mirror of
https://github.com/QuasarApp/qca.git
synced 2025-04-30 05:24:32 +00:00
6d690c0070
Added new cmake variable SHARED_LIBRARY. By default is on. When it is off QCA library, plugins, tools, examples and unittests will be built as static. Also if is used static Qt plugins will be built as static. Tested with Qt4.
606 lines
19 KiB
C++
606 lines
19 KiB
C++
/**
|
|
* Copyright (C) 2006-2007 Brad Hards <bradh@frogmouth.net>
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
*
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
|
|
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
|
|
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
|
|
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
*/
|
|
|
|
#include <QtCrypto>
|
|
#include <QtTest/QtTest>
|
|
|
|
#include <stdlib.h>
|
|
|
|
#ifdef QT_STATICPLUGIN
|
|
#include "import_plugins.h"
|
|
#endif
|
|
|
|
// qt did not introduce qputenv until 4.4, so we'll keep a copy here for 4.2
|
|
// compat
|
|
bool my_qputenv(const char *varName, const QByteArray& value)
|
|
{
|
|
#if defined(_MSC_VER) && _MSC_VER >= 1400
|
|
return _putenv_s(varName, value.constData()) == 0;
|
|
#else
|
|
QByteArray buffer(varName);
|
|
buffer += "=";
|
|
buffer += value;
|
|
return putenv(qstrdup(buffer.constData())) == 0;
|
|
#endif
|
|
}
|
|
|
|
static int qca_setenv(const char *name, const char *value, int overwrite)
|
|
{
|
|
if (!overwrite && !qgetenv(name).isNull()) return 0;
|
|
|
|
if(my_qputenv(name, QByteArray(value)))
|
|
return 0; // success
|
|
else
|
|
return 1; // error
|
|
}
|
|
|
|
// Note; in a real application you get this from a user, but this
|
|
// is a useful trick for a unit test.
|
|
// See the qcatool application or keyloader and eventhandler examples
|
|
// for how to do this properly.
|
|
class PGPPassphraseProvider: public QObject
|
|
{
|
|
Q_OBJECT
|
|
public:
|
|
PGPPassphraseProvider(QObject *parent = 0) : QObject(parent)
|
|
{
|
|
connect(&m_handler, SIGNAL(eventReady(int, const QCA::Event &)),
|
|
SLOT(eh_eventReady(int, const QCA::Event &)));
|
|
m_handler.start();
|
|
}
|
|
|
|
private slots:
|
|
void eh_eventReady(int id, const QCA::Event &event)
|
|
{
|
|
if(event.type() == QCA::Event::Password)
|
|
{
|
|
QCA::SecureArray pass("start");
|
|
m_handler.submitPassword(id, pass);
|
|
}
|
|
else
|
|
{
|
|
m_handler.reject(id);
|
|
}
|
|
}
|
|
|
|
private:
|
|
QCA::EventHandler m_handler;
|
|
};
|
|
|
|
class PGPPassphraseProviderThread : public QCA::SyncThread
|
|
{
|
|
Q_OBJECT
|
|
public:
|
|
~PGPPassphraseProviderThread()
|
|
{
|
|
stop();
|
|
}
|
|
|
|
protected:
|
|
void atStart()
|
|
{
|
|
prov = new PGPPassphraseProvider;
|
|
}
|
|
|
|
void atEnd()
|
|
{
|
|
delete prov;
|
|
}
|
|
|
|
private:
|
|
PGPPassphraseProvider *prov;
|
|
};
|
|
|
|
|
|
class PgpUnitTest : public QObject
|
|
{
|
|
Q_OBJECT
|
|
|
|
private slots:
|
|
void initTestCase();
|
|
void cleanupTestCase();
|
|
void testKeyRing();
|
|
void testMessageSign();
|
|
void testClearsign();
|
|
void testDetachedSign();
|
|
private:
|
|
QCA::Initializer* m_init;
|
|
};
|
|
|
|
void PgpUnitTest::initTestCase()
|
|
{
|
|
// instead of initializing qca once, we will initialize it for every
|
|
// test case. this is the only way to get the keystore subsystem
|
|
// to reload, which we need to do if we want qca-gnupg to respect
|
|
// changes to $GNUPGHOME.
