/brz/remove-bazaar

To get this branch, use:
bzr branch http://gegoxaren.bato24.eu/bzr/brz/remove-bazaar

« back to all changes in this revision

Viewing changes to breezy/tests/test_gpg.py

  • Committer: Breezy landing bot
  • Author(s): Jelmer Vernooij
  • Date: 2020-07-28 02:47:10 UTC
  • mfrom: (7519.1.1 merge-3.1)
  • Revision ID: breezy.the.bot@gmail.com-20200728024710-a2ylds219f1lsl62
Merge lp:brz/3.1.

Merged from https://code.launchpad.net/~jelmer/brz/merge-3.1/+merge/388173

Show diffs side-by-side

added added

removed removed

Lines of Context:
breezy/tests/test_gpg.py
1
 
# Copyright (C) 2005 Canonical Ltd
 
1
# Copyright (C) 2005, 2006, 2007, 2009, 2011 Canonical Ltd
2
2
#   Authors: Robert Collins <robert.collins@canonical.com>
3
3
#
4
4
# This program is free software; you can redistribute it and/or modify
17
17
 
18
18
"""Tests for signing and verifying blobs of data via gpg."""
19
19
 
 
20
from io import BytesIO
 
21
 
20
22
# import system imports here
21
 
import os
22
23
import sys
23
24
 
24
 
from bzrlib import errors, ui
25
 
import bzrlib.gpg as gpg
26
 
from bzrlib.tests import TestCase, TestCaseInTempDir
27
 
 
28
 
class FakeConfig(object):
29
 
 
30
 
    def gpg_signing_command(self):
31
 
        return "false"
32
 
 
33
 
 
34
 
class TestCommandLine(TestCase):
35
 
 
36
 
    def test_signing_command_line(self):
37
 
        my_gpg = gpg.GPGStrategy(FakeConfig())
38
 
        self.assertEqual(['false',  '--clearsign'],
39
 
                         my_gpg._command_line())
40
 
 
41
 
    def test_checks_return_code(self):
42
 
        # This test needs a unix like platform - one with 'false' to run.
43
 
        # if you have one, please make this work :)
44
 
        my_gpg = gpg.GPGStrategy(FakeConfig())
45
 
        self.assertRaises(errors.SigningFailed, my_gpg.sign, 'content')
46
 
 
47
 
    def assertProduces(self, content):
48
 
        # This needs a 'cat' command or similar to work.
49
 
        my_gpg = gpg.GPGStrategy(FakeConfig())
50
 
        if sys.platform == 'win32':
51
 
            # Windows doesn't come with cat, and we don't require it
52
 
            # so lets try using python instead.
53
 
            # But stupid windows and line-ending conversions.
54
 
            # It is too much work to make sys.stdout be in binary mode.
55
 
            # http://aspn.activestate.com/ASPN/Cookbook/Python/Recipe/65443
56
 
            my_gpg._command_line = lambda:[sys.executable, '-c',
57
 
                    'import sys; sys.stdout.write(sys.stdin.read())']
58
 
            new_content = content.replace('\n', '\r\n')
59
 
 
60
 
            self.assertEqual(new_content, my_gpg.sign(content))
61
 
        else:
62
 
            my_gpg._command_line = lambda:['cat', '-']
63
 
            self.assertEqual(content, my_gpg.sign(content))
64
 
 
65
 
    def test_returns_output(self):
66
 
        content = "some content\nwith newlines\n"
67
 
        self.assertProduces(content)
68
 
 
69
 
    def test_clears_progress(self):
70
 
        content = "some content\nwith newlines\n"
71
 
        old_clear_term = ui.ui_factory.clear_term
72
 
        clear_term_called = []
73
 
        def clear_term():
74
 
            old_clear_term()
75
 
            clear_term_called.append(True)
76
 
        ui.ui_factory.clear_term = clear_term
77
 
        try:
78
 
            self.assertProduces(content)
79
 
        finally:
80
 
            ui.ui_factory.clear_term = old_clear_term
81
 
        self.assertEqual([True], clear_term_called)
82
 
 
83
 
    def test_aborts_on_unicode(self):
84
 
        """You can't sign Unicode text; it must be encoded first."""
85
 
        self.assertRaises(errors.BzrBadParameterUnicode,
86
 
                          self.assertProduces, u'foo')
 
25
from .. import (
 
26
    config,
 
27
    errors,
 
28
    gpg,
 
29
    tests,
 
30
    trace,
 
31
    ui,
 
32
    )
 
33
from . import (
 
34
    TestCase,
 
35
    features,
 
36
    )
 
37
 
 
38
 
 
39
class FakeConfig(config.MemoryStack):
 
40
 
 
41
    def __init__(self, content=None):
 
