ProtonMail · klische · Jul 3, 2020 · Jul 3, 2020 · Jul 3, 2020 · Jul 3, 2020
diff --git a/openpgp/clearsign/clearsign_test.go b/openpgp/clearsign/clearsign_test.go
@@ -156,7 +156,7 @@ func TestMultiSign(t *testing.T) {
 
 			desc := fmt.Sprintf("%d keys; %d of which will be used to verify", nKeys+nExtra, nKeys)
 			for i := 0; i < nKeys+nExtra; i++ {
-				e, err := openpgp.NewEntity("name", "comment", "email", &config)
+				e, err := openpgp.NewEntity("name", "comment", "email", nil, &config)
 				if err != nil {
 					t.Errorf("cannot create key: %v", err)
 					continue nextTest

diff --git a/openpgp/integration_tests/utils_test.go b/openpgp/integration_tests/utils_test.go
@@ -37,7 +37,7 @@ func generateFreshTestVectors() (vectors []testVector, err error) {
 		}
 
 		// Generate keys
-		newEntity, errKG := openpgp.NewEntity(name, comment, email, config)
+		newEntity, errKG := openpgp.NewEntity(name, comment, email, nil, config)
 		if errKG != nil {
 			panic(errKG)
 		}

diff --git a/openpgp/key_generation.go b/openpgp/key_generation.go
@@ -20,7 +20,7 @@ import (
 // single identity composed of the given full name, comment and email, any of
 // which may be empty but must not contain any of "()<>\x00".
 // If config is nil, sensible defaults will be used.
-func NewEntity(name, comment, email string, config *packet.Config) (*Entity, error) {
+func NewEntity(name, comment, email string, expiration *uint32, config *packet.Config) (*Entity, error) {
 	creationTime := config.Now()
 
 	uid := packet.NewUserId(name, comment, email)
@@ -96,6 +96,7 @@ func NewEntity(name, comment, email string, config *packet.Config) (*Entity, err
 			FlagEncryptStorage:        true,
 			FlagEncryptCommunications: true,
 			IssuerKeyId:               &primary.PublicKey.KeyId,
+			KeyLifetimeSecs:           expiration,
 		},
 	}
 

diff --git a/openpgp/keys_test.go b/openpgp/keys_test.go
@@ -476,7 +476,7 @@ func TestNewEntityWithDefaultHash(t *testing.T) {
 		c := &packet.Config{
 			DefaultHash: hash,
 		}
-		entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", c)
+		entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, c)
 		if err != nil {
 			t.Fatal(err)
 		}
@@ -495,7 +495,7 @@ func TestNewEntityWithDefaultHash(t *testing.T) {
 }
 
 func TestNewEntityNilConfigPreferredHash(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -509,7 +509,7 @@ func TestNewEntityNilConfigPreferredHash(t *testing.T) {
 }
 
 func TestNewEntityCorrectName(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -531,7 +531,7 @@ func TestNewEntityWithDefaultCipher(t *testing.T) {
 		c := &packet.Config{
 			DefaultCipher: cipher,
 		}
-		entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", c)
+		entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, c)
 		if err != nil {
 			t.Fatal(err)
 		}
@@ -549,7 +549,7 @@ func TestNewEntityWithDefaultCipher(t *testing.T) {
 }
 
 func TestNewEntityNilConfigPreferredSymmetric(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -569,7 +569,7 @@ func TestNewEntityWithDefaultAead(t *testing.T) {
 				DefaultMode: aeadMode,
 			},
 		}
-		entity, err := NewEntity("Botvinnik", "1.e4", "tal@chess.com", cfg)
+		entity, err := NewEntity("Botvinnik", "1.e4", "tal@chess.com", nil, cfg)
 		if err != nil {
 			t.Fatal(err)
 		}
@@ -589,7 +589,7 @@ func TestNewEntityWithDefaultAead(t *testing.T) {
 }
 
 func TestNewEntityPublicSerialization(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -606,7 +606,7 @@ func TestNewEntityPublicSerialization(t *testing.T) {
 }
 
 func TestNewEntityPrivateSerialization(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -643,7 +643,7 @@ func TestEntityPrivateSerialization(t *testing.T) {
 }
 
 func TestAddSubkey(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -679,7 +679,7 @@ func TestAddSubkey(t *testing.T) {
 }
 
 func TestAddSubkeySerialized(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -719,7 +719,7 @@ func TestAddSubkeyWithConfig(t *testing.T) {
 		DefaultHash: crypto.SHA512,
 		Algorithm: packet.PubKeyAlgoEdDSA,
 	}
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -784,7 +784,7 @@ func TestAddSubkeyWithConfigSerialized(t *testing.T) {
 		DefaultHash: crypto.SHA512,
 		Algorithm: packet.PubKeyAlgoEdDSA,
 	}
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -845,7 +845,7 @@ func TestAddSubkeyWithConfigSerialized(t *testing.T) {
 }
 
 func TestRevokeKey(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -872,7 +872,7 @@ func TestRevokeKeyWithConfig(t *testing.T) {
 		DefaultHash: crypto.SHA512,
 	}
 
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -900,7 +900,7 @@ func TestRevokeKeyWithConfig(t *testing.T) {
 }
 
 func TestRevokeSubkey(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -941,14 +941,14 @@ func TestRevokeSubkey(t *testing.T) {
 }
 
 func TestRevokeSubkeyWithAnotherEntity(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
 
 	sk := entity.Subkeys[0]
 
-	newEntity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	newEntity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -960,7 +960,7 @@ func TestRevokeSubkeyWithAnotherEntity(t *testing.T) {
 }
 
 func TestRevokeSubkeyWithInvalidSignature(t *testing.T) {
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -979,7 +979,7 @@ func TestRevokeSubkeyWithConfig(t *testing.T) {
 		DefaultHash: crypto.SHA512,
 	}
 
-	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil)
+	entity, err := NewEntity("Golang Gopher", "Test Key", "no-reply@golang.com", nil, nil)
 	if err != nil {
 		t.Fatal(err)
 	}

diff --git a/openpgp/write_test.go b/openpgp/write_test.go
@@ -74,7 +74,7 @@ func TestSignDetachedP256(t *testing.T) {
 func TestNewEntity(t *testing.T) {
 
 	// Check bit-length with no config.
-	e, err := NewEntity("Test User", "test", "test@example.com", nil)
+	e, err := NewEntity("Test User", "test", "test@example.com", nil, nil)
 	if err != nil {
 		t.Errorf("failed to create entity: %s", err)
 		return
@@ -90,7 +90,7 @@ func TestNewEntity(t *testing.T) {
 
 	// Check bit-length with a config.
 	cfg := &packet.Config{RSABits: 1024}
-	e, err = NewEntity("Test User", "test", "test@example.com", cfg)
+	e, err = NewEntity("Test User", "test", "test@example.com", nil, cfg)
 	if err != nil {
 		t.Errorf("failed to create entity: %s", err)
 		return