passforios-gopenpgp/crypto/key_test.go

package crypto

import (
	"encoding/base64"
	"regexp"
	"strings"
	"testing"

	"github.com/ProtonMail/gopenpgp/constants"
	"github.com/stretchr/testify/assert"
)

const name = "richard.stallman"
const domain = "protonmail.ch"

var passphrase = "I love GNU"
var rsaKey, ecKey, rsaPublicKey, ecPublicKey string

var (
	rsaPrivateKeyRing *KeyRing
	ecPrivateKeyRing  *KeyRing
	rsaPublicKeyRing  *KeyRing
	ecPublicKeyRing   *KeyRing
)

func TestGenerateKeys(t *testing.T) {
	rsaKey, err = pgp.GenerateKey(name, domain, passphrase, "rsa", 1024)
	if err != nil {
		t.Fatal("Cannot generate RSA key:", err)
	}

	ecKey, err = pgp.GenerateKey(name, domain, passphrase, "x25519", 256)
	if err != nil {
		t.Fatal("Cannot generate EC key:", err)
	}

	rTest := regexp.MustCompile("(?s)^-----BEGIN PGP PRIVATE KEY BLOCK-----.*-----END PGP PRIVATE KEY BLOCK-----$")
	assert.Regexp(t, rTest, rsaKey)
	assert.Regexp(t, rTest, ecKey)
}

func TestGenerateKeyRings(t *testing.T) {
	rsaPrivateKeyRing, err = ReadArmoredKeyRing(strings.NewReader(rsaKey))
	if err != nil {
		t.Fatal("Cannot read RSA key:", err)
	}

	rsaPublicKey, err = rsaPrivateKeyRing.GetArmoredPublicKey()
	if err != nil {
		t.Fatal("Cannot extract RSA public key:", err)
	}

	rsaPublicKeyRing, err = ReadArmoredKeyRing(strings.NewReader(rsaPublicKey))
	if err != nil {
		t.Fatal("Cannot read RSA public key:", err)
	}

	err = rsaPrivateKeyRing.Unlock([]byte(passphrase))
	if err != nil {
		t.Fatal("Cannot decrypt RSA key:", err)
	}

	ecPrivateKeyRing, err = ReadArmoredKeyRing(strings.NewReader(ecKey))
	if err != nil {
		t.Fatal("Cannot read EC key:", err)
	}

	ecPublicKey, err = ecPrivateKeyRing.GetArmoredPublicKey()
	if err != nil {
		t.Fatal("Cannot extract EC public key:", err)
	}

	ecPublicKeyRing, err = ReadArmoredKeyRing(strings.NewReader(ecPublicKey))
	if err != nil {
		t.Fatal("Cannot read EC public key:", err)
	}

	err = ecPrivateKeyRing.Unlock([]byte(passphrase))
	if err != nil {
		t.Fatal("Cannot decrypt EC key:", err)
	}
}

func TestEncryptDecryptKeys(t *testing.T) {
	var pass, _ = base64.StdEncoding.DecodeString("H2CAwzpdexjxXucVYMERDiAc/td8aGPrr6ZhfMnZlLI=")
	var testSymmetricKey = &SymmetricKey{
		Key:  pass,
		Algo: constants.AES256,
	}

	packet, err := rsaPublicKeyRing.EncryptKey(testSymmetricKey)
	if err != nil {
		t.Fatal("Cannot encrypt keypacket with RSA keyring", err)
	}
	rsaTestSymmetricKey, err := DecryptAttKey(rsaPrivateKeyRing, packet)
	if err != nil {
		t.Fatal("Cannot decrypt keypacket with RSA keyring", err)
	}
	assert.Exactly(t, testSymmetricKey, rsaTestSymmetricKey)

	packet, err = ecPublicKeyRing.EncryptKey(testSymmetricKey)
	if err != nil {
		t.Fatal("Cannot encrypt keypacket with EC keyring", err)
	}
	ecTestSymmetricKey, err := DecryptAttKey(ecPrivateKeyRing, packet)
	if err != nil {
		t.Fatal("Cannot decrypt keypacket with EC keyring", err)
	}
	assert.Exactly(t, testSymmetricKey, ecTestSymmetricKey)
}

func TestUpdatePrivateKeysPassphrase(t *testing.T) {
	newPassphrase := "I like GNU"
	rsaKey, err = pgp.UpdatePrivateKeyPassphrase(rsaKey, passphrase, newPassphrase)
	if err != nil {
		t.Fatal("Error in changing RSA key's passphrase:", err)
	}