|
|
//m_init = new QCA::Initializer;
|
|
#include "../fixpaths.include"
|
|
}
|
|
|
|
void PgpUnitTest::cleanupTestCase()
|
|
{
|
|
//delete m_init;
|
|
}
|
|
|
|
void PgpUnitTest::testKeyRing()
|
|
{
|
|
QCA::Initializer *qcaInit = new QCA::Initializer;
|
|
|
|
// We test a small keyring - I downloaded a publically available one from
|
|
QByteArray oldGNUPGHOME = qgetenv( "GNUPGHOME" );
|
|
// the Amsterdam Internet Exchange.
|
|
if ( qca_setenv( "GNUPGHOME", "./keys1", 1 ) != 0 )
|
|
{
|
|
QFAIL( "Expected to be able to set the GNUPGHOME environment variable, but couldn't" );
|
|
}
|
|
|
|
// activate the KeyStoreManager
|
|
QCA::KeyStoreManager::start();
|
|
|
|
if ( QCA::isSupported( QStringList( QString( "keystorelist" ) ),
|
|
QString( "qca-gnupg" ) ) )
|
|
{
|
|
QCA::KeyStoreManager keyManager(this);
|
|
keyManager.waitForBusyFinished();
|
|
QStringList storeIds = keyManager.keyStores();
|
|
QVERIFY( storeIds.contains( "qca-gnupg" ) );
|
|
|
|
QCA::KeyStore pgpStore( QString("qca-gnupg"), &keyManager );
|
|
QVERIFY( pgpStore.isValid() );
|
|
QCOMPARE( pgpStore.name(), QString( "GnuPG Keyring" ) );
|
|
QCOMPARE( pgpStore.type(), QCA::KeyStore::PGPKeyring );
|
|
QCOMPARE( pgpStore.id(), QString( "qca-gnupg" ) );
|
|
QEXPECT_FAIL( "", "Write support not yet implemented", Continue );
|
|
QCOMPARE( pgpStore.isReadOnly(), false );
|
|
QCOMPARE( pgpStore.holdsTrustedCertificates(), false );
|
|
QCOMPARE( pgpStore.holdsIdentities(), true );
|
|
QCOMPARE( pgpStore.holdsPGPPublicKeys(), true );
|
|
|
|
QList<QCA::KeyStoreEntry> keylist = pgpStore.entryList();
|
|
QCOMPARE( keylist.count(), 6 );
|
|
QStringList nameList;
|
|
foreach( const QCA::KeyStoreEntry key, keylist ) {
|
|
QCOMPARE( key.isNull(), false );
|
|
QCOMPARE( key.type(), QCA::KeyStoreEntry::TypePGPPublicKey );
|
|
QCOMPARE( key.id().length(), 16 ); // 16 hex digits
|
|
QVERIFY( key.keyBundle().isNull() );
|
|
QVERIFY( key.certificate().isNull() );
|
|
QVERIFY( key.crl().isNull() );
|
|
QVERIFY( key.pgpSecretKey().isNull() );
|
|
QCOMPARE( key.pgpPublicKey().isNull(), false );
|
|
|
|
// We accumulate the names, and check them next
|
|
nameList << key.name();
|
|
}
|
|
QVERIFY( nameList.contains( "Steven Bakker <steven.bakker@ams-ix.net>" ) );
|
|
QVERIFY( nameList.contains( "Romeo Zwart <rz@ams-ix.net>" ) );
|
|
QVERIFY( nameList.contains( "Arien Vijn <arien.vijn@ams-ix.net>" ) );
|
|
QVERIFY( nameList.contains( "Niels Bakker <niels.bakker@ams-ix.net>" ) );
|
|
QVERIFY( nameList.contains( "Henk Steenman <Henk.Steenman@ams-ix.net>" ) );
|
|
QVERIFY( nameList.contains( "Geert Nijpels <geert.nijpels@ams-ix.net>" ) );
|
|
|
|
// TODO: We should test removeEntry() and writeEntry() here.
