keyrack 0.3.0.pre → 0.3.0

data/lib/keyrack/utils.rb

@@ -7,23 +7,5 @@ module Keyrack
       end
       result
     end
-
-    def self.generate_rsa_key(password)
-      rsa = OpenSSL::PKey::RSA.new(4096)
-      cipher = OpenSSL::Cipher::Cipher.new('des3')
-      [rsa, rsa.to_pem(cipher, password)]
-    end
-
-    def self.generate_aes_key
-      SecureRandom.base64(128)[0..127]
-    end
-
-    def self.open_rsa_key(path, password)
-      OpenSSL::PKey::RSA.new(File.read(path), password)
-    end
-
-    def self.open_aes_data(path, rsa_key)
-      Marshal.load(rsa_key.private_decrypt(File.read(path)))
-    end
   end
 end

data/lib/keyrack/version.rb

@@ -0,0 +1,3 @@
+module Keyrack
+  VERSION = "0.3.0"
+end

data/test/helper.rb

@@ -10,7 +10,7 @@ rescue Bundler::BundlerError => e
   exit e.status_code
 end
 require 'test/unit'
-require 'mocha'
+require 'mocha/setup'
 
 $LOAD_PATH.unshift(File.dirname(__FILE__))
 $LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
@@ -34,3 +34,13 @@ class Test::Unit::TestCase
     end
   end
 end
+
+class SequenceHelper < Object
+  def initialize(name)
+    @seq = Mocha::Sequence.new(name)
+  end
+
+  def <<(object)
+    object.in_sequence(@seq)
+  end
+end

data/test/integration/test_interactive_console.rb

@@ -0,0 +1,139 @@
+require 'helper'
+require 'pty'
+require 'stringio'
+
+class TestInteractiveConsole < Test::Unit::TestCase
+  def setup
+    @keyrack_dir = Dir::Tmpname.create('keyrack') { }
+    Dir.mkdir(@keyrack_dir)
+    @all_data = ""
+  end
+
+  def teardown
+    FileUtils.rm_rf(@keyrack_dir)
+    if @pid
+      begin
+        Process.kill("TERM", @pid)
+      rescue Errno::ESRCH
+      end
+    end
+  end
+
+  def assert_output_matches(pattern, sentinel = "\r\n", timeout = 1)
+    assert_match pattern, get_output(sentinel, timeout)
+  end
+
+  def assert_output_equals(expected, timeout = 1)
+    assert_equal expected, get_output(expected, timeout)
+  end
+
+  def get_output(sentinel = "\r\n", timeout = 1)
+    output = ""
+    until output.end_with?(sentinel)
+      begin
+        data = @out.read_nonblock(1)
+        output << data
+        @all_data << data
+      rescue IO::WaitReadable
+        if IO.select([@out], [], [], timeout).nil?
+          flunk "output timed out"
+        else
+          retry
+        end
+      end
+    end
+    output
+  end
+  alias :eat_output :get_output
+
+  def run_keyrack
+    @out, @in, @pid = PTY.spawn(%{bundle exec ruby -Ilib bin/keyrack -d "#{@keyrack_dir}"})
+  end
+
+  def send_input(string, hidden = false)
+    @in.puts(string)
+
+    # Eat the echo
+    chomp = hidden ? "\r\n\r\n" : "\r\n"
+    get_output(string + chomp)
+  end
+
+  def clipboard
+    Clipboard.paste
+  end
+
+  test "keyrack session" do
+    run_keyrack
+
+    assert_output_matches /first time/
+    assert_output_equals "New passphrase: "
+    send_input "secret", true
+
+    assert_output_equals "Confirm passphrase: "
+    send_input "secret", true
+
+    menu = get_output("? ")
+    assert_match /Choose storage type:/, menu
+    assert_match /filesystem/, menu
+    assert_match /ssh/, menu
+    send_input "filesystem"
+
+    menu = get_output("? ")
+    assert_match /Keyrack Main Menu/, menu
+    assert_match /Mode: copy/, menu
+    assert_match "[n]ew", menu
+    send_input "n"
+
+    assert_output_equals "Label: "
+    send_input "Foo"
+    assert_output_equals "Username: "
+    send_input "dude"
+    assert_output_equals "Generate password? [ync] "
+    send_input "n"
+    assert_output_equals "Password: "
+    send_input "secret", true
+    assert_output_equals "Password (again): "
+    send_input "secret", true
+
+    menu = get_output("? ")
+    assert_match "1. Foo [dude]", menu
+    send_input "1"
+    assert_equal "secret", clipboard
+
+    menu = get_output("? ")
+    assert_match "[g]roup", menu
+    send_input "g"
+    assert_output_equals "Group: "
+    send_input "Stuff"
+
+    menu = get_output("? ")
+    assert_match "Stuff", menu.lines.first
+    assert_match "[g]roup", menu
+    send_input "g"
+    assert_output_equals "Group: "
+    send_input "More Stuff"
+
+    menu = get_output("? ")
+    assert_match "More Stuff", menu.lines.first
+    assert_match "[u]p", menu
+    send_input "u"
+
+    menu = get_output("? ")
+    assert_match "Stuff", menu.lines.first
+    assert_match "[t]op", menu
+    send_input "t"
+
+    menu = get_output("? ")
+    assert_match "Keyrack Main Menu", menu.lines.first
+    assert_match "[s]ave", menu
+    send_input "s"
+    assert_output_equals "Keyrack password: "
+    send_input "secret"
+
+    menu = get_output("? ", 10)
+    assert_match "[q]uit", menu
+    send_input "q"
+
+    Process.waitpid(@pid)
+  end
+end