42
        if content is None:
 
43
            content = b'''
 
44
gpg_signing_key=amy@example.com
 
45
'''
 
46
        super(FakeConfig, self).__init__(content)
 
47
 
 
48
 
 
49
class TestVerify(TestCase):
 
50
 
 
51
    def import_keys(self):
 
52
        import gpg
 
53
        context = gpg.Context()
 
54
 
 
55
        key = gpg.Data(b"""-----BEGIN PGP PUBLIC KEY BLOCK-----
 
56
Version: GnuPG v1.4.11 (GNU/Linux)
 
57
 
 
58
mQENBE343IgBCADwzPW7kmKb2bjB+UU+1ER/ABMZspvtoZMPusUw7bk6coXHF/0W
 
59
u1K/hSYeX9xaGOfOQw41r/g13MoR9dsL6L84RLiisf38rRoBZt+d5bCbZA5Xo801
 
60
2PeoBoGo6u5oOYKAFLMvrUitPiiE0IT/oQTfC4YUrLN4A+9W0QZruPGIpIXwmZXr
 
61
L0zsqYfNqIN0ompeJenVpKpvm3loJ/zfK7R3EJ3hsv6nkUmWCFsP1Pw3UV1YuCmw
 
62
Mkdn1U7DaOql1WjXgj9ABQDJrun2TGsqrSRzBODtHKA/uOX0K3VfKBU8VZo3dXUm
 
63
1Q4ZeZC39L9qJGTH8TQYlwBLe1yAOp+vx7QJABEBAAG0JEJhemFhciBUZXN0IEtl
 
64
eSA8YmF6YWFyQGV4YW1wbGUuY29tPokBOAQTAQIAIgUCTfjciAIbAwYLCQgHAwIG
 
65
FQgCCQoLBBYCAwECHgECF4AACgkQh2gbHuMIDkWJUggAwj537fH6WW+GGLA5onys
 
66
2hZmXUq/tU+L92bjQoRY4fmsQpk/FUVPUf+NQ0v1gkxx4BTfyYewaj5G6L8cvqW2
 
67
jj7UiJd8z9gTRxWTnYwfR/w5PGmxfJsBfEUKWsccrPQdOXAhwu0fjYIVk4nqgswa
 
68
IOAZIwe5Vsfs36uSS7p8RQHAZXLXtTOn3KcXHaxu83w6nc4zkWRovGJ9isBN3haO
 
69
2qEa0mYiAfDpz40CGtb8N/TQHF3Xcw8rJcxpg6RF3jMtWQnzbVJFp13it00R3LqW
 
70
o/r3RII3Ii3z2yARlg6D+5hVOrFBV8jFLkff1R2ZnVu+7WOrnbpmt3OiMkSeZrtB
 
71
OrkBDQRN+NyIAQgArRZ2YGzUj5dXOVIWgZ1/QFpyfx/cG/293WjRE4Wt2e4SxMf2
 
72
V0dcVCqWwT0+a79Wbausv4bStD4SkwDmu0Jf3z5ERzrr7oZwP0PMsIlM5zT6XSsr
 
73
6UUneB3UXX7MrEqVogVhRM0ORIaK/oRwMXr7K6xVT+bCBP3/p66kHtY1ZpfEzTEX
 
74
imBsN3GqoewBHYIneJKBtHE7uzdzw3O5p5dXqoj5foxGi9R1J15vAmt5pI68HJeX
 
75
P6ktvXbX2Iu7VDNoCvRXM9+ntyJtsXCjNXg4pTGHS/XO4nm2db4FUZOBcVMb1vCc
 
76
VtFjLTcbCqJqpoJWUtsLcNqDqMHOQDpe6KTNTQARAQABiQEfBBgBAgAJBQJN+NyI
 
77
AhsMAAoJEIdoGx7jCA5FrR8IANnOF3PUj1TbRcwV6RoWmHsFQHrPmM8ogXia1Lsv
 
78
jE1iEWoC+muvKh6Oydf90k6ZslS7rdDnp2qzYY8W/TiDkxP+fvsZ4mMi1Y0F+3ty
 
79
1jzWhcsnB2VrJSiavxEXk0tKPrNv4EUGWG6wHsC9TBj37If+nrMyim94VHvI0eHm
 
80
X8yMlN4O3HfmgD9CbJdUxueP3e31OIYuwh/6F7GII8TNEVHU/8vh/mQcCxppNbc+
 
81
boff+kIsoa/TAMLwtJoSrX1nXm0K3vZePRLnIgmwVzdkOIkaRJUG2tSQFvkfhvtE
 
82
LhnkL5l4MO0wrUds0UWRwa3d7j/P2ExrqXdlLmEzrifWyEQ=
 
83
=hUJn
 
84
-----END PGP PUBLIC KEY BLOCK-----
 
85
""")
 
