pgpainless / sop-java / #70

                .toByteArrayAndResult();

        byte[] ciphertext = encResult.getBytes();

        Optional<SessionKey> encSessionKey = encResult.getResult().getSessionKey();

        ByteArrayAndResult<DecryptionResult> decResult = assumeSupported(sop::decrypt)

                .withPassword("sw0rdf1sh")

                .ciphertext(ciphertext)

                .toByteArrayAndResult();

        byte[] plaintext = decResult.getBytes();

        Optional<SessionKey> decSessionKey = decResult.getResult().getSessionKey();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

        if (encSessionKey.isPresent() && decSessionKey.isPresent()) {

            assertEquals(encSessionKey.get(), decSessionKey.get(),

    }

                .toByteArrayAndResult()

                .getBytes();

        ByteArrayAndResult<DecryptionResult> bytesAndResult = assumeSupported(sop::decrypt)

                .withKey(TestData.ALICE_KEY.getBytes(StandardCharsets.UTF_8))

                .ciphertext(ciphertext)

                .toByteArrayAndResult();

        byte[] plaintext = bytesAndResult.getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

        DecryptionResult result = bytesAndResult.getResult();

        if (result.getSessionKey().isPresent()) {

            assertNotNull(result.getSessionKey().get(), "Session key MUST NOT be null.");

    }

                .toByteArrayAndResult()

                .getBytes();

        byte[] plaintext = assumeSupported(sop::decrypt)

                .withKey(TestData.BOB_KEY.getBytes(StandardCharsets.UTF_8))

                .ciphertext(ciphertext)

                .toByteArrayAndResult()

                .getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

    }

        byte[] message = TestData.PLAINTEXT.getBytes(StandardCharsets.UTF_8);

        byte[] ciphertext = assumeSupported(sop::encrypt)

                .withCert(TestData.CAROL_CERT.getBytes(StandardCharsets.UTF_8))

                .plaintext(message)

                .toByteArrayAndResult()

                .getBytes();

        byte[] plaintext = assumeSupported(sop::decrypt)

                .withKey(TestData.CAROL_KEY.getBytes(StandardCharsets.UTF_8))

                .ciphertext(ciphertext)

                .toByteArrayAndResult()

                .getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

    }

                .toByteArrayAndResult()

                .getBytes();

        byte[] armored = assumeSupported(sop::armor)

                .data(ciphertext)

                .getBytes();

        ByteArrayAndResult<DecryptionResult> bytesAndResult = assumeSupported(sop::decrypt)

                .withKey(TestData.ALICE_KEY.getBytes(StandardCharsets.UTF_8))

                .ciphertext(armored)

                .toByteArrayAndResult();

        byte[] plaintext = bytesAndResult.getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

    }

                .toByteArrayAndResult()

                .getBytes();

        ByteArrayAndResult<DecryptionResult> bytesAndResult = assumeSupported(sop::decrypt)

                .withKey(TestData.ALICE_KEY.getBytes(StandardCharsets.UTF_8))

                .verifyWithCert(TestData.ALICE_CERT.getBytes(StandardCharsets.UTF_8))

                .ciphertext(ciphertext)

                .toByteArrayAndResult();

        byte[] plaintext = bytesAndResult.getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

        DecryptionResult result = bytesAndResult.getResult();

        if (result.getSessionKey().isPresent()) {

            assertNotNull(result.getSessionKey().get(), "Session key MUST NOT be null.");

        List<Verification> verificationList = result.getVerifications();

        VerificationListAssert.assertThatVerificationList(verificationList)

                .isNotEmpty()

                .hasSingleItem()

                .issuedBy(TestData.ALICE_SIGNING_FINGERPRINT, TestData.ALICE_PRIMARY_FINGERPRINT)

                .hasModeOrNull(SignatureMode.binary);

    }

                .toByteArrayAndResult()

                .getBytes();

        ByteArrayAndResult<DecryptionResult> bytesAndResult = assumeSupported(sop::decrypt)

                .withKey(TestData.ALICE_KEY.getBytes(StandardCharsets.UTF_8))

                .verifyWithCert(TestData.ALICE_CERT.getBytes(StandardCharsets.UTF_8))

                .ciphertext(ciphertext)

                .toByteArrayAndResult();

        byte[] plaintext = bytesAndResult.getBytes();

        assertArrayEquals(message, plaintext, "Decrypted plaintext does not match original plaintext.");

        DecryptionResult result = bytesAndResult.getResult();

        assertNotNull(result.getSessionKey().get());

        List<Verification> verificationList = result.getVerifications();

        VerificationListAssert.assertThatVerificationList(verificationList)

                .hasSingleItem()

                .issuedBy(TestData.ALICE_SIGNING_FINGERPRINT, TestData.ALICE_PRIMARY_FINGERPRINT)

                .hasModeOrNull(SignatureMode.text);

    }

                .getBytes();

        byte[] cert = assumeSupported(sop::extractCert)

