t/t5534-push-signed.sh

   1 #!/bin/sh
   2
   3 test_description='signed push'
   4
   5 . ./test-lib.sh
   6 . "$TEST_DIRECTORY"/lib-gpg.sh
   7
   8 prepare_dst () {
   9         rm -fr dst &&
  10         test_create_repo dst &&
  11
  12         git push dst master:noop master:ff master:noff
  13 }
  14
  15 test_expect_success setup '
  16         # master, ff and noff branches pointing at the same commit
  17         test_tick &&
  18         git commit --allow-empty -m initial &&
  19
  20         git checkout -b noop &&
  21         git checkout -b ff &&
  22         git checkout -b noff &&
  23
  24         # noop stays the same, ff advances, noff rewrites
  25         test_tick &&
  26         git commit --allow-empty --amend -m rewritten &&
  27         git checkout ff &&
  28
  29         test_tick &&
  30         git commit --allow-empty -m second
  31 '
  32
  33 test_expect_success 'unsigned push does not send push certificate' '
  34         prepare_dst &&
  35         mkdir -p dst/.git/hooks &&
  36         write_script dst/.git/hooks/post-receive <<-\EOF &&
  37         # discard the update list
  38         cat >/dev/null
  39         # record the push certificate
  40         if test -n "${GIT_PUSH_CERT-}"
  41         then
  42                 git cat-file blob $GIT_PUSH_CERT >../push-cert
  43         fi
  44         EOF
  45
  46         git push dst noop ff +noff &&
  47         ! test -f dst/push-cert
  48 '
  49
  50 test_expect_success 'talking with a receiver without push certificate support' '
  51         prepare_dst &&
  52         mkdir -p dst/.git/hooks &&
  53         write_script dst/.git/hooks/post-receive <<-\EOF &&
  54         # discard the update list
  55         cat >/dev/null
  56         # record the push certificate
  57         if test -n "${GIT_PUSH_CERT-}"
  58         then
  59                 git cat-file blob $GIT_PUSH_CERT >../push-cert
  60         fi
  61         EOF
  62
  63         git push dst noop ff +noff &&
  64         ! test -f dst/push-cert
  65 '
  66
  67 test_expect_success 'push --signed fails with a receiver without push certificate support' '
  68         prepare_dst &&
  69         mkdir -p dst/.git/hooks &&
  70         test_must_fail git push --signed dst noop ff +noff 2>err &&
  71         test_i18ngrep "the receiving end does not support" err
  72 '
  73
  74 test_expect_success GPG 'no certificate for a signed push with no update' '
  75         prepare_dst &&
  76         mkdir -p dst/.git/hooks &&
  77         write_script dst/.git/hooks/post-receive <<-\EOF &&
  78         if test -n "${GIT_PUSH_CERT-}"
  79         then
  80                 git cat-file blob $GIT_PUSH_CERT >../push-cert
  81         fi
  82         EOF
  83         git push dst noop &&
  84         ! test -f dst/push-cert
  85 '
  86
  87 test_expect_success GPG 'signed push sends push certificate' '
  88         prepare_dst &&
  89         mkdir -p dst/.git/hooks &&
  90         git -C dst config receive.certnonceseed sekrit &&
  91         write_script dst/.git/hooks/post-receive <<-\EOF &&
  92         # discard the update list
  93         cat >/dev/null
  94         # record the push certificate
  95         if test -n "${GIT_PUSH_CERT-}"
  96         then
  97                 git cat-file blob $GIT_PUSH_CERT >../push-cert
  98         fi &&
  99
 100         cat >../push-cert-status <<E_O_F
 101         SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
 102         KEY=${GIT_PUSH_CERT_KEY-nokey}
 103         STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
 104         NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
 105         NONCE=${GIT_PUSH_CERT_NONCE-nononce}
 106         E_O_F
 107
 108         EOF
 109
 110         git push --signed dst noop ff +noff &&
 111
 112         (
 113                 cat <<-\EOF &&
 114                 SIGNER=C O Mitter <committer@example.com>
 115                 KEY=13B6F51ECDDE430D
 116                 STATUS=G
 117                 NONCE_STATUS=OK
 118                 EOF
 119                 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
 120         ) >expect &&
 121
 122         grep "$(git rev-parse noop ff) refs/heads/ff" dst/push-cert &&
 123         grep "$(git rev-parse noop noff) refs/heads/noff" dst/push-cert &&
 124         test_cmp expect dst/push-cert-status
 125 '
 126
 127 test_expect_success GPG 'inconsistent push options in signed push not allowed' '
 128         # First, invoke receive-pack with dummy input to obtain its preamble.