86
 
 
87
        secret_key = gpg.Data(b"""-----BEGIN PGP PRIVATE KEY BLOCK-----
 
88
Version: GnuPG v1.4.11 (GNU/Linux)
 
89
 
 
90
lQOYBE343IgBCADwzPW7kmKb2bjB+UU+1ER/ABMZspvtoZMPusUw7bk6coXHF/0W
 
91
u1K/hSYeX9xaGOfOQw41r/g13MoR9dsL6L84RLiisf38rRoBZt+d5bCbZA5Xo801
 
92
2PeoBoGo6u5oOYKAFLMvrUitPiiE0IT/oQTfC4YUrLN4A+9W0QZruPGIpIXwmZXr
 
93
L0zsqYfNqIN0ompeJenVpKpvm3loJ/zfK7R3EJ3hsv6nkUmWCFsP1Pw3UV1YuCmw
 
94
Mkdn1U7DaOql1WjXgj9ABQDJrun2TGsqrSRzBODtHKA/uOX0K3VfKBU8VZo3dXUm
 
95
1Q4ZeZC39L9qJGTH8TQYlwBLe1yAOp+vx7QJABEBAAEAB/0RJTbV991SOtVfPQVu
 
96
LM+tD0SiOXJwIBIINlngsFHWVIiBSDb6uF8dneMR70IRnuEFHFyAUXA7PZDxvcSu
 
97
phAqIdKCWxQPkAULAS0o4U2K3ZFGh4uOqvfZ8eSnh1rETFv7Yf3u23K89cZiy99n
 
98
EtWgSqzC/2z5PaZ7/alsYCBqhHuyd4Phaud7qv7FTz8mFrCf+CCY+D08wbnZBu4g
 
99
N9tBwoxT/UKRfv3nghIh9v+3qWfBEFGhrYbt92XKFbHOQeATZz8AGIv1eqN/+ZQY
 
100
oYmvVfO3GkrWaRoPeJNLqSDEn/45O1Uh9MJ4mQclXqB0QzMShle8uusHxIeJSQsR
 
101
z//VBAD11WS7qSgCeiHR+4jDzrrlb2snnA2bfDToEomDxd/n8xm7nJWdkNfJ2BCw
 
102
KvnxYVxjFNAwkKJGRajzALBLzRVO+K9NtSLiddv5zv+UNdgsKuE8tD7Jqxd/IbWw
 
103
AimCtL8osnJ+r9dvL+NyjkAT6l/NdEbLXGrBaMeTfSgl2cBOOwQA+sJIh1R5PiCK
 
104
nLIs9pm3PSy3w92Peelq/x/+0aebTZaJUk2ou3oCvB3druDqrUeaopuuCc0drV7C
 
105
Ldoey8x/T2ZGzmT2af9qNaD6ScTimDodXcJdwlpobhZTKpsE4EyywpLXtlWte1x0
 
106
1Mq3llQsIdRdf3GLS+L207hWgKDiDosD/0SyOBO/IBDteeEzeN2hNE3A8oeVbvRS
 
107
XrS/3uj6oKmlWUBORYP8ptUrXPoVPmNz2y4GO+OysFtfct3Yqb+Sb/52SXMOHTox
 
108
2oLW08tkzfkDArU5aauMEPmyutGyJ+hGo7fsuLXzXR8OPw4yZJdzG1tRlP2TTKmq
 
109
Fx8G/Ik6bN4zTYK0JEJhemFhciBUZXN0IEtleSA8YmF6YWFyQGV4YW1wbGUuY29t
 
110
PokBOAQTAQIAIgUCTfjciAIbAwYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4AACgkQ
 
111
h2gbHuMIDkWJUggAwj537fH6WW+GGLA5onys2hZmXUq/tU+L92bjQoRY4fmsQpk/
 
112
FUVPUf+NQ0v1gkxx4BTfyYewaj5G6L8cvqW2jj7UiJd8z9gTRxWTnYwfR/w5PGmx
 
113
fJsBfEUKWsccrPQdOXAhwu0fjYIVk4nqgswaIOAZIwe5Vsfs36uSS7p8RQHAZXLX
 
114
tTOn3KcXHaxu83w6nc4zkWRovGJ9isBN3haO2qEa0mYiAfDpz40CGtb8N/TQHF3X
 
115
