summaryrefslogtreecommitdiffstats
path: root/models
diff options
context:
space:
mode:
authorAntoine GIRARD <sapk@users.noreply.github.com>2017-06-14 02:43:43 +0200
committerLunny Xiao <xiaolunwen@gmail.com>2017-06-14 08:43:43 +0800
commit274149dd14909d4ba87f25f8e5160f51ca5f7265 (patch)
tree37157530111d5bf90efcc914fbc8c8e7cdff3db9 /models
parent5e92b82ac632043f622117419ad04e57e9c029f3 (diff)
downloadgitea-274149dd14909d4ba87f25f8e5160f51ca5f7265.tar.gz
gitea-274149dd14909d4ba87f25f8e5160f51ca5f7265.zip
Switch to keybase go-crypto (for some elliptic curve key) + test (#1925)
* Switch to keybase go-crypto (for some elliptic curve key) + test * Use assert.NoError and add a little more context to failing test description * Use assert.(No)Error everywhere 🌈 and assert.Error in place of .Nil/.NotNil
Diffstat (limited to 'models')
-rw-r--r--models/gpg_key.go6
-rw-r--r--models/gpg_key_test.go41
2 files changed, 34 insertions, 13 deletions
diff --git a/models/gpg_key.go b/models/gpg_key.go
index 862bd88596..6a5daf6361 100644
--- a/models/gpg_key.go
+++ b/models/gpg_key.go
@@ -19,9 +19,9 @@ import (
"code.gitea.io/gitea/modules/log"
"github.com/go-xorm/xorm"
- "golang.org/x/crypto/openpgp"
- "golang.org/x/crypto/openpgp/armor"
- "golang.org/x/crypto/openpgp/packet"
+ "github.