1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-11-09 21:28:51 +01:00
gnupg/tests/openpgp
Ingo Klöcker abe69b2094
gpg: Look up user ID to revoke by UID hash
* g10/keyedit.c (find_userid_by_namehash, find_userid): New.
(keyedit_quick_revuid): Use find_userid() instead of iterating over the
nodes of the keyblock.
* tests/openpgp/quick-key-manipulation.scm: Add test for revoking a
user ID specified by its hash.
--

This makes it possible to specify the user ID to revoke as UID hash when
calling --quick-revoke-uid.

GnuPG-bug-id: 5936
(cherry picked from commit 35b1755070)
2022-07-27 16:35:59 +02:00
..
key-selection g10: Improve and unify key selection for -r and --locate-keys. 2016-11-03 15:04:18 +01:00
privkeys tests: Add two more sample keys for OpenPGP. 2016-06-22 11:25:22 +02:00
samplekeys gpg: Avoid importing secret keys if the keyblock is not valid. 2019-03-18 13:16:35 +01:00
samplemsgs tests: Add test importing a revocation certificate. 2016-12-06 15:33:25 +01:00
tofu tests: Replace data used by the TOFU conflict test. 2016-12-06 12:16:57 +01:00
trust-pgp tests: Add tests for the PGP trust model. 2017-08-21 17:12:05 +02:00
4gb-packet.asc common: Don't incorrectly reject 4 GB - 1 sized packets. 2015-08-21 14:21:13 +02:00
4gb-packet.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
all-tests.scm build: New configure option --enable-all-tests. 2017-08-08 17:49:53 +02:00
armdetach.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armdetachm.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armencrypt.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armencryptp.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armor.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armsignencrypt.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
armsigs.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
bug537-test.data.asc Spelling fixes in docs and comments. 2017-04-28 10:06:33 +09:00
bug894-test.asc Fix a bug in the ambigious name detection. 2008-03-20 15:31:43 +00:00
bug1223-bogus.asc Fix for bug 1223 2010-05-07 13:13:56 +00:00
bug1223-good.asc Fix for bug 1223 2010-05-07 13:13:56 +00:00
ChangeLog-2011 Generate the ChangeLog from commit logs. 2011-12-01 11:09:02 +01:00
clearsig.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
compression.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
conventional-mdc.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
conventional.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
decrypt-dsa.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
decrypt-multifile.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
decrypt-session-key.scm tests: Fix no gpg-agent upon removal of GNUPGHOME. 2018-04-04 20:27:08 +09:00
decrypt-unwrap-verify.scm tests: Fix no gpg-agent upon removal of GNUPGHOME. 2018-04-04 20:27:08 +09:00
decrypt.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
default-key.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
defs.scm tests: New test run envvar to run gpg under valgrind. 2020-09-04 11:29:32 +02:00
delete-keys.scm tests: Clarify comments. 2017-05-08 12:37:20 +02:00
detach.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
detachm.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
ecc.scm gpg: Avoid importing secret keys if the keyblock is not valid. 2019-03-18 13:16:35 +01:00
enarmor.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
encrypt-dsa.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
encrypt-multifile.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
encrypt.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
encryptp.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
export.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
fake-pinentry.c tests: Minor memory fix. 2017-04-17 09:44:37 +09:00
forged-keyring.gpg tests: Add openpgp/gpgv-forged-keyring.scm. 2016-08-08 13:24:02 +09:00
genkey1024.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
gpgconf.scm tests: Remove a test case with "quiet" option with gpgconf. 2022-02-17 14:17:27 +09:00