|
|
}
|
|
|
|
delete qcaInit;
|
|
qcaInit = new QCA::Initializer;
|
|
|
|
// We now test an empty keyring
|
|
if ( qca_setenv( "GNUPGHOME", "./keys2", 1 ) != 0 )
|
|
{
|
|
QFAIL( "Expected to be able to set the GNUPGHOME environment variable, but couldn't" );
|
|
}
|
|
|
|
QCA::KeyStoreManager::start();
|
|
|
|
if ( QCA::isSupported( QStringList( QString( "keystorelist" ) ),
|
|
QString( "qca-gnupg" ) ) )
|
|
{
|
|
QCA::KeyStoreManager keyManager(this);
|
|
keyManager.waitForBusyFinished();
|
|
QStringList storeIds = keyManager.keyStores();
|
|
QVERIFY( storeIds.contains( "qca-gnupg" ) );
|
|
|
|
QCA::KeyStore pgpStore( QString("qca-gnupg"), &keyManager );
|
|
|
|
QList<QCA::KeyStoreEntry> keylist = pgpStore.entryList();
|
|
QCOMPARE( keylist.count(), 0 );
|
|
// TODO: We should test removeEntry() and writeEntry() here.
|
|
}
|
|
|
|
if ( false == oldGNUPGHOME.isNull() )
|
|
{
|
|
qca_setenv( "GNUPGHOME", oldGNUPGHOME.data(), 1 );
|
|
}
|
|
|
|
delete qcaInit;
|
|
}
|
|
|
|
void PgpUnitTest::testMessageSign()
|
|
{
|
|
QCA::Initializer qcaInit;
|
|
|
|
// event handling cannot be used in the same thread as synchronous calls
|
|
// which might require event handling. let's put our event handler in
|
|
// a side thread so that we can write the unit test synchronously.
|
|
PGPPassphraseProviderThread thread;
|
|
thread.start();
|
|
|
|
// This keyring has a private / public key pair
|
|
QByteArray oldGNUPGHOME = qgetenv( "GNUPGHOME" );
|
|
if ( 0 != qca_setenv( "GNUPGHOME", "./keys3", 1 ) ) {
|
|
QFAIL( "Expected to be able to set the GNUPGHOME environment variable, but couldn't" );
|
|
}
|
|
|
|
// activate the KeyStoreManager
|
|
QCA::KeyStoreManager::start();
|
|
|
|
QCA::KeyStoreManager keyManager(this);
|
|
keyManager.waitForBusyFinished();
|
|
|
|
if ( QCA::isSupported( QStringList( QString( "openpgp" ) ), QString( "qca-gnupg" ) ) ||
|
|
QCA::isSupported( QStringList( QString( "keystorelist" ) ), QString( "qca-gnupg" ) ) ) {
|
|
|
|
QStringList storeIds = keyManager.keyStores();
|
|
QVERIFY( storeIds.contains( "qca-gnupg" ) );
|
|
|
|
QCA::KeyStore pgpStore( QString("qca-gnupg"), &keyManager );
|
|
QVERIFY( pgpStore.isValid() );
|
|
|
|
QList<QCA::KeyStoreEntry> keylist = pgpStore.entryList();
|
|
QCOMPARE( keylist.count(), 1 );
|
|
|
|
QCA::KeyStoreEntry myPGPKey = keylist.at(0);
|
|
QCOMPARE( myPGPKey.isNull(), false );
|
|