cw8rJcxpg6RF3jMtWQnzbVJFp13it00R3LqWo/r3RII3Ii3z2yARlg6D+5hVOrFB
 
116
V8jFLkff1R2ZnVu+7WOrnbpmt3OiMkSeZrtBOp0DlwRN+NyIAQgArRZ2YGzUj5dX
 
117
OVIWgZ1/QFpyfx/cG/293WjRE4Wt2e4SxMf2V0dcVCqWwT0+a79Wbausv4bStD4S
 
118
kwDmu0Jf3z5ERzrr7oZwP0PMsIlM5zT6XSsr6UUneB3UXX7MrEqVogVhRM0ORIaK
 
119
/oRwMXr7K6xVT+bCBP3/p66kHtY1ZpfEzTEXimBsN3GqoewBHYIneJKBtHE7uzdz
 
120
w3O5p5dXqoj5foxGi9R1J15vAmt5pI68HJeXP6ktvXbX2Iu7VDNoCvRXM9+ntyJt
 
121
sXCjNXg4pTGHS/XO4nm2db4FUZOBcVMb1vCcVtFjLTcbCqJqpoJWUtsLcNqDqMHO
 
122
QDpe6KTNTQARAQABAAf1EfceUlGLvoA/+yDTNTMjuPfzfKwbB/FOVfX44g3Za1eT
 
123
v7RvSuj4rFYIdE9UvZEei/pqPOSc+hhSsKZCulGXD5TUpf3AyG7ipWU/kID46Csp
 
124
0V08DPpFHnuw/N6+qNo5iSnhN9U1XMLjYT5d1HvKur26r2vWbmUTSJ1qIluHL2fT
 
125
R1pKYYLuoff4MIjZ01Hawq72jjor+dLBmMWveHpq4XNp+vQ4x8aFnY9ozufon0nM
 
126
uRSJRlQjDNB274tvUbmDFP+nzNbqF1nBTZ6FTdH/iKVNbytiYF7Hbat8GWVZqY1u
 
127
CZr7BklpIVWlk62ll0psMIPVyANi7YT332LLqYmBBADJKTx2dariG/kWU2W/9VEO
 
128
2VZpqsqazAxOoFEIOpcOlByhhyw5g0IKu0UyzHkhoCje0cWxpdSBFG432b8zL0AT
 
129
Z0RycfUG7Sgp9CpY1h8Cc/HbBa8xo1fSM7zplPQrHBqUzlVVBq6HOkUq+7qsPFWc
 
130
RRie95VsDmIMKQKPJHeYHQQA3EYGit+QHV0dccAInghEsf/mq8Gfnvo6HPYhWcDC
 
131
DTM39NhNlnl1WkTFCd2TWc+TWQ4KlRsh6bMjUpNa2qjrUl90fLekbogcxxMhcwa6
 
132
xgzEANZfwqdY0u3aB/CyZ6odfThwcAoeqoMpw34CfeKEroubpi2n8wKByrN2MQXJ
 
133
4vEEAJbXZOqgAcFAFBUVb5mVT0s2lJMagZFPdhRJz2bttz01s/B8aca6CrDpFRjT
 
134
03zRFUZjwDYqZDWBC181dCE9yla4OkWd5QyRKSS2EE02KEYqRzT0RngQn7s4AW2r
 
135
326up3Jhleln3hgD4Kk3V3KHmyK8zqZA0qWzry4Vl2jjkbnAPB2JAR8EGAECAAkF
 
136
Ak343IgCGwwACgkQh2gbHuMIDkWtHwgA2c4Xc9SPVNtFzBXpGhaYewVAes+YzyiB
 
137
eJrUuy+MTWIRagL6a68qHo7J1/3STpmyVLut0OenarNhjxb9OIOTE/5++xniYyLV
 
138
jQX7e3LWPNaFyycHZWslKJq/EReTS0o+s2/gRQZYbrAewL1MGPfsh/6eszKKb3hU
 
139
e8jR4eZfzIyU3g7cd+aAP0Jsl1TG54/d7fU4hi7CH/oXsYgjxM0RUdT/y+H+ZBwL
 
140
Gmk1tz5uh9/6Qiyhr9MAwvC0mhKtfWdebQre9l49EuciCbBXN2Q4iRpElQba1JAW
 
141
+R+G+0QuGeQvmXgw7TCtR2zRRZHBrd3uP8/YTGupd2UuYTOuJ9bIRA==
 
142
=LXn0
 
143
-----END PGP PRIVATE KEY BLOCK-----
 
144
""")
 
