mirror of
https://github.com/pgpainless/pgpainless.git
synced 2024-11-04 19:45:59 +01:00
Port WebOfTrustTest to Kotlin
This commit is contained in:
parent
d744e47023
commit
e85da316ce
GPG key ID:
62BEE9264BF17311
3 changed files with 140 additions and 169 deletions
|
|
@ -29,7 +29,7 @@ dependencies {
|
||||||
// JUnit
|
// JUnit
|
||||||
testImplementation "org.junit.jupiter:junit-jupiter-api:$junitVersion"
|
testImplementation "org.junit.jupiter:junit-jupiter-api:$junitVersion"
|
||||||
testImplementation "org.junit.jupiter:junit-jupiter-params:$junitVersion"
|
testImplementation "org.junit.jupiter:junit-jupiter-params:$junitVersion"
|
||||||
testRuntimeOnly "org.junit.jupiter:junit-jupiter-engine:$junitVersion"
|
testImplementation "org.jetbrains.kotlin:kotlin-test-junit5:$kotlinVersion"
|
||||||
|
|
||||||
testFixturesImplementation "org.junit.jupiter:junit-jupiter-api:$junitVersion"
|
testFixturesImplementation "org.junit.jupiter:junit-jupiter-api:$junitVersion"
|
||||||
testFixturesImplementation "org.junit.jupiter:junit-jupiter-params:$junitVersion"
|
testFixturesImplementation "org.junit.jupiter:junit-jupiter-params:$junitVersion"
|
||||||
|
|
|
||||||
|
|
@ -1,168 +0,0 @@
|
||||||
// SPDX-FileCopyrightText: 2023 Paul Schaub <vanitasvitae@fsfe.org>
|
|
||||||
//
|
|
||||||
// SPDX-License-Identifier: Apache-2.0
|
|
||||||
|
|
||||||
package org.pgpainless.wot;
|
|
||||||
|
|
||||||
import static org.junit.jupiter.api.Assertions.assertEquals;
|
|
||||||
import static org.junit.jupiter.api.Assertions.assertNotNull;
|
|
||||||
import static org.junit.jupiter.api.Assertions.assertNull;
|
|
||||||
import static org.junit.jupiter.api.Assertions.assertTrue;
|
|
||||||
|
|
||||||
import java.io.IOException;
|
|
||||||
import java.util.List;
|
|
||||||
|
|
||||||
import org.bouncycastle.openpgp.PGPPublicKeyRing;
|
|
||||||
import org.junit.jupiter.api.Test;
|
|
||||||
import org.pgpainless.key.OpenPgpFingerprint;
|
|
||||||
import org.pgpainless.wot.dijkstra.sq.CertificationSet;
|
|
||||||
import org.pgpainless.wot.dijkstra.sq.Fingerprint;
|
|
||||||
import org.pgpainless.wot.dijkstra.sq.Network;
|
|
||||||
import org.pgpainless.wot.testfixtures.TestCertificateStores;
|
|
||||||
import org.pgpainless.wot.testfixtures.WotTestVectors;
|
|
||||||
import pgp.cert_d.PGPCertificateDirectory;
|
|
||||||
import pgp.certificate_store.exception.BadDataException;
|
|
||||||
|
|
||||||
public class WebOfTrustTest {
|
|
||||||
|
|
||||||
Fingerprint fooBankCa = fingerprintOf(WotTestVectors.getTestVectors().getFreshFooBankCaCert());
|
|
||||||
Fingerprint fooBankEmployee = fingerprintOf(WotTestVectors.getTestVectors().getFreshFooBankEmployeeCert());
|
|
||||||
Fingerprint fooBankAdmin = fingerprintOf(WotTestVectors.getTestVectors().getFreshFooBankAdminCert());
|
|
||||||
Fingerprint barBankCa = fingerprintOf(WotTestVectors.getTestVectors().getFreshBarBankCaCert());
|
|
||||||
Fingerprint barBankEmployee = fingerprintOf(WotTestVectors.getTestVectors().getFreshBarBankEmployeeCert());
|
|
||||||
|
|
||||||
public WebOfTrustTest() throws IOException {
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
private static Fingerprint fingerprintOf(PGPPublicKeyRing cert) {
|
|
||||||
return new Fingerprint(OpenPgpFingerprint.of(cert).toString());
|
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
|
||||||
public void testWithTwoNodesAndOneDelegation() throws BadDataException, IOException, InterruptedException {
|
|
||||||
PGPCertificateDirectory certD = TestCertificateStores.oneDelegationGraph();
|
|
||||||
WebOfTrust wot = new WebOfTrust(certD);
|
|
||||||
wot.initialize();
|
|
||||||
Network network = wot.getNetwork();
|
|
||||||
|
|
||||||
assertEquals(2, network.getNodes().size());
|
|
||||||
|
|
||||||
assertHasEdge(network, fooBankAdmin, barBankCa);
|
|
||||||
assertHasReverseEdge(network, fooBankAdmin, barBankCa);
|
|
||||||
|
|
||||||
assertHasNoEdge(network, barBankCa, fooBankAdmin);
|
|
||||||
assertHasNoReverseEdge(network, barBankCa, fooBankAdmin);