data/test/unit/store/test_filesystem.rb

@@ -0,0 +1,21 @@
+require 'helper'
+
+class TestFilesystem < Test::Unit::TestCase
+  def test_read
+    path = fixture_path('foo.txt')
+    store = Keyrack::Store::Filesystem.new('path' => path)
+    assert_equal File.read(path), store.read
+  end
+
+  def test_write
+    path = get_tmpname
+    store = Keyrack::Store::Filesystem.new('path' => path)
+    store.write("foobar")
+    assert_equal "foobar", File.read(path)
+  end
+
+  def test_read_returns_nil_for_non_existant_file
+    store = Keyrack::Store::Filesystem.new('path' => 'blargityblargh')
+    assert_nil store.read
+  end
+end

data/test/unit/store/test_ssh.rb

@@ -0,0 +1,32 @@
+require 'helper'
+
+class TestSSH < Test::Unit::TestCase
+  def test_read
+    store = Keyrack::Store::SSH.new('host' => 'example.com', 'user' => 'dude', 'port' => 22, 'path' => 'foo.txt')
+    scp = mock('scp session')
+    scp.expects(:download!).with("foo.txt").returns("foo")
+    session = mock('ssh session', :scp => scp)
+    Net::SSH.expects(:start).with('example.com', 'dude', :port => 22).yields(session)
+    assert_equal "foo", store.read
+  end
+
+  def test_write
+    store = Keyrack::Store::SSH.new('host' => 'example.com', 'user' => 'dude', 'path' => 'foo.txt')
+    scp = mock('scp session')
+    session = mock('ssh session', :scp => scp)
+    Net::SSH.expects(:start).with('example.com', 'dude', :port => 22).yields(session)
+    scp.expects(:upload!).with do |local, remote|
+      local.is_a?(StringIO) && local.read == "foo" && remote == "foo.txt"
+    end
+    store.write("foo")
+  end
+
+  def test_read_returns_nil_for_non_existant_file
+    store = Keyrack::Store::SSH.new('host' => 'example.com', 'user' => 'dude', 'port' => 22, 'path' => 'foo.txt')
+    scp = mock('scp session')
+    scp.expects(:download!).with("foo.txt").raises(Net::SCP::Error)
+    session = mock('ssh session', :scp => scp)
+    Net::SSH.expects(:start).with('example.com', 'dude', :port => 22).yields(session)
+    assert_nil store.read
+  end
+end

