1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
|
// Copyright Yahoo. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root.
package com.yahoo.vespa.security.tool;
import com.yahoo.security.KeyId;
import com.yahoo.security.KeyUtils;
import com.yahoo.security.SealedSharedKey;
import com.yahoo.security.SharedKeyGenerator;
import org.junit.jupiter.api.Test;
import org.junit.jupiter.api.io.TempDir;
import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.io.File;
import java.io.IOException;
import java.io.PrintStream;
import java.nio.file.Files;
import java.nio.file.Path;
import java.nio.file.Paths;
import java.nio.file.attribute.PosixFilePermissions;
import java.util.Base64;
import java.util.List;
import java.util.Map;
import static com.yahoo.security.ArrayUtils.hex;
import static com.yahoo.security.ArrayUtils.toUtf8Bytes;
import static org.junit.jupiter.api.Assertions.assertEquals;
import static org.junit.jupiter.api.Assertions.assertFalse;
import static org.junit.jupiter.api.Assertions.assertNotEquals;
import static org.junit.jupiter.api.Assertions.assertTrue;
/**
* @author vekterli
*/
public class CryptoToolsTest {
private record ProcessOutput(int exitCode, String stdOut, String stdErr) {}
private static final byte[] EMPTY_BYTES = new byte[0];
@TempDir
public File tmpFolder;
private void verifyStdoutMatchesFile(List<String> args, String expectedFile) throws IOException {
var procOut = runMain(args, EMPTY_BYTES, Map.of());
assertEquals(0, procOut.exitCode());
assertEquals(readTestResource(expectedFile), procOut.stdOut());
}
private void verifyStdoutEquals(List<String> args, String stdIn, String expectedMessage) throws IOException {
var procOut = runMain(args, toUtf8Bytes(stdIn), Map.of());
assertEquals(0, procOut.exitCode());
assertEquals(expectedMessage, procOut.stdOut());
}
private void verifyStderrEquals(List<String> args, String expectedMessage) throws IOException {
var procOut = runMain(args, EMPTY_BYTES, Map.of());
assertEquals(1, procOut.exitCode()); // Assume checking stderr is because of a failure.
assertEquals(expectedMessage, procOut.stdErr());
}
private static void writePrivateKeyFile(Path keyPath, String contents) throws IOException {
var privFilePerms = PosixFilePermissions.fromString("rw-------");
Files.createFile(keyPath, PosixFilePermissions.asFileAttribute(privFilePerms));
Files.writeString(keyPath, contents);
}
private static void assertOnlyFileOwnerHasAccessRights(Path file) throws IOException {
var actualFilePerms = Files.getPosixFilePermissions(file);
var expectedPerms = PosixFilePermissions.fromString("rw-------");
assertEquals(expectedPerms, actualFilePerms);
}
@Test
void top_level_help_page_printed_if_help_option_given() throws IOException {
verifyStdoutMatchesFile(List.of("--help"), "expected-help-output.txt");
}
@Test
void top_level_help_page_printed_if_no_option_given() throws IOException {
verifyStdoutMatchesFile(List.of(), "expected-help-output.txt");
}
@Test
void keygen_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("keygen", "--help"), "expected-keygen-help-output.txt");
}
@Test
void encrypt_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("encrypt", "--help"), "expected-encrypt-help-output.txt");
}
@Test
void decrypt_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("decrypt", "--help"), "expected-decrypt-help-output.txt");
}
@Test
void token_info_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("token-info", "--help"), "expected-token-info-help-output.txt");
}
@Test
void convert_base_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("convert-base", "--help"), "expected-convert-base-help-output.txt");
}
@Test
void reseal_help_printed_if_help_option_given_to_subtool() throws IOException {
verifyStdoutMatchesFile(List.of("reseal", "--help"), "expected-reseal-help-output.txt");
}
@Test
void missing_required_parameter_prints_error_message() throws IOException {
// We don't test all possible input arguments to all tools, since it'd be too closely
// bound to the order in which the implementation checks for argument presence.
