2016-07-01 14:55:14 +00:00
|
|
|
/* t-tofuinfo.cpp
|
|
|
|
|
|
|
|
This file is part of qgpgme, the Qt API binding for gpgme
|
Change copyright from Intevation to BSI
* lang/cpp/src/gpggencardkeyinteractor.cpp,
lang/cpp/src/gpggencardkeyinteractor.h,
lang/cpp/src/gpgmepp_export.h,
lang/cpp/src/swdbresult.cpp,
lang/cpp/src/swdbresult.h,
lang/cpp/src/tofuinfo.cpp,
lang/cpp/src/tofuinfo.h,
lang/qt/src/abstractimportjob.h,
lang/qt/src/adduseridjob.h,
lang/qt/src/changeexpiryjob.h,
lang/qt/src/changeownertrustjob.h,
lang/qt/src/changepasswdjob.h,
lang/qt/src/cryptoconfig.cpp,
lang/qt/src/cryptoconfig.h,
lang/qt/src/dataprovider.cpp,
lang/qt/src/dataprovider.h,
lang/qt/src/decryptjob.h,
lang/qt/src/decryptverifyjob.h,
lang/qt/src/deletejob.h,
lang/qt/src/dn.cpp,
lang/qt/src/dn.h,
lang/qt/src/downloadjob.h,
lang/qt/src/encryptjob.h,
lang/qt/src/exportjob.h,
lang/qt/src/hierarchicalkeylistjob.h,
lang/qt/src/importfromkeyserverjob.h,
lang/qt/src/importjob.h,
lang/qt/src/job.cpp,
lang/qt/src/job.h,
lang/qt/src/keyformailboxjob.h,
lang/qt/src/keygenerationjob.h,
lang/qt/src/keylistjob.h,
lang/qt/src/listallkeysjob.h,
lang/qt/src/multideletejob.h,
lang/qt/src/protocol.h,
lang/qt/src/protocol_p.h,
lang/qt/src/qgpgme_export.h,
lang/qt/src/qgpgmeadduseridjob.cpp,
lang/qt/src/qgpgmeadduseridjob.h,
lang/qt/src/qgpgmebackend.cpp,
lang/qt/src/qgpgmebackend.h,
lang/qt/src/qgpgmechangeexpiryjob.cpp,
lang/qt/src/qgpgmechangeexpiryjob.h,
lang/qt/src/qgpgmechangeownertrustjob.cpp,
lang/qt/src/qgpgmechangeownertrustjob.h,
lang/qt/src/qgpgmechangepasswdjob.cpp,
lang/qt/src/qgpgmechangepasswdjob.h,
lang/qt/src/qgpgmedecryptjob.cpp,
lang/qt/src/qgpgmedecryptjob.h,
lang/qt/src/qgpgmedecryptverifyjob.cpp,
lang/qt/src/qgpgmedecryptverifyjob.h,
lang/qt/src/qgpgmedeletejob.cpp,
lang/qt/src/qgpgmedeletejob.h,
lang/qt/src/qgpgmedownloadjob.cpp,
lang/qt/src/qgpgmedownloadjob.h,
lang/qt/src/qgpgmeencryptjob.cpp,
lang/qt/src/qgpgmeencryptjob.h,
lang/qt/src/qgpgmeexportjob.cpp,
lang/qt/src/qgpgmeexportjob.h,
lang/qt/src/qgpgmeimportfromkeyserverjob.cpp,
lang/qt/src/qgpgmeimportfromkeyserverjob.h,
lang/qt/src/qgpgmeimportjob.cpp,
lang/qt/src/qgpgmeimportjob.h,
lang/qt/src/qgpgmekeyformailboxjob.cpp,
lang/qt/src/qgpgmekeyformailboxjob.h,
lang/qt/src/qgpgmekeygenerationjob.cpp,
lang/qt/src/qgpgmekeygenerationjob.h,
lang/qt/src/qgpgmekeylistjob.cpp,
lang/qt/src/qgpgmekeylistjob.h,
lang/qt/src/qgpgmelistallkeysjob.cpp,
lang/qt/src/qgpgmelistallkeysjob.h,
lang/qt/src/qgpgmenewcryptoconfig.cpp,
lang/qt/src/qgpgmenewcryptoconfig.h,
lang/qt/src/qgpgmerefreshkeysjob.cpp,
lang/qt/src/qgpgmerefreshkeysjob.h,
lang/qt/src/qgpgmesecretkeyexportjob.cpp,
lang/qt/src/qgpgmesecretkeyexportjob.h,
lang/qt/src/qgpgmesignencryptjob.cpp,
lang/qt/src/qgpgmesignencryptjob.h,
lang/qt/src/qgpgmesignjob.cpp,
lang/qt/src/qgpgmesignjob.h,
lang/qt/src/qgpgmesignkeyjob.cpp,
lang/qt/src/qgpgmesignkeyjob.h,
lang/qt/src/qgpgmetofupolicyjob.cpp,
lang/qt/src/qgpgmetofupolicyjob.h,
lang/qt/src/qgpgmeverifydetachedjob.cpp,
lang/qt/src/qgpgmeverifydetachedjob.h,
lang/qt/src/qgpgmeverifyopaquejob.cpp,
lang/qt/src/qgpgmeverifyopaquejob.h,
lang/qt/src/qgpgmewkspublishjob.cpp,
lang/qt/src/qgpgmewkspublishjob.h,
lang/qt/src/refreshkeysjob.h,
lang/qt/src/signencryptjob.h,
lang/qt/src/signjob.h,
lang/qt/src/signkeyjob.h,
lang/qt/src/specialjob.h,
lang/qt/src/threadedjobmixin.cpp,
lang/qt/src/threadedjobmixin.h,
lang/qt/src/tofupolicyjob.h,
lang/qt/src/verifydetachedjob.h,
lang/qt/src/verifyopaquejob.h,
lang/qt/src/wkspublishjob.h,
lang/qt/tests/run-keyformailboxjob.cpp,
lang/qt/tests/t-config.cpp,
lang/qt/tests/t-encrypt.cpp,
lang/qt/tests/t-keylist.cpp,
lang/qt/tests/t-keylocate.cpp,
lang/qt/tests/t-ownertrust.cpp,
lang/qt/tests/t-support.cpp,
lang/qt/tests/t-support.h,
lang/qt/tests/t-tofuinfo.cpp,
lang/qt/tests/t-various.cpp,
lang/qt/tests/t-verify.cpp,
lang/qt/tests/t-wkspublish.cpp,
tests/gpg/t-encrypt-mixed.c,
tests/gpg/t-thread-keylist-verify.c,
tests/gpg/t-thread-keylist.c,
tests/run-decrypt.c: Change Intevation GmbH copyright to BSI.
