|
|
|
|
@ -11,14 +11,20 @@ T_RECIPIENT_GOOD="[yadm]\n\tgpg-recipient = yadm-test1" |
|
|
|
|
T_RECIPIENT_BAD="[yadm]\n\tgpg-recipient = invalid" |
|
|
|
|
T_RECIPIENT_ASK="[yadm]\n\tgpg-recipient = ASK" |
|
|
|
|
|
|
|
|
|
#; use gpg1 if it's available |
|
|
|
|
T_GPG_PROGRAM="gpg" |
|
|
|
|
if command -v gpg1 >/dev/null 2>&1; then |
|
|
|
|
T_GPG_PROGRAM="gpg1" |
|
|
|
|
fi |
|
|
|
|
|
|
|
|
|
function import_keys() { |
|
|
|
|
gpg --import "test/test_key" >/dev/null 2>&1 || true |
|
|
|
|
gpg --import-ownertrust < "test/ownertrust.txt" >/dev/null 2>&1 |
|
|
|
|
"$T_GPG_PROGRAM" --import "test/test_key" >/dev/null 2>&1 || true |
|
|
|
|
"$T_GPG_PROGRAM" --import-ownertrust < "test/ownertrust.txt" >/dev/null 2>&1 |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
function remove_keys() { |
|
|
|
|
gpg --batch --yes --delete-secret-keys "$T_KEY_FINGERPRINT" >/dev/null 2>&1 || true |
|
|
|
|
gpg --batch --yes --delete-key "$T_KEY_FINGERPRINT" >/dev/null 2>&1 || true |
|
|
|
|
"$T_GPG_PROGRAM" --batch --yes --delete-secret-keys "$T_KEY_FINGERPRINT" >/dev/null 2>&1 || true |
|
|
|
|
"$T_GPG_PROGRAM" --batch --yes --delete-key "$T_KEY_FINGERPRINT" >/dev/null 2>&1 || true |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
setup() { |
|
|
|
|
@ -50,7 +56,7 @@ setup() { |
|
|
|
|
#; encrypt YADM_ARCHIVE (symmetric) |
|
|
|
|
expect <<EOF >/dev/null |
|
|
|
|
set timeout 2; |
|
|
|
|
spawn gpg --yes -c --output "$T_ARCHIVE_SYMMETRIC" "$T_TMP/build_archive.tar" |
|
|
|
|
spawn "$T_GPG_PROGRAM" --yes -c --output "$T_ARCHIVE_SYMMETRIC" "$T_TMP/build_archive.tar" |
|
|
|
|
expect "passphrase:" {send "$T_PASSWD\n"} |
|
|
|
|
expect "passphrase:" {send "$T_PASSWD\n"} |
|
|
|
|
expect "$" |
|
|
|
|
@ -58,7 +64,10 @@ setup() { |
|
|
|
|
EOF |
|
|
|
|
|
|
|
|
|
#; encrypt YADM_ARCHIVE (asymmetric) |
|
|
|
|
gpg --yes --batch -e -r "$T_KEY_NAME" --output "$T_ARCHIVE_ASYMMETRIC" "$T_TMP/build_archive.tar" |
|
|
|
|
"$T_GPG_PROGRAM" --yes --batch -e -r "$T_KEY_NAME" --output "$T_ARCHIVE_ASYMMETRIC" "$T_TMP/build_archive.tar" |
|
|
|
|
|
|
|
|
|
#; configure yadm to use T_GPG_PROGRAM |
|
|
|
|
git config --file="$T_YADM_CONFIG" yadm.gpg-program "$T_GPG_PROGRAM" |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
teardown() { |
|
|
|
|
@ -70,13 +79,13 @@ function validate_archive() { |
|
|
|
|
if [ "$1" = "symmetric" ]; then |
|
|
|
|
expect <<EOF >/dev/null |
|
|
|
|
set timeout 2; |
|
|
|
|
spawn bash -c "(gpg -q -d '$T_YADM_ARCHIVE' || echo 1) | tar t | sort > $T_TMP/archive_list" |
|
|
|
|
spawn bash -c "($T_GPG_PROGRAM -q -d '$T_YADM_ARCHIVE' || echo 1) | tar t | sort > $T_TMP/archive_list" |
|
|
|
|
expect "passphrase:" {send "$T_PASSWD\n"} |
|
|
|
|
expect "$" |
|
|
|
|
foreach {pid spawnid os_error_flag value} [wait] break |
|
|
|
|
EOF |
|
|
|
|
else |
|
|
|
|
gpg -q -d "$T_YADM_ARCHIVE" | tar t | sort > "$T_TMP/archive_list" |
|
|
|
|
"$T_GPG_PROGRAM" -q -d "$T_YADM_ARCHIVE" | tar t | sort > "$T_TMP/archive_list" |
|
|
|
|
fi |
|
|
|
|
|
|
|
|
|
#; inventory what is expected in the archive |
|
|
|
|
|
Tim Byrne
7 years ago