QCOMPARE( myPGPKey.name(), QString("Qca Test Key (This key is only for QCA unit tests) <qca@example.com>") );
|
|
QCOMPARE( myPGPKey.type(), QCA::KeyStoreEntry::TypePGPSecretKey );
|
|
QCOMPARE( myPGPKey.id(), QString("9E946237DAFCCFF4") );
|
|
QVERIFY( myPGPKey.keyBundle().isNull() );
|
|
QVERIFY( myPGPKey.certificate().isNull() );
|
|
QVERIFY( myPGPKey.crl().isNull() );
|
|
QCOMPARE( myPGPKey.pgpSecretKey().isNull(), false );
|
|
QCOMPARE( myPGPKey.pgpPublicKey().isNull(), false );
|
|
|
|
// first make the SecureMessageKey
|
|
QCA::SecureMessageKey key;
|
|
key.setPGPSecretKey( myPGPKey.pgpSecretKey() );
|
|
QVERIFY( key.havePrivate() );
|
|
|
|
// our data to sign
|
|
QByteArray plain = "Hello, world";
|
|
|
|
// let's do it
|
|
QCA::OpenPGP pgp;
|
|
QCA::SecureMessage msg(&pgp);
|
|
msg.setSigner(key);
|
|
msg.setFormat(QCA::SecureMessage::Ascii);
|
|
msg.startSign(QCA::SecureMessage::Message);
|
|
msg.update(plain);
|
|
msg.end();
|
|
msg.waitForFinished(2000);
|
|
|
|
#if 0
|
|
QString str = QCA::KeyStoreManager::diagnosticText();
|
|
QCA::KeyStoreManager::clearDiagnosticText();
|
|
QStringList lines = str.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < lines.count(); ++n)
|
|
fprintf(stderr, "keystore: %s\n", qPrintable(lines[n]));
|
|
|
|
QString out = msg.diagnosticText();
|
|
QStringList msglines = out.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < msglines.count(); ++n)
|
|
fprintf(stderr, "message: %s\n", qPrintable(msglines[n]));
|
|
#endif
|
|
QByteArray messageData;
|
|
if(msg.success()) {
|
|
messageData = msg.read();
|
|
} else {
|
|
qDebug() << "Failure:" << msg.errorCode();
|
|
QFAIL("Failed to sign in Message format");
|
|
}
|
|
// qDebug() << "Message format data:" << messageData;
|
|
|
|
// OK, now lets verify that the result will verify.
|
|
// let's do it
|
|
QCA::OpenPGP pgp2;
|
|
QCA::SecureMessage msg2(&pgp2);
|
|
msg2.setFormat(QCA::SecureMessage::Ascii);
|
|
msg2.startVerify();
|
|
msg2.update(messageData);
|
|
msg2.end();
|
|
msg2.waitForFinished(2000);
|
|
|
|
QVERIFY(msg2.verifySuccess());
|
|
|
|
if(msg2.success()) {
|
|
QCOMPARE( msg2.read(), plain );
|
|
} else {
|
|
qDebug() << "Failure:" << msg2.errorCode();
|
|
QFAIL("Failed to verify message");
|
|
}
|
|
|
|
// why is this here?
|
|
if ( false == oldGNUPGHOME.isNull() ) {
|
|
qca_setenv( "GNUPGHOME", oldGNUPGHOME.data(), 1 );
|
|
}
|
|
|
|
// now test that if we corrupt the message, it no longer
|
|
// verifies correctly.