--
This should make it more transparent where the BSI is the actual
copyright holder as the code was mostly developed as part of a
development contract.
2017-04-25 08:24:11 +00:00
|
|
|
Copyright (c) 2016 by Bundesamt für Sicherheit in der Informationstechnik
|
|
|
|
Software engineering by Intevation GmbH
|
2016-07-01 14:55:14 +00:00
|
|
|
|
|
|
|
QGpgME is free software; you can redistribute it and/or
|
|
|
|
modify it under the terms of the GNU General Public License as
|
|
|
|
published by the Free Software Foundation; either version 2 of the
|
|
|
|
License, or (at your option) any later version.
|
|
|
|
|
|
|
|
QGpgME is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
along with this program; if not, write to the Free Software
|
|
|
|
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
|
|
|
|
|
|
|
|
In addition, as a special exception, the copyright holders give
|
|
|
|
permission to link the code of this program with any edition of
|
|
|
|
the Qt library by Trolltech AS, Norway (or with modified versions
|
|
|
|
of Qt that use the same license as Qt), and distribute linked
|
|
|
|
combinations including the two. You must obey the GNU General
|
|
|
|
Public License in all respects for all of the code used other than
|
|
|
|
Qt. If you modify this file, you may extend this exception to
|
|
|
|
your version of the file, but you are not obligated to do so. If
|
|
|
|
you do not wish to do so, delete this exception statement from
|
|
|
|
your version.
|
|
|
|
*/
|
cpp, qt: Include config.h
lang/cpp/src/callbacks.cpp,
lang/cpp/src/configuration.cpp,
lang/cpp/src/context.cpp,
lang/cpp/src/context_glib.cpp,
lang/cpp/src/context_qt.cpp,
lang/cpp/src/context_vanilla.cpp,
lang/cpp/src/data.cpp,
lang/cpp/src/decryptionresult.cpp,
lang/cpp/src/defaultassuantransaction.cpp,
lang/cpp/src/editinteractor.cpp,
lang/cpp/src/encryptionresult.cpp,
lang/cpp/src/engineinfo.cpp,
lang/cpp/src/eventloopinteractor.cpp,
lang/cpp/src/exception.cpp,
lang/cpp/src/gpgadduserideditinteractor.cpp,
lang/cpp/src/gpgagentgetinfoassuantransaction.cpp,
lang/cpp/src/gpgsetexpirytimeeditinteractor.cpp,
lang/cpp/src/gpgsetownertrusteditinteractor.cpp,
lang/cpp/src/gpgsignkeyeditinteractor.cpp,
lang/cpp/src/importresult.cpp,
lang/cpp/src/key.cpp,
lang/cpp/src/keygenerationresult.cpp,
lang/cpp/src/keylistresult.cpp,
lang/cpp/src/scdgetinfoassuantransaction.cpp,
lang/cpp/src/signingresult.cpp,
lang/cpp/src/tofuinfo.cpp,
lang/cpp/src/trustitem.cpp,
lang/cpp/src/verificationresult.cpp,
lang/cpp/src/vfsmountresult.cpp,
lang/qt/src/dataprovider.cpp,
lang/qt/src/defaultkeygenerationjob.cpp,
lang/qt/src/gpgme_backend_debug.cpp,
lang/qt/src/job.cpp,
lang/qt/src/qgpgmeadduseridjob.cpp,
lang/qt/src/qgpgmebackend.cpp,
lang/qt/src/qgpgmechangeexpiryjob.cpp,
lang/qt/src/qgpgmechangeownertrustjob.cpp,
lang/qt/src/qgpgmechangepasswdjob.cpp,
lang/qt/src/qgpgmedecryptjob.cpp,
lang/qt/src/qgpgmedecryptverifyjob.cpp,
lang/qt/src/qgpgmedeletejob.cpp,
lang/qt/src/qgpgmedownloadjob.cpp,
lang/qt/src/qgpgmeencryptjob.cpp,
lang/qt/src/qgpgmeexportjob.cpp,
lang/qt/src/qgpgmeimportfromkeyserverjob.cpp,
lang/qt/src/qgpgmeimportjob.cpp,
lang/qt/src/qgpgmekeyformailboxjob.cpp,
lang/qt/src/qgpgmekeygenerationjob.cpp,
lang/qt/src/qgpgmekeylistjob.cpp,
lang/qt/src/qgpgmelistallkeysjob.cpp,
lang/qt/src/qgpgmenewcryptoconfig.cpp,
lang/qt/src/qgpgmerefreshkeysjob.cpp,
lang/qt/src/qgpgmesecretkeyexportjob.cpp,
lang/qt/src/qgpgmesignencryptjob.cpp,
lang/qt/src/qgpgmesignjob.cpp,
lang/qt/src/qgpgmesignkeyjob.cpp,
lang/qt/src/qgpgmetofupolicyjob.cpp,
lang/qt/src/qgpgmeverifydetachedjob.cpp,
lang/qt/src/qgpgmeverifyopaquejob.cpp,
lang/qt/src/qgpgmewkspublishjob.cpp,
lang/qt/src/threadedjobmixin.cpp,
lang/qt/tests/run-keyformailboxjob.cpp,
lang/qt/tests/t-encrypt.cpp,
lang/qt/tests/t-keylist.cpp,
lang/qt/tests/t-keylocate.cpp,
lang/qt/tests/t-ownertrust.cpp,
lang/qt/tests/t-support.cpp,
lang/qt/tests/t-tofuinfo.cpp,
lang/qt/tests/t-wkspublish.cpp: Include config.h
--
This fixes problems with mismatching definitions. Most
notably _FILE_OFFSET_BITS is now always set correctly.
