pgpainless/pgpainless-sop/src/test/java/org/pgpainless/sop/DetachedSignTest.java

// SPDX-FileCopyrightText: 2021 Paul Schaub <vanitasvitae@fsfe.org>
//
// SPDX-License-Identifier: Apache-2.0

package org.pgpainless.sop;

import static org.junit.jupiter.api.Assertions.assertEquals;
import static org.junit.jupiter.api.Assertions.assertFalse;
import static org.junit.jupiter.api.Assertions.assertThrows;
import static org.junit.jupiter.api.Assertions.assertTrue;

import java.io.IOException;
import java.nio.charset.StandardCharsets;
import java.util.Date;
import java.util.List;

import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPSignature;
import org.junit.jupiter.api.BeforeAll;
import org.junit.jupiter.api.Test;
import org.pgpainless.algorithm.SignatureType;
import org.pgpainless.signature.SignatureUtils;
import sop.SOP;
import sop.Verification;
import sop.enums.SignAs;
import sop.enums.SignatureMode;
import sop.exception.SOPGPException;
import sop.testsuite.assertions.VerificationListAssert;

public class DetachedSignTest {

    private static SOP sop;
    private static byte[] key;
    private static byte[] cert;
    private static byte[] data;

    @BeforeAll
    public static void setup() throws IOException {
        sop = new SOPImpl();
        key = sop.generateKey()
                .userId("Alice")
                .generate()
                .getBytes();
        cert = sop.extractCert()
                .key(key)
                .getBytes();
        data = "Hello, World\n".getBytes(StandardCharsets.UTF_8);
    }

    @Test
    public void signArmored() throws IOException {
        byte[] signature = sop.sign()
                .key(key)
                .mode(SignAs.binary)
                .data(data)
                .toByteArrayAndResult().getBytes();

        assertTrue(new String(signature).startsWith("-----BEGIN PGP SIGNATURE-----"));

        List<Verification> verifications = sop.verify()
                .cert(cert)
                .notAfter(new Date(System.currentTimeMillis() + 10000))
                .notBefore(new Date(System.currentTimeMillis() - 10000))
                .signatures(signature)
                .data(data);

        VerificationListAssert.assertThatVerificationList(verifications)
                .hasSingleItem()
                .hasMode(SignatureMode.binary);
    }

    @Test
    public void signUnarmored() throws IOException {
        byte[] signature = sop.sign()
                .key(key)
                .noArmor()
                .data(data)
                .toByteArrayAndResult().getBytes();

        assertFalse(new String(signature).startsWith("-----BEGIN PGP SIGNATURE-----"));

        List<Verification> verifications = sop.verify()
                .cert(cert)
                .notAfter(new Date(System.currentTimeMillis() + 10000))
                .notBefore(new Date(System.currentTimeMillis() - 10000))
                .signatures(signature)
                .data(data);

        VerificationListAssert.assertThatVerificationList(verifications)
                .hasSingleItem();
    }

    @Test
    public void textSig() throws IOException {
        byte[] signature = sop.sign()
                .key(key)
                .noArmor()
                .mode(SignAs.text)
                .data(data)
                .toByteArrayAndResult().getBytes();

        List<Verification> verifications = sop.verify()
                .cert(cert)
                .notAfter(new Date(System.currentTimeMillis() + 10000))
                .notBefore(new Date(System.currentTimeMillis() - 10000))
                .signatures(signature)
                .data(data);

        VerificationListAssert.assertThatVerificationList(verifications)
                .hasSingleItem()
                .hasMode(SignatureMode.text);
    }

    @Test
    public void rejectSignatureAsTooOld() throws IOException {
        byte[] signature = sop.sign()
                .key(key)
                .data(data)
                .toByteArrayAndResult().getBytes();

        assertThrows(SOPGPException.NoSignature.class, () -> sop.verify()
                .cert(cert)
                .notAfter(new Date(System.currentTimeMillis() - 10000)) // Sig is older
                .signatures(signature)
                .data(data));
    }

    @Test
    public void rejectSignatureAsTooYoung() throws IOException {
        byte[] signature = sop.sign()
                .key(key)
                .data(data)
                .toByteArrayAndResult().getBytes();

        assertThrows(SOPGPException.NoSignature.class, () -> sop.verify()
                .cert(cert)
                .notBefore(new Date(System.currentTimeMillis() + 10000)) // Sig is younger
                .signatures(signature)
                .data(data));
    }