|
|
messageData.replace( 'T', 't' );
|
|
messageData.replace( 'w', 'W' );
|
|
QCA::SecureMessage msg3(&pgp2);
|
|
msg3.setFormat(QCA::SecureMessage::Ascii);
|
|
msg3.startVerify();
|
|
msg3.update(messageData);
|
|
msg3.end();
|
|
msg3.waitForFinished(2000);
|
|
|
|
QCOMPARE(msg3.verifySuccess(), false);
|
|
QCOMPARE(msg3.errorCode(), QCA::SecureMessage::ErrorUnknown);
|
|
|
|
}
|
|
|
|
if ( false == oldGNUPGHOME.isNull() ) {
|
|
qca_setenv( "GNUPGHOME", oldGNUPGHOME.data(), 1 );
|
|
}
|
|
}
|
|
|
|
|
|
void PgpUnitTest::testClearsign()
|
|
{
|
|
QCA::Initializer qcaInit;
|
|
|
|
// event handling cannot be used in the same thread as synchronous calls
|
|
// which might require event handling. let's put our event handler in
|
|
// a side thread so that we can write the unit test synchronously.
|
|
PGPPassphraseProviderThread thread;
|
|
thread.start();
|
|
|
|
// This keyring has a private / public key pair
|
|
QByteArray oldGNUPGHOME = qgetenv( "GNUPGHOME" );
|
|
if ( 0 != qca_setenv( "GNUPGHOME", "./keys3", 1 ) ) {
|
|
QFAIL( "Expected to be able to set the GNUPGHOME environment variable, but couldn't" );
|
|
}
|
|
|
|
// activate the KeyStoreManager
|
|
QCA::KeyStoreManager::start();
|
|
|
|
QCA::KeyStoreManager keyManager(this);
|
|
keyManager.waitForBusyFinished();
|
|
|
|
if ( QCA::isSupported( QStringList( QString( "openpgp" ) ), QString( "qca-gnupg" ) ) ||
|
|
QCA::isSupported( QStringList( QString( "keystorelist" ) ), QString( "qca-gnupg" ) ) ) {
|
|
|
|
QStringList storeIds = keyManager.keyStores();
|
|
QVERIFY( storeIds.contains( "qca-gnupg" ) );
|
|
|
|
QCA::KeyStore pgpStore( QString("qca-gnupg"), &keyManager );
|
|
QVERIFY( pgpStore.isValid() );
|
|
|
|
QList<QCA::KeyStoreEntry> keylist = pgpStore.entryList();
|
|
QCOMPARE( keylist.count(), 1 );
|
|
|
|
QCA::KeyStoreEntry myPGPKey = keylist.at(0);
|
|
QCOMPARE( myPGPKey.isNull(), false );
|
|
QCOMPARE( myPGPKey.name(), QString("Qca Test Key (This key is only for QCA unit tests) <qca@example.com>") );
|
|
QCOMPARE( myPGPKey.type(), QCA::KeyStoreEntry::TypePGPSecretKey );
|
|
QCOMPARE( myPGPKey.id(), QString("9E946237DAFCCFF4") );
|
|
QVERIFY( myPGPKey.keyBundle().isNull() );
|
|
QVERIFY( myPGPKey.certificate().isNull() );
|
|
QVERIFY( myPGPKey.crl().isNull() );
|
|
QCOMPARE( myPGPKey.pgpSecretKey().isNull(), false );
|
|
QCOMPARE( myPGPKey.pgpPublicKey().isNull(), false );
|
|
|
|
// first make the SecureMessageKey
|
|
QCA::SecureMessageKey key;
|
|
key.setPGPSecretKey( myPGPKey.pgpSecretKey() );
|
|
QVERIFY( key.havePrivate() );
|
|
|
|
// our data to sign
|
|
QByteArray plain = "Hello, world";
|
|
|
|
// let's do it
|
|
QCA::OpenPGP pgp;
|
|
QCA::SecureMessage msg(&pgp);
|
|
msg.setSigner(key);
|
|
msg.setFormat(QCA::SecureMessage::Ascii);
|
|
msg.startSign(QCA::SecureMessage::Clearsign);
|
|
msg.update(plain);
|
|
msg.end();
|
|
msg.waitForFinished(2000);
|
|
|
|
#if 0
|
|
QString str = QCA::KeyStoreManager::diagnosticText();
|
|
QCA::KeyStoreManager::clearDiagnosticText();
|
|
QStringList lines = str.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < lines.count(); ++n)
|
|
fprintf(stderr, "keystore: %s\n", qPrintable(lines[n]));
|
|
|
|
QString out = msg.diagnosticText();
|
|
QStringList msglines = out.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < msglines.count(); ++n)
|
|
fprintf(stderr, "message: %s\n", qPrintable(msglines[n]));
|
|
#endif
|
|
|
|
QByteArray clearsignedData;
|
|
if(msg.success()) {
|
|
clearsignedData = msg.read();
|
|
} else {
|
|
qDebug() << "Failure:" << msg.errorCode();
|
|
QFAIL("Failed to clearsign");
|
|
}
|
|
|
|
// OK, now lets verify that the result will verify.