|
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
|
||||||
public void testWithCrossSignedCertificates()
|
|
||||||
throws BadDataException, IOException, InterruptedException {
|
|
||||||
PGPCertificateDirectory certD = TestCertificateStores.disconnectedGraph();
|
|
||||||
WebOfTrust wot = new WebOfTrust(certD);
|
|
||||||
wot.initialize();
|
|
||||||
Network network = wot.getNetwork();
|
|
||||||
|
|
||||||
assertEquals(5, network.getNodes().size());
|
|
||||||
assertTrue(network.getNodes().containsKey(fooBankCa));
|
|
||||||
assertTrue(network.getNodes().containsKey(fooBankEmployee));
|
|
||||||
assertTrue(network.getNodes().containsKey(fooBankAdmin));
|
|
||||||
assertTrue(network.getNodes().containsKey(barBankCa));
|
|
||||||
assertTrue(network.getNodes().containsKey(barBankEmployee));
|
|
||||||
|
|
||||||
// Exemplary edge
|
|
||||||
List<CertificationSet> fooBankCaEdges = network.getEdges().get(fooBankCa);
|
|
||||||
assertEquals(2, fooBankCaEdges.size());
|
|
||||||
|
|
||||||
CertificationSet fbc2fbe = getEdgeFromTo(network, fooBankCa, fooBankEmployee);
|
|
||||||
assertNotNull(fbc2fbe);
|
|
||||||
CertificationSet fbc2fba = getEdgeFromTo(network, fooBankCa, fooBankAdmin);
|
|
||||||
assertNotNull(fbc2fba);
|
|
||||||
|
|
||||||
assertHasIssuerAndTarget(fbc2fba, fooBankCa, fooBankAdmin);
|
|
||||||
assertHasIssuerAndTarget(fbc2fbe, fooBankCa, fooBankEmployee);
|
|
||||||
|
|
||||||
assertHasEdge(network, barBankCa, barBankEmployee);
|
|
||||||
assertHasReverseEdge(network, barBankCa, barBankEmployee);
|
|
||||||
|
|
||||||
assertHasNoEdge(network, fooBankCa, barBankCa);
|
|
||||||
assertHasNoReverseEdge(network, fooBankCa, barBankCa);
|
|
||||||
|
|
||||||
// CHECKSTYLE:OFF
|
|
||||||
System.out.println(wot);
|
|
||||||
// CHECKSTYLE:ON
|
|
||||||
}
|
|
||||||
|
|
||||||
private void assertHasIssuerAndTarget(CertificationSet certifications, Fingerprint issuer, Fingerprint target) {
|
|
||||||
assertEquals(issuer, certifications.getIssuer().getFingerprint());
|
|
||||||
assertEquals(target, certifications.getTarget().getFingerprint());
|
|
||||||
}
|
|
||||||
|
|
||||||
private void assertHasEdge(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
assertNotNull(getEdgeFromTo(network, issuer, target), "Expected edge from " + issuer + " to " + target + " but got none.");
|
|
||||||
}
|
|
||||||
|
|
||||||
private void assertHasReverseEdge(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
assertNotNull(getReverseEdgeFromTo(network, issuer, target), "Expected reverse edge to " + target + " from " + issuer + " but got none.");
|
|
||||||
}
|
|
||||||
|
|
||||||
private void assertHasNoEdge(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
CertificationSet edge = getEdgeFromTo(network, issuer, target);
|
|
||||||
assertNull(edge, "Expected no edge from " + issuer + " to " + target + " but got " + edge);
|
|
||||||
}
|
|
||||||
|
|
||||||
private void assertHasNoReverseEdge(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
CertificationSet reverseEdge = getReverseEdgeFromTo(network, issuer, target);
|
|
||||||
assertNull(reverseEdge, "Expected no reverse edge on " + target + " from " + issuer + " but got " + reverseEdge);
|
|
||||||
}
|
|
||||||
|
|
||||||
private CertificationSet getEdgeFromTo(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
List<CertificationSet> edges = network.getEdges().get(issuer);
|
|
||||||
if (edges == null) {
|
|
||||||
return null;
|
|
||||||
}
|
|
||||||
|
|
||||||
for (CertificationSet certifications : edges) {
|
|
||||||
if (target.equals(certifications.getTarget().getFingerprint())) {
|
|
||||||
return certifications;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return null;
|
|
||||||
}
|
|
||||||
|
|
||||||
private CertificationSet getReverseEdgeFromTo(Network network, Fingerprint issuer, Fingerprint target) {
|
|
||||||
List<CertificationSet> revEdges = network.getReverseEdges().get(target);
|
|
||||||
if (revEdges == null) {
|
|
||||||
return null;
|
|
||||||
}
|
|
||||||
