mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
29584 Commits
59 Branches
Tree: a5e56c8d40
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a5e56c8d40'
${ noResults }
sonarqube/sonar-plugin-api-impl/src/test/java/org/sonar/api/config/internal/AesCipherTest.java

AesCipherTest.java 5.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.api.config.internal;

  21. 

  22. import java.io.File;

  23. import java.net.URL;

  24. import java.security.InvalidKeyException;

  25. import java.security.Key;

  26. import javax.crypto.BadPaddingException;

  27. import org.apache.commons.codec.binary.Base64;

  28. import org.apache.commons.lang.StringUtils;

  29. import org.junit.Rule;

  30. import org.junit.Test;

  31. import org.junit.rules.ExpectedException;

  32. 

  33. import static org.assertj.core.api.Assertions.assertThat;

  34. import static org.junit.Assert.fail;

  35. 

  36. public class AesCipherTest {

  37. 

  38.   @Rule

  39.   public ExpectedException thrown = ExpectedException.none();

  40. 

  41.   @Test

  42.   public void generateRandomSecretKey() {

  43.     AesCipher cipher = new AesCipher(null);

  44. 

  45.     String key = cipher.generateRandomSecretKey();

  46. 

  47.     assertThat(StringUtils.isNotBlank(key)).isTrue();

  48.     assertThat(Base64.isArrayByteBase64(key.getBytes())).isTrue();

  49.   }

  50. 

  51.   @Test

  52.   public void encrypt() throws Exception {

  53.     AesCipher cipher = new AesCipher(pathToSecretKey());

  54. 

  55.     String encryptedText = cipher.encrypt("this is a secret");

  56. 

  57.     assertThat(StringUtils.isNotBlank(encryptedText)).isTrue();

  58.     assertThat(Base64.isArrayByteBase64(encryptedText.getBytes())).isTrue();

  59.   }

  60. 

  61.   @Test

  62.   public void encrypt_bad_key() throws Exception {

  63.     thrown.expect(RuntimeException.class);

  64.     thrown.expectMessage("Invalid AES key");

  65. 

  66.     URL resource = getClass().getResource("/org/sonar/api/config/internal/AesCipherTest/bad_secret_key.txt");

  67.     AesCipher cipher = new AesCipher(new File(resource.toURI()).getCanonicalPath());

  68. 

  69.     cipher.encrypt("this is a secret");

  70.   }

  71. 

  72.   @Test

  73.   public void decrypt() throws Exception {

  74.     AesCipher cipher = new AesCipher(pathToSecretKey());

  75. 

  76.     // the following value has been encrypted with the key /org/sonar/api/config/internal/AesCipherTest/aes_secret_key.txt

  77.     String clearText = cipher.decrypt("9mx5Zq4JVyjeChTcVjEide4kWCwusFl7P2dSVXtg9IY=");

  78. 

  79.     assertThat(clearText).isEqualTo("this is a secret");

  80.   }

  81. 

  82.   @Test

  83.   public void decrypt_bad_key() throws Exception {

  84.     URL resource = getClass().getResource("/org/sonar/api/config/internal/AesCipherTest/bad_secret_key.txt");

  85.     AesCipher cipher = new AesCipher(new File(resource.toURI()).getCanonicalPath());

  86. 

  87.     try {

  88.       cipher.decrypt("9mx5Zq4JVyjeChTcVjEide4kWCwusFl7P2dSVXtg9IY=");

  89.       fail();

  90. 

  91.     } catch (RuntimeException e) {

  92.       assertThat(e.getCause()).isInstanceOf(InvalidKeyException.class);

  93.     }

  94.   }

  95. 

  96.   @Test

  97.   public void decrypt_other_key() throws Exception {

  98.     URL resource = getClass().getResource("/org/sonar/api/config/internal/AesCipherTest/other_secret_key.txt");

  99.     AesCipher cipher = new AesCipher(new File(resource.toURI()).getCanonicalPath());

  100. 

  101.     try {

  102.       // text encrypted with another key

  103.       cipher.decrypt("9mx5Zq4JVyjeChTcVjEide4kWCwusFl7P2dSVXtg9IY=");

  104.       fail();

  105. 

  106.     } catch (RuntimeException e) {

  107.       assertThat(e.getCause()).isInstanceOf(BadPaddingException.class);

  108.     }

  109.   }

  110. 

  111.   @Test

  112.   public void encryptThenDecrypt() throws Exception {

  113.     AesCipher cipher = new AesCipher(pathToSecretKey());

  114. 

  115.     assertThat(cipher.decrypt(cipher.encrypt("foo"))).isEqualTo("foo");

  116.   }

  117. 

  118.   @Test

  119.   public void testDefaultPathToSecretKey() {

  120.     AesCipher cipher = new AesCipher(null);

  121. 

  122.     String path = cipher.getPathToSecretKey();

  123. 

  124.     assertThat(StringUtils.isNotBlank(path)).isTrue();

  125.     assertThat(new File(path).getName()).isEqualTo("sonar-secret.txt");

  126.   }

  127. 

  128.   @Test

  129.   public void loadSecretKeyFromFile() throws Exception {

  130.     AesCipher cipher = new AesCipher(null);

  131.     Key secretKey = cipher.loadSecretFileFromFile(pathToSecretKey());

  132.     assertThat(secretKey.getAlgorithm()).isEqualTo("AES");

  133.     assertThat(secretKey.getEncoded().length).isGreaterThan(10);

  134.   }

  135. 

  136.   @Test

  137.   public void loadSecretKeyFromFile_trim_content() throws Exception {

  138.     URL resource = getClass().getResource("/org/sonar/api/config/internal/AesCipherTest/non_trimmed_secret_key.txt");

  139.     String path = new File(resource.toURI()).getCanonicalPath();

  140.     AesCipher cipher = new AesCipher(null);

  141. 

  142.     Key secretKey = cipher.loadSecretFileFromFile(path);

  143. 

  144.     assertThat(secretKey.getAlgorithm()).isEqualTo("AES");

  145.     assertThat(secretKey.getEncoded().length).isGreaterThan(10);

  146.   }

  147. 

  148.   @Test

  149.   public void loadSecretKeyFromFile_file_does_not_exist() throws Exception {

  150.     thrown.expect(IllegalStateException.class);

  151. 

  152.     AesCipher cipher = new AesCipher(null);

  153.     cipher.loadSecretFileFromFile("/file/does/not/exist");

  154.   }

  155. 

  156.   @Test

  157.   public void loadSecretKeyFromFile_no_property() throws Exception {

  158.     thrown.expect(IllegalStateException.class);

  159. 

  160.     AesCipher cipher = new AesCipher(null);

  161.     cipher.loadSecretFileFromFile(null);

  162.   }

  163. 

  164.   @Test

  165.   public void hasSecretKey() throws Exception {

  166.     AesCipher cipher = new AesCipher(pathToSecretKey());

  167. 

  168.     assertThat(cipher.hasSecretKey()).isTrue();

  169.   }

  170. 

  171.   @Test

  172.   public void doesNotHaveSecretKey() {

  173.     AesCipher cipher = new AesCipher("/my/twitter/id/is/SimonBrandhof");

  174. 

  175.     assertThat(cipher.hasSecretKey()).isFalse();

  176.   }

  177. 

  178.   private String pathToSecretKey() throws Exception {

  179.     URL resource = getClass().getResource("/org/sonar/api/config/internal/AesCipherTest/aes_secret_key.txt");

  180.     return new File(resource.toURI()).getCanonicalPath();

  181.   }

  182. }