return pubkey;
}
- public SPKAC(X509Key pubkey, String challange) {
+ public SPKAC(X509Key pubkey, String challenge) {
this.pubkey = pubkey;
- challenge = challange;
+ this.challenge = challenge;
}
public byte[] getEncoded(Signature sign) throws GeneralSecurityException, IOException {
pkg.initialize(1024);
KeyPair kp = pkg.generateKeyPair();
- SPKAC s = new SPKAC((X509Key) kp.getPublic(), "this is a even bigger challange");
+ SPKAC s = new SPKAC((X509Key) kp.getPublic(), "this is a even bigger challenge");
Signature sign = Signature.getInstance("SHA512withRSA");
sign.initSign(kp.getPrivate());
return uc;
}
- protected String testSPKAC(boolean correctChallange) throws GeneralSecurityException, IOException {
+ protected String testSPKAC(boolean correctChallenge) throws GeneralSecurityException, IOException {
HttpURLConnection uc = (HttpURLConnection) ncert.openConnection();
uc.setRequestProperty("Cookie", cookie);
String s = IOUtils.readURL(uc);
csrf = extractPattern(s, Pattern.compile("<input [^>]*name='csrf' [^>]*value='([^']*)'>"));
String challenge = extractPattern(s, Pattern.compile("<keygen [^>]*name=\"SPKAC\" [^>]*challenge=\"([^\"]*)\"/>"));
- SPKAC spk = new SPKAC((X509Key) kp.getPublic(), challenge + (correctChallange ? "" : "b"));
+ SPKAC spk = new SPKAC((X509Key) kp.getPublic(), challenge + (correctChallenge ? "" : "b"));
Signature sign = Signature.getInstance("SHA512WithRSA");
sign.initSign(kp.getPrivate());
try {
String[] res = fillOutFormDirect("SPKAC=" + URLEncoder.encode(Base64.getEncoder().encodeToString(spk.getEncoded(sign)), "UTF-8"));
- if ( !correctChallange) {
- fail("Should not succeed with wrong challange.");
+ if ( !correctChallenge) {
+ fail("Should not succeed with wrong challenge.");
}
assertArrayEquals(new String[] {
"client", CertificateRequest.DEFAULT_CN, "", Digest.SHA512.toString()
KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
kpg.initialize(4096);
KeyPair kp = kpg.generateKeyPair();
- SPKAC s = new SPKAC((X509Key) kp.getPublic(), "challange");
+ SPKAC s = new SPKAC((X509Key) kp.getPublic(), "challenge");
Signature sign = Signature.getInstance("SHA512withRSA");
sign.initSign(kp.getPrivate());
byte[] res = s.getEncoded(sign);
- CertificateRequest cr = new CertificateRequest(new AuthorizationContext(u, u), Base64.getEncoder().encodeToString(res), "challange");
+ CertificateRequest cr = new CertificateRequest(new AuthorizationContext(u, u), Base64.getEncoder().encodeToString(res), "challenge");
cr.update(CertificateRequest.DEFAULT_CN, Digest.SHA512.toString(), "client", null, "", "email:" + u.getEmail());
Certificate draft = cr.draft();
draft.issue(null, "2y", u).waitFor(10000);