|
|
||||||
for (CertificationSet certifications : revEdges) {
|
|
||||||
if (issuer.equals(certifications.getIssuer().getFingerprint())) {
|
|
||||||
return certifications;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return null;
|
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
|
||||||
public void testWotCreationOfEmptyCertificates() {
|
|
||||||
PGPCertificateDirectory certD = TestCertificateStores.emptyGraph();
|
|
||||||
WebOfTrust wot = new WebOfTrust(certD);
|
|
||||||
wot.initialize();
|
|
||||||
Network network = wot.getNetwork();
|
|
||||||
|
|
||||||
assertTrue(network.getNodes().isEmpty());
|
|
||||||
assertTrue(network.getEdges().isEmpty());
|
|
||||||
assertTrue(network.getReverseEdges().isEmpty());
|
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
|
||||||
public void testWotWithAnomaly() throws BadDataException, IOException, InterruptedException {
|
|
||||||
PGPCertificateDirectory store = TestCertificateStores.anomalyGraph();
|
|
||||||
WebOfTrust wot = new WebOfTrust(store);
|
|
||||||
wot.initialize();
|
|
||||||
Network network = wot.getNetwork();
|
|
||||||
|
|
||||||
assertEquals(1, network.getNodes().size());
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
@ -0,0 +1,139 @@
|
||||||
|
// SPDX-FileCopyrightText: 2023 Paul Schaub <vanitasvitae@fsfe.org>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: Apache-2.0
|
||||||
|
|
||||||
|
package org.pgpainless.wot
|
||||||
|
|
||||||
|
import org.bouncycastle.openpgp.PGPPublicKeyRing
|
||||||
|
|
||||||
|
import org.pgpainless.key.OpenPgpFingerprint
|
||||||
|
import org.pgpainless.wot.dijkstra.sq.CertificationSet
|
||||||
|
import org.pgpainless.wot.dijkstra.sq.Fingerprint
|
||||||
|
import org.pgpainless.wot.dijkstra.sq.Network
|
||||||
|
import org.pgpainless.wot.testfixtures.TestCertificateStores
|
||||||
|
import org.pgpainless.wot.testfixtures.WotTestVectors
|
||||||
|
import kotlin.test.assertEquals
|
||||||
|
import kotlin.test.assertNotNull
|
||||||
|
import kotlin.test.assertNull
|
||||||
|
import kotlin.test.assertTrue
|
||||||
|
import kotlin.test.Test
|
||||||
|
|
||||||
|
class WebOfTrustTest {
|
||||||
|
|
||||||
|
private val fooBankCa = fingerprintOf(WotTestVectors.getTestVectors().freshFooBankCaCert)
|
||||||
|
private val fooBankEmployee = fingerprintOf(WotTestVectors.getTestVectors().freshFooBankEmployeeCert)
|
||||||
|
private val fooBankAdmin = fingerprintOf(WotTestVectors.getTestVectors().freshFooBankAdminCert)
|
||||||
|
private val barBankCa = fingerprintOf(WotTestVectors.getTestVectors().freshBarBankCaCert)
|
||||||
|
private val barBankEmployee = fingerprintOf(WotTestVectors.getTestVectors().freshBarBankEmployeeCert)
|
||||||
|
|
||||||
|
private fun fingerprintOf(cert: PGPPublicKeyRing): Fingerprint {
|
||||||
|
return Fingerprint(OpenPgpFingerprint.of(cert).toString())
|
||||||
|
}
|
||||||
|
|
||||||
|
@Test
|
||||||
|
fun testWithTwoNodesAndOneDelegation() {
|
||||||
|
val certD = TestCertificateStores.oneDelegationGraph()
|
||||||
|
val wot = WebOfTrust(certD)
|
||||||
|
wot.initialize()
|
||||||
|
val network = wot.network
|
||||||
|
|
||||||
|
assertEquals(2, network.nodes.size)
|
||||||
|
assertHasEdge(network, fooBankAdmin, barBankCa)
|
||||||
|
assertHasReverseEdge(network, fooBankAdmin, barBankCa)
|
||||||
|
|
||||||
|
assertHasNoEdge(network, barBankCa, fooBankAdmin)
|
||||||
|
assertHasNoReverseEdge(network, barBankCa, fooBankAdmin)
|
||||||
|
}
|
||||||
|
|
||||||
|
@Test
|
||||||
|
fun testWithCrossSignedCertificates() {
|
||||||
|
val certD = TestCertificateStores.disconnectedGraph()
|
||||||
|
val wot = WebOfTrust(certD)
|
||||||
|
wot.initialize()
|
||||||
|
val network = wot.network
|
||||||
|
|
||||||
|
assertEquals(5, network.nodes.size)
|
||||||
|
assertTrue {
|
||||||
|
listOf(fooBankCa, fooBankEmployee, fooBankAdmin, barBankCa, barBankEmployee).all {
|
||||||
|
network.nodes.containsKey(it)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
val fooBankCaEdges = network.edges[fooBankCa]!!