// This primarily verifies that IllegalArgumentExceptions thrown by a tool will be caught
// and printed to stderr as expected.
verifyStderrEquals(List.of("keygen"),
"Invalid command line arguments: Required argument '--private-out-file' must be provided\n");
verifyStderrEquals(List.of("keygen", "--private-out-file", "foo.txt"),
"Invalid command line arguments: Required argument '--public-out-file' must be provided\n");
}
// We don't want to casually overwrite key material if someone runs a command twice by accident.
@Test
void keygen_fails_by_default_if_output_file_exists() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
Path pubKeyFile = pathInTemp("pub.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
verifyStderrEquals(List.of("keygen",
"--private-out-file", absPathOf(privKeyFile),
"--public-out-file", absPathOf(pubKeyFile)),
("Invalid command line arguments: Output file '%s' already exists. No keys written. " +
"If you want to overwrite existing files, specify --overwrite-existing.\n")
.formatted(absPathOf(privKeyFile)));
Files.delete(privKeyFile);
Files.writeString(pubKeyFile, TEST_PUB_KEY);
verifyStderrEquals(List.of("keygen",
"--private-out-file", absPathOf(privKeyFile),
"--public-out-file", absPathOf(pubKeyFile)),
("Invalid command line arguments: Output file '%s' already exists. No keys written. " +
"If you want to overwrite existing files, specify --overwrite-existing.\n")
.formatted(absPathOf(pubKeyFile)));
}
@Test
void keygen_fails_if_priv_and_pub_paths_equal() throws IOException {
Path keyFile = pathInTemp("foo.txt");
verifyStderrEquals(List.of("keygen",
"--private-out-file", absPathOf(keyFile),
"--public-out-file", absPathOf(keyFile)),
"Invalid command line arguments: Private and public key output files must be different\n");
}
// ... but we'll allow it if someone enables the foot-gun option.
@Test
void keygen_allowed_if_output_file_exists_and_explicit_overwrite_option_specified() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
Path pubKeyFile = pathInTemp("pub.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
Files.writeString(pubKeyFile, TEST_PUB_KEY);
var procOut = runMain(List.of("keygen",
"--private-out-file", absPathOf(privKeyFile),
"--public-out-file", absPathOf(pubKeyFile),
"--overwrite-existing"));
assertEquals(0, procOut.exitCode());
// Keys are random, so we don't know what they'll end up being. But the likelihood of them
// exactly matching the test keys is effectively and realistically zero.
assertNotEquals(TEST_PRIV_KEY, Files.readString(privKeyFile));
assertNotEquals(TEST_PUB_KEY, Files.readString(pubKeyFile));
}
@Test
void keygen_writes_private_key_with_user_only_rw_permissions() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
Path pubKeyFile = pathInTemp("pub.txt");
var procOut = runMain(List.of("keygen",
"--private-out-file", absPathOf(privKeyFile),
"--public-out-file", absPathOf(pubKeyFile)));
assertEquals(0, procOut.exitCode());
assertOnlyFileOwnerHasAccessRights(privKeyFile);
}
private static final String TEST_PRIV_KEY = "GFg54SaGNCmcSGufZCx68SKLGuAFrASoDeMk3t5AjU6L";
private static final String TEST_PUB_KEY = "5drrkakYLjYSBpr5Haknh13EiCYL36ndMzK4gTJo6pwh";
// Token created for the above public key (matching the above private key), using key id "my key ID"
private static final String TEST_TOKEN = "OntP9gRVAjXeZIr4zkYqRJFcnA993v7ZEE7VbcNs1NcR3HdE7Mp" +
"wlwi3r3anF1kVa5fn7O1CyeHQpBWpdayUTKkrtyFepG6WJrZdE";
private static final String TEST_TOKEN_KEY_ID = "my key ID";
private static final String TEST_TOKEN_SECRET = "1b33b4dcd6a94e5a4a1ee6d208197d01";
@Test
void encrypt_fails_with_error_message_if_no_input_file_is_given() throws IOException {