2016-09-23 13:22:29 +00:00
|
|
|
#ifdef HAVE_CONFIG_H
|
|
|
|
#include "config.h"
|
|
|
|
#endif
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
#include <QDebug>
|
|
|
|
#include <QTest>
|
|
|
|
#include <QTemporaryDir>
|
2017-02-02 16:16:27 +00:00
|
|
|
#include <QSignalSpy>
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
#include "protocol.h"
|
|
|
|
#include "tofuinfo.h"
|
2016-09-16 14:58:00 +00:00
|
|
|
#include "tofupolicyjob.h"
|
2016-07-01 14:55:14 +00:00
|
|
|
#include "verifyopaquejob.h"
|
|
|
|
#include "verificationresult.h"
|
2016-07-04 09:42:30 +00:00
|
|
|
#include "signingresult.h"
|
2017-02-02 16:16:27 +00:00
|
|
|
#include "importjob.h"
|
|
|
|
#include "importresult.h"
|
2016-07-04 09:42:30 +00:00
|
|
|
#include "keylistjob.h"
|
|
|
|
#include "keylistresult.h"
|
2017-05-10 08:18:41 +00:00
|
|
|
#include "signjob.h"
|
2016-07-04 09:42:30 +00:00
|
|
|
#include "key.h"
|
|
|
|
#include "t-support.h"
|
2016-08-24 12:00:41 +00:00
|
|
|
#include "engineinfo.h"
|
2017-05-10 08:18:41 +00:00
|
|
|
#include "context.h"
|
2016-07-01 14:55:14 +00:00
|
|
|
#include <iostream>
|
|
|
|
|
|
|
|
using namespace QGpgME;
|
|
|
|
using namespace GpgME;
|
|
|
|
|
|
|
|
static const char testMsg1[] =
|
|
|
|
"-----BEGIN PGP MESSAGE-----\n"
|
|
|
|
"\n"
|
|
|
|
"owGbwMvMwCSoW1RzPCOz3IRxjXQSR0lqcYleSUWJTZOvjVdpcYmCu1+oQmaJIleH\n"
|
|
|
|
"GwuDIBMDGysTSIqBi1MApi+nlGGuwDeHao53HBr+FoVGP3xX+kvuu9fCMJvl6IOf\n"
|
|
|
|
"y1kvP4y+8D5a11ang0udywsA\n"
|
|
|
|
"=Crq6\n"
|
|
|
|
"-----END PGP MESSAGE-----\n";
|
|
|
|
|
2017-02-02 16:16:27 +00:00
|
|
|
static const char conflictKey1[] = "-----BEGIN PGP PUBLIC KEY BLOCK-----\n"
|
|
|
|
"\n"
|
2019-01-09 07:25:21 +00:00
|
|
|
"mDMEXDWgpxYJKwYBBAHaRw8BAQdAguVu4qkx8iw4eU+TQ4vvcKG7IdcZvbMhw3Zc\n"
|
|
|
|
"npGf0+u0GXRvZnVfY29uZmxpY3RAZXhhbXBsZS5jb22IkAQTFggAOBYhBO6ovNDG\n"
|
|
|
|
"nLzbR1TlMJYJ0fjlWbUrBQJcNaCnAhsDBQsJCAcCBhUKCQgLAgQWAgMBAh4BAheA\n"
|
|
|
|
"AAoJEJYJ0fjlWbUrLaMBALegwkv2+sEcmKZqxt8JscYvFiEuycv2+rKHaZA0eDoN\n"
|
|
|
|
"AP97W4XrJb5x49J5jDDdeko8k00uGqiiuAXJo27/i/phA7g4BFw1oKcSCisGAQQB\n"
|
|
|
|
"l1UBBQEBB0Crhw24E2lPBhd/y+ZFotQ/2TrYqkUQqGPmff8ofLziNgMBCAeIeAQY\n"
|
|
|
|
"FggAIBYhBO6ovNDGnLzbR1TlMJYJ0fjlWbUrBQJcNaCnAhsMAAoJEJYJ0fjlWbUr\n"
|
|
|
|
"/K8BAJWsa+tOZsJw7w5fz6O0We6Xx4Rt17jHf563G6wMcz9+AQDRsedJ7w4zYzS9\n"
|
|
|
|
"MFiJQ5aN0NDHMRtDFWAgCunVnJ3OBw==\n"
|
|
|
|
"=fZa5\n"
|
2017-02-02 16:16:27 +00:00
|
|
|
"-----END PGP PUBLIC KEY BLOCK-----\n";
|
|
|
|
|
|
|
|