|
||||||
|
assertEquals(2, fooBankCaEdges.size)
|
||||||
|
|
||||||
|
val fbc2fbe = getEdgeFromTo(network, fooBankCa, fooBankEmployee)
|
||||||
|
assertNotNull(fbc2fbe)
|
||||||
|
|
||||||
|
val fbc2fba = getEdgeFromTo(network, fooBankCa, fooBankAdmin)
|
||||||
|
assertNotNull(fbc2fba)
|
||||||
|
|
||||||
|
assertHasIssuerAndTarget(fbc2fbe, fooBankCa, fooBankEmployee)
|
||||||
|
assertHasIssuerAndTarget(fbc2fba, fooBankCa, fooBankAdmin)
|
||||||
|
|
||||||
|
assertHasEdge(network, barBankCa, barBankEmployee)
|
||||||
|
assertHasReverseEdge(network, barBankCa, barBankEmployee)
|
||||||
|
|
||||||
|
assertHasNoEdge(network, fooBankCa, barBankCa)
|
||||||
|
assertHasNoReverseEdge(network, fooBankCa, barBankCa)
|
||||||
|
}
|
||||||
|
|
||||||
|
@Test
|
||||||
|
fun testWotCreationOfEmptyCertificates() {
|
||||||
|
val certD = TestCertificateStores.emptyGraph()
|
||||||
|
val wot = WebOfTrust(certD)
|
||||||
|
wot.initialize()
|
||||||
|
val network = wot.network
|
||||||
|
|
||||||
|
assertTrue { network.nodes.isEmpty() }
|
||||||
|
assertTrue { network.edges.isEmpty() }
|
||||||
|
assertTrue { network.reverseEdges.isEmpty() }
|
||||||
|
}
|
||||||
|
|
||||||
|
@Test
|
||||||
|
fun testWotWithAnomaly() {
|
||||||
|
val store = TestCertificateStores.anomalyGraph()
|
||||||
|
val wot = WebOfTrust(store)
|
||||||
|
wot.initialize()
|
||||||
|
val network = wot.network
|
||||||
|
|
||||||
|
assertEquals(1, network.nodes.size)
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
private fun assertHasIssuerAndTarget(
|
||||||
|
certifications: CertificationSet,
|
||||||
|
issuer: Fingerprint,
|
||||||
|
target: Fingerprint) {
|
||||||
|
assertEquals(issuer, certifications.issuer.fingerprint)
|
||||||
|
assertEquals(target, certifications.target.fingerprint)
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun assertHasEdge(network: Network, issuer: Fingerprint, target: Fingerprint) {
|
||||||
|
assertNotNull(getEdgeFromTo(network, issuer, target), "Expected edge from $issuer to $target but got none.")
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun assertHasReverseEdge(network: Network, issuer: Fingerprint, target: Fingerprint) {
|
||||||
|
assertNotNull(getReverseEdgeFromTo(network, issuer, target), "Expected reverse edge to $target from $issuer but got none.")
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun assertHasNoEdge(network: Network, issuer: Fingerprint, target: Fingerprint) {
|
||||||
|
val edge = getEdgeFromTo(network, issuer, target)
|
||||||
|
assertNull(edge, "Expected no edge from $issuer to $target but got $edge")
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun assertHasNoReverseEdge(network: Network, issuer: Fingerprint, target: Fingerprint) {
|
||||||
|
val reverseEdge = getReverseEdgeFromTo(network, issuer, target)
|
||||||
|
assertNull(reverseEdge, "Expected no reverse edge on $target from $issuer but got $reverseEdge")
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun getEdgeFromTo(network: Network, issuer: Fingerprint, target: Fingerprint): CertificationSet? {
|
||||||
|
val edges = network.edges[issuer] ?: return null
|
||||||
|
return edges.find { target == it.target.fingerprint }
|
||||||
|
}
|
||||||
|
|
||||||
|
private fun getReverseEdgeFromTo(network: Network, issuer: Fingerprint, target: Fingerprint): CertificationSet? {
|
||||||
|
val revEdges = network.reverseEdges[target] ?: return null
|
||||||
|
return revEdges.find { issuer == it.issuer.fingerprint }
|
||||||
|
}
|
||||||
|
}
|
||||||
Loading…
Reference in a new issue