|
|
// let's do it
|
|
QCA::OpenPGP pgp2;
|
|
QCA::SecureMessage msg2(&pgp2);
|
|
msg2.setFormat(QCA::SecureMessage::Ascii);
|
|
msg2.startVerify();
|
|
msg2.update(clearsignedData);
|
|
msg2.end();
|
|
msg2.waitForFinished(2000);
|
|
|
|
QVERIFY(msg2.verifySuccess());
|
|
|
|
if(msg2.success()) {
|
|
// The trimmed() call is needed because clearsigning
|
|
// trashes whitespace
|
|
QCOMPARE( QString(msg2.read()).trimmed(), QString(plain).trimmed() );
|
|
} else {
|
|
qDebug() << "Failure:" << msg2.errorCode();
|
|
QFAIL("Failed to verify clearsigned message");
|
|
}
|
|
}
|
|
|
|
if ( false == oldGNUPGHOME.isNull() ) {
|
|
qca_setenv( "GNUPGHOME", oldGNUPGHOME.data(), 1 );
|
|
}
|
|
}
|
|
|
|
|
|
void PgpUnitTest::testDetachedSign()
|
|
{
|
|
QCA::Initializer qcaInit;
|
|
|
|
// event handling cannot be used in the same thread as synchronous calls
|
|
// which might require event handling. let's put our event handler in
|
|
// a side thread so that we can write the unit test synchronously.
|
|
PGPPassphraseProviderThread thread;
|
|
thread.start();
|
|
|
|
// This keyring has a private / public key pair
|
|
QByteArray oldGNUPGHOME = qgetenv( "GNUPGHOME" );
|
|
if ( 0 != qca_setenv( "GNUPGHOME", "./keys3", 1 ) ) {
|
|
QFAIL( "Expected to be able to set the GNUPGHOME environment variable, but couldn't" );
|
|
}
|
|
|
|
// activate the KeyStoreManager
|
|
QCA::KeyStoreManager::start();
|
|
|
|
QCA::KeyStoreManager keyManager(this);
|
|
keyManager.waitForBusyFinished();
|
|
|
|
if ( QCA::isSupported( QStringList( QString( "openpgp" ) ), QString( "qca-gnupg" ) ) ||
|
|
QCA::isSupported( QStringList( QString( "keystorelist" ) ), QString( "qca-gnupg" ) ) ) {
|
|
|
|
QStringList storeIds = keyManager.keyStores();
|
|
QVERIFY( storeIds.contains( "qca-gnupg" ) );
|
|
|
|
QCA::KeyStore pgpStore( QString("qca-gnupg"), &keyManager );
|
|
QVERIFY( pgpStore.isValid() );
|
|
|
|
QList<QCA::KeyStoreEntry> keylist = pgpStore.entryList();
|
|
QCOMPARE( keylist.count(), 1 );
|
|
|
|
QCA::KeyStoreEntry myPGPKey = keylist.at(0);
|
|
QCOMPARE( myPGPKey.isNull(), false );
|
|
QCOMPARE( myPGPKey.name(), QString("Qca Test Key (This key is only for QCA unit tests) <qca@example.com>") );
|
|
QCOMPARE( myPGPKey.type(), QCA::KeyStoreEntry::TypePGPSecretKey );
|
|
QCOMPARE( myPGPKey.id(), QString("9E946237DAFCCFF4") );
|
|
QVERIFY( myPGPKey.keyBundle().isNull() );
|
|
QVERIFY( myPGPKey.certificate().isNull() );
|
|