static const char conflictKey2[] = "-----BEGIN PGP PUBLIC KEY BLOCK-----\n"
|
|
|
|
"\n"
|
2019-01-09 07:25:21 +00:00
|
|
|
"mDMEXDWgixYJKwYBBAHaRw8BAQdAMWOhumYspcvEOTuesOSN4rvnJVOj/6qOWFTu\n"
|
|
|
|
"x+wPRra0GXRvZnVfY29uZmxpY3RAZXhhbXBsZS5jb22IkAQTFggAOBYhBA64G88Q\n"
|
|
|
|
"NPXztj8ID/FhC7tiGbeRBQJcNaCLAhsDBQsJCAcCBhUKCQgLAgQWAgMBAh4BAheA\n"
|
|
|
|
"AAoJEPFhC7tiGbeRUt4A/2hf4Zgz+TYyfeH/4/ZtyL1JuZggqR1s5UopEx2Aiw10\n"
|
|
|
|
"AP405KiTd31TJQN8Ru+7bskPu0/mzLZMNkRvBNEdc5kbDLg4BFw1oIsSCisGAQQB\n"
|
|
|
|
"l1UBBQEBB0B5NtSrx7wDDKgwUe5Rxz0vRkaWLtyE0KbfE77oPy5DGAMBCAeIeAQY\n"
|
|
|
|
"FggAIBYhBA64G88QNPXztj8ID/FhC7tiGbeRBQJcNaCLAhsMAAoJEPFhC7tiGbeR\n"
|
|
|
|
"km0BAP8TQwraipqb1pJlLsEgDXeM5Jocz4fuePD78BsOBtORAP9gpCyKXdyJYGlA\n"
|
|
|
|
"qjmG356yG6pCK9aPckTZ9IViPiHWCw==\n"
|
|
|
|
"=tn3Q\n"
|
2017-02-02 16:16:27 +00:00
|
|
|
"-----END PGP PUBLIC KEY BLOCK-----\n";
|
|
|
|
|
|
|
|
static const char conflictMsg1[] = "-----BEGIN PGP MESSAGE-----\n"
|
|
|
|
"\n"
|
2019-01-09 07:25:21 +00:00
|
|
|
"owGbwMvMwCE2jfPij6eRW7UZTwsnMcSYLnT0Ki0uUXD3C1XILFHk6ihlYRDjYJAV\n"
|
|
|
|
"U2R5t2LPhWNz9tx2D3lqANPEygTSwcDFKQAT+RjG8M9of873hQrMpinBVwKYv+rq\n"
|
|
|
|
"XGmYW+ZcZJ+133KDq+itzlxGhg3L2X/6Khj+2Hd+He+KnXtunF2wNWxl7849e/Sy\n"
|
|
|
|
"v6tc+8MBAA==\n"
|
|
|
|
"=fZLe\n"
|
2017-02-02 16:16:27 +00:00
|
|
|
"-----END PGP MESSAGE-----\n";
|
|
|
|
|
|
|
|
static const char conflictMsg2[] = "-----BEGIN PGP MESSAGE-----\n"
|
|
|
|
"\n"
|
2019-01-09 07:25:21 +00:00
|
|
|
"owGbwMvMwCH2MZF7d5Lk9omMp4WTGGJMFwZ4lRaXKLj7hSpklihydZSyMIhxMMiK\n"
|
|
|
|
"KbLw7ZA+L2Dy9fM2ew5+mCZWJpAOBi5OAZhIUhIjw7bV+xS+cR0quqhmcY2Dl3WW\n"
|
|
|
|
"8Ufr+rRNufOPyIdoO6nEXGH47/B+E1+oxS6e5f5n7MJ3aHBO+s345sipGV/4f665\n"
|
|
|
|
"9mmiGjsA\n"
|
|
|
|
"=8oJA\n"
|
2017-02-02 16:16:27 +00:00
|
|
|
"-----END PGP MESSAGE-----\n";
|
|
|
|
|
2016-08-09 12:10:15 +00:00
|
|
|
class TofuInfoTest: public QGpgMETest
|
2016-07-01 14:55:14 +00:00
|
|
|
{
|
|
|
|
Q_OBJECT
|
|
|
|
|
2017-02-02 16:16:27 +00:00
|
|
|
private:
|
2016-08-24 12:00:41 +00:00
|
|
|
bool testSupported()
|
|
|
|
{
|
2017-03-30 12:36:49 +00:00
|
|
|
static bool initialized, supported;
|
|
|
|
if (initialized) {
|
|
|
|
return supported;
|
|
|
|
}
|
|
|
|
initialized = true;
|
|
|
|
if (GpgME::engineInfo(GpgME::GpgEngine).engineVersion() < "2.1.16") {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
// If the keylist fails here this means that gnupg does not
|
|
|
|
// support tofu at all. It can be disabled at compile time. So no
|
|
|
|
// tests.