145
 
 
146
        revoked_key = gpg.Data(b"""-----BEGIN PGP PUBLIC KEY BLOCK-----
 
147
Version: GnuPG v1.4.11 (GNU/Linux)
 
148
 
 
149
mI0ETjlW5gEEAOb/6P+TVM59E897wRtatxys2BhsHCXM4T7xjIiANfDwejDdifqh
 
150
tluTfSJLLxPembtrrEjux1C0AJgc+f0MIfsc3Pr3eFJzKB2ot/1IVG1/1KnA0zt3
 
151
W2xPT3lRib27WJ9Fag+dMtQaIzgJ7/n2DFxsFZ33FD2kxrEXB2exGg6FABEBAAGI
 
152
pgQgAQIAEAUCTjlXkAkdAHJldm9rZWQACgkQjs6dvEpb0cQPHAP/Wi9rbx0e+1Sf
 
153
ziGgyVdr3m3A6uvze5oXKVgFRbGRUYSH4/I8GW0W9x4TcRg9h+YaQ8NUdADr9kNE
 
154
tKAljLqYA5qdqSfYuaij1M++Xj+KUZ359R74sHuQqwnRy1XXQNfRs/QpXA7vLdds
 
155
rjg+pbWuXO92TZJUdnqtWW+VEyZBsPy0G3Rlc3Qga2V5IDx0ZXN0QGV4YW1wbGUu
 
156
Y29tPoi4BBMBAgAiBQJOOVbmAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAK
 
157
CRCOzp28SlvRxNWzA/42WVmI0b+6mF/imEOlY1TiyvrcpK250rkSDsCtL4lOwy7G
 
158
antZhpgNfnXRd/ySfsS3EB6dpOWgOSxGRvWQhA+vxBT9BYNk49qd3JIrSaSWpR12
 
159
rET8qO1rEQQFWsw03CxTGujxGlmEO+a1yguRXp2UWaY7FngcQmD+8q7BUIVm7riN
 
160
BE45VuYBBADTEH2jHTjNCc5CMOhea6EJTrkx3upcEqB2oyhWeSWJiBGOxlcddsjo
 
161
3J3/EmBB8kK1hM9TidD3SG64x1N287lg8ELJBlKv+pQVyxohGJ1u/THgpTDMMQcL
 
162
luG5rAHQGSfyzKTiOnaTyBYg3M/nzgUOU9dKEFB0EA3tjUXFOT+r3wARAQABiJ8E
 
163
GAECAAkFAk45VuYCGwwACgkQjs6dvEpb0cRSLQP/fzCWX2lXwlwWiVF8BOPF7o9z
 
164
icHErc7/X17RGb4qj1kVf+UkRdUWJrbEVh4h6MncBIuA70WsYogiw+Kz/0LCtQAR
 
165
YUJsPy/EL++OKPH1aFasOdTxwkTka85+RdYqhP1+z/aYLFMWq6mRFI+o6x2k5mGi
 
166
7dMv2kKTJPoXUpiXJbg=
 
167
=hLYO
 
168
-----END PGP PUBLIC KEY BLOCK-----
 
169
""")
 
170
 
 
171
        expired_key = gpg.Data(b"""-----BEGIN PGP PUBLIC KEY BLOCK-----
 
172
Version: GnuPG v1.4.11 (GNU/Linux)
 
173
 
 
174
mI0ETjZ6PAEEALkR4GcFQidCCxV7pgQwQd5MZua0YO2l92fVqHX+PhnZ6egCLKdD
 
175
2bWlMUd6MLPF3FlRL7BBAxvW/DazkBOp7ljsnpMpptEzY49Uem1irYLYiVb9zK96
 
176
0sQZzFxFkfEYetQEXC68mIck8tbySOX5NAOw++3jFm3J7dsU1R3XtYzRABEBAAG0
 
177
G3Rlc3Qga2V5IDx0ZXN0QGV4YW1wbGUuY29tPoi+BBMBAgAoBQJONno8AhsDBQkA
 
178
AVGABgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRAc4m97T40VEz+DA/9PBphG
 
179
Yp9cHVaHSfTUKGTGgIbvRe60sFNpDCYZeAGDrygOMuI8MNzbVpwefRBFHVPx7jWd
 
180
rrYMsLkcsNUS9D0baU+0D/qp7JVg7ZSQtG0O6IG4eTZhibteY1fu0+unlXmg9NHx
 
181
5VvhwzBiJDYji00M2p/CZEMiYFUuy76CsxUpN7iNBE42ejwBBACkv2/mX7IPQg0C
 
182
A3KSrJsJv+sdvKm4b4xuI4OwagwTIVz4KlTqV4IBrVjSBfwyMXucXz0bTW85qjgA
 
183
+n67td8vyjYYZUEz1uY9lSquQQDnAN0txL3cLHZXWiWOkmzZVddQtlflK2a/J9o0
 
184
QkHPVUm+hc4l64dIzStrNl2S66fAvQARAQABiKUEGAECAA8FAk42ejwCGwwFCQAB
 
185
UYAACgkQHOJve0+NFROEYQP/epg+o8iBs31hkSERyZjrRR66LpywezWj30Rn/3mX
 
186
Fzi9HkF4xLemWOzdNt9C5PYrOep85PQg8haEjknxVjZFS0ikT1h3OWk/TF1ZrLVm
 
187
WzyX8DaHQEjKpLJJjXcAbTiZBNMk0QaVC9RvIeHpCf3n3DC49DdjsPJRMKOn8KDi
 
188
kRk=
 
189
=p0gt
 
190
-----END PGP PUBLIC KEY BLOCK-----
 
191
""")
 