verifyStderrEquals(List.of("encrypt",
"--output-file", "foo",
"--recipient-public-key", TEST_PUB_KEY,
"--key-id", "1234"),
"Invalid command line arguments: Expected exactly 1 file argument to encrypt\n");
}
@Test
void encrypt_fails_with_error_message_if_input_file_does_not_exist() throws IOException {
verifyStderrEquals(List.of("encrypt",
"no-such-file",
"--output-file", "foo",
"--recipient-public-key", TEST_PUB_KEY,
"--key-id", "1234"),
"Invalid command line arguments: Input file 'no-such-file' does not exist\n");
}
@Test
void decrypt_fails_with_error_message_if_no_input_file_is_given() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
verifyStderrEquals(List.of("decrypt",
"--output-file", "foo",
"--private-key-file", absPathOf(privKeyFile),
"--token", TEST_TOKEN,
"--expected-key-id", TEST_TOKEN_KEY_ID),
"Invalid command line arguments: Expected exactly 1 file argument to decrypt\n");
}
@Test
void decrypt_fails_with_error_message_if_input_file_does_not_exist() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
verifyStderrEquals(List.of("decrypt",
"no-such-file",
"--output-file", "foo",
"--private-key-file", absPathOf(privKeyFile),
"--token", TEST_TOKEN,
"--expected-key-id", TEST_TOKEN_KEY_ID),
"Invalid command line arguments: Input file 'no-such-file' does not exist\n");
}
@Test
void decrypt_fails_with_error_message_if_expected_key_id_does_not_match_key_id_in_token() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
Path inputFile = pathInTemp("input.txt");
Files.writeString(inputFile, "dummy-not-actually-encrypted-data");
verifyStderrEquals(List.of("decrypt",
absPathOf(inputFile),
"--output-file", "foo",
"--private-key-file", absPathOf(privKeyFile),
"--token", TEST_TOKEN,
"--expected-key-id", TEST_TOKEN_KEY_ID + "-wrong"),
"Invalid command line arguments: Key ID specified with --expected-key-id does not " +
"match key ID used when generating the supplied token\n");
}
@Test
void decrypt_fails_with_error_message_if_private_key_file_is_world_readable() throws IOException {
Path privKeyFile = pathInTemp("priv.txt");
Files.writeString(privKeyFile, TEST_PRIV_KEY); // Don't restrict file permissions
Path inputFile = pathInTemp("input.txt");
Files.writeString(inputFile, "dummy-not-actually-encrypted-data");
verifyStderrEquals(List.of("decrypt",
absPathOf(inputFile),
"--output-file", "foo",
"--private-key-file", absPathOf(privKeyFile),
"--token", TEST_TOKEN),
("Invalid command line arguments: Private key file '%s' is insecurely " +
"world-readable; refusing to read it\n").formatted(absPathOf(privKeyFile)));
}
@Test
void token_info_fails_with_error_message_if_no_token_string_given() throws IOException {
verifyStderrEquals(List.of("token-info"),
"Invalid command line arguments: Expected exactly 1 token string argument\n");
}
@Test
void token_info_is_printed_to_stdout() throws IOException {
verifyStdoutMatchesFile(List.of("token-info", TEST_TOKEN), "expected-token-info-output.txt");
}
@Test
void convert_base_reads_stdin_and_prints_conversion_on_stdout() throws IOException {
// Check all possible output encodings
verifyStdoutEquals(List.of("convert-base", "--from", "16", "--to", "16"), "0000287fb4cd", "0000287fb4cd\n");
verifyStdoutEquals(List.of("convert-base", "--from", "16", "--to", "58"), "0000287fb4cd", "11233QC4\n");
verifyStdoutEquals(List.of("convert-base", "--from", "16", "--to", "62"), "0000287fb4cd", "00jyw3x\n");
verifyStdoutEquals(List.of("convert-base", "--from", "16", "--to", "64"), "0000287fb4cd", "AAAof7TN\n");
// Check a single output encoding for each input encoding, making the simplifying assumption that
// decoding and encoding is independent. Base 16 already covered above.