|
|
|
|
auto *job = openpgp()->keyListJob(false, false, false);
|
|
|
|
job->addMode(GpgME::WithTofu);
|
|
|
|
std::vector<GpgME::Key> keys;
|
|
|
|
job->exec(QStringList() << QStringLiteral("zulu@example.net"), true, keys);
|
|
|
|
delete job;
|
|
|
|
supported = !keys.empty();
|
|
|
|
return supported;
|
2016-08-24 12:00:41 +00:00
|
|
|
}
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
void testTofuCopy(TofuInfo other, const TofuInfo &orig)
|
|
|
|
{
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!orig.isNull());
|
|
|
|
QVERIFY(!other.isNull());
|
|
|
|
QVERIFY(orig.signLast() == other.signLast());
|
|
|
|
QVERIFY(orig.signCount() == other.signCount());
|
|
|
|
QVERIFY(orig.validity() == other.validity());
|
|
|
|
QVERIFY(orig.policy() == other.policy());
|
2016-07-01 14:55:14 +00:00
|
|
|
}
|
|
|
|
|
2016-07-04 09:42:30 +00:00
|
|
|
void signAndVerify(const QString &what, const GpgME::Key &key, int expected)
|
|
|
|
{
|
2017-05-10 08:18:41 +00:00
|
|
|
auto job = openpgp()->signJob();
|
|
|
|
auto ctx = Job::context(job);
|
2016-08-10 10:05:32 +00:00
|
|
|
TestPassphraseProvider provider;
|
|
|
|
ctx->setPassphraseProvider(&provider);
|
2016-07-04 09:42:30 +00:00
|
|
|
ctx->setPinentryMode(Context::PinentryLoopback);
|
|
|
|
|
|
|
|
std::vector<Key> keys;
|
|
|
|
keys.push_back(key);
|
|
|
|
QByteArray signedData;
|
|
|
|
auto sigResult = job->exec(keys, what.toUtf8(), NormalSignatureMode, signedData);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete job;
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!sigResult.error());
|
2016-09-05 10:58:35 +00:00
|
|
|
foreach (const auto uid, keys[0].userIDs()) {
|
|
|
|
auto info = uid.tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(info.signCount() == expected - 1);
|
2016-08-25 14:25:49 +00:00
|
|
|
}
|
2016-08-24 12:00:41 +00:00
|
|
|
|
2016-07-04 09:42:30 +00:00
|
|
|
auto verifyJob = openpgp()->verifyOpaqueJob();
|
|
|
|
QByteArray verified;
|
|
|
|
|
|
|
|
auto result = verifyJob->exec(signedData, verified);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete verifyJob;
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(verified == what.toUtf8());
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(result.numSignatures() == 1);
|
2016-07-04 09:42:30 +00:00
|
|
|
auto sig = result.signatures()[0];
|
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
auto key2 = sig.key();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!key.isNull());
|
|
|
|
QVERIFY(!strcmp (key2.primaryFingerprint(), key.primaryFingerprint()));
|
|
|
|
QVERIFY(!strcmp (key.primaryFingerprint(), sig.fingerprint()));
|
2016-08-24 12:00:41 +00:00
|
|
|
auto stats = key2.userID(0).tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!stats.isNull());
|
2016-09-05 10:58:35 +00:00
|
|
|
if (stats.signCount() != expected) {
|
|
|
|
std::cout << "################ Key before verify: "
|
|
|
|
<< key
|
|
|
|
<< "################ Key after verify: "
|
|
|
|
<< key2;
|
2016-08-25 14:25:49 +00:00
|
|
|
}
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(stats.signCount() == expected);
|
2016-07-04 09:42:30 +00:00
|
|
|
}
|
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
private Q_SLOTS:
|
2016-07-01 14:55:14 +00:00
|
|
|
void testTofuNull()
|
|
|
|
{
|
2016-08-24 12:00:41 +00:00
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
2016-07-01 14:55:14 +00:00
|
|
|
TofuInfo tofu;
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(tofu.isNull());
|
|
|
|
QVERIFY(!tofu.description());
|
|
|
|
QVERIFY(!tofu.signCount());
|
|
|
|
QVERIFY(!tofu.signLast());
|
|
|
|
QVERIFY(!tofu.signFirst());
|
|
|
|
QVERIFY(tofu.validity() == TofuInfo::ValidityUnknown);
|
|
|
|
QVERIFY(tofu.policy() == TofuInfo::PolicyUnknown);
|
2016-07-01 14:55:14 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
void testTofuInfo()
|
|
|
|
{
|
2016-08-24 12:00:41 +00:00
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
2016-07-01 14:55:14 +00:00
|
|
|
auto *job = openpgp()->verifyOpaqueJob(true);
|
|
|
|
const QByteArray data1(testMsg1);
|
|
|
|
QByteArray plaintext;
|
|
|
|
|
2016-11-14 19:40:29 +00:00
|
|
|
auto ctx = Job::context(job);
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(ctx);
|
2016-11-14 19:40:29 +00:00
|
|
|
ctx->setSender("alfa@example.net");
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