192
        context.op_import(key)
 
193
        context.op_import(secret_key)
 
194
        context.op_import(revoked_key)
 
195
        context.op_import(expired_key)
 
196
 
 
197
    def test_verify_untrusted_but_accepted(self):
 
198
        # untrusted by gpg but listed as acceptable_keys by user
 
199
        self.requireFeature(features.gpg)
 
200
        self.import_keys()
 
201
 
 
202
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
203
Hash: SHA1
 
204
 
 
205
bazaar-ng testament short form 1
 
206
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
207
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
208
-----BEGIN PGP SIGNATURE-----
 
209
Version: GnuPG v1.4.11 (GNU/Linux)
 
210
 
 
211
iQEcBAEBAgAGBQJN+ekFAAoJEIdoGx7jCA5FGtEH/i+XxJRvqU6wdBtLVrGBMAGk
 
212
FZ5VP+KyXYtymSbgSstj/vM12NeMIeFs3xGnNnYuX1MIcY6We5TKtCH0epY6ym5+
 
213
6g2Q2QpQ5/sT2d0mWzR0K4uVngmxVQaXTdk5PdZ40O7ULeDLW6CxzxMHyUL1rsIx
 
214
7UBUTBh1O/1n3ZfD99hUkm3hVcnsN90uTKH59zV9NWwArU0cug60+5eDKJhSJDbG
 
215
rIwlqbFAjDZ7L/48e+IaYIJwBZFzMBpJKdCxzALLtauMf+KK8hGiL2hrRbWm7ty6
 
216
NgxfkMYOB4rDPdSstT35N+5uBG3n/UzjxHssi0svMfVETYYX40y57dm2eZQXFp8=
 
217
=iwsn
 
218
-----END PGP SIGNATURE-----
 
219
"""
 
220
        plain = b"""bazaar-ng testament short form 1
 
221
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
222
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
223
"""
 
224
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
225
        my_gpg.set_acceptable_keys("bazaar@example.com")
 
226
        self.assertEqual((gpg.SIGNATURE_VALID, None, plain),
 
227
                         my_gpg.verify(content))
 
228
 
 
229
    def test_verify_unacceptable_key(self):
 
230
        self.requireFeature(features.gpg)
 
231
        self.import_keys()
 
232
 
 
233
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
234
Hash: SHA1
 
235
 
 
236
bazaar-ng testament short form 1
 
237
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
238
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
239
-----BEGIN PGP SIGNATURE-----
 
240
Version: GnuPG v1.4.11 (GNU/Linux)
 
241
 
 
242
iQEcBAEBAgAGBQJN+ekFAAoJEIdoGx7jCA5FGtEH/i+XxJRvqU6wdBtLVrGBMAGk
 
243
FZ5VP+KyXYtymSbgSstj/vM12NeMIeFs3xGnNnYuX1MIcY6We5TKtCH0epY6ym5+
 
244
6g2Q2QpQ5/sT2d0mWzR0K4uVngmxVQaXTdk5PdZ40O7ULeDLW6CxzxMHyUL1rsIx
 
245
7UBUTBh1O/1n3ZfD99hUkm3hVcnsN90uTKH59zV9NWwArU0cug60+5eDKJhSJDbG
 
246
rIwlqbFAjDZ7L/48e+IaYIJwBZFzMBpJKdCxzALLtauMf+KK8hGiL2hrRbWm7ty6
 
247
NgxfkMYOB4rDPdSstT35N+5uBG3n/UzjxHssi0svMfVETYYX40y57dm2eZQXFp8=
 
248
=iwsn
 
249
-----END PGP SIGNATURE-----
 
250
"""
 
251
        plain = b"""bazaar-ng testament short form 1
 
252
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
253
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
254
"""
 
255
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
256
        my_gpg.set_acceptable_keys("foo@example.com")
 
257
        self.assertEqual((gpg.SIGNATURE_KEY_MISSING, u'E3080E45', plain),
 
258
                         my_gpg.verify(content))
 
259
 
 
260
    def test_verify_valid_but_untrusted(self):
 
261
        self.requireFeature(features.gpg)
 
262
        self.import_keys()
 