	ecKey, err = pgp.UpdatePrivateKeyPassphrase(ecKey, passphrase, newPassphrase)
	if err != nil {
		t.Fatal("Error in changing EC key's passphrase:", err)
	}

	passphrase = newPassphrase
}

func ExampleCheckKeys() {
	_, _ = pgp.CheckKey(readTestFile("keyring_publicKey", false))
	// Output:
	// SubKey:37e4bcf09b36e34012d10c0247dc67b5cb8267f6
	// PrimaryKey:6e8ba229b0cccaf6962f97953eb6259edf21df24
}

func TestIsKeyExpired(t *testing.T) {
	rsaRes, err := pgp.IsKeyExpired(rsaPublicKey)
	if err != nil {
		t.Fatal("Error in checking expiration of RSA key:", err)
	}

	ecRes, err := pgp.IsKeyExpired(ecPublicKey)
	if err != nil {
		t.Fatal("Error in checking expiration of EC key:", err)
	}

	assert.Exactly(t, false, rsaRes)
	assert.Exactly(t, false, ecRes)

	pgp.UpdateTime(1557754627) // 2019-05-13T13:37:07+00:00

	expRes, expErr := pgp.IsKeyExpired(readTestFile("key_expiredKey", false))
	futureRes, futureErr := pgp.IsKeyExpired(readTestFile("key_futureKey", false))

	assert.Exactly(t, true, expRes)
	assert.Exactly(t, true, futureRes)
	assert.EqualError(t, expErr, "keys expired")
	assert.EqualError(t, futureErr, "keys expired")
}
Add new key tests 2019-05-09 20:12:28 +02:00			`package crypto`

			`import (`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`"encoding/base64"`
Add new key tests 2019-05-09 20:12:28 +02:00			`"regexp"`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`"strings"`
Add new key tests 2019-05-09 20:12:28 +02:00			`"testing"`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00
Rename package to gopenpgp 2019-05-13 14:07:18 +02:00			`"github.com/ProtonMail/gopenpgp/constants"`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`"github.com/stretchr/testify/assert"`
Add new key tests 2019-05-09 20:12:28 +02:00			`)`

			`const name = "richard.stallman"`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`const domain = "protonmail.ch"`
Add new key tests 2019-05-09 20:12:28 +02:00
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`var passphrase = "I love GNU"`
			`var rsaKey, ecKey, rsaPublicKey, ecPublicKey string`
Add new key tests 2019-05-09 20:12:28 +02:00
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`var (`
			`rsaPrivateKeyRing *KeyRing`
			`ecPrivateKeyRing *KeyRing`
			`rsaPublicKeyRing *KeyRing`
			`ecPublicKeyRing *KeyRing`
			`)`

			`func TestGenerateKeys(t *testing.T) {`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`rsaKey, err = pgp.GenerateKey(name, domain, passphrase, "rsa", 1024)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot generate RSA key:", err)`
			`}`

Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`ecKey, err = pgp.GenerateKey(name, domain, passphrase, "x25519", 256)`
Add new key tests 2019-05-09 20:12:28 +02:00			`if err != nil {`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`t.Fatal("Cannot generate EC key:", err)`
Add new key tests 2019-05-09 20:12:28 +02:00			`}`

			`rTest := regexp.MustCompile("(?s)^-----BEGIN PGP PRIVATE KEY BLOCK-----.*-----END PGP PRIVATE KEY BLOCK-----$")`
			`assert.Regexp(t, rTest, rsaKey)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`assert.Regexp(t, rTest, ecKey)`
Add new key tests 2019-05-09 20:12:28 +02:00			`}`

Create key.go unit tests 2019-05-13 14:06:54 +00:00			`func TestGenerateKeyRings(t *testing.T) {`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`rsaPrivateKeyRing, err = ReadArmoredKeyRing(strings.NewReader(rsaKey))`
Add new key tests 2019-05-09 20:12:28 +02:00			`if err != nil {`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`t.Fatal("Cannot read RSA key:", err)`
Add new key tests 2019-05-09 20:12:28 +02:00			`}`

refactor functions and merge in keyring 2019-05-14 08:07:49 +00:00			`rsaPublicKey, err = rsaPrivateKeyRing.GetArmoredPublicKey()`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot extract RSA public key:", err)`
			`}`

go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`rsaPublicKeyRing, err = ReadArmoredKeyRing(strings.NewReader(rsaPublicKey))`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot read RSA public key:", err)`
			`}`