auto result = job->exec(data1, plaintext);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete job;
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.isNull());
|
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(!strcmp(plaintext.constData(), "Just GNU it!\n"));
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(result.numSignatures() == 1);
|
2016-07-01 14:55:14 +00:00
|
|
|
Signature sig = result.signatures()[0];
|
|
|
|
/* TOFU is always marginal */
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(sig.validity() == Signature::Marginal);
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
auto stats = sig.key().userID(0).tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!stats.isNull());
|
|
|
|
QVERIFY(sig.key().primaryFingerprint());
|
|
|
|
QVERIFY(sig.fingerprint());
|
|
|
|
QVERIFY(!strcmp(sig.key().primaryFingerprint(), sig.fingerprint()));
|
|
|
|
QVERIFY(stats.signFirst() == stats.signLast());
|
|
|
|
QVERIFY(stats.signCount() == 1);
|
|
|
|
QVERIFY(stats.policy() == TofuInfo::PolicyAuto);
|
|
|
|
QVERIFY(stats.validity() == TofuInfo::LittleHistory);
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
testTofuCopy(stats, stats);
|
2016-07-01 14:55:14 +00:00
|
|
|
|
|
|
|
/* Another verify */
|
|
|
|
|
|
|
|
job = openpgp()->verifyOpaqueJob(true);
|
|
|
|
result = job->exec(data1, plaintext);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete job;
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.isNull());
|
|
|
|
QVERIFY(!result.error());
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(result.numSignatures() == 1);
|
2016-07-01 14:55:14 +00:00
|
|
|
sig = result.signatures()[0];
|
|
|
|
/* TOFU is always marginal */
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(sig.validity() == Signature::Marginal);
|
2016-07-01 14:55:14 +00:00
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
stats = sig.key().userID(0).tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!stats.isNull());
|
|
|
|
QVERIFY(!strcmp(sig.key().primaryFingerprint(), sig.fingerprint()));
|
|
|
|
QVERIFY(stats.signFirst() == stats.signLast());
|
|
|
|
QVERIFY(stats.signCount() == 1);
|
|
|
|
QVERIFY(stats.policy() == TofuInfo::PolicyAuto);
|
|
|
|
QVERIFY(stats.validity() == TofuInfo::LittleHistory);
|
2016-07-04 09:42:30 +00:00
|
|
|
|
|
|
|
/* Verify that another call yields the same result */
|
|
|
|
job = openpgp()->verifyOpaqueJob(true);
|
|
|
|
result = job->exec(data1, plaintext);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete job;
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.isNull());
|
|
|
|
QVERIFY(!result.error());
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(result.numSignatures() == 1);
|
2016-07-04 09:42:30 +00:00
|
|
|
sig = result.signatures()[0];
|
|
|
|
/* TOFU is always marginal */
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(sig.validity() == Signature::Marginal);
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2016-08-24 12:00:41 +00:00
|
|
|
stats = sig.key().userID(0).tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!stats.isNull());
|
|
|
|
QVERIFY(!strcmp(sig.key().primaryFingerprint(), sig.fingerprint()));
|
|
|
|
QVERIFY(stats.signFirst() == stats.signLast());
|
|
|
|
QVERIFY(stats.signCount() == 1);
|
|
|
|
QVERIFY(stats.policy() == TofuInfo::PolicyAuto);
|
|
|
|
QVERIFY(stats.validity() == TofuInfo::LittleHistory);
|
2016-07-04 09:42:30 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
void testTofuSignCount()
|
|
|
|
{
|
2016-08-24 12:00:41 +00:00
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
2016-07-04 09:42:30 +00:00
|
|
|
auto *job = openpgp()->keyListJob(false, false, false);
|
2016-09-05 10:58:35 +00:00
|
|
|
job->addMode(GpgME::WithTofu);
|
2016-07-04 09:42:30 +00:00
|
|
|
std::vector<GpgME::Key> keys;
|
|
|
|
GpgME::KeyListResult result = job->exec(QStringList() << QStringLiteral("zulu@example.net"),
|
|
|
|
true, keys);
|
2016-08-25 14:25:49 +00:00
|
|
|
delete job;
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!keys.empty());
|
2016-07-04 09:42:30 +00:00
|
|
|
Key key = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!key.isNull());
|
2016-07-04 09:42:30 +00:00
|
|
|
|
2016-09-05 14:54:50 +00:00
|
|
|
/* As we sign & verify quickly here we need different
|
|
|
|
* messages to avoid having them treated as the same
|
|
|
|
* message if they were created within the same second.