263
 
 
264
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
265
Hash: SHA1
 
266
 
 
267
bazaar-ng testament short form 1
 
268
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
269
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
270
-----BEGIN PGP SIGNATURE-----
 
271
Version: GnuPG v1.4.11 (GNU/Linux)
 
272
 
 
273
iQEcBAEBAgAGBQJN+ekFAAoJEIdoGx7jCA5FGtEH/i+XxJRvqU6wdBtLVrGBMAGk
 
274
FZ5VP+KyXYtymSbgSstj/vM12NeMIeFs3xGnNnYuX1MIcY6We5TKtCH0epY6ym5+
 
275
6g2Q2QpQ5/sT2d0mWzR0K4uVngmxVQaXTdk5PdZ40O7ULeDLW6CxzxMHyUL1rsIx
 
276
7UBUTBh1O/1n3ZfD99hUkm3hVcnsN90uTKH59zV9NWwArU0cug60+5eDKJhSJDbG
 
277
rIwlqbFAjDZ7L/48e+IaYIJwBZFzMBpJKdCxzALLtauMf+KK8hGiL2hrRbWm7ty6
 
278
NgxfkMYOB4rDPdSstT35N+5uBG3n/UzjxHssi0svMfVETYYX40y57dm2eZQXFp8=
 
279
=iwsn
 
280
-----END PGP SIGNATURE-----
 
281
"""
 
282
        plain = b"""bazaar-ng testament short form 1
 
283
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
284
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
285
"""
 
286
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
287
        self.assertEqual((gpg.SIGNATURE_NOT_VALID, None,
 
288
                          plain), my_gpg.verify(content))
 
289
 
 
290
    def test_verify_revoked_signature(self):
 
291
        self.requireFeature(features.gpg)
 
292
        self.import_keys()
 
293
 
 
294
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
295
Hash: SHA1
 
296
 
 
297
asdf
 
298
-----BEGIN PGP SIGNATURE-----
 
299
Version: GnuPG v1.4.11 (GNU/Linux)
 
300
 
 
301
iJwEAQECAAYFAk45V18ACgkQjs6dvEpb0cSIZQP/eOGTXGPlrNwvDkcX2d8O///I
 
302
ecB4sUIUEpv1XAk1MkNu58lsjjK72lRaLusEGqd7HwrFmpxVeVs0oWLg23PNPCFs
 
303
yJBID9ma+VxFVPtkEFnrc1R72sBJLfBcTxMkwVTC8eeznjdtn+cg+aLkxbPdrGnr
 
304
JFA6kUIJU2w9LU/b88Y=
 
305
=UuRX
 
306
-----END PGP SIGNATURE-----
 
307
"""
 
308
        plain = b"""asdf\n"""
 
309
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
310
        my_gpg.set_acceptable_keys("test@example.com")
 
311
        self.assertEqual((gpg.SIGNATURE_NOT_VALID, None, None),
 
312
                         my_gpg.verify(content))
 
313
 
 
314
    def test_verify_invalid(self):
 
315
        self.requireFeature(features.gpg)
 
316
        self.import_keys()
 
317
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
318
Hash: SHA1
 
319
 
 
320
bazaar-ng testament short form 1
 
321
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
322
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
323
-----BEGIN PGP SIGNATURE-----
 
324
Version: GnuPG v1.4.11 (GNU/Linux)
 
325
 
 
326
iEYEARECAAYFAk33gYsACgkQpQbm1N1NUIhiDACglOuQDlnSF4NxfHSkN/zrmFy8
 
327
nswAoNGXAVuR9ONasAKIGBNUE0b+lols
 
328
=SOuC
 
329
-----END PGP SIGNATURE-----
 
330
"""
 
331
        plain = b"""bazaar-ng testament short form 1
 
332
revision-id: amy@example.com-20110527185938-hluafawphszb8dl1
 
333
sha1: 6411f9bdf6571200357140c9ce7c0f50106ac9a4
 
334
"""
 
335
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
336
        self.assertEqual((gpg.SIGNATURE_NOT_VALID, None, plain),
 
337
                         my_gpg.verify(content))
 
338
 
 
339
    def test_verify_expired_but_valid(self):
 
340
        self.requireFeature(features.gpg)
 
341
        self.import_keys()
 