gpgtar.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
gpgv-forged-keyring.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
gpgv.scm tests: Add test for gpgv. 2017-06-21 15:08:02 +02:00
import-revocation-certificate.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
import.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2015.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2346.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2417.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2419.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2929.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue2941.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
issue5120.scm tests: Add a test for Ed25519 keys for non-protected secret. 2022-05-02 10:41:15 +09:00
key-selection.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
Makefile.am tests: Improve handling of spaces in $PATH 2020-08-04 10:20:53 +02:00
mds.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
mkdemodirs Now build "gpg" binary but install as "gpg2" 2016-04-04 18:40:25 +02:00
multisig.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
pgp263-test.pub.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
pgp263-test.sec.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-1-pgp.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-1.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-1o.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-2.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-2o.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-3.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-3o.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
plain-large.asc tests: Add missing encrypted sample, cleanup samples handling. 2016-12-20 16:25:35 +01:00
plain-largeo.asc tests/openpgp: Avoid dependency on source files. 2016-02-23 11:58:52 +01:00
pubdemo.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
pubring.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
pubring.pkr.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
quick-key-manipulation.scm gpg: Look up user ID to revoke by UID hash 2022-07-27 16:35:59 +02:00
README tests: New test run envvar to run gpg under valgrind. 2020-09-04 11:29:32 +02:00
run-tests.scm tests: Make it possible to run all tests using our infrastructure. 2017-05-11 18:12:37 +02:00
seat.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
secdemo.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
secring.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
secring.skr.asc Migrated more stuff to doc/ 2006-08-21 20:20:23 +00:00
setup.scm tests: Also run all OpenPGP tests using keyrings. 2017-05-11 18:12:38 +02:00
shell.scm tests: Improve 'shell.scm' script. 2017-07-14 12:59:00 +02:00
signdemokey Now build "gpg" binary but install as "gpg2" 2016-04-04 18:40:25 +02:00
signed-messages.scm tests: Add test for gpgv. 2017-06-21 15:08:02 +02:00
signencrypt-dsa.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
signencrypt.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
sigs-dsa.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
sigs.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
ssh-export.scm tests: Improve test. 2017-06-26 12:51:28 +02:00
ssh-import.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
tofu.scm tests: Move some functions into a common module. 2017-08-21 16:51:03 +02:00
trust-pgp-1.scm tests: Add tests for the PGP trust model. 2017-08-21 17:12:05 +02:00
trust-pgp-2.scm tests: Add tests for the PGP trust model. 2017-08-21 17:12:05 +02:00
trust-pgp-3.scm tests: Add tests for the PGP trust model. 2017-08-21 17:12:05 +02:00
trust-pgp-4.scm tests: Add tests for the PGP trust model. 2017-08-21 17:12:05 +02:00
use-exact-key.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
verify-multifile.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00
verify.scm tests: Add test for gpgv. 2017-06-21 15:08:02 +02:00
version.scm tests: Locate resources and scripts relative to top source dir. 2017-04-24 14:14:05 +02:00