|
|
|
|
* Alternatively we could use the same message and wait
|
|
|
|
* a second between each call. But this would slow down
|
|
|
|
* the testsuite. */
|
2016-09-05 10:58:35 +00:00
|
|
|
signAndVerify(QStringLiteral("Hello"), key, 1);
|
|
|
|
key.update();
|
|
|
|
signAndVerify(QStringLiteral("Hello2"), key, 2);
|
|
|
|
key.update();
|
|
|
|
signAndVerify(QStringLiteral("Hello3"), key, 3);
|
|
|
|
key.update();
|
|
|
|
signAndVerify(QStringLiteral("Hello4"), key, 4);
|
2016-08-25 14:25:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
void testTofuKeyList()
|
|
|
|
{
|
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* First check that the key has no tofu info. */
|
|
|
|
auto *job = openpgp()->keyListJob(false, false, false);
|
|
|
|
std::vector<GpgME::Key> keys;
|
|
|
|
auto result = job->exec(QStringList() << QStringLiteral("zulu@example.net"),
|
|
|
|
true, keys);
|
|
|
|
delete job;
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!keys.empty());
|
2016-08-25 14:25:49 +00:00
|
|
|
auto key = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!key.isNull());
|
|
|
|
QVERIFY(key.userID(0).tofuInfo().isNull());
|
2016-09-05 10:58:35 +00:00
|
|
|
auto keyCopy = key;
|
|
|
|
keyCopy.update();
|
|
|
|
auto sigCnt = keyCopy.userID(0).tofuInfo().signCount();
|
2016-09-05 14:54:50 +00:00
|
|
|
signAndVerify(QStringLiteral("Hello5"), keyCopy,
|
2016-09-05 10:58:35 +00:00
|
|
|
sigCnt + 1);
|
|
|
|
keyCopy.update();
|
2016-09-05 14:54:50 +00:00
|
|
|
signAndVerify(QStringLiteral("Hello6"), keyCopy,
|
2016-09-05 10:58:35 +00:00
|
|
|
sigCnt + 2);
|
2016-08-25 14:25:49 +00:00
|
|
|
|
|
|
|
/* Now another one but with tofu */
|
|
|
|
job = openpgp()->keyListJob(false, false, false);
|
|
|
|
job->addMode(GpgME::WithTofu);
|
|
|
|
result = job->exec(QStringList() << QStringLiteral("zulu@example.net"),
|
|
|
|
true, keys);
|
|
|
|
delete job;
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(!keys.empty());
|
2016-08-25 14:25:49 +00:00
|
|
|
auto key2 = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!key2.isNull());
|
2016-08-25 14:25:49 +00:00
|
|
|
auto info = key2.userID(0).tofuInfo();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!info.isNull());
|
|
|
|
QVERIFY(info.signCount());
|
2016-07-01 14:55:14 +00:00
|
|
|
}
|
|
|
|
|
2016-09-16 14:58:00 +00:00
|
|
|
void testTofuPolicy()
|
|
|
|
{
|
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* First check that the key has no tofu info. */
|
|
|
|
auto *job = openpgp()->keyListJob(false, false, false);
|
|
|
|
std::vector<GpgME::Key> keys;
|
|
|
|
job->addMode(GpgME::WithTofu);
|
|
|
|
auto result = job->exec(QStringList() << QStringLiteral("bravo@example.net"),
|
|
|
|
false, keys);
|
|
|
|
|
2016-09-19 08:01:19 +00:00
|
|
|
if (keys.empty()) {
|
|
|
|
qDebug() << "bravo@example.net not found";
|
|
|
|
qDebug() << "Error: " << result.error().asString();
|
|
|
|
const auto homedir = QString::fromLocal8Bit(qgetenv("GNUPGHOME"));
|
|
|
|
qDebug() << "Homedir is: " << homedir;
|
|
|
|
QFileInfo fi(homedir + "/pubring.gpg");
|
|
|
|
qDebug () << "pubring exists: " << fi.exists() << " readable? "
|
|
|
|
<< fi.isReadable() << " size: " << fi.size();
|
|
|
|
QFileInfo fi2(homedir + "/pubring.kbx");
|
|
|
|
qDebug () << "keybox exists: " << fi2.exists() << " readable? "
|
|
|
|
<< fi2.isReadable() << " size: " << fi2.size();
|
|
|
|
|
|
|
|
result = job->exec(QStringList(), false, keys);
|
|
|
|
foreach (const auto key, keys) {
|
|
|
|
qDebug() << "Key: " << key.userID(0).name() << " <"
|
|
|
|
<< key.userID(0).email()
|
|
|
|
<< ">\n fpr: " << key.primaryFingerprint();
|
|
|
|
}
|
|
|
|
}
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(!keys.empty());
|
2016-09-16 14:58:00 +00:00
|
|
|
auto key = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!key.isNull());
|
|
|
|
QVERIFY(key.userID(0).tofuInfo().policy() != TofuInfo::PolicyBad);
|
2016-09-16 14:58:00 +00:00
|
|
|
auto *tofuJob = openpgp()->tofuPolicyJob();
|
|
|
|
auto err = tofuJob->exec(key, TofuInfo::PolicyBad);
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!err);
|
2016-09-16 14:58:00 +00:00
|
|
|
result = job->exec(QStringList() << QStringLiteral("bravo@example.net"),
|
|
|
|
false, keys);
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(!keys.empty());
|
2016-09-16 14:58:00 +00:00
|
|
|
key = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(key.userID(0).tofuInfo().policy() == TofuInfo::PolicyBad);
|
2016-09-16 14:58:00 +00:00
|
|
|
err = tofuJob->exec(key, TofuInfo::PolicyGood);
|
|
|
|
|
|
|
|
result = job->exec(QStringList() << QStringLiteral("bravo@example.net"),
|
|
|
|
false, keys);
