From 5bdd4f6ad04d05a97011ea55639fd381136d4fb7 Mon Sep 17 00:00:00 2001
From: Paul Schaub <vanitasvitae@fsfe.org>
Date: Thu, 24 Nov 2022 22:09:22 +0100
Subject: [PATCH] Test rejection of messages with unacceptable skesk kek
 algorithm

---
 .../DecryptAndVerifyMessageTest.java          | 21 +++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/pgpainless-core/src/test/java/org/pgpainless/decryption_verification/DecryptAndVerifyMessageTest.java b/pgpainless-core/src/test/java/org/pgpainless/decryption_verification/DecryptAndVerifyMessageTest.java
index f7402238..e939de0a 100644
--- a/pgpainless-core/src/test/java/org/pgpainless/decryption_verification/DecryptAndVerifyMessageTest.java
+++ b/pgpainless-core/src/test/java/org/pgpainless/decryption_verification/DecryptAndVerifyMessageTest.java
@@ -7,6 +7,7 @@ package org.pgpainless.decryption_verification;
 import static org.junit.jupiter.api.Assertions.assertArrayEquals;
 import static org.junit.jupiter.api.Assertions.assertEquals;
 import static org.junit.jupiter.api.Assertions.assertFalse;
+import static org.junit.jupiter.api.Assertions.assertThrows;
 import static org.junit.jupiter.api.Assertions.assertTrue;
 
 import java.io.ByteArrayInputStream;
@@ -18,14 +19,17 @@ import org.bouncycastle.openpgp.PGPException;
 import org.bouncycastle.openpgp.PGPSecretKeyRing;
 import org.bouncycastle.util.io.Streams;
 import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.TestTemplate;
 import org.junit.jupiter.api.extension.ExtendWith;
 import org.pgpainless.PGPainless;
 import org.pgpainless.algorithm.CompressionAlgorithm;
 import org.pgpainless.algorithm.SymmetricKeyAlgorithm;
+import org.pgpainless.exception.MissingDecryptionMethodException;
 import org.pgpainless.key.SubkeyIdentifier;
 import org.pgpainless.key.TestKeys;
 import org.pgpainless.key.util.KeyRingUtils;
+import org.pgpainless.util.Passphrase;
 import org.pgpainless.util.TestAllImplementations;
 
 public class DecryptAndVerifyMessageTest {
@@ -118,4 +122,21 @@ public class DecryptAndVerifyMessageTest {
         assertTrue(metadata.containsVerifiedSignatureFrom(TestKeys.JULIET_FINGERPRINT));
         assertEquals(new SubkeyIdentifier(TestKeys.JULIET_FINGERPRINT), metadata.getDecryptionKey());
     }
+
+    @Test
+    public void testDecryptMessageWithUnacceptableSymmetricAlgorithm() {
+        String ciphertext = "-----BEGIN PGP MESSAGE-----\n" +
+                "Version: PGPainless\n" +
+                "\n" +
+                "jA0EAQMCZv8glrLeXPhg0jgBpMN+E8dCuEDxJnSi8/e+HOKcdYQbgQh/MG4Kn7NK\n" +
+                "wRM5wNOFKn8jbsoC+JalzjwzMJSV+ZM1aQ==\n" +
+                "=9aCQ\n" +
+                "-----END PGP MESSAGE-----";
+        ByteArrayInputStream ciphertextIn = new ByteArrayInputStream(ciphertext.getBytes());
+        assertThrows(MissingDecryptionMethodException.class,
+                () -> PGPainless.decryptAndOrVerify()
+                        .onInputStream(ciphertextIn)
+                        .withOptions(ConsumerOptions.get()
+                                .addDecryptionPassphrase(Passphrase.fromPassword("sw0rdf1sh"))));
+    }
 }