342
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
343
Hash: SHA1
 
344
 
 
345
bazaar-ng testament short form 1
 
346
revision-id: test@example.com-20110801100657-f1dr1nompeex723z
 
347
sha1: 59ab434be4c2d5d646dee84f514aa09e1b72feeb
 
348
-----BEGIN PGP SIGNATURE-----
 
349
Version: GnuPG v1.4.10 (GNU/Linux)
 
350
 
 
351
iJwEAQECAAYFAk42esUACgkQHOJve0+NFRPc5wP7BoZkzBU8JaHMLv/LmqLr0sUz
 
352
zuE51ofZZ19L7KVtQWsOi4jFy0fi4A5TFwO8u9SOfoREGvkw292Uty9subSouK5/
 
353
mFmDOYPQ+O83zWgYZsBmMJWYDZ+X9I6XXZSbPtV/7XyTjaxtl5uRnDVJjg+AzKvD
 
354
dTp8VatVVrwuvzOPDVc=
 
355
=uHen
 
356
-----END PGP SIGNATURE-----
 
357
"""
 
358
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
359
        self.assertEqual((gpg.SIGNATURE_EXPIRED, u'4F8D1513', None),
 
360
                         my_gpg.verify(content))
 
361
 
 
362
    def test_verify_unknown_key(self):
 
363
        self.requireFeature(features.gpg)
 
364
        self.import_keys()
 
365
        content = b"""-----BEGIN PGP SIGNED MESSAGE-----
 
366
Hash: SHA1
 
367
 
 
368
asdf
 
369
-----BEGIN PGP SIGNATURE-----
 
370
Version: GnuPG v1.4.11 (GNU/Linux)
 
371
 
 
372
iQEcBAEBAgAGBQJOORKwAAoJENf6AkFdUeVvJDYH/1Cz+AJn1Jvy5n64o+0fZ5Ow
 
373
Y7UQb4QQTIOV7jI7n4hv/yBzuHrtImFzYvQl/o2Ezzi8B8L5gZtQy+xCUF+Q8iWs
 
374
gytZ5JUtSze7hDZo1NUl4etjoRGYqRfrUcvE2LkVH2dFbDGyyQfVmoeSHa5akuuP
 
375
QZmyg2F983rACVIpGvsqTH6RcBdvE9vx68lugeKQA8ArDn39/74FBFipFzrXSPij
 
376
eKFpl+yZmIb3g6HkPIC8o4j/tMvc37xF1OG5sBu8FT0+FC+VgY7vAblneDftAbyP
 
377
sIODx4WcfJtjLG/qkRYqJ4gDHo0eMpTJSk2CWebajdm4b+JBrM1F9mgKuZFLruE=
 
378
=RNR5
 
379
-----END PGP SIGNATURE-----
 
380
"""
 
381
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
382
        self.assertEqual((gpg.SIGNATURE_KEY_MISSING, u'5D51E56F', None),
 
383
                         my_gpg.verify(content))
 
384
 
 
385
    def test_set_acceptable_keys(self):
 
386
        self.requireFeature(features.gpg)
 
387
        self.import_keys()
 
388
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
389
        my_gpg.set_acceptable_keys("bazaar@example.com")
 
390
        self.assertEqual(my_gpg.acceptable_keys,
 
391
                         [u'B5DEED5FCB15DAE6ECEF919587681B1EE3080E45'])
 
392
 
 
393
    def test_set_acceptable_keys_from_config(self):
 
394
        self.requireFeature(features.gpg)
 
395
        self.import_keys()
 
396
        my_gpg = gpg.GPGStrategy(FakeConfig(
 
397
            b'acceptable_keys=bazaar@example.com'))
 
398
        my_gpg.set_acceptable_keys(None)
 
399
        self.assertEqual(my_gpg.acceptable_keys,
 
400
                         [u'B5DEED5FCB15DAE6ECEF919587681B1EE3080E45'])
 
401
 
 
402
    def test_set_acceptable_keys_unknown(self):
 
403
        self.requireFeature(features.gpg)
 
404
        my_gpg = gpg.GPGStrategy(FakeConfig())
 
405
        self.notes = []
 
406
 
 
407
        def note(*args):
 
408
            self.notes.append(args[0] % args[1:])
 
409
        self.overrideAttr(trace, 'note', note)
 
410
        my_gpg.set_acceptable_keys("unknown")
 
411
        self.assertEqual(my_gpg.acceptable_keys, [])
 
412
        self.assertEqual(self.notes,
 
413
                         ['No GnuPG key results for pattern: unknown'])
87
414
 
88
415
 
89
416
class TestDisabled(TestCase):
90
417
 
91
418
    def test_sign(self):
92
 
        self.assertRaises(errors.SigningFailed,
93
 
                          gpg.DisabledGPGStrategy(None).sign, 'content')
 
419
        self.assertRaises(gpg.SigningFailed,
 
420
                          gpg.DisabledGPGStrategy(None).sign, b'content', gpg.MODE_CLEAR)
 
421
 
 
422
    def test_verify(self):
 
423
        self.assertRaises(gpg.SignatureVerificationFailed,
 
424
                          gpg.DisabledGPGStrategy(None).verify, b'content')