pgpainless/pgpainless-core/src/test/java/org/pgpainless/key/protection/PassphraseProtectedKeyTest.java

// SPDX-FileCopyrightText: 2020 Paul Schaub <vanitasvitae@fsfe.org>
//
// SPDX-License-Identifier: Apache-2.0

package org.pgpainless.key.protection;

import static org.junit.jupiter.api.Assertions.assertNotNull;
import static org.junit.jupiter.api.Assertions.assertNull;

import java.security.InvalidAlgorithmParameterException;
import java.security.NoSuchAlgorithmException;
import java.util.Iterator;
import javax.annotation.Nullable;

import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPPublicKey;
import org.bouncycastle.openpgp.PGPSecretKeyRing;
import org.junit.jupiter.api.Test;
import org.pgpainless.PGPainless;
import org.pgpainless.key.TestKeys;
import org.pgpainless.key.protection.passphrase_provider.SecretKeyPassphraseProvider;
import org.pgpainless.s2k.Passphrase;

public class PassphraseProtectedKeyTest {

    /**
     * Protector that holds only the password of cryptie.
     */
    private final PasswordBasedSecretKeyRingProtector protector = new PasswordBasedSecretKeyRingProtector(
            KeyRingProtectionSettings.secureDefaultSettings(),
            new SecretKeyPassphraseProvider() {
                @Nullable
                @Override
                public Passphrase getPassphraseFor(Long keyId) {
                    if (keyId.equals(TestKeys.CRYPTIE_KEY_ID)) {
                        return new Passphrase(TestKeys.CRYPTIE_PASSWORD.toCharArray());
                    } else {
                        return null;
                    }
                }

                @Override
                public boolean hasPassphrase(Long keyId) {
                    return keyId.equals(TestKeys.CRYPTIE_KEY_ID);
                }
            });

    @Test
    public void testReturnsNonNullDecryptorEncryptorForPassword() throws PGPException {
        assertNotNull(protector.getEncryptor(TestKeys.CRYPTIE_KEY_ID));
        assertNotNull(protector.getDecryptor(TestKeys.CRYPTIE_KEY_ID));
    }

    @Test
    public void testReturnsNullDecryptorEncryptorForNoPassword() throws PGPException {
        assertNull(protector.getEncryptor(TestKeys.JULIET_KEY_ID));
        assertNull(protector.getDecryptor(TestKeys.JULIET_KEY_ID));
    }

    @Test
    public void testReturnsNonNullDecryptorForSubkeys() throws InvalidAlgorithmParameterException, NoSuchAlgorithmException, PGPException {
        PGPSecretKeyRing secretKeys = PGPainless.generateKeyRing().modernKeyRing("alice", "passphrase");
        SecretKeyRingProtector protector = PasswordBasedSecretKeyRingProtector.forKey(secretKeys, Passphrase.fromPassword("passphrase"));
        for (Iterator<PGPPublicKey> it = secretKeys.getPublicKeys(); it.hasNext(); ) {
            PGPPublicKey subkey = it.next();
            assertNotNull(protector.getEncryptor(subkey.getKeyID()));
            assertNotNull(protector.getDecryptor(subkey.getKeyID()));
        }
    }
}
Reuse compliance 2021-10-07 15:48:52 +02:00			`// SPDX-FileCopyrightText: 2020 Paul Schaub <vanitasvitae@fsfe.org>`
			`//`
			`// SPDX-License-Identifier: Apache-2.0`

Add test for password protected keys 2020-01-14 22:11:01 +01:00			`package org.pgpainless.key.protection;`

Switch to Jupiter JUnit for tests 2020-11-13 16:31:59 +01:00			`import static org.junit.jupiter.api.Assertions.assertNotNull;`
			`import static org.junit.jupiter.api.Assertions.assertNull;`
Add test for password protected keys 2020-01-14 22:11:01 +01:00
In PasswordBasedSecretKeyRingProtector.forKey(ring, passphrase): Return passphrase also for subkeys Fixes #97, thanks @DenBond7 2021-03-18 21:28:08 +01:00			`import java.security.InvalidAlgorithmParameterException;`
			`import java.security.NoSuchAlgorithmException;`
			`import java.util.Iterator;`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`import javax.annotation.Nullable;`