verifyStdoutEquals(List.of("convert-base", "--from", "58", "--to", "16"), "11233QC4", "0000287fb4cd\n");
verifyStdoutEquals(List.of("convert-base", "--from", "62", "--to", "16"), "00jyw3x", "0000287fb4cd\n");
verifyStdoutEquals(List.of("convert-base", "--from", "64", "--to", "16"), "AAAof7TN", "0000287fb4cd\n");
}
@Test
void convert_base_tool_ignores_whitespace_on_stdin() throws IOException {
verifyStdoutEquals(List.of("convert-base", "--from", "16", "--to", "58"), " 0000287fb4cd\n", "11233QC4\n");
}
@Test
void can_reseal_a_token_to_another_recipient() throws IOException {
String recipientPrivKeyStr = "GdgfBZzPDqrCVs5f1xaYJpXVGwJzgdTAF1NNWiDk16YZ";
String recipientPubKeyStr = "AiUirFvFuLJ6s71QBNxiRcctB4umzM6r2roP4Rf8WDKM";
Path privKeyFile = pathInTemp("my-priv.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
var procOut = runMain(List.of(
"reseal",
TEST_TOKEN,
"--private-key-file", absPathOf(privKeyFile),
"--recipient-public-key", recipientPubKeyStr,
"--expected-key-id", TEST_TOKEN_KEY_ID,
"--key-id", "some-recipient-key-id"));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdErr());
var resealedToken = procOut.stdOut().strip();
// Verify that the resealed token wraps the same secret as the original one
var recipientPrivKey = KeyUtils.fromBase58EncodedX25519PrivateKey(recipientPrivKeyStr);
var recvShared = SharedKeyGenerator.fromSealedKey(SealedSharedKey.fromTokenString(resealedToken), recipientPrivKey);
assertEquals(KeyId.ofString("some-recipient-key-id"), recvShared.sealedSharedKey().keyId());
assertEquals(TEST_TOKEN_SECRET, hex(recvShared.secretKey().getEncoded()));
}
@Test
void can_end_to_end_keygen_encrypt_and_decrypt_via_files() throws IOException {
String greatSecret = "Dogs can't look up";
Path secretFile = pathInTemp("secret.txt");
Files.writeString(secretFile, greatSecret);
var privPath = pathInTemp("priv.txt");
var pubPath = pathInTemp("pub.txt");
var procOut = runMain(List.of(
"keygen",
"--private-out-file", absPathOf(privPath),
"--public-out-file", absPathOf(pubPath)));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdOut());
assertEquals("", procOut.stdErr());
assertTrue(Files.exists(privPath));
assertTrue(Files.exists(pubPath));
var encryptedPath = pathInTemp("encrypted.bin");
// TODO support (and test) public key via file
procOut = runMain(List.of(
"encrypt",
absPathOf(secretFile),
"--output-file", absPathOf(encryptedPath),
"--recipient-public-key", Files.readString(pubPath),
"--key-id", "1234"));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdErr());
var token = procOut.stdOut();
assertFalse(token.isBlank());
assertTrue(Files.exists(encryptedPath));
var decryptedPath = pathInTemp("decrypted.txt");
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedPath),
"--output-file", absPathOf(decryptedPath),
"--private-key-file", absPathOf(privPath),
"--expected-key-id", "1234",
"--token", token
));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdOut());
assertEquals("", procOut.stdErr());
assertEquals(greatSecret, Files.readString(decryptedPath));
assertOnlyFileOwnerHasAccessRights(decryptedPath);
}
@Test
void can_end_to_end_keygen_encrypt_and_decrypt_via_stdio_streams() throws IOException {
String greatSecret = "forbidden knowledge about cats.txt";
var privPath = pathInTemp("priv.txt");
var pubPath = pathInTemp("pub.txt");
var procOut = runMain(List.of(
"keygen",
"--private-out-file", absPathOf(privPath),
"--public-out-file", absPathOf(pubPath)));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdOut());
assertEquals("", procOut.stdErr());
assertTrue(Files.exists(privPath));
assertTrue(Files.exists(pubPath));
var encryptedPath = pathInTemp("encrypted.bin");
// Encryption emits token on stdout, so can't support ciphertext output via that channel.
