Switch the secure storage to the GObject system.

author: Cyrille Bagard <nocbos@gmail.com> 2025-02-10 00:39:50 (GMT)
committer: Cyrille Bagard <nocbos@gmail.com> 2025-02-10 00:39:50 (GMT)
commit: d01509d9afe32c0d98d2efba5e75a9df53ac5de9 (patch)
tree: f4d742bec88c34ee9d04c42d16dc7ac84bc642b7 /tests/glibext
parent: 71d0b80eca2fd2aed5883e2a6a57cb8c03aa27ff (diff)
2 files changed, 158 insertions, 0 deletions
diff --git a/tests/glibext/re.chrysalide.tests.secstorage.gschema.xml b/tests/glibext/re.chrysalide.tests.secstorage.gschema.xml
new file mode 100644
index 0000000..6afa96b
--- /dev/null
+++ b/tests/glibext/re.chrysalide.tests.secstorage.gschema.xml
@@ -0,0 +1,15 @@
+<schemalist>
+
+    <schema id="re.chrysalide.tests.secstorage" path="/re/chrysalide/tests/secstorage/">
+
+        <key name="salt" type="ay">
+            <default>[]</default>
+	    </key>
+
+        <key name="master" type="ay">
+            <default>[]</default>
+	    </key>
+
+    </schema>
+
+</schemalist>
diff --git a/tests/glibext/secstorage.py b/tests/glibext/secstorage.py
new file mode 100644
index 0000000..248b3e3
--- /dev/null
+++ b/tests/glibext/secstorage.py
@@ -0,0 +1,143 @@
+
+import gi
+import os
+import subprocess
+
+from chrysacase import ChrysalideTestCase
+from gi.repository import Gio, GLib
+from pychrysalide.glibext import SecretStorage
+
+
+class TestSecretStorage(ChrysalideTestCase):
+    """TestCase for secret storage features."""
+
+    @classmethod
+    def setUpClass(cls):
+
+        super(TestSecretStorage, cls).setUpClass()
+
+        cls.log('Creating GSettings schema...')
+
+        path = os.path.dirname(os.path.realpath(__file__))
+
+        subprocess.run([ 'glib-compile-schemas', path ])
+
+        os.environ['GSETTINGS_SCHEMA_DIR'] = path + ':' + os.environ['GSETTINGS_SCHEMA_DIR']
+
+
+    @classmethod
+    def tearDownClass(cls):
+
+        super(TestSecretStorage, cls).tearDownClass()
+
+        cls.log('Removing compiled GSettings schema...')
+
+        os.environ['GSETTINGS_SCHEMA_DIR'] = ':'.join(os.environ['GSETTINGS_SCHEMA_DIR'].split(':')[1:])
+
+        path = os.path.dirname(os.path.realpath(__file__))
+
+        filename = os.path.join(path, 'gschemas.compiled')
+
+        if os.path.exists(filename):
+            os.remove(filename)
+
+
+    def testMasterKeyDefinition(self):
+        """Check for cryptographic parameters for secret storage."""
+
+        settings = Gio.Settings.new('re.chrysalide.tests.secstorage')
+
+        storage = SecretStorage(settings)
+
+        settings.reset('master')
+
+        self.assertEqual(len(settings.get_value('master').unpack()), 0)
+
+        self.assertFalse(storage.has_key)
+
+        settings.set_value('master', GLib.Variant('ay', b'ABC'))
+
+        self.assertFalse(storage.has_key)
+
+        settings.set_value('master', GLib.Variant('ay', b'A' * 23))
+
+        self.assertTrue(storage.has_key)
+
+
+    def testMasterKeyCreation(self):
+        """Create and update cryptographic parameters for secret storage."""
+
+        settings = Gio.Settings.new('re.chrysalide.tests.secstorage')
+
+        storage = SecretStorage(settings)
+
+        settings.reset('salt')
+        settings.reset('master')
+
+        self.assertFalse(storage.has_key)
+
+        status = storage.set_password('')
+
+        self.assertTrue(status);
+
+        self.assertTrue(storage.has_key)
+        self.assertTrue(storage.is_locked)
+
+        status = storage.unlock('')
+
+        self.assertTrue(status)
+
+        self.assertFalse(storage.is_locked)
+
+        storage.lock()
+
+        self.assertTrue(storage.is_locked)
+
+        status = storage.unlock('XXX')
+
+        self.assertFalse(status)
+
+        self.assertTrue(storage.is_locked)
+
+
+    def testDataEncryption(self):
+        """Create and update cryptographic parameters for secret storage."""
+
+        settings = Gio.Settings.new('re.chrysalide.tests.secstorage')
+
+        storage = SecretStorage(settings)
+
+        settings.reset('salt')
+        settings.reset('master')
+
+        status = storage.set_password('<s3cUre>')
+
+        self.assertTrue(status);
+
+        status = storage.unlock('<s3cUre>')
+
+        self.assertTrue(status)
+
+
+        original = b'ABC'
+
+        encrypted = storage.encrypt_data(original)
+
+        self.assertIsNotNone(encrypted)
+
+        plain = storage.decrypt_data(encrypted)
+
+        self.assertIsNotNone(plain)
+        self.assertEqual(original, plain)
+
+
+        original = b'A' * 136
+
+        encrypted = storage.encrypt_data(original)
+
+        self.assertIsNotNone(encrypted)
+
+        plain = storage.decrypt_data(encrypted)
+
+        self.assertIsNotNone(plain)
+        self.assertEqual(original, plain)
author	Cyrille Bagard <nocbos@gmail.com>	2025-02-10 00:39:50 (GMT)
committer	Cyrille Bagard <nocbos@gmail.com>	2025-02-10 00:39:50 (GMT)
commit	d01509d9afe32c0d98d2efba5e75a9df53ac5de9 (patch)
tree	f4d742bec88c34ee9d04c42d16dc7ac84bc642b7 /tests/glibext
parent	71d0b80eca2fd2aed5883e2a6a57cb8c03aa27ff (diff)