keyserver/test/unit/pgp-test.js

'use strict';

const fs = require('fs');
const expect = require('chai').expect;
const log = require('npmlog');
const openpgp = require('openpgp');
const PGP = require('../../src/service/pgp');
const sinon = require('sinon');

describe('PGP Unit Tests', () => {
  let pgp, key1Armored, key2Armored, key3Armored;

  beforeEach(() => {
    key1Armored = fs.readFileSync(__dirname + '/../key1.asc', 'utf8');
    key2Armored = fs.readFileSync(__dirname + '/../key2.asc', 'utf8');
    key3Armored = fs.readFileSync(__dirname + '/../key3.asc', 'utf8');
    pgp = new PGP();
  });

  describe('parseKey', () => {
    it('should should throw error on key parsing', () => {
      let readStub = sinon.stub(openpgp.key, 'readArmored').returns({err:[new Error()]});
      sinon.stub(log, 'error');
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/Failed to parse/);
      expect(log.error.calledOnce).to.be.true;
      log.error.restore();
      readStub.restore();
    });

    it('should should throw error when more than one key', () => {
      let readStub = sinon.stub(openpgp.key, 'readArmored').returns({keys:[{},{}]});
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only one key/);
      readStub.restore();
    });

    it('should should throw error when more than one key', () => {
      let readStub = sinon.stub(openpgp.key, 'readArmored').returns({
        keys: [{
          primaryKey: {},
          verifyPrimaryKey: function() { return false; }
        }]
      });
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/primary key verification/);
      readStub.restore();
    });

    it('should only accept 16 char key id', () => {
      let readStub = sinon.stub(openpgp.key, 'readArmored').returns({
        keys: [{
          primaryKey: {
            fingerprint: '4277257930867231ce393fb8dbc0b3d92b1b86e9',
            getKeyId: function() {
              return {
                toHex:function() { return 'asdf'; }
              };
            }
          },
          verifyPrimaryKey: function() { return openpgp.enums.keyStatus.valid; }
        }]
      });
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only v4 keys/);
      readStub.restore();
    });

    it('should only accept version 4 fingerprint', () => {
      let readStub = sinon.stub(openpgp.key, 'readArmored').returns({
        keys: [{
          primaryKey: {
            fingerprint: '4277257930867231ce393fb8dbc0b3d92b1b86e',
            getKeyId: function() {
              return {
                toHex:function() { return 'dbc0b3d92b1b86e9'; }
              };
            }
          },
          verifyPrimaryKey: function() { return openpgp.enums.keyStatus.valid; }
        }]
      });
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only v4 keys/);
      readStub.restore();
    });

    it('should only accept valid user ids', () => {
      sinon.stub(pgp, 'parseUserIds').returns([]);
      expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/invalid user ids/);
    });

    it('should be able to parse RSA key', () => {
      let params = pgp.parseKey(key1Armored);
      expect(params.keyId).to.equal('dbc0b3d92b1b86e9');
      expect(params.fingerprint).to.equal('4277257930867231ce393fb8dbc0b3d92b1b86e9');
      expect(params.userIds[0].name).to.equal('safewithme testuser');
      expect(params.userIds[0].email).to.equal('safewithme.testuser@gmail.com');
      expect(params.created.getTime()).to.exist;
      expect(params.algorithm).to.equal('rsa_encrypt_sign');
      expect(params.keySize).to.equal(2048);
      expect(params.publicKeyArmored).to.equal(key1Armored);
    });

    it('should be able to parse RSA/ECC key', () => {
      let params = pgp.parseKey(key2Armored);
      expect(params.keyId).to.equal('b8e4105cc9dedc77');
      expect(params.fingerprint).to.equal('e3317db04d3958fd5f662c37b8e4105cc9dedc77');
      expect(params.userIds.length).to.equal(1);
      expect(params.created.getTime()).to.exist;
      expect(params.algorithm).to.equal('rsa_encrypt_sign');
      expect(params.keySize).to.equal(4096);
      expect(params.publicKeyArmored).to.equal(pgp.trimKey(key2Armored));
    });

    it('should be able to parse komplex key', () => {
      let params = pgp.parseKey(key3Armored);
      expect(params.keyId).to.equal('4001a127a90de8e1');
      expect(params.fingerprint).to.equal('04062c70b446e33016e219a74001a127a90de8e1');
      expect(params.userIds.length).to.equal(4);
      expect(params.created.getTime()).to.exist;
      expect(params.algorithm).to.equal('rsa_encrypt_sign');
      expect(params.keySize).to.equal(4096);
      expect(params.publicKeyArmored).to.equal(pgp.trimKey(key3Armored));
    });
  });

  describe('trimKey', () => {
    it('should be the same as key1', () => {
      let trimmed = pgp.trimKey(key1Armored);
      expect(trimmed).to.equal(key1Armored);
    });

    it('should not be the same as key2', () => {
      let trimmed = pgp.trimKey(key2Armored);
      expect(trimmed).to.not.equal(key2Armored);
    });
  });