			`err = rsaPrivateKeyRing.Unlock([]byte(passphrase))`
			`if err != nil {`
			`t.Fatal("Cannot decrypt RSA key:", err)`
			`}`

go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`ecPrivateKeyRing, err = ReadArmoredKeyRing(strings.NewReader(ecKey))`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot read EC key:", err)`
			`}`

refactor functions and merge in keyring 2019-05-14 08:07:49 +00:00			`ecPublicKey, err = ecPrivateKeyRing.GetArmoredPublicKey()`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot extract EC public key:", err)`
			`}`

go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`ecPublicKeyRing, err = ReadArmoredKeyRing(strings.NewReader(ecPublicKey))`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot read EC public key:", err)`
			`}`

			`err = ecPrivateKeyRing.Unlock([]byte(passphrase))`
			`if err != nil {`
			`t.Fatal("Cannot decrypt EC key:", err)`
			`}`
			`}`

			`func TestEncryptDecryptKeys(t *testing.T) {`
			`var pass, _ = base64.StdEncoding.DecodeString("H2CAwzpdexjxXucVYMERDiAc/td8aGPrr6ZhfMnZlLI=")`
			`var testSymmetricKey = &SymmetricKey{`
			`Key: pass,`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`Algo: constants.AES256,`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`packet, err := rsaPublicKeyRing.EncryptKey(testSymmetricKey)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot encrypt keypacket with RSA keyring", err)`
			`}`
			`rsaTestSymmetricKey, err := DecryptAttKey(rsaPrivateKeyRing, packet)`
			`if err != nil {`
			`t.Fatal("Cannot decrypt keypacket with RSA keyring", err)`
			`}`
			`assert.Exactly(t, testSymmetricKey, rsaTestSymmetricKey)`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`packet, err = ecPublicKeyRing.EncryptKey(testSymmetricKey)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Cannot encrypt keypacket with EC keyring", err)`
			`}`
			`ecTestSymmetricKey, err := DecryptAttKey(ecPrivateKeyRing, packet)`
			`if err != nil {`
			`t.Fatal("Cannot decrypt keypacket with EC keyring", err)`
			`}`
			`assert.Exactly(t, testSymmetricKey, ecTestSymmetricKey)`
			`}`

			`func TestUpdatePrivateKeysPassphrase(t *testing.T) {`
			`newPassphrase := "I like GNU"`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`rsaKey, err = pgp.UpdatePrivateKeyPassphrase(rsaKey, passphrase, newPassphrase)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Error in changing RSA key's passphrase:", err)`
			`}`

Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`ecKey, err = pgp.UpdatePrivateKeyPassphrase(ecKey, passphrase, newPassphrase)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Error in changing EC key's passphrase:", err)`
			`}`

			`passphrase = newPassphrase`
			`}`

Add signature tests, fix tests 2019-05-14 16:08:25 +00:00			`func ExampleCheckKeys() {`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`_, _ = pgp.CheckKey(readTestFile("keyring_publicKey", false))`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`// Output:`
			`// SubKey:37e4bcf09b36e34012d10c0247dc67b5cb8267f6`
			`// PrimaryKey:6e8ba229b0cccaf6962f97953eb6259edf21df24`
			`}`

			`func TestIsKeyExpired(t *testing.T) {`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`rsaRes, err := pgp.IsKeyExpired(rsaPublicKey)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Error in checking expiration of RSA key:", err)`
			`}`

Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`ecRes, err := pgp.IsKeyExpired(ecPublicKey)`
Create key.go unit tests 2019-05-13 14:06:54 +00:00			`if err != nil {`
			`t.Fatal("Error in checking expiration of EC key:", err)`
			`}`

			`assert.Exactly(t, false, rsaRes)`
			`assert.Exactly(t, false, ecRes)`
refactor functions and merge in keyring 2019-05-14 08:07:49 +00:00
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`pgp.UpdateTime(1557754627) // 2019-05-13T13:37:07+00:00`
refactor functions and merge in keyring 2019-05-14 08:07:49 +00:00
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`expRes, expErr := pgp.IsKeyExpired(readTestFile("key_expiredKey", false))`
			`futureRes, futureErr := pgp.IsKeyExpired(readTestFile("key_futureKey", false))`
refactor functions and merge in keyring 2019-05-14 08:07:49 +00:00
			`assert.Exactly(t, true, expRes)`
			`assert.Exactly(t, true, futureRes)`
			`assert.EqualError(t, expErr, "keys expired")`
			`assert.EqualError(t, futureErr, "keys expired")`
Add new key tests 2019-05-09 20:12:28 +02:00			`}`