3d89fe5fd9
--- type: change message: |- Refactor how commit authorship is formatted This ended up being a loose thread that, when pulled, untangled a bunch of other stuff. Notably the account argument to Repo.Commit is no longer needed, and I added an anon argument to TestSignifierPGP which simplified a number of tests. change_hash: AHMeFpSJb/AoLiELW5pImUiQ+PS0PWibliqcQuFTjC3o credentials: - type: pgp_signature pub_key_id: 95C46FA6A41148AC body: iQIzBAABAgAdFiEEJ6tQKp6olvZKJ0lwlcRvpqQRSKwFAl6TVu8ACgkQlcRvpqQRSKwExw/+OQa++h0ZkFuguU3593D+9P7l8bElMWu+Je40RrDHz4fD0i51UJGcnkk/9fryUWGmWpbCnDv9k7OGztipH/P2HDhuBn+/Dc7X8CcRsRC7/n+o1gd6f1Sc9q4zTgPKkE+ZrE226e8GNVgpZRspbZHa1IwSs/fIkboavnWFowV6SiLColtwYqCfCJXvEP52D+OjKvi4iatRUzoVIOYNHGI4uOufuQRYPZIQRGxgcvUUB/VhjyBB39BV5cHO8oTFmmXH6+eFj4bHWjHsRzp5ferUmsRCdvo2lkoxXkeqN0okyUcwpXQXI7l6BL9OyCxHifIK9G2BaOAsp7A6piwNzaUGk1RIHZpJ69dTfTre1jolOhkGY9lXGAMdSo+ifsFqKj3sXZNjSEJ49riYP98ERnhF1APHN+xL1dkUd8eTTMRh9+C8Bi7twWkUJ2wH5CL1brkpkHIwXOa7jszdeliMK9aZRT7lyxvjCx0uVFTeXbq0RSRb9Oeo+TJhRIu7kLpMKmzX9y/fRaGiPcjr8OD2cfWhACsaVGuU+oXmJXk4uJ+ADfm4IZy7IOEQdr+3Cg33y2mxRq2APwLaGjvA6UFLfar1/nAKK+uTQDF3DssHdLgEfsH2Lu5orc3+FtAblhBiwrN5a732hLceEMkUvQXwOHbZqddkbuqQ6FqHMDIsvBdK6gI= account: mediocregopher
67 lines
1.5 KiB
Go
67 lines
1.5 KiB
Go
package sigcred
|
|
|
|
import (
|
|
"math/rand"
|
|
"testing"
|
|
"time"
|
|
|
|
"dehub.dev/src/dehub.git/fs"
|
|
)
|
|
|
|
// There are not currently tests for testing pgp signature creation, as they
|
|
// require calls out to the gpg executable. Wrapping tests in docker containers
|
|
// would make this doable.
|
|
|
|
func TestPGPVerification(t *testing.T) {
|
|
tests := []struct {
|
|
descr string
|
|
init func(pubKeyBody []byte) (SignifierInterface, fs.FS)
|
|
}{
|
|
{
|
|
descr: "SignifierPGP Body",
|
|
init: func(pubKeyBody []byte) (SignifierInterface, fs.FS) {
|
|
return SignifierPGP{Body: string(pubKeyBody)}, nil
|
|
},
|
|
},
|
|
{
|
|
descr: "SignifierPGP Path",
|
|
init: func(pubKeyBody []byte) (SignifierInterface, fs.FS) {
|
|
pubKeyPath := "some/dir/pubkey.asc"
|
|
fs := fs.Stub{pubKeyPath: pubKeyBody}
|
|
return SignifierPGP{Path: pubKeyPath}, fs
|
|
},
|
|
},
|
|
}
|
|
|
|
for _, test := range tests {
|
|
t.Run(test.descr, func(t *testing.T) {
|
|
seed := time.Now().UnixNano()
|
|
t.Logf("seed: %d", seed)
|
|
rand := rand.New(rand.NewSource(seed))
|
|
privKey, pubKeyBody := TestSignifierPGP("", false, rand)
|
|
|
|
sig, fs := test.init(pubKeyBody)
|
|
data := make([]byte, rand.Intn(1024))
|
|
if _, err := rand.Read(data); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
cred, err := privKey.Sign(nil, data)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
signed, err := sig.Signed(fs, cred)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
} else if !signed {
|
|
t.Fatal("expected signed to be true")
|
|
}
|
|
|
|
if err := sig.Verify(fs, data, cred); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
})
|
|
}
|
|
}
|