1#!/bin/sh
2test_description='signed push'
4. ./test-lib.sh
6. "$TEST_DIRECTORY"/lib-gpg.sh
7prepare_dst () {
9 rm -fr dst &&
10 test_create_repo dst &&
11 git push dst master:noop master:ff master:noff
13}
14test_expect_success setup '
16 # master, ff and noff branches pointing at the same commit
17 test_tick &&
18 git commit --allow-empty -m initial &&
19 git checkout -b noop &&
21 git checkout -b ff &&
22 git checkout -b noff &&
23 # noop stays the same, ff advances, noff rewrites
25 test_tick &&
26 git commit --allow-empty --amend -m rewritten &&
27 git checkout ff &&
28 test_tick &&
30 git commit --allow-empty -m second
31'
32test_expect_success 'unsigned push does not send push certificate' '
34 prepare_dst &&
35 mkdir -p dst/.git/hooks &&
36 write_script dst/.git/hooks/post-receive <<-\EOF &&
37 # discard the update list
38 cat >/dev/null
39 # record the push certificate
40 if test -n "${GIT_PUSH_CERT-}"
41 then
42 git cat-file blob $GIT_PUSH_CERT >../push-cert
43 fi
44 EOF
45 git push dst noop ff +noff &&
47 ! test -f dst/push-cert
48'
49test_expect_success 'talking with a receiver without push certificate support' '
51 prepare_dst &&
52 mkdir -p dst/.git/hooks &&
53 write_script dst/.git/hooks/post-receive <<-\EOF &&
54 # discard the update list
55 cat >/dev/null
56 # record the push certificate
57 if test -n "${GIT_PUSH_CERT-}"
58 then
59 git cat-file blob $GIT_PUSH_CERT >../push-cert
60 fi
61 EOF
62 git push dst noop ff +noff &&
64 ! test -f dst/push-cert
65'
66test_expect_success 'push --signed fails with a receiver without push certificate support' '
68 prepare_dst &&
69 mkdir -p dst/.git/hooks &&
70 test_must_fail git push --signed dst noop ff +noff 2>err &&
71 test_i18ngrep "the receiving end does not support" err
72'
73test_expect_success GPG 'no certificate for a signed push with no update' '
75 prepare_dst &&
76 mkdir -p dst/.git/hooks &&
77 write_script dst/.git/hooks/post-receive <<-\EOF &&
78 if test -n "${GIT_PUSH_CERT-}"
79 then
80 git cat-file blob $GIT_PUSH_CERT >../push-cert
81 fi
82 EOF
83 git push dst noop &&
84 ! test -f dst/push-cert
85'
86test_expect_success GPG 'signed push sends push certificate' '
88 prepare_dst &&
89 mkdir -p dst/.git/hooks &&
90 git -C dst config receive.certnonceseed sekrit &&
91 write_script dst/.git/hooks/post-receive <<-\EOF &&
92 # discard the update list
93 cat >/dev/null
94 # record the push certificate
95 if test -n "${GIT_PUSH_CERT-}"
96 then
97 git cat-file blob $GIT_PUSH_CERT >../push-cert
98 fi &&
99 cat >../push-cert-status <<E_O_F
101 SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
102 KEY=${GIT_PUSH_CERT_KEY-nokey}
103 STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
104 NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
105 NONCE=${GIT_PUSH_CERT_NONCE-nononce}
106 E_O_F
107 EOF
109 git push --signed dst noop ff +noff &&
111 (
113 cat <<-\EOF &&
114 SIGNER=C O Mitter <committer@example.com>
115 KEY=13B6F51ECDDE430D
116 STATUS=G
117 NONCE_STATUS=OK
118 EOF
119 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
120 ) >expect &&
121 grep "$(git rev-parse noop ff) refs/heads/ff" dst/push-cert &&
123 grep "$(git rev-parse noop noff) refs/heads/noff" dst/push-cert &&
124 test_cmp expect dst/push-cert-status
125'
126test_expect_success GPG 'inconsistent push options in signed push not allowed' '
128 # First, invoke receive-pack with dummy input to obtain its preamble.
129 prepare_dst &&
130 git -C dst config receive.certnonceseed sekrit &&
131 git -C dst config receive.advertisepushoptions 1 &&
132 printf xxxx | test_might_fail git receive-pack dst >preamble &&
133 # Then, invoke push. Simulate a receive-pack that sends the preamble we
135 # obtained, followed by a dummy packet.
136 write_script myscript <<-\EOF &&
137 cat preamble &&
138 printf xxxx &&
139 cat >push
140 EOF
141 test_might_fail git push --push-option="foo" --push-option="bar" \
142 --receive-pack="\"$(pwd)/myscript\"" --signed dst --delete ff &&
143 # Replay the push output on a fresh dst, checking that ff is truly
145 # deleted.
146 prepare_dst &&
147 git -C dst config receive.certnonceseed sekrit &&
148 git -C dst config receive.advertisepushoptions 1 &&
149 git receive-pack dst <push &&
150 test_must_fail git -C dst rev-parse ff &&
151 # Tweak the push output to make the push option outside the cert
153 # different, then replay it on a fresh dst, checking that ff is not
154 # deleted.
155 perl -pe "s/([^ ])bar/\$1baz/" push >push.tweak &&
156 prepare_dst &&
157 git -C dst config receive.certnonceseed sekrit &&
158 git -C dst config receive.advertisepushoptions 1 &&
159 git receive-pack dst <push.tweak >out &&
160 git -C dst rev-parse ff &&
161 grep "inconsistent push options" out
162'
163test_expect_success GPG 'fail without key and heed user.signingkey' '
165 prepare_dst &&
166 mkdir -p dst/.git/hooks &&
167 git -C dst config receive.certnonceseed sekrit &&
168 write_script dst/.git/hooks/post-receive <<-\EOF &&
169 # discard the update list
170 cat >/dev/null
171 # record the push certificate
172 if test -n "${GIT_PUSH_CERT-}"
173 then
174 git cat-file blob $GIT_PUSH_CERT >../push-cert
175 fi &&
176 cat >../push-cert-status <<E_O_F
178 SIGNER=${GIT_PUSH_CERT_SIGNER-nobody}
179 KEY=${GIT_PUSH_CERT_KEY-nokey}
180 STATUS=${GIT_PUSH_CERT_STATUS-nostatus}
181 NONCE_STATUS=${GIT_PUSH_CERT_NONCE_STATUS-nononcestatus}
182 NONCE=${GIT_PUSH_CERT_NONCE-nononce}
183 E_O_F
184 EOF
186 unset GIT_COMMITTER_EMAIL &&
188 git config user.email hasnokey@nowhere.com &&
189 test_must_fail git push --signed dst noop ff +noff &&
190 git config user.signingkey committer@example.com &&
191 git push --signed dst noop ff +noff &&
192 (
194 cat <<-\EOF &&
195 SIGNER=C O Mitter <committer@example.com>
196 KEY=13B6F51ECDDE430D
197 STATUS=G
198 NONCE_STATUS=OK
199 EOF
200 sed -n -e "s/^nonce /NONCE=/p" -e "/^$/q" dst/push-cert
201 ) >expect &&
202 grep "$(git rev-parse noop ff) refs/heads/ff" dst/push-cert &&
204 grep "$(git rev-parse noop noff) refs/heads/noff" dst/push-cert &&
205 test_cmp expect dst/push-cert-status
206'
207test_done