|
|
|
|
key = keys[0];
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(key.userID(0).tofuInfo().policy() == TofuInfo::PolicyGood);
|
2016-09-16 14:58:00 +00:00
|
|
|
delete tofuJob;
|
|
|
|
delete job;
|
|
|
|
}
|
|
|
|
|
2017-02-02 16:16:27 +00:00
|
|
|
void testTofuConflict()
|
|
|
|
{
|
2017-03-30 12:36:49 +00:00
|
|
|
if (!testSupported()) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2017-02-02 16:16:27 +00:00
|
|
|
if (GpgME::engineInfo(GpgME::GpgEngine).engineVersion() < "2.1.19") {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Import key 1
|
|
|
|
auto importjob = openpgp()->importJob();
|
|
|
|
connect(importjob, &ImportJob::result, this,
|
|
|
|
[this](ImportResult result, QString, Error)
|
|
|
|
{
|
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(!result.imports().empty());
|
|
|
|
QVERIFY(result.numImported());
|
|
|
|
Q_EMIT asyncDone();
|
|
|
|
});
|
|
|
|
importjob->start(QByteArray(conflictKey1));
|
|
|
|
QSignalSpy spy (this, SIGNAL(asyncDone()));
|
|
|
|
QVERIFY(spy.wait());
|
|
|
|
|
|
|
|
// Verify Message 1
|
|
|
|
const QByteArray signedData(conflictMsg1);
|
|
|
|
auto verifyJob = openpgp()->verifyOpaqueJob(true);
|
|
|
|
QByteArray verified;
|
|
|
|
auto result = verifyJob->exec(signedData, verified);
|
|
|
|
delete verifyJob;
|
|
|
|
|
|
|
|
QVERIFY(!result.isNull());
|
|
|
|
QVERIFY(!result.error());
|
|
|
|
|
|
|
|
QVERIFY(result.numSignatures() == 1);
|
|
|
|
auto sig = result.signatures()[0];
|
|
|
|
QVERIFY(sig.validity() == Signature::Marginal);
|
|
|
|
|
|
|
|
auto stats = sig.key().userID(0).tofuInfo();
|
|
|
|
QVERIFY(!stats.isNull());
|
|
|
|
QVERIFY(!strcmp(sig.key().primaryFingerprint(), sig.fingerprint()));
|
|
|
|
QVERIFY(stats.signFirst() == stats.signLast());
|
|
|
|
QVERIFY(stats.signCount() == 1);
|
|
|
|
QVERIFY(stats.policy() == TofuInfo::PolicyAuto);
|
|
|
|
QVERIFY(stats.validity() == TofuInfo::LittleHistory);
|
|
|
|
|
|
|
|
// Import key 2
|
|
|
|
importjob = openpgp()->importJob();
|
|
|
|
connect(importjob, &ImportJob::result, this,
|
|
|
|
[this](ImportResult result, QString, Error)
|
|
|
|
{
|
|
|
|
QVERIFY(!result.error());
|
|
|
|
QVERIFY(!result.imports().empty());
|
|
|
|
QVERIFY(result.numImported());
|
|
|
|
Q_EMIT asyncDone();
|
|
|
|
});
|
|
|
|
importjob->start(QByteArray(conflictKey2));
|
|
|
|
QSignalSpy spy2 (this, SIGNAL(asyncDone()));
|
|
|
|
QVERIFY(spy2.wait());
|
|
|
|
|
|
|
|
// Verify Message 2
|
|
|
|
const QByteArray signedData2(conflictMsg2);
|
|
|
|
QByteArray verified2;
|
|
|
|
verifyJob = openpgp()->verifyOpaqueJob(true);
|
|
|
|
result = verifyJob->exec(signedData2, verified2);
|
|
|
|
delete verifyJob;
|
|
|
|
|
|
|
|
QVERIFY(!result.isNull());
|
|
|
|
QVERIFY(!result.error());
|
|
|
|
|
|
|
|
QVERIFY(result.numSignatures() == 1);
|
|
|
|
sig = result.signatures()[0];
|
|
|
|
QVERIFY(sig.validity() == Signature::Unknown);
|
|
|
|
// TODO activate when implemented
|
|
|
|
// QVERIFY(sig.summary() == Signature::TofuConflict);
|
|
|
|
|
|
|
|
stats = sig.key().userID(0).tofuInfo();
|
|
|
|
QVERIFY(!stats.isNull());
|
|
|
|
QVERIFY(!strcmp(sig.key().primaryFingerprint(), sig.fingerprint()));
|
|
|
|
QVERIFY(stats.signFirst() == stats.signLast());
|
|
|
|
QVERIFY(stats.signCount() == 1);
|
|
|
|
QVERIFY(stats.policy() == TofuInfo::PolicyAsk);
|
|
|
|
QVERIFY(stats.validity() == TofuInfo::Conflict);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
void initTestCase()
|
|
|
|
{
|
2016-08-09 12:10:15 +00:00
|
|
|
QGpgMETest::initTestCase();
|
2016-07-01 14:55:14 +00:00
|
|
|
const QString gpgHome = qgetenv("GNUPGHOME");
|
|
|
|
qputenv("GNUPGHOME", mDir.path().toUtf8());
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(mDir.isValid());
|
2016-07-01 14:55:14 +00:00
|
|
|
QFile conf(mDir.path() + QStringLiteral("/gpg.conf"));
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(conf.open(QIODevice::WriteOnly));
|
2016-07-01 14:55:14 +00:00
|
|
|
conf.write("trust-model tofu+pgp");
|
|
|
|
conf.close();
|
2016-07-04 09:42:30 +00:00
|
|
|
QFile agentConf(mDir.path() + QStringLiteral("/gpg-agent.conf"));
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(agentConf.open(QIODevice::WriteOnly));
|
2016-07-04 09:42:30 +00:00
|
|
|
agentConf.write("allow-loopback-pinentry");
|
|
|
|
agentConf.close();
|
2017-01-11 15:20:31 +00:00
|
|
|
QVERIFY(copyKeyrings(gpgHome, mDir.path()));
|
2016-07-01 14:55:14 +00:00
|
|
|
}
|
2016-08-24 12:00:41 +00:00
|
|
|
private:
|
|
|
|
QTemporaryDir mDir;
|
|
|
|
|
2016-07-01 14:55:14 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
QTEST_MAIN(TofuInfoTest)
|
|
|
|
|
|
|
|
#include "t-tofuinfo.moc"
|