#                                   Emacs, this is an -*- org -*- file.

* How to run the test suite
** tldr: How to run all tests fast.

 obj $ make check-all TESTFLAGS=--parallel

You can use --parallel=N to request N parallel jobs.  Hint: Tuck
TESTFLAGS=--parallel in your environment.

** Running individual test suites or tests

From your build directory, run

  obj $ make -C tests/openpgp check

to run all tests or

  obj $ make -C tests/openpgp check TESTS=your-test.scm

to run a specific test (or any number of tests separated by spaces).

If you want to debug a test, add verbose=1 to see messages printed by
spawned programs to their standard error stream, verbose=2 to see what
programs are executed, or verbose=3 to see even more program output
and exit codes.

If you want to run gpg under valgrind add with_valgrind=1.


** Inspecting the test environment

To inspect the environment in which tests are running, or to quickly
create keys for debugging or testing, you can start a shell.  There is
one test that doese just that:

  obj $ make -C tests/openpgp check TESTS=shell.scm
  PASS: tests/openpgp/setup.scm
  Load legacy test environment? [Y/n] y
  Drop 'batch' from gpg.conf? [Y/n] y

  Enjoy your test environment.  Type 'exit' to exit it, it will be cleaned up after you.

  ... $ gpg -k Alfa
  gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
  gpg: It is only intended for test purposes and should NOT be
  gpg: used in a production environment or with production keys!
  gpg: /tmp/gpgscm-20170809T144032-run-tests-PFfybw/trustdb.gpg: trustdb created
  pub   dsa1024 1999-03-08 [SCA]
        A0FF4590BB6122EDEF6E3C542D727CC768697734
  uid           [ unknown] Alfa Test (demo key) <alfa@example.net>
  uid           [ unknown] Alpha Test (demo key) <alpha@example.net>
  uid           [ unknown] Alice (demo key)
  sub   elg1024 1999-03-08 [E]

PATH is adjusted so that you will use the tools from the build tree.
Note that the directory is removed when you exit the shell.

** Passing options to the test driver

You can set TESTFLAGS to pass flags to 'run-tests.scm'.  For example,
to speed up the test suite when bisecting, do

  obj $ make -C tests/openpgp check TESTFLAGS=--parallel

See below for the arguments supported by the driver.

** Calling the test driver directly
This is a bit tricky because one needs to manually set some
environment variables.  We should make that easier.  See discussion
below.  From your build directory, do:

  obj $ srcdir=<path to>/tests/openpgp \
        GPGSCM_PATH=<path to>/tests/gpgscm:<path to>/tests/openpgp \
        $(pwd)/tests/gpgscm/gpgscm [gpgscm args] \
        run-tests.scm [test suite runner args]

*** Arguments supported by the test suite runner
The test suite runner supports two modes of operation, '--sequential'
and '--parallel'.  By default the tests are run in sequential order,
each one in a clean environment.

You can specify the tests to run as positional arguments relative to
srcdir (e.g. just 'version.scm').  Note that you do not have to
specify setup.scm and finish.scm, they are executed implicitly.

The test suite runner can be executed in any location that the current
user can write to.  It will create temporary files and directories,
but will in general clean up all of them.
*** Discussion of the various environment variables
**** srcdir
Must be set to the source of the openpgp test suite.  Used to locate
data files.
**** GPGSCM_PATH
Used to locate the Scheme library as well as code used by the test
suite.
**** BIN_PREFIX
The test suite does not hardcode any paths to tools.  If set it is
used to locate the tools to test, otherwise the test suite assumes to
be run from the build directory.
**** GPG_PRESET_PASSPHRASE
This tool is not installed by 'make install', hence we need to
explicitly override its position.  In fact, the location of any tool
used by the test suite can be overridden this way.  See defs.scm.
**** argv[0]
run-tests.scm depends on being able to re-exec gpgscm.  It uses
argv[0] for that.  Therefore you must use an absolute path to invoke
gpgscm.
* How to write tests
gpgscm provides a number of functions to aid you in writing tests, as
well as bindings to process management abstractions provided by GnuPG.
For the Scheme environment provided by TinySCHEME, see the TinySCHEME
manual that is included in tests/gpgscm/Manual.txt.

For a quick start, please have a look at various tests that are
already implemented, e.g. 'encrypt.scm'.
** The test framework
The functions info, error, and skip display their first argument and
flush the output buffers.  error and skip will also terminate the
process, signaling that the test failed or should be skipped.

(for-each-p msg proc list) will display msg, and call proc with each
element of list while displaying the progress appropriately.
for-each-p' is similar, but accepts another callback before the 'list'
argument to format each item.  for-each-p can be safely nested, and
the inner progress indicator will be abbreviated using '.'.
** Debugging tests

Say you are working on a new test called 'your-test.scm', you can run
it on its own using

  obj $ make -C tests/openpgp check TESTS=your-test.scm

but something isn't working as expected.  There are several little
gadgets that might help.  The first one is 'trace', a function that
prints the value given to it and evaluates to it.  E.g.

  (trace (+ 2 3))

prints '5' and evaluates to 5.  Also, there is an 'assert' macro that
aborts the execution if its argument does not evaluate to a trueish
value.  Feel free to express invariants with it.