procOut = runMain(List.of(
"encrypt",
"-", // Encrypt stdin
"--output-file", absPathOf(encryptedPath),
"--recipient-public-key", Files.readString(pubPath),
"--key-id", "1234"),
toUtf8Bytes(greatSecret));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdErr());
var token = procOut.stdOut();
assertFalse(token.isBlank());
assertTrue(Files.exists(encryptedPath));
procOut = runMain(List.of(
"decrypt",
"-", // Decrypt stdin
"--output-file", "-", // Plaintext to stdout
"--private-key-file", absPathOf(privPath),
"--expected-key-id", "1234",
"--token", token
), Files.readAllBytes(encryptedPath));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdErr());
assertEquals(greatSecret, procOut.stdOut());
}
@Test
void can_look_up_private_key_by_token_key_id() throws Exception {
var bobPrivKeyStr = "DDYLatvM8NAs2hvccBPCJf7GvxK97AYhG4vf4Vz61mKX";
var alicePrivKeyStr = "AiKHsqgVXVe1dDYAtH23Hn1m82iCJSseiS9aZpam9sPG";
var plaintextData = "the seagulls will attack the discarded french fries at dawn\n";
var encryptedDataB64 = "tLh3dL7Ecq/l4E35IHjS9/oCU2wTVv4KSk+dBVIQxl9PFnCLgpTF" +
"OkhpCLQC9hqHfvco1bsV/+Gq6x2W8tpUoIR1X8GU04rIyBDYaw==";
// Token with key id "bobs-key-1"
var tokenToBob = "1emu5Os1qeuJSkPeyYFKKBQl3r7a9GKyBR0k7QAcqTSmdm6XAPSVn" +
"JJYI2RKVLodmB1ZUAwLDMMrvKtmY2d8Seo0VwA8rzUHTPDI8jO";
// Token with key id "alices-key-1"
var tokenToAlice = "STZC6ERSqAu1wWbV0Dvsw68iMMTye15sNbXz7cU8cuGMARZX5HGBO" +
"qiGwz3O4CmjaaeYfMnDqMJ7rKAA2GUIsKLio8Wp2gjgf3rJjZ3ha";
// Token with key id "eves-key"
var tokenToEve = "5z0i4pTaWzlYFDDyIPl0wO2WWRuL0RTlP3fmM1mcWBYUg28C7jY3R" +
"Kc6ymz3omho75jWR0v6AmcCHioRUwfOGMskAQGG27Lqfhvp";
// Token with key id "/etc/passwd"...
var unsafeIdToken = "6rh1141HZxvToeRYZsTE7K6vmihcrLgBHj75XvTBdkw9nMVvAqXU3" +
"7TkL8vuR40iCQYQFpyDqoorTF4HcfKLNsl7vqgkcje3kE6wCtPa";
var keyDirPath = pathInTemp("my-priv-keys");
Files.createDirectory(keyDirPath);
writePrivateKeyFile(keyDirPath.resolve("bobs-key-1.key"), bobPrivKeyStr);
writePrivateKeyFile(keyDirPath.resolve("alices-key-1.key"), alicePrivKeyStr);
Path encryptedFile = pathInTemp("secret.enc");
Files.write(encryptedFile, Base64.getDecoder().decode(encryptedDataB64));
// First test with explicit key dir argument.
// This shall look up 'bobs-key-1.key' in the private key directory
var procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", "-",
"--private-key-dir", absPathOf(keyDirPath),
"--token", tokenToBob
));
assertEquals("", procOut.stdErr());
assertEquals(0, procOut.exitCode());
assertEquals(plaintextData, procOut.stdOut());
// This shall look up 'alices-key-1.key' in the private key directory
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", "-",
"--private-key-dir", absPathOf(keyDirPath),
"--token", tokenToAlice
));
assertEquals("", procOut.stdErr());
assertEquals(0, procOut.exitCode());
assertEquals(plaintextData, procOut.stdOut());
// This shall look up 'eves-key.key' in the private key directory, which does not exist.
