3 test_description='signed push'
6 . "$TEST_DIRECTORY"/lib-gpg.sh
10 test_create_repo dst &&
12 git push dst master:noop master:ff master:noff
15 test_expect_success setup '
16 # master, ff and noff branches pointing at the same commit
18 git commit --allow-empty -m initial &&
20 git checkout -b noop &&
22 git checkout -b noff &&
24 # noop stays the same, ff advances, noff rewrites
26 git commit --allow-empty --amend -m rewritten &&
30 git commit --allow-empty -m second
33 test_expect_success 'unsigned push does not send push certificate' '
35 mkdir -p dst/.git/hooks &&
36 write_script dst/.git/hooks/post-receive <<-\EOF &&
37 # discard the update list
39 # record the push certificate
40 if test -n "${GIT_PUSH_CERT-}"
42 git cat-file blob $GIT_PUSH_CERT >../push-cert
46 git push dst noop ff +noff &&
47 ! test -f dst/push-cert
50 test_expect_success 'talking with a receiver without push certificate support' '
52 mkdir -p dst/.git/hooks &&
53 write_script dst/.git/hooks/post-receive <<-\EOF &&
54 # discard the update list
56 # record the push certificate
57 if test -n "${GIT_PUSH_CERT-}"
59 git cat-file blob $GIT_PUSH_CERT >../push-cert
63 git push dst noop ff +noff &&
64 ! test -f dst/push-cert
67 test_expect_success 'push --signed fails with a receiver without push certificate support' '
69 mkdir -p dst/.git/hooks &&
70 test_must_fail git push --signed dst noop ff +noff 2>err &&
71 test_i18ngrep "the receiving end does not support" err
74 test_expect_success 'push --signed=1 is accepted' '
76 mkdir -p dst/.git/hooks &&
77 test_must_fail git push --signed=1 dst noop ff +noff 2>err &&
78 test_i18ngrep "the receiving end does not support" err
81 test_expect_success GPG 'no certificate for a signed push with no update' '
83 mkdir -p dst/.git/hooks &&
84 write_script dst/.git/hooks/post-receive <<-\EOF &&
85 if test -n "${GIT_PUSH_CERT-}"
87 git cat-file blob $GIT_PUSH_CERT >../push-cert
91 ! test -f dst/push-cert
94 test_expect_success GPG 'signed push sends push certificate' '
96 mkdir -p dst/.git/hooks &&
97 git -C dst config receive.certnonceseed sekrit &&
98 write_script dst/.git/hooks/post-receive <<-\EOF &&
99 # discard the update list
101 # record the push certificate
102 if test -n "${GIT_PUSH_CERT-}"
104 git cat-file blob $GIT_PUSH_CERT >../push-cert
107 cat >../push-cert-status <<E_O_F
108 SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
109 KEY=${GIT_PUSH_CERT_KEY-nokey}
110 STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
111 NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
112 NONCE=${GIT_PUSH_CERT_NONCE-nononce}
117 git push --signed dst noop ff +noff &&
121 SIGNER=C O Mitter <committer@example.com>
126 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
129 noop=$(git rev-parse noop) &&
130 ff=$(git rev-parse ff) &&
131 noff=$(git rev-parse noff) &&
132 grep "$noop $ff refs/heads/ff" dst/push-cert &&
133 grep "$noop $noff refs/heads/noff" dst/push-cert &&
134 test_cmp expect dst/push-cert-status
137 test_expect_success GPG 'inconsistent push options in signed push not allowed' '
138 # First, invoke receive-pack with dummy input to obtain its preamble.
140 git -C dst config receive.certnonceseed sekrit &&
141 git -C dst config receive.advertisepushoptions 1 &&
142 printf xxxx | test_might_fail git receive-pack dst >preamble &&
144 # Then, invoke push. Simulate a receive-pack that sends the preamble we
145 # obtained, followed by a dummy packet.
146 write_script myscript <<-\EOF &&
151 test_might_fail git push --push-option="foo" --push-option="bar" \
152 --receive-pack="\"$(pwd)/myscript\"" --signed dst --delete ff &&
154 # Replay the push output on a fresh dst, checking that ff is truly
157 git -C dst config receive.certnonceseed sekrit &&
158 git -C dst config receive.advertisepushoptions 1 &&
159 git receive-pack dst <push &&
160 test_must_fail git -C dst rev-parse ff &&
162 # Tweak the push output to make the push option outside the cert
163 # different, then replay it on a fresh dst, checking that ff is not
165 perl -pe "s/([^ ])bar/\$1baz/" push >push.tweak &&
167 git -C dst config receive.certnonceseed sekrit &&
168 git -C dst config receive.advertisepushoptions 1 &&
169 git receive-pack dst <push.tweak >out &&
170 git -C dst rev-parse ff &&
171 grep "inconsistent push options" out
174 test_expect_success GPG 'fail without key and heed user.signingkey' '
176 mkdir -p dst/.git/hooks &&
177 git -C dst config receive.certnonceseed sekrit &&
178 write_script dst/.git/hooks/post-receive <<-\EOF &&
179 # discard the update list
181 # record the push certificate
182 if test -n "${GIT_PUSH_CERT-}"
184 git cat-file blob $GIT_PUSH_CERT >../push-cert
187 cat >../push-cert-status <<E_O_F
188 SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
189 KEY=${GIT_PUSH_CERT_KEY-nokey}
190 STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
191 NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
192 NONCE=${GIT_PUSH_CERT_NONCE-nononce}
197 unset GIT_COMMITTER_EMAIL &&
198 git config user.email hasnokey@nowhere.com &&
199 test_must_fail git push --signed dst noop ff +noff &&
200 git config user.signingkey committer@example.com &&
201 git push --signed dst noop ff +noff &&
205 SIGNER=C O Mitter <committer@example.com>
210 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
213 noop=$(git rev-parse noop) &&
214 ff=$(git rev-parse ff) &&
215 noff=$(git rev-parse noff) &&
216 grep "$noop $ff refs/heads/ff" dst/push-cert &&
217 grep "$noop $noff refs/heads/noff" dst/push-cert &&
218 test_cmp expect dst/push-cert-status
projects / git / blob