                .key(key)

                .getBytes();

        byte[] message = "Hello, World!\n".getBytes(StandardCharsets.UTF_8);

        byte[] ciphertext = assumeSupported(sop::encrypt)

                .withCert(cert)

                .signWith(key)

                .withKeyPassword(keyPassword)

                .plaintext(message)

                .toByteArrayAndResult()

                .getBytes();

        ByteArrayAndResult<DecryptionResult> bytesAndResult = assumeSupported(sop::decrypt)

                .withKey(key)

                .withKeyPassword(keyPassword)

                .verifyWithCert(cert)

                .ciphertext(ciphertext)

                .toByteArrayAndResult();

        List<Verification> verifications = bytesAndResult.getResult().getVerifications();

        VerificationListAssert.assertThatVerificationList(verifications)

                .isNotEmpty()

                .hasSingleItem();

    }

        assertThrows(SOPGPException.NoSignature.class, () -> {

                    .toByteArrayAndResult();

            if (bytesAndResult.getResult().getVerifications().isEmpty()) {

                throw new SOPGPException.NoSignature("No verifiable signature found.");

        });

    }

        assertThrows(SOPGPException.NoSignature.class, () -> {

                    .toByteArrayAndResult();

            if (bytesAndResult.getResult().getVerifications().isEmpty()) {

                throw new SOPGPException.NoSignature("No verifiable signature found.");

        });

    }

                .toByteArrayAndResult()

                .getBytes());

    }

        assertThrows(SOPGPException.BadData.class, () ->

                        .toByteArrayAndResult()

                        .getBytes());

    }

        List<Profile> profiles = assumeSupported(sop::listProfiles).generateKey();

        List<byte[]> keys = new ArrayList<>();

        List<byte[]> certs = new ArrayList<>();

        for (Profile p : profiles) {

            byte[] k = assumeSupported(sop::generateKey)

                    .profile(p)

                    .userId(p.getName())

                    .generate()

                    .getBytes();

            keys.add(k);

            byte[] c = assumeSupported(sop::extractCert)

                    .key(k)

                    .getBytes();

            certs.add(c);

        }

        byte[] plaintext = "Hello, World!\n".getBytes();

        Encrypt encrypt = assumeSupported(sop::encrypt);

        for (byte[] c : certs) {

            encrypt.withCert(c);

        }

        for (byte[] k : keys) {

            encrypt.signWith(k);

        }

        ByteArrayAndResult<EncryptionResult> encRes = encrypt.plaintext(plaintext)

                .toByteArrayAndResult();

        EncryptionResult eResult = encRes.getResult();

        byte[] ciphertext = encRes.getBytes();

        for (byte[] k : keys) {

            Decrypt decrypt = assumeSupported(sop::decrypt)

                    .withKey(k);

            for (byte[] c : certs) {

                decrypt.verifyWithCert(c);

            }

            ByteArrayAndResult<DecryptionResult> decRes = decrypt.ciphertext(ciphertext)

                    .toByteArrayAndResult();

            DecryptionResult dResult = decRes.getResult();

            byte[] decPlaintext = decRes.getBytes();

            assertArrayEquals(plaintext, decPlaintext, "Decrypted plaintext does not match original plaintext.");

            assertEquals(certs.size(), dResult.getVerifications().size());

        }

    }

                .toByteArrayAndResult()

                .getBytes();

        assertArrayEquals(

                TestData.PLAINTEXT.getBytes(StandardCharsets.UTF_8),

                sop.decrypt()

                        .withKey(KEY_ONLY_STORAGE.getBytes(StandardCharsets.UTF_8))

                        .ciphertext(forStorage)

                        .toByteArrayAndResult()

                        .getBytes());

        assertThrows(SOPGPException.CannotDecrypt.class, () -> sop.decrypt()

                .withKey(KEY_ONLY_COMMS.getBytes(StandardCharsets.UTF_8))

                .ciphertext(forStorage)

                .toByteArrayAndResult()

                .getBytes());

        byte[] forComms = sop.encrypt()

                .encryptFor(EncryptFor.communications)

                .withCert(CERT.getBytes(StandardCharsets.UTF_8))

                .plaintext(TestData.PLAINTEXT.getBytes(StandardCharsets.UTF_8))

                .toByteArrayAndResult()

                .getBytes();

        assertArrayEquals(

                TestData.PLAINTEXT.getBytes(StandardCharsets.UTF_8),

                sop.decrypt()

                        .withKey(KEY_ONLY_COMMS.getBytes(StandardCharsets.UTF_8))

                        .ciphertext(forComms)

                        .toByteArrayAndResult()

                        .getBytes());

        assertThrows(SOPGPException.CannotDecrypt.class, () -> sop.decrypt()

                .withKey(KEY_ONLY_STORAGE.getBytes(StandardCharsets.UTF_8))

                .ciphertext(forComms)

                .toByteArrayAndResult()

                .getBytes());

    }