You can also get an interactive repl by dropping

  (interactive-repl (current-environment))

anywhere you like.  Or, if you want to examine the environment from an
operating system shell, use

  (interactive-shell)

** Interfacing with gpg

defs.scm defines several convenience functions.  Say you want to parse
the colon output from gpg, there is gpg-with-colons that splits the
result at newlines and colons, so you can use the result like this:

 (define (fpr some-key)
   (list-ref (assoc "fpr" (gpg-with-colons
			   `(--with-fingerprint
			     --list-secret-keys ,some-key)))
	     9))

Or if you want to count all non-revoked uids for a given key, do

 (define (count-uids-of-secret-key some-key)
   (length (filter (lambda (x) (and (string=? "uid" (car x))
				    (string=? "u" (cadr x))))
		   (gpg-with-colons
		    `(--with-fingerprint
		      --list-secret-keys ,some-key)))))

** Temporary files
(lettmp <bindings> <body>) will create and delete temporary files that
you can use in <body>.  (with-temporary-working-directory <body>) will
create a temporary director, change to that, and clean it up after
executing <body>).

make-temporary-file will create a temporary file.  You can optionally
provide an argument to that function that will serve as tag so you can
distinguish the files for debugging.  remove-temporary-file will
delete a file created using make-temporary-file.

** Monadic transformer and pipe support
Tests often perform sequential transformations on files, or connect
processes using pipes.  To aid you in this, the test framework
provides two monadic data structures.

(Currently, the implementation mashes the 'bind' operation together
with the application of the monad.  Also, there is no 'return'
operation.  I guess all of that could be implemented on top of
call/cc, but it isn't at the moment.)
*** pipe
The pipe monad constructs pipe lines.  It consists of a function
pipe:do that binds the functions together and manages the execution of
the child processes, a family of functions that act as sources, a
function to spawn processes, and a family of functions acting as
sinks.

Sources are pipe:open, pipe:defer, pipe:echo.  To spawn a process use
pipe:spawn, or the convenience function pipe:gpg.  To sink the data
use pipe:splice, or pipe:write-to.

Example:

  (pipe:do
    (pipe:echo "3\n1\n2\n")
    (pipe:spawn '("/usr/bin/sort"))
    (pipe:write-to "sorted" (logior O_WRONLY O_CREAT) #o600))

Caveats: Due to the single-threaded nature of gpgscm you cannot use
both a source and sink that is implemented in Scheme.  pipe:defer and
pipe:echo are executing in gpgscm, and so does pipe:splice.
*** tr
The transformer monad describes sequential file transformations.

There is one source function, tr:open.  To describe a transformation
using some process, use tr:spawn, tr:gpg, or tr:pipe-do.  There are
several sinks, although sink is not quite the right term, because the
data is not consumed, and hence one can use them at any position.  The
"sinks" are tr:write-to, tr:call-with-content, tr:assert-identity, and
tr:assert-weak-identity.

A somewhat contrived example demonstrating many functions is:

  (tr:do
    (tr:pipe-do
      (pipe:echo "3\n1\n2\n")
      (pipe:spawn '("/usr/bin/sort")))
    (tr:write-to "reference")
    (tr:call-with-content
     (lambda (c)
       (echo "currently, c contains" (string-length c) "bytes")))
    (tr:spawn "" '("/usr/bin/gcc" -x c "-E" -o **out** **in**))
    (tr:pipe-do
      (pipe:spawn '("/bin/grep" -v "#")))
    (tr:assert-identity "reference"))

Caveats: As a convenience, gpgscm allows one to specify command line
arguments as Scheme symbols.  Scheme symbols, however, are
case-insensitive, and get converted to lower case.  Therefore, the -E
argument must be given as a string in the example above.  Similarly,
you need to quote numerical values.
** Process management
If you just need to execute a single command, there is (call-with-fds
cmdline infd outfd errfd) which executes cmdline with the given file
descriptors bound to it, and waits for its completion returning the
status code.  There is (call cmdline) which is similar, but calls the
command with a closed stdin, connecting stdout and stderr to stderr if
gpgscm is executed with --verbose.  (call-check cmdline) raises an
exception if the command does not return 0.

(call-popen cmdline input) calls a command, writes input to its stdin,
and returns any output from stdout, or raises an exception containing
stderr on failure.
* Sample messages