			`import org.bouncycastle.openpgp.PGPException;`
In PasswordBasedSecretKeyRingProtector.forKey(ring, passphrase): Return passphrase also for subkeys Fixes #97, thanks @DenBond7 2021-03-18 21:28:08 +01:00			`import org.bouncycastle.openpgp.PGPPublicKey;`
			`import org.bouncycastle.openpgp.PGPSecretKeyRing;`
Switch to Jupiter JUnit for tests 2020-11-13 16:31:59 +01:00			`import org.junit.jupiter.api.Test;`
In PasswordBasedSecretKeyRingProtector.forKey(ring, passphrase): Return passphrase also for subkeys Fixes #97, thanks @DenBond7 2021-03-18 21:28:08 +01:00			`import org.pgpainless.PGPainless;`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`import org.pgpainless.key.TestKeys;`
Work on the editing api 2020-10-23 16:44:21 +02:00			`import org.pgpainless.key.protection.passphrase_provider.SecretKeyPassphraseProvider;`
Reorganize classes in packages Move ArmorUtils to org.pgpainless.ascii_armor Move Armored*StreamFactory to org.pgpainless.ascii_armor Move CRCingArmoredInputStreamWrapper to org.pgpainless.ascii_armor Move SessionKey to org.pgpainless.s2k Move RevocationAttributes to org.pgpainless.key Move UserId to org.pgpainless.key Move Passphrase to org.pgpainless.s2k Move NotationRegistry to org.pgpainless.policy 2022-09-07 13:35:58 +02:00			`import org.pgpainless.s2k.Passphrase;`
Add test for password protected keys 2020-01-14 22:11:01 +01:00
			`public class PassphraseProtectedKeyTest {`

			`/**`
			`* Protector that holds only the password of cryptie.`
			`*/`
			`private final PasswordBasedSecretKeyRingProtector protector = new PasswordBasedSecretKeyRingProtector(`
Add KeyRingProtectionSettings.secureDefaultSettings() factory method 2020-08-31 12:37:34 +02:00			`KeyRingProtectionSettings.secureDefaultSettings(),`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`new SecretKeyPassphraseProvider() {`
			`@Nullable`
			`@Override`
			`public Passphrase getPassphraseFor(Long keyId) {`
Introduce ImplementationFactory 2020-12-27 01:56:18 +01:00			`if (keyId.equals(TestKeys.CRYPTIE_KEY_ID)) {`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`return new Passphrase(TestKeys.CRYPTIE_PASSWORD.toCharArray());`
			`} else {`
			`return null;`
			`}`
			`}`
Postpone decryption of PKESK if secret key passphrase is missing and try next PKESK first before passphrase retrieval using callback Fixes #186 2021-09-15 16:33:03 +02:00
			`@Override`
			`public boolean hasPassphrase(Long keyId) {`
			`return keyId.equals(TestKeys.CRYPTIE_KEY_ID);`
			`}`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`});`

			`@Test`
			`public void testReturnsNonNullDecryptorEncryptorForPassword() throws PGPException {`
			`assertNotNull(protector.getEncryptor(TestKeys.CRYPTIE_KEY_ID));`
			`assertNotNull(protector.getDecryptor(TestKeys.CRYPTIE_KEY_ID));`
			`}`

			`@Test`
			`public void testReturnsNullDecryptorEncryptorForNoPassword() throws PGPException {`
			`assertNull(protector.getEncryptor(TestKeys.JULIET_KEY_ID));`
			`assertNull(protector.getDecryptor(TestKeys.JULIET_KEY_ID));`
			`}`
In PasswordBasedSecretKeyRingProtector.forKey(ring, passphrase): Return passphrase also for subkeys Fixes #97, thanks @DenBond7 2021-03-18 21:28:08 +01:00
			`@Test`
			`public void testReturnsNonNullDecryptorForSubkeys() throws InvalidAlgorithmParameterException, NoSuchAlgorithmException, PGPException {`
			`PGPSecretKeyRing secretKeys = PGPainless.generateKeyRing().modernKeyRing("alice", "passphrase");`
			`SecretKeyRingProtector protector = PasswordBasedSecretKeyRingProtector.forKey(secretKeys, Passphrase.fromPassword("passphrase"));`
			`for (Iterator<PGPPublicKey> it = secretKeys.getPublicKeys(); it.hasNext(); ) {`
			`PGPPublicKey subkey = it.next();`
			`assertNotNull(protector.getEncryptor(subkey.getKeyID()));`
			`assertNotNull(protector.getDecryptor(subkey.getKeyID()));`
			`}`
			`}`
Add test for password protected keys 2020-01-14 22:11:01 +01:00			`}`