Add test for ThirdPartyCertificationBuilder

pgpainless-core/src/test/java/org/pgpainless/signature/builder/ThirdPartyCertificationSignatureBuilderTest.java

@@ -0,0 +1,71 @@
+// SPDX-FileCopyrightText: 2021 Paul Schaub <vanitasvitae@fsfe.org>
+//
+// SPDX-License-Identifier: Apache-2.0
+
+package org.pgpainless.signature.builder;
+
+import org.bouncycastle.openpgp.PGPException;
+import org.bouncycastle.openpgp.PGPPublicKeyRing;
+import org.bouncycastle.openpgp.PGPSecretKeyRing;
+import org.bouncycastle.openpgp.PGPSignature;
+import org.junit.jupiter.api.Test;
+import org.pgpainless.PGPainless;
+import org.pgpainless.algorithm.SignatureType;
+import org.pgpainless.implementation.ImplementationFactory;
+import org.pgpainless.key.protection.SecretKeyRingProtector;
+import org.pgpainless.signature.subpackets.BaseSignatureSubpackets;
+import org.pgpainless.signature.subpackets.CertificationSubpackets;
+import org.pgpainless.signature.subpackets.SignatureSubpacketsUtil;
+
+import java.security.InvalidAlgorithmParameterException;
+import java.security.NoSuchAlgorithmException;
+
+import static org.junit.jupiter.api.Assertions.assertArrayEquals;
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertFalse;
+import static org.junit.jupiter.api.Assertions.assertThrows;
+import static org.junit.jupiter.api.Assertions.assertTrue;
+
+public class ThirdPartyCertificationSignatureBuilderTest {
+
+    @Test
+    public void testInvalidSignatureTypeThrows() throws PGPException, InvalidAlgorithmParameterException, NoSuchAlgorithmException {
+        PGPSecretKeyRing secretKeys = PGPainless.generateKeyRing()
+                .modernKeyRing("Alice", null);
+        assertThrows(IllegalArgumentException.class, () ->
+                new ThirdPartyCertificationSignatureBuilder(
+                        SignatureType.BINARY_DOCUMENT, // invalid type
+                        secretKeys.getSecretKey(),
+                        SecretKeyRingProtector.unprotectedKeys()));
+    }
+
+    @Test
+    public void testUserIdCertification() throws PGPException, InvalidAlgorithmParameterException, NoSuchAlgorithmException {
+        PGPSecretKeyRing secretKeys = PGPainless.generateKeyRing()
+                .modernKeyRing("Alice", null);
+
+        PGPPublicKeyRing bobsPublicKeys = PGPainless.extractCertificate(
+                PGPainless.generateKeyRing().modernKeyRing("Bob", null));
+
+        ThirdPartyCertificationSignatureBuilder signatureBuilder = new ThirdPartyCertificationSignatureBuilder(
+                secretKeys.getSecretKey(),
+                SecretKeyRingProtector.unprotectedKeys());
+
+        signatureBuilder.applyCallback(new CertificationSubpackets.Callback() {
+            @Override
+            public void modifyHashedSubpackets(BaseSignatureSubpackets hashedSubpackets) {
+                hashedSubpackets.setExportable(true, false);
+            }
+        });
+
+        PGPSignature certification = signatureBuilder.build(bobsPublicKeys, "Bob");
+        assertEquals(SignatureType.GENERIC_CERTIFICATION, SignatureType.valueOf(certification.getSignatureType()));
+        assertEquals(secretKeys.getPublicKey().getKeyID(), certification.getKeyID());
+        assertArrayEquals(secretKeys.getPublicKey().getFingerprint(), certification.getHashedSubPackets().getIssuerFingerprint().getFingerprint());
+        assertFalse(SignatureSubpacketsUtil.getExportableCertification(certification).isExportable());
+
+        // test sig correctness
+        certification.init(ImplementationFactory.getInstance().getPGPContentVerifierBuilderProvider(), secretKeys.getPublicKey());
+        assertTrue(certification.verifyCertification("Bob", bobsPublicKeys.getPublicKey()));
+    }
+}