    @Test
    public void mode() throws IOException, PGPException {
        byte[] signature = sop.sign()
                .mode(SignAs.text)
                .key(key)
                .data(data)
                .toByteArrayAndResult().getBytes();

        PGPSignature sig = SignatureUtils.readSignatures(signature).get(0);
        assertEquals(SignatureType.CANONICAL_TEXT_DOCUMENT.getCode(), sig.getSignatureType());
    }

}
Reuse compliance 2021-10-07 15:48:52 +02:00			`// SPDX-FileCopyrightText: 2021 Paul Schaub <vanitasvitae@fsfe.org>`
			`//`
			`// SPDX-License-Identifier: Apache-2.0`

Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`package org.pgpainless.sop;`

			`import static org.junit.jupiter.api.Assertions.assertEquals;`
			`import static org.junit.jupiter.api.Assertions.assertFalse;`
			`import static org.junit.jupiter.api.Assertions.assertThrows;`
			`import static org.junit.jupiter.api.Assertions.assertTrue;`

			`import java.io.IOException;`
			`import java.nio.charset.StandardCharsets;`
			`import java.util.Date;`
			`import java.util.List;`

			`import org.bouncycastle.openpgp.PGPException;`
			`import org.bouncycastle.openpgp.PGPSignature;`
			`import org.junit.jupiter.api.BeforeAll;`
			`import org.junit.jupiter.api.Test;`
			`import org.pgpainless.algorithm.SignatureType;`
			`import org.pgpainless.signature.SignatureUtils;`
			`import sop.SOP;`
			`import sop.Verification;`
			`import sop.enums.SignAs;`
Add tests for mode to DetachedSignTest 2023-04-18 18:43:56 +02:00			`import sop.enums.SignatureMode;`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`import sop.exception.SOPGPException;`
Bump sop-java to 6.1.0 2023-04-27 15:15:42 +02:00			`import sop.testsuite.assertions.VerificationListAssert;`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
Progress on SOP04 support 2022-06-16 13:09:42 +02:00			`public class DetachedSignTest {`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
			`private static SOP sop;`
			`private static byte[] key;`
			`private static byte[] cert;`
			`private static byte[] data;`

			`@BeforeAll`
			`public static void setup() throws IOException {`
			`sop = new SOPImpl();`
			`key = sop.generateKey()`
			`.userId("Alice")`
			`.generate()`
			`.getBytes();`
			`cert = sop.extractCert()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`.getBytes();`
			`data = "Hello, World\n".getBytes(StandardCharsets.UTF_8);`
			`}`

			`@Test`
			`public void signArmored() throws IOException {`
			`byte[] signature = sop.sign()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
Adapt changes from sop-java 8.0.0 2023-11-15 13:40:22 +01:00			`.mode(SignAs.binary)`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.data(data)`
Update SOP implementation to the latest spec version See https://datatracker.ietf.org/doc/html/draft-dkg-openpgp-stateless-cli-03 2022-01-07 14:28:36 +01:00			`.toByteArrayAndResult().getBytes();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
			`assertTrue(new String(signature).startsWith("-----BEGIN PGP SIGNATURE-----"));`

			`List<Verification> verifications = sop.verify()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.cert(cert)`
Replace more occurrences of new Date().getTime() with System.currentTimeMillis() 2023-06-02 00:03:55 +02:00			`.notAfter(new Date(System.currentTimeMillis() + 10000))`
			`.notBefore(new Date(System.currentTimeMillis() - 10000))`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.signatures(signature)`
			`.data(data);`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
Bump sop-java to 6.1.0 2023-04-27 15:15:42 +02:00			`VerificationListAssert.assertThatVerificationList(verifications)`
			`.hasSingleItem()`
			`.hasMode(SignatureMode.binary);`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`}`

			`@Test`
			`public void signUnarmored() throws IOException {`
			`byte[] signature = sop.sign()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`.noArmor()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.data(data)`
Update SOP implementation to the latest spec version See https://datatracker.ietf.org/doc/html/draft-dkg-openpgp-stateless-cli-03 2022-01-07 14:28:36 +01:00			`.toByteArrayAndResult().getBytes();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
			`assertFalse(new String(signature).startsWith("-----BEGIN PGP SIGNATURE-----"));`