 129         prepare_dst &&
 130         git -C dst config receive.certnonceseed sekrit &&
 131         git -C dst config receive.advertisepushoptions 1 &&
 132         printf xxxx | test_might_fail git receive-pack dst >preamble &&
 133
 134         # Then, invoke push. Simulate a receive-pack that sends the preamble we
 135         # obtained, followed by a dummy packet.
 136         write_script myscript <<-\EOF &&
 137                 cat preamble &&
 138                 printf xxxx &&
 139                 cat >push
 140         EOF
 141         test_might_fail git push --push-option="foo" --push-option="bar" \
 142                 --receive-pack="\"$(pwd)/myscript\"" --signed dst --delete ff &&
 143
 144         # Replay the push output on a fresh dst, checking that ff is truly
 145         # deleted.
 146         prepare_dst &&
 147         git -C dst config receive.certnonceseed sekrit &&
 148         git -C dst config receive.advertisepushoptions 1 &&
 149         git receive-pack dst <push &&
 150         test_must_fail git -C dst rev-parse ff &&
 151
 152         # Tweak the push output to make the push option outside the cert
 153         # different, then replay it on a fresh dst, checking that ff is not
 154         # deleted.
 155         perl -pe "s/([^ ])bar/\$1baz/" push >push.tweak &&
 156         prepare_dst &&
 157         git -C dst config receive.certnonceseed sekrit &&
 158         git -C dst config receive.advertisepushoptions 1 &&
 159         git receive-pack dst <push.tweak >out &&
 160         git -C dst rev-parse ff &&
 161         grep "inconsistent push options" out
 162 '
 163
 164 test_expect_success GPG 'fail without key and heed user.signingkey' '
 165         prepare_dst &&
 166         mkdir -p dst/.git/hooks &&
 167         git -C dst config receive.certnonceseed sekrit &&
 168         write_script dst/.git/hooks/post-receive <<-\EOF &&
 169         # discard the update list
 170         cat >/dev/null
 171         # record the push certificate
 172         if test -n "${GIT_PUSH_CERT-}"
 173         then
 174                 git cat-file blob $GIT_PUSH_CERT >../push-cert
 175         fi &&
 176
 177         cat >../push-cert-status <<E_O_F
 178         SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
 179         KEY=${GIT_PUSH_CERT_KEY-nokey}
 180         STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
 181         NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
 182         NONCE=${GIT_PUSH_CERT_NONCE-nononce}
 183         E_O_F
 184
 185         EOF
 186
 187         unset GIT_COMMITTER_EMAIL &&
 188         git config user.email hasnokey@nowhere.com &&
 189         test_must_fail git push --signed dst noop ff +noff &&
 190         git config user.signingkey committer@example.com &&
 191         git push --signed dst noop ff +noff &&
 192
 193         (
 194                 cat <<-\EOF &&
 195                 SIGNER=C O Mitter <committer@example.com>
 196                 KEY=13B6F51ECDDE430D
 197                 STATUS=G
 198                 NONCE_STATUS=OK
 199                 EOF
 200                 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
 201         ) >expect &&
 202
 203         grep "$(git rev-parse noop ff) refs/heads/ff" dst/push-cert &&
 204         grep "$(git rev-parse noop noff) refs/heads/noff" dst/push-cert &&
 205         test_cmp expect dst/push-cert-status
 206 '
 207
 208 test_done