  describe('validateKeyBlock', () => {
    const KEY_BEGIN = '-----BEGIN PGP PUBLIC KEY BLOCK-----';
    const KEY_END = '-----END PGP PUBLIC KEY BLOCK-----';

    it('should return true for valid key block', () => {
      let input = KEY_BEGIN + KEY_END;
      expect(pgp.validateKeyBlock(input)).to.be.true;
    });

    it('should return false for invalid key block', () => {
      let input = KEY_END + KEY_BEGIN;
      expect(pgp.validateKeyBlock(input)).to.be.false;
    });

    it('should return false for invalid key block', () => {
      let input = KEY_END;
      expect(pgp.validateKeyBlock(input)).to.be.false;
    });

    it('should return false for invalid key block', () => {
      let input = KEY_BEGIN;
      expect(pgp.validateKeyBlock(input)).to.be.false;
    });
  });

  describe('parseUserIds', () => {
    let key;

    beforeEach(() => {
      key = openpgp.key.readArmored(key1Armored).keys[0];
    });

    it('should parse a valid user id', () => {
      let parsed = pgp.parseUserIds(key.users, key.primaryKey);
      expect(parsed[0].name).to.equal('safewithme testuser');
      expect(parsed[0].email).to.equal('safewithme.testuser@gmail.com');
    });

    it('should throw for an empty user ids array', () => {
      expect(pgp.parseUserIds.bind(pgp, [], key.primaryKey)).to.throw(/no user id/);
    });

    it('should return no user id for an invalid signature', () => {
      key.users[0].userId.userid = 'fake@example.com';
      let parsed = pgp.parseUserIds(key.users, key.primaryKey);
      expect(parsed.length).to.equal(0);
    });

    it('should throw for a invalid email address', () => {
      let verifyStub = sinon.stub(key.users[0], 'isValidSelfCertificate').returns(true);
      key.users[0].userId.userid = 'safewithme testuser <safewithme.testusergmail.com>';
      let parsed = pgp.parseUserIds(key.users, key.primaryKey);
      expect(parsed.length).to.equal(0);
      verifyStub.restore();
    });
  });

});
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`'use strict';`

			`const fs = require('fs');`
			`const expect = require('chai').expect;`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`const log = require('npmlog');`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`const openpgp = require('openpgp');`
			`const PGP = require('../../src/service/pgp');`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`const sinon = require('sinon');`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00
			`describe('PGP Unit Tests', () => {`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`let pgp, key1Armored, key2Armored, key3Armored;`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00
			`beforeEach(() => {`
			`key1Armored = fs.readFileSync(__dirname + '/../key1.asc', 'utf8');`
			`key2Armored = fs.readFileSync(__dirname + '/../key2.asc', 'utf8');`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`key3Armored = fs.readFileSync(__dirname + '/../key3.asc', 'utf8');`
			`pgp = new PGP();`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

			`describe('parseKey', () => {`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`it('should should throw error on key parsing', () => {`
			`let readStub = sinon.stub(openpgp.key, 'readArmored').returns({err:[new Error()]});`
			`sinon.stub(log, 'error');`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/Failed to parse/);`
			`expect(log.error.calledOnce).to.be.true;`
			`log.error.restore();`
			`readStub.restore();`
			`});`

			`it('should should throw error when more than one key', () => {`
			`let readStub = sinon.stub(openpgp.key, 'readArmored').returns({keys:[{},{}]});`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only one key/);`
			`readStub.restore();`
			`});`

			`it('should should throw error when more than one key', () => {`
			`let readStub = sinon.stub(openpgp.key, 'readArmored').returns({`
			`keys: [{`
			`primaryKey: {},`
			`verifyPrimaryKey: function() { return false; }`
			`}]`
			`});`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/primary key verification/);`
			`readStub.restore();`
			`});`

			`it('should only accept 16 char key id', () => {`
			`let readStub = sinon.stub(openpgp.key, 'readArmored').returns({`
			`keys: [{`
			`primaryKey: {`
			`fingerprint: '4277257930867231ce393fb8dbc0b3d92b1b86e9',`
			`getKeyId: function() {`
			`return {`
			`toHex:function() { return 'asdf'; }`
			`};`
			`}`
			`},`
			`verifyPrimaryKey: function() { return openpgp.enums.keyStatus.valid; }`
			`}]`
			`});`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only v4 keys/);`
			`readStub.restore();`
			`});`

			`it('should only accept version 4 fingerprint', () => {`
			`let readStub = sinon.stub(openpgp.key, 'readArmored').returns({`
			`keys: [{`
			`primaryKey: {`
			`fingerprint: '4277257930867231ce393fb8dbc0b3d92b1b86e',`
			`getKeyId: function() {`
			`return {`
			`toHex:function() { return 'dbc0b3d92b1b86e9'; }`
			`};`
			`}`
			`},`
			`verifyPrimaryKey: function() { return openpgp.enums.keyStatus.valid; }`
			`}]`
			`});`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/only v4 keys/);`
			`readStub.restore();`
			`});`

			`it('should only accept valid user ids', () => {`
			`sinon.stub(pgp, 'parseUserIds').returns([]);`
			`expect(pgp.parseKey.bind(pgp, key3Armored)).to.throw(/invalid user ids/);`
			`});`

Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`it('should be able to parse RSA key', () => {`
			`let params = pgp.parseKey(key1Armored);`
			`expect(params.keyId).to.equal('dbc0b3d92b1b86e9');`
			`expect(params.fingerprint).to.equal('4277257930867231ce393fb8dbc0b3d92b1b86e9');`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`expect(params.userIds[0].name).to.equal('safewithme testuser');`
			`expect(params.userIds[0].email).to.equal('safewithme.testuser@gmail.com');`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`expect(params.created.getTime()).to.exist;`
			`expect(params.algorithm).to.equal('rsa_encrypt_sign');`
			`expect(params.keySize).to.equal(2048);`
			`expect(params.publicKeyArmored).to.equal(key1Armored);`
			`});`

			`it('should be able to parse RSA/ECC key', () => {`
			`let params = pgp.parseKey(key2Armored);`
			`expect(params.keyId).to.equal('b8e4105cc9dedc77');`
			`expect(params.fingerprint).to.equal('e3317db04d3958fd5f662c37b8e4105cc9dedc77');`
			`expect(params.userIds.length).to.equal(1);`
			`expect(params.created.getTime()).to.exist;`
			`expect(params.algorithm).to.equal('rsa_encrypt_sign');`
			`expect(params.keySize).to.equal(4096);`
			`expect(params.publicKeyArmored).to.equal(pgp.trimKey(key2Armored));`
			`});`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00
			`it('should be able to parse komplex key', () => {`
			`let params = pgp.parseKey(key3Armored);`
			`expect(params.keyId).to.equal('4001a127a90de8e1');`
			`expect(params.fingerprint).to.equal('04062c70b446e33016e219a74001a127a90de8e1');`
			`expect(params.userIds.length).to.equal(4);`
			`expect(params.created.getTime()).to.exist;`
			`expect(params.algorithm).to.equal('rsa_encrypt_sign');`
			`expect(params.keySize).to.equal(4096);`
			`expect(params.publicKeyArmored).to.equal(pgp.trimKey(key3Armored));`
			`});`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

			`describe('trimKey', () => {`
			`it('should be the same as key1', () => {`
			`let trimmed = pgp.trimKey(key1Armored);`
			`expect(trimmed).to.equal(key1Armored);`
			`});`

			`it('should not be the same as key2', () => {`
			`let trimmed = pgp.trimKey(key2Armored);`
			`expect(trimmed).to.not.equal(key2Armored);`
			`});`
			`});`

			`describe('validateKeyBlock', () => {`
			`const KEY_BEGIN = '-----BEGIN PGP PUBLIC KEY BLOCK-----';`
			`const KEY_END = '-----END PGP PUBLIC KEY BLOCK-----';`

			`it('should return true for valid key block', () => {`
			`let input = KEY_BEGIN + KEY_END;`
			`expect(pgp.validateKeyBlock(input)).to.be.true;`
			`});`

			`it('should return false for invalid key block', () => {`
			`let input = KEY_END + KEY_BEGIN;`
			`expect(pgp.validateKeyBlock(input)).to.be.false;`
			`});`

			`it('should return false for invalid key block', () => {`
			`let input = KEY_END;`
			`expect(pgp.validateKeyBlock(input)).to.be.false;`
			`});`

			`it('should return false for invalid key block', () => {`
			`let input = KEY_BEGIN;`
			`expect(pgp.validateKeyBlock(input)).to.be.false;`
			`});`
			`});`

			`describe('parseUserIds', () => {`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`let key;`

			`beforeEach(() => {`
			`key = openpgp.key.readArmored(key1Armored).keys[0];`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

			`it('should parse a valid user id', () => {`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`let parsed = pgp.parseUserIds(key.users, key.primaryKey);`
			`expect(parsed[0].name).to.equal('safewithme testuser');`
			`expect(parsed[0].email).to.equal('safewithme.testuser@gmail.com');`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`it('should throw for an empty user ids array', () => {`
			`expect(pgp.parseUserIds.bind(pgp, [], key.primaryKey)).to.throw(/no user id/);`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`it('should return no user id for an invalid signature', () => {`
			`key.users[0].userId.userid = 'fake@example.com';`
			`let parsed = pgp.parseUserIds(key.users, key.primaryKey);`
			`expect(parsed.length).to.equal(0);`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`

Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`it('should throw for a invalid email address', () => {`
			`let verifyStub = sinon.stub(key.users[0], 'isValidSelfCertificate').returns(true);`
Check valid email address earlier in pgp.parseUserIds 2016-06-10 16:43:09 +00:00			`key.users[0].userId.userid = 'safewithme testuser <safewithme.testusergmail.com>';`
			`let parsed = pgp.parseUserIds(key.users, key.primaryKey);`
			`expect(parsed.length).to.equal(0);`
Cleanup pgp key parsing 2016-06-10 15:47:05 +00:00			`verifyStub.restore();`
Refactor public-key.js to use embedded user id documents 2016-06-09 15:07:51 +00:00			`});`
			`});`

			`});`