/paseto/protocol/TestVectors.kt
@@ -84,16 +84,20 @@ class TestVectorsTests {
     }
 
     companion object {
-        private fun testPemLoadingPublicKey(paseto: Paseto, vector: TestVector) {
+        private fun testPemPublicKey(paseto: Paseto, vector: TestVector) {
             val pemKey = AsymmetricPublicKey.ofPem(vector.publicKeyPem!!, paseto.version)
             val hexKey = AsymmetricPublicKey.ofHex(vector.publicKey!!, paseto.version)
             pemKey shouldBe hexKey
+
+            hexKey.toPem().trim() shouldBe vector.publicKeyPem.trim()
         }
 
-        private fun testPemLoadingSecretKey(paseto: Paseto, vector: TestVector) {
+        private fun testPemSecretKey(paseto: Paseto, vector: TestVector) {
             val pemKey = AsymmetricSecretKey.ofPem(vector.secretKeyPem!!, paseto.version)
             val hexKey = AsymmetricSecretKey.ofHex(vector.secretKey!!, paseto.version)
             pemKey shouldBe hexKey
+
+            hexKey.toPem().trim() shouldBe vector.secretKeyPem.trim()
         }
 
         private fun testEncrypt(paseto: Paseto, vector: TestVector) {
@@ -176,15 +180,15 @@ class TestVectorsTests {
                             "${vectors.name} - ${vector.name}: pem loading public key",
                             version,
                             vector,
-                            ::testPemLoadingPublicKey,
+                            ::testPemPublicKey,
                         ).takeIf { !vector.expectFail && vector.publicKeyPem != null && vector.publicKey != null },
 
                         // protocol
                         Arguments.of(
                             "${vectors.name} - ${vector.name}: pem loading secret key",
                             version,
                             vector,
-                            ::testPemLoadingSecretKey,
+                            ::testPemSecretKey,
                         ).takeIf { !vector.expectFail && vector.secretKeyPem != null && vector.secretKey != null },
 
                         Arguments.of(