			`List<Verification> verifications = sop.verify()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.cert(cert)`
Replace more occurrences of new Date().getTime() with System.currentTimeMillis() 2023-06-02 00:03:55 +02:00			`.notAfter(new Date(System.currentTimeMillis() + 10000))`
			`.notBefore(new Date(System.currentTimeMillis() - 10000))`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.signatures(signature)`
			`.data(data);`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
Bump sop-java to 6.1.0 2023-04-27 15:15:42 +02:00			`VerificationListAssert.assertThatVerificationList(verifications)`
			`.hasSingleItem();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`}`

Add tests for mode to DetachedSignTest 2023-04-18 18:43:56 +02:00			`@Test`
			`public void textSig() throws IOException {`
			`byte[] signature = sop.sign()`
			`.key(key)`
			`.noArmor()`
Adapt changes from sop-java 8.0.0 2023-11-15 13:40:22 +01:00			`.mode(SignAs.text)`
Add tests for mode to DetachedSignTest 2023-04-18 18:43:56 +02:00			`.data(data)`
			`.toByteArrayAndResult().getBytes();`

			`List<Verification> verifications = sop.verify()`
			`.cert(cert)`
Replace more occurrences of new Date().getTime() with System.currentTimeMillis() 2023-06-02 00:03:55 +02:00			`.notAfter(new Date(System.currentTimeMillis() + 10000))`
			`.notBefore(new Date(System.currentTimeMillis() - 10000))`
Add tests for mode to DetachedSignTest 2023-04-18 18:43:56 +02:00			`.signatures(signature)`
			`.data(data);`

Bump sop-java to 6.1.0 2023-04-27 15:15:42 +02:00			`VerificationListAssert.assertThatVerificationList(verifications)`
			`.hasSingleItem()`
			`.hasMode(SignatureMode.text);`
Add tests for mode to DetachedSignTest 2023-04-18 18:43:56 +02:00			`}`

Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`@Test`
			`public void rejectSignatureAsTooOld() throws IOException {`
			`byte[] signature = sop.sign()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
			`.data(data)`
Update SOP implementation to the latest spec version See https://datatracker.ietf.org/doc/html/draft-dkg-openpgp-stateless-cli-03 2022-01-07 14:28:36 +01:00			`.toByteArrayAndResult().getBytes();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
			`assertThrows(SOPGPException.NoSignature.class, () -> sop.verify()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.cert(cert)`
Replace more occurrences of new Date().getTime() with System.currentTimeMillis() 2023-06-02 00:03:55 +02:00			`.notAfter(new Date(System.currentTimeMillis() - 10000)) // Sig is older`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.signatures(signature)`
			`.data(data));`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`}`

			`@Test`
			`public void rejectSignatureAsTooYoung() throws IOException {`
			`byte[] signature = sop.sign()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
			`.data(data)`
Update SOP implementation to the latest spec version See https://datatracker.ietf.org/doc/html/draft-dkg-openpgp-stateless-cli-03 2022-01-07 14:28:36 +01:00			`.toByteArrayAndResult().getBytes();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
			`assertThrows(SOPGPException.NoSignature.class, () -> sop.verify()`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.cert(cert)`
Replace more occurrences of new Date().getTime() with System.currentTimeMillis() 2023-06-02 00:03:55 +02:00			`.notBefore(new Date(System.currentTimeMillis() + 10000)) // Sig is younger`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.signatures(signature)`
			`.data(data));`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`}`

			`@Test`
			`public void mode() throws IOException, PGPException {`
			`byte[] signature = sop.sign()`
Adapt changes from sop-java 8.0.0 2023-11-15 13:40:22 +01:00			`.mode(SignAs.text)`
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`.key(key)`
			`.data(data)`
Update SOP implementation to the latest spec version See https://datatracker.ietf.org/doc/html/draft-dkg-openpgp-stateless-cli-03 2022-01-07 14:28:36 +01:00			`.toByteArrayAndResult().getBytes();`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00
SOP: Add convenience methods to deal with byte arrays 2021-10-10 16:34:17 +02:00			`PGPSignature sig = SignatureUtils.readSignatures(signature).get(0);`
Some more pgpainless-sop tests 2021-10-04 16:28:56 +02:00			`assertEquals(SignatureType.CANONICAL_TEXT_DOCUMENT.getCode(), sig.getSignatureType());`
			`}`

			`}`