pgpainless/pgpainless-core/src/test/kotlin/org/pgpainless/key/generation/GenerateOpenPgpKeyTest.kt

package org.pgpainless.key.generation

import org.bouncycastle.bcpg.attr.ImageAttribute
import org.bouncycastle.openpgp.PGPUserAttributeSubpacketVectorGenerator
import org.junit.jupiter.api.Test
import org.junit.jupiter.api.assertThrows
import org.pgpainless.PGPainless
import org.pgpainless.algorithm.KeyFlag
import org.pgpainless.algorithm.PublicKeyAlgorithm
import org.pgpainless.key.generation.type.KeyType
import org.pgpainless.key.generation.type.eddsa.EdDSACurve
import org.pgpainless.key.generation.type.rsa.RsaLength
import org.pgpainless.key.generation.type.xdh.XDHSpec
import org.pgpainless.key.protection.SecretKeyRingProtector
import org.pgpainless.policy.Policy
import org.pgpainless.util.DateUtil

class GenerateOpenPgpKeyTest {

    @Test
    fun test() {
        val date = DateUtil.parseUTCDate("2020-04-01 10:00:00 UTC")
        val key =
            GenerateOpenPgpKey(Policy.getInstance(), date)
                .buildV4Key(KeyType.EDDSA(EdDSACurve._Ed25519), listOf(KeyFlag.CERTIFY_OTHER))
                .addUserId("Alice")
                .addUserAttribute(
                    PGPUserAttributeSubpacketVectorGenerator()
                        .apply { setImageAttribute(ImageAttribute.JPEG, byteArrayOf()) }
                        .generate())
                .addEncryptionSubkey(KeyType.XDH(XDHSpec._X25519))
                .addSigningSubkey(KeyType.EDDSA(EdDSACurve._Ed25519))
                .build(SecretKeyRingProtector.unprotectedKeys())
        println(PGPainless.asciiArmor(key))
    }

    @Test
    fun minimal() {
        val key =
            GenerateOpenPgpKey(Policy.getInstance())
                .buildV4Key(KeyType.EDDSA(EdDSACurve._Ed25519), listOf(KeyFlag.CERTIFY_OTHER))
                .build()
        println(PGPainless.asciiArmor(key))
    }

    @Test
    fun minimalWithUserId() {
        val key =
            GenerateOpenPgpKey(Policy.getInstance())
                .buildV4Key(KeyType.EDDSA(EdDSACurve._Ed25519), listOf(KeyFlag.CERTIFY_OTHER))
                .addUserId("Alice <alice@pgpainless.org>")
                .build()
        println(PGPainless.asciiArmor(key))
    }

    @Test
    fun testKeyGenerationWithUnacceptablePKAlgorithmFails() {
        // Policy only allows RSA 4096 algorithms
        val policy =
            Policy(
                publicKeyAlgorithmPolicy =
                    Policy.PublicKeyAlgorithmPolicy(mapOf(PublicKeyAlgorithm.RSA_GENERAL to 4096)))
        val builder = GenerateOpenPgpKey(policy)

        assertThrows<IllegalArgumentException> {
            builder.buildV4Key(KeyType.RSA(RsaLength._3072)) // too weak
        }

        val v4Builder = builder.buildV4Key(KeyType.RSA(RsaLength._4096)) // ok
        assertThrows<IllegalArgumentException> {
            v4Builder.addSigningSubkey(KeyType.RSA(RsaLength._2048)) // too weak
        }
    }

    @Test
    fun testKeyGenerationWithJPEGAttribute() {
        GenerateOpenPgpKey(Policy.getInstance())
            .buildV4Key(KeyType.EDDSA(EdDSACurve._Ed25519))
            .addJpegImage()
    }
}