79 lines
3.1 KiB
Java
79 lines
3.1 KiB
Java
// SPDX-FileCopyrightText: 2021 Paul Schaub <vanitasvitae@fsfe.org>
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package org.pgpainless.sop;
|
|
|
|
import static org.junit.jupiter.api.Assertions.assertArrayEquals;
|
|
import static org.junit.jupiter.api.Assertions.assertEquals;
|
|
import static org.junit.jupiter.api.Assertions.assertFalse;
|
|
|
|
import java.io.ByteArrayInputStream;
|
|
import java.io.ByteArrayOutputStream;
|
|
import java.io.IOException;
|
|
import java.nio.charset.StandardCharsets;
|
|
import java.util.List;
|
|
|
|
import org.bouncycastle.openpgp.PGPException;
|
|
import org.bouncycastle.openpgp.PGPSecretKeyRing;
|
|
import org.bouncycastle.util.io.Streams;
|
|
import org.junit.jupiter.api.Test;
|
|
import org.pgpainless.PGPainless;
|
|
import org.pgpainless.algorithm.DocumentSignatureType;
|
|
import org.pgpainless.encryption_signing.EncryptionStream;
|
|
import org.pgpainless.encryption_signing.ProducerOptions;
|
|
import org.pgpainless.encryption_signing.SigningOptions;
|
|
import org.pgpainless.key.OpenPgpV4Fingerprint;
|
|
import org.pgpainless.key.protection.SecretKeyRingProtector;
|
|
import sop.ByteArrayAndResult;
|
|
import sop.SOP;
|
|
import sop.Signatures;
|
|
import sop.Verification;
|
|
|
|
public class DetachInbandSignatureAndMessageTest {
|
|
|
|
@Test
|
|
public void testDetachingOfInbandSignaturesAndMessage() throws IOException, PGPException {
|
|
SOP sop = new SOPImpl();
|
|
byte[] key = sop.generateKey()
|
|
.userId("Alice <alice@pgpainless.org>")
|
|
.generate()
|
|
.getBytes();
|
|
byte[] cert = sop.extractCert().key(key).getBytes();
|
|
PGPSecretKeyRing secretKey = PGPainless.readKeyRing().secretKeyRing(key);
|
|
|
|
// Create a cleartext signed message
|
|
byte[] data = "Hello, World\n".getBytes(StandardCharsets.UTF_8);
|
|
ByteArrayOutputStream out = new ByteArrayOutputStream();
|
|
EncryptionStream signingStream = PGPainless.encryptAndOrSign()
|
|
.onOutputStream(out)
|
|
.withOptions(
|
|
ProducerOptions.sign(
|
|
SigningOptions.get()
|
|
.addDetachedSignature(SecretKeyRingProtector.unprotectedKeys(),
|
|
secretKey, DocumentSignatureType.BINARY_DOCUMENT)
|
|
).setCleartextSigned());
|
|
|
|
Streams.pipeAll(new ByteArrayInputStream(data), signingStream);
|
|
signingStream.close();
|
|
|
|
// actually detach the message
|
|
ByteArrayAndResult<Signatures> detachedMsg = sop.detachInbandSignatureAndMessage()
|
|
.message(out.toByteArray())
|
|
.toByteArrayAndResult();
|
|
|
|
byte[] message = detachedMsg.getBytes();
|
|
byte[] signature = detachedMsg.getResult().getBytes();
|
|
|
|
List<Verification> verificationList = sop.verify()
|
|
.cert(cert)
|
|
.signatures(signature)
|
|
.data(message);
|
|
|
|
assertFalse(verificationList.isEmpty());
|
|
assertEquals(1, verificationList.size());
|
|
assertEquals(new OpenPgpV4Fingerprint(secretKey).toString(), verificationList.get(0).getSigningCertFingerprint());
|
|
assertArrayEquals(data, message);
|
|
}
|
|
}
|