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", "-",
"--private-key-dir", absPathOf(keyDirPath),
"--token", tokenToEve
));
assertEquals("Invalid command line arguments: Could not find a private key " +
"file matching token key ID 'eves-key'\n",
procOut.stdErr());
assertEquals(1, procOut.exitCode());
assertEquals("", procOut.stdOut());
// Should also work if environment variable is set instead of key dir argument
var env = Map.of("VESPA_CRYPTO_CLI_PRIVATE_KEY_DIR", absPathOf(keyDirPath));
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", "-",
"--token", tokenToBob
), EMPTY_BYTES, env);
assertEquals("", procOut.stdErr());
assertEquals(0, procOut.exitCode());
assertEquals(plaintextData, procOut.stdOut());
// Interactive private key reads are triggered when no other key option is used and stdio is left alone
Path decryptedFile = pathInTemp("decrypted.txt");
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", absPathOf(decryptedFile),
"--token", tokenToAlice
), (prompt, args) -> alicePrivKeyStr);
assertEquals("", procOut.stdErr());
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdOut()); // we mock the console input, so nothing output here
assertEquals(plaintextData, Files.readString(decryptedFile));
// Path-unsafe token key IDs are not automatically looked up, but failed.
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedFile),
"--output-file", "-",
"--token", unsafeIdToken
), EMPTY_BYTES, env);
assertEquals("Invalid command line arguments: The token key ID is not comprised " +
"of path-safe characters; refusing to use it\n",
procOut.stdErr());
assertEquals(1, procOut.exitCode());
assertEquals("", procOut.stdOut());
}
@Test
void can_transparently_compress_and_decompress_plaintext() throws IOException {
String substring = "here is some stuff that can be compressed!";
String compressibleSecret = substring.repeat(100);
var secretFile = pathInTemp("secret.txt");
Files.writeString(secretFile, compressibleSecret);
var privKeyFile = pathInTemp("my-priv.txt");
writePrivateKeyFile(privKeyFile, TEST_PRIV_KEY);
var encryptedPath = pathInTemp("encrypted.bin");
var procOut = runMain(List.of(
"encrypt",
absPathOf(secretFile),
"--output-file", absPathOf(encryptedPath),
"--recipient-public-key", TEST_PUB_KEY,
"--key-id", "1234",
"--zstd-compress"));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdErr());
var token = procOut.stdOut();
assertFalse(token.isBlank());
assertTrue(Files.exists(encryptedPath));
assertTrue(Files.size(encryptedPath) < compressibleSecret.length());
var decryptedPath = pathInTemp("decrypted.txt");
procOut = runMain(List.of(
"decrypt",
absPathOf(encryptedPath),
"--output-file", absPathOf(decryptedPath),
"--private-key-file", absPathOf(privKeyFile),
"--token", token,
"--zstd-decompress"
));
assertEquals(0, procOut.exitCode());
assertEquals("", procOut.stdOut());
assertEquals("", procOut.stdErr());
assertEquals(compressibleSecret, Files.readString(decryptedPath));
}
private ProcessOutput runMain(List<String> args) {
return runMain(args, EMPTY_BYTES);
}
private ProcessOutput runMain(List<String> args, byte[] stdInBytes) {
return runMain(args, stdInBytes, Map.of(), null);
}
private ProcessOutput runMain(List<String> args, ConsoleInput consoleInput) {
return runMain(args, EMPTY_BYTES, Map.of(), consoleInput);
}
private ProcessOutput runMain(List<String> args, byte[] stdInBytes, Map<String, String> env) {
return runMain(args, stdInBytes, env, null);
}
private ProcessOutput runMain(List<String> args, byte[] stdInBytes, Map<String, String> env, ConsoleInput consoleInput) {
var stdOutBytes = new ByteArrayOutputStream();
var stdErrBytes = new ByteArrayOutputStream();
var stdIn = new ByteArrayInputStream(stdInBytes);
var stdOut = new PrintStream(stdOutBytes);
var stdError = new PrintStream(stdErrBytes);
int exitCode = new Main(stdIn, stdOut, stdError, consoleInput).execute(args.toArray(new String[0]), env);
stdOut.flush();
stdError.flush();
return new ProcessOutput(exitCode, stdOutBytes.toString(), stdErrBytes.toString());
}
private static String readTestResource(String fileName) throws IOException {
return Files.readString(Paths.get(CryptoToolsTest.class.getResource('/' + fileName).getFile()));
}
private Path pathInTemp(String fileName) {
return tmpFolder.toPath().resolve(fileName);
}
private static String absPathOf(Path path) {
return path.toAbsolutePath().toString();
}
}
|