data/test/unit/test_database.rb

@@ -0,0 +1,201 @@
+require 'helper'
+
+class TestDatabase < Test::Unit::TestCase
+  class TestReload < self
+    def setup
+      super
+      @database = Keyrack::Database.new(@key, @store, @encrypt_options, @decrypt_options)
+    end
+  end
+
+  def self.database_test(test_description, reload, &block)
+    if reload
+      TestReload.class_eval do
+        test(test_description, &block)
+      end
+    else
+      test(test_description, &block)
+    end
+  end
+
+  def setup
+    @path = get_tmpname
+    @store = Keyrack::Store['filesystem'].new('path' => @path)
+
+    @encrypt_options = { :maxmem => 0, :maxmemfrac => 0.05, :maxtime => 0.1 }
+    @decrypt_options = { :maxmem => 0, :maxmemfrac => 0.10, :maxtime => 1.0 }
+    @key = "secret"
+    @database = Keyrack::Database.new(@key, @store, @encrypt_options, @decrypt_options)
+    @twitter = Keyrack::Site.new('Twitter', 'dude', 'p4ssword')
+    @database.top_group.add_site(@twitter)
+    assert @database.save(@key)
+  end
+
+  def decrypt(data, key = @key, options = @decrypt_options)
+    Scrypty.decrypt(data, key, *options.values_at(:maxmem, :maxmemfrac, :maxtime))
+  end
+
+  test "encrypting database" do
+    encrypted_data = File.read(@path)
+    yaml = decrypt(encrypted_data, @key)
+    data = YAML.load(yaml)
+    expected = {
+      'groups' => {
+        'top' => {
+          'name' => 'top',
+          'sites' => [
+            {
+              'name' => 'Twitter',
+              'username' => 'dude',
+              'password' => 'p4ssword'
+            }
+          ],
+          'groups' => {}
+        }
+      },
+      'version' => Keyrack::Database::VERSION
+    }
+    assert_equal(expected, data)
+  end
+
+  test "auto-migrating database from version 3" do
+    store = Keyrack::Store['filesystem'].new('path' => fixture_path('database-3.dat'))
+    database = Keyrack::Database.new('foobar', store)
+    assert database.dirty?
+  end
+
+  [true, false].each do |reload|
+    database_test "database is dirty after adding site to top group", reload do
+      assert !@database.dirty?
+      site = Keyrack::Site.new('Foo', 'foo', 'bar')
+      @database.top_group.add_site(site)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after removing site from top group", reload do
+      assert !@database.dirty?
+      @database.top_group.remove_site(@twitter)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after changing username", reload do
+      assert !@database.dirty?
+      twitter = @database.top_group.site(0)
+      twitter.username = 'bro'
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after changing password", reload do
+      assert !@database.dirty?
+      twitter = @database.top_group.site(0)
+      twitter.password = 'secret'
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after adding subgroup", reload do
+      assert !@database.dirty?
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after removing subgroup", reload do
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      @database.top_group.remove_group('Foo')
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after adding site to subgroup", reload do
+      assert !@database.dirty?
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      site = Keyrack::Site.new('Bar', 'bar', 'baz')
+      group.add_site(site)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after removing site from subgroup", reload do
+      assert !@database.dirty?
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      site = Keyrack::Site.new('Bar', 'bar', 'baz')
+      group.add_site(site)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      group.remove_site(site)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after adding group to subgroup", reload do
+      assert !@database.dirty?
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      subgroup = Keyrack::Group.new('Bar')
+      group.add_group(subgroup)
+      assert @database.dirty?
+    end
+
+    database_test "database is dirty after changing group name", reload do
+      assert !@database.dirty?
+      group = Keyrack::Group.new('Foo')
+      @database.top_group.add_group(group)
+      assert @database.save(@key)
+
+      assert !@database.dirty?
+      group.name = "Bar"
+      assert @database.dirty?
+    end
+
+    database_test "large number of entries", reload do
+      site_name = "abcdefg"; username = "1234567"; password = "zyxwvut" * 2
+      500.times do |i|
+        site = Keyrack::Site.new(site_name, username, password)
+        @database.top_group.add_site(site)
+        site_name = site_name.next
+        username = username.next
+        password = password.next
+      end
+      assert @database.save(@key)
+      assert_equal 501, @database.top_group.sites.length
+    end
+
+    database_test "saving requires same password as creation", reload do
+      site = Keyrack::Site.new("Foo", 'foo', 'bar')
+      @database.top_group.add_site(site)
+
+      assert !@database.save("bogus")
+    end
+
+    database_test "changing database password successfully", reload do
+      assert @database.change_password(@key, "new-secret")
+
+      site = Keyrack::Site.new("Foo", 'bar', 'baz')
+      @database.top_group.add_site(site)
+
+      assert @database.save("new-secret")
+    end
+
+    database_test "attempting to change database password with wrong existing password", reload do
+      assert !@database.change_password("bogus", "new-secret")
+
+      site = Keyrack::Site.new("Foo", 'foo', 'bar')
+      @database.top_group.add_site(site)
+
+      assert !@database.save("new-secret")
+    end
+  end
+end