4d56716fe8
--- type: change message: |- Give the project a proper root, dehub.dev/src/dehub.git "dehub" was being used as a placeholder up till this point, but now that the project has matured enough to have a home, and people will want to be installing the binary, it's time to give it a proper import root. change_hash: ADTjLNnPARatUjx6HDo7m3O+0KUcWvcMJq1kNrj9++PU credentials: - type: pgp_signature pub_key_id: 95C46FA6A41148AC body: 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 account: mediocregopher
67 lines
1.5 KiB
Go
67 lines
1.5 KiB
Go
package sigcred
|
|
|
|
import (
|
|
"dehub.dev/src/dehub.git/fs"
|
|
"math/rand"
|
|
"testing"
|
|
"time"
|
|
)
|
|
|
|
// There are not currently tests for testing pgp signature creation, as they
|
|
// require calls out to the gpg executable. Wrapping tests in docker containers
|
|
// would make this doable.
|
|
|
|
func TestPGPVerification(t *testing.T) {
|
|
tests := []struct {
|
|
descr string
|
|
init func(pubKeyBody []byte) (SignifierInterface, fs.FS)
|
|
}{
|
|
{
|
|
descr: "SignifierPGP",
|
|
init: func(pubKeyBody []byte) (SignifierInterface, fs.FS) {
|
|
return SignifierPGP{Body: string(pubKeyBody)}, nil
|
|
},
|
|
},
|
|
{
|
|
descr: "SignifierPGPFile",
|
|
init: func(pubKeyBody []byte) (SignifierInterface, fs.FS) {
|
|
pubKeyPath := "some/dir/pubkey.asc"
|
|
fs := fs.Stub{pubKeyPath: pubKeyBody}
|
|
sigPGPFile := SignifierPGPFile{Path: pubKeyPath}
|
|
return sigPGPFile, fs
|
|
},
|
|
},
|
|
}
|
|
|
|
for _, test := range tests {
|
|
t.Run(test.descr, func(t *testing.T) {
|
|
seed := time.Now().UnixNano()
|
|
t.Logf("seed: %d", seed)
|
|
rand := rand.New(rand.NewSource(seed))
|
|
privKey, pubKeyBody := SignifierPGPTmp("foo", rand)
|
|
|
|
sig, fs := test.init(pubKeyBody)
|
|
data := make([]byte, rand.Intn(1024))
|
|
if _, err := rand.Read(data); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
cred, err := privKey.Sign(nil, data)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
signed, err := sig.Signed(fs, cred)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
} else if !signed {
|
|
t.Fatal("expected signed to be true")
|
|
}
|
|
|
|
if err := sig.Verify(fs, data, cred); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
})
|
|
}
|
|
}
|