1 files changed, 190 insertions, 0 deletions

diff --git a/bzrlib/tests/blackbox/test_sign_my_commits.py b/bzrlib/tests/blackbox/test_sign_my_commits.py
new file mode 100644
index 0000000..79376e2
--- /dev/null
+++ b/bzrlib/tests/blackbox/test_sign_my_commits.py
@@ -0,0 +1,190 @@
+# Copyright (C) 2005 Canonical Ltd
+# -*- coding: utf-8 -*-
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
+
+"""Black-box tests for bzr sign-my-commits."""
+
+from bzrlib import (
+    gpg,
+    tests,
+    )
+from bzrlib.tests.matchers import ContainsNoVfsCalls
+
+
+class SignMyCommits(tests.TestCaseWithTransport):
+
+    def monkey_patch_gpg(self):
+        """Monkey patch the gpg signing strategy to be a loopback.
+
+        This also registers the cleanup, so that we will revert to
+        the original gpg strategy when done.
+        """
+        # monkey patch gpg signing mechanism
+        self.overrideAttr(gpg, 'GPGStrategy', gpg.LoopbackGPGStrategy)
+
+    def setup_tree(self, location='.'):
+        wt = self.make_branch_and_tree(location)
+        wt.commit("base A", allow_pointless=True, rev_id='A')
+        wt.commit("base B", allow_pointless=True, rev_id='B')
+        wt.commit("base C", allow_pointless=True, rev_id='C')
+        wt.commit("base D", allow_pointless=True, rev_id='D',
+                committer='Alternate <alt@foo.com>')
+        wt.add_parent_tree_id("aghost")
+        wt.commit("base E", allow_pointless=True, rev_id='E')
+        return wt
+
+    def assertUnsigned(self, repo, revision_id):
+        """Assert that revision_id is not signed in repo."""
+        self.assertFalse(repo.has_signature_for_revision_id(revision_id))
+
+    def assertSigned(self, repo, revision_id):
+        """Assert that revision_id is signed in repo."""
+        self.assertTrue(repo.has_signature_for_revision_id(revision_id))
+
+    def test_sign_my_commits(self):
+        #Test re signing of data.
+        wt = self.setup_tree()
+        repo = wt.branch.repository
+
+        self.monkey_patch_gpg()
+
+        self.assertUnsigned(repo, 'A')
+        self.assertUnsigned(repo, 'B')
+        self.assertUnsigned(repo, 'C')
+        self.assertUnsigned(repo, 'D')
+
+        self.run_bzr('sign-my-commits')
+
+        self.assertSigned(repo, 'A')
+        self.assertSigned(repo, 'B')
+        self.assertSigned(repo, 'C')
+        self.assertUnsigned(repo, 'D')
+
+    def test_sign_my_commits_location(self):
+        wt = self.setup_tree('other')
+        repo = wt.branch.repository
+
+        self.monkey_patch_gpg()
+
+        self.run_bzr('sign-my-commits other')
+
+        self.assertSigned(repo, 'A')
+        self.assertSigned(repo, 'B')
+        self.assertSigned(repo, 'C')
+        self.assertUnsigned(repo, 'D')
+
+    def test_sign_diff_committer(self):
+        wt = self.setup_tree()
+        repo = wt.branch.repository
+
+        self.monkey_patch_gpg()
+
+        self.run_bzr(['sign-my-commits', '.', 'Alternate <alt@foo.com>'])
+
+        self.assertUnsigned(repo, 'A')
+        self.assertUnsigned(repo, 'B')
+        self.assertUnsigned(repo, 'C')
+        self.assertSigned(repo, 'D')
+
+    def test_sign_dry_run(self):
+        wt = self.setup_tree()
+        repo = wt.branch.repository
+
+        self.monkey_patch_gpg()
+
+        out = self.run_bzr('sign-my-commits --dry-run')[0]
+
+        outlines = out.splitlines()
+        self.assertEquals(5, len(outlines))
+        self.assertEquals('Signed 4 revisions.', outlines[-1])
+        self.assertUnsigned(repo, 'A')
+        self.assertUnsigned(repo, 'B')
+        self.assertUnsigned(repo, 'C')
+        self.assertUnsigned(repo, 'D')
+        self.assertUnsigned(repo, 'E')
+
+    def test_verify_commits(self):
+        wt = self.setup_tree()
+        self.monkey_patch_gpg()
+        self.run_bzr('sign-my-commits')
+        out = self.run_bzr('verify-signatures', retcode=1)
+        self.assertEquals(('4 commits with valid signatures\n'
+                           '0 commits with key now expired\n'
+                           '0 commits with unknown keys\n'
+                           '0 commits not valid\n'
+                           '1 commit not signed\n', ''), out)
+
+    def test_verify_commits_acceptable_key(self):
+        wt = self.setup_tree()
+        self.monkey_patch_gpg()
+        self.run_bzr('sign-my-commits')
+        out = self.run_bzr(['verify-signatures', '--acceptable-keys=foo,bar'],
+                            retcode=1)
+        self.assertEquals(('4 commits with valid signatures\n'
+                           '0 commits with key now expired\n'
+                           '0 commits with unknown keys\n'
+                           '0 commits not valid\n'
+                           '1 commit not signed\n', ''), out)
+
+
+class TestSmartServerSignMyCommits(tests.TestCaseWithTransport):
+
+    def monkey_patch_gpg(self):
+        """Monkey patch the gpg signing strategy to be a loopback.
+
+        This also registers the cleanup, so that we will revert to
+        the original gpg strategy when done.
+        """
+        # monkey patch gpg signing mechanism
+        self.overrideAttr(gpg, 'GPGStrategy', gpg.LoopbackGPGStrategy)
+
+    def test_sign_single_commit(self):
+        self.setup_smart_server_with_call_log()
+        t = self.make_branch_and_tree('branch')
+        self.build_tree_contents([('branch/foo', 'thecontents')])
+        t.add("foo")
+        t.commit("message")
+        self.reset_smart_call_log()
+        self.monkey_patch_gpg()
+        out, err = self.run_bzr(['sign-my-commits', self.get_url('branch')])
+        # This figure represent the amount of work to perform this use case. It
+        # is entirely ok to reduce this number if a test fails due to rpc_count
+        # being too low. If rpc_count increases, more network roundtrips have
+        # become necessary for this use case. Please do not adjust this number
+        # upwards without agreement from bzr's network support maintainers.
+        self.assertLength(15, self.hpss_calls)
+        self.assertLength(1, self.hpss_connections)
+        self.assertThat(self.hpss_calls, ContainsNoVfsCalls)
+
+    def test_verify_commits(self):
+        self.setup_smart_server_with_call_log()
+        t = self.make_branch_and_tree('branch')
+        self.build_tree_contents([('branch/foo', 'thecontents')])
+        t.add("foo")
+        t.commit("message")
+        self.monkey_patch_gpg()
+        out, err = self.run_bzr(['sign-my-commits', self.get_url('branch')])
+        self.reset_smart_call_log()
+        self.run_bzr('sign-my-commits')
+        out = self.run_bzr(['verify-signatures', self.get_url('branch')])
+        # This figure represent the amount of work to perform this use case. It
+        # is entirely ok to reduce this number if a test fails due to rpc_count
+        # being too low. If rpc_count increases, more network roundtrips have
+        # become necessary for this use case. Please do not adjust this number
+        # upwards without agreement from bzr's network support maintainers.
+        self.assertLength(10, self.hpss_calls)
+        self.assertLength(1, self.hpss_connections)
+        self.assertThat(self.hpss_calls, ContainsNoVfsCalls)