QVERIFY( myPGPKey.crl().isNull() );
|
|
QCOMPARE( myPGPKey.pgpSecretKey().isNull(), false );
|
|
QCOMPARE( myPGPKey.pgpPublicKey().isNull(), false );
|
|
|
|
// first make the SecureMessageKey
|
|
QCA::SecureMessageKey key;
|
|
key.setPGPSecretKey( myPGPKey.pgpSecretKey() );
|
|
QVERIFY( key.havePrivate() );
|
|
|
|
// our data to sign
|
|
QByteArray plain = "Hello, world";
|
|
|
|
// let's do it
|
|
QCA::OpenPGP pgp;
|
|
QCA::SecureMessage msg(&pgp);
|
|
msg.setSigner(key);
|
|
msg.setFormat(QCA::SecureMessage::Ascii);
|
|
msg.startSign(QCA::SecureMessage::Detached);
|
|
msg.update(plain);
|
|
msg.end();
|
|
msg.waitForFinished(2000);
|
|
|
|
#if 0
|
|
QString str = QCA::KeyStoreManager::diagnosticText();
|
|
QCA::KeyStoreManager::clearDiagnosticText();
|
|
QStringList lines = str.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < lines.count(); ++n)
|
|
fprintf(stderr, "keystore: %s\n", qPrintable(lines[n]));
|
|
|
|
QString out = msg.diagnosticText();
|
|
QStringList msglines = out.split('\n', QString::SkipEmptyParts);
|
|
for(int n = 0; n < msglines.count(); ++n)
|
|
fprintf(stderr, "message: %s\n", qPrintable(msglines[n]));
|
|
#endif
|
|
|
|
QByteArray detachedSignature;
|
|
if(msg.success()) {
|
|
detachedSignature = msg.signature();
|
|
} else {
|
|
qDebug() << "Failure:" << msg.errorCode();
|
|
QFAIL("Failed to create detached signature");
|
|
}
|
|
|
|
// qDebug() << "result:" << detachedSignature;
|
|
|
|
|
|
// OK, now lets verify that the resulting signature will verify.
|
|
// let's do it
|
|
QCA::OpenPGP pgp2;
|
|
QCA::SecureMessage msg2( &pgp2 );
|
|
msg2.setFormat( QCA::SecureMessage::Ascii );
|
|
msg2.startVerify( detachedSignature );
|
|
msg2.update( plain );
|
|
msg2.end();
|
|
msg2.waitForFinished( 2000 );
|
|
|
|
QVERIFY(msg2.verifySuccess());
|
|
|
|
|
|
// If the message is different, it shouldn't verify any more
|
|
QCA::SecureMessage msg3( &pgp2 );
|
|
msg3.setFormat( QCA::SecureMessage::Ascii );
|
|
msg3.startVerify( detachedSignature );
|
|
msg3.update( plain+'1' );
|
|
msg3.end();
|
|
msg3.waitForFinished( 2000 );
|
|
|
|
QCOMPARE( msg3.verifySuccess(), false );
|
|
|
|
QCOMPARE( msg3.errorCode(), QCA::SecureMessage::ErrorUnknown );
|
|
}
|
|
|
|
// Restore things to the way they were....
|
|
if ( false == oldGNUPGHOME.isNull() ) {
|
|
qca_setenv( "GNUPGHOME", oldGNUPGHOME.data(), 1 );
|
|
}
|
|
}
|
|
|
|
|
|
QTEST_MAIN(PgpUnitTest)
|
|
|
|
#include "pgpunittest.moc"
|