1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-20 14:37:08 +01:00

tests: Add test demonstrating issue2929.

* tests/openpgp/Makefile.am (XTESTS): Add new test.
* tests/openpgp/issue2929.scm: New file.
--
This test demonstrates a problem with the TOFU trust model when a new
key is created.

Signed-off-by: Justus Winter <justus@g10code.com>
This commit is contained in:
Justus Winter 2017-01-24 14:28:36 +01:00
parent 628ff84346
commit 5aafa56dff
2 changed files with 34 additions and 1 deletions

View File

@ -96,7 +96,8 @@ XTESTS = \
issue2015.scm \ issue2015.scm \
issue2346.scm \ issue2346.scm \
issue2417.scm \ issue2417.scm \
issue2419.scm issue2419.scm \
issue2929.scm
# XXX: Currently, one cannot override automake's 'check' target. As a # XXX: Currently, one cannot override automake's 'check' target. As a
# workaround, we avoid defining 'TESTS', thus automake will not emit # workaround, we avoid defining 'TESTS', thus automake will not emit

View File

@ -0,0 +1,32 @@
#!/usr/bin/env gpgscm
;; Copyright (C) 2017 g10 Code GmbH
;;
;; This file is part of GnuPG.
;;
;; GnuPG is free software; you can redistribute it and/or modify
;; it under the terms of the GNU General Public License as published by
;; the Free Software Foundation; either version 3 of the License, or
;; (at your option) any later version.
;;
;; GnuPG is distributed in the hope that it will be useful,
;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
;; GNU General Public License for more details.
;;
;; You should have received a copy of the GNU General Public License
;; along with this program; if not, see <http://www.gnu.org/licenses/>.
(load (with-path "defs.scm"))
(setup-environment)
(catch (skip "Tofu not supported")
(call-check `(,@gpg --trust-model=tofu --list-config)))
;; Redefine GPG without --always-trust and TOFU trust model.
(define gpg `(,(tool 'gpg) --no-permission-warning --trust-model=tofu))
(info "Checking key creation with TOFU trust model (issue2929).")
(call-check `(,@gpg --quick-generate-key frob@example.org))
(call-check `(,@gpg --sign gpg.conf))
(call-check `(,@gpg --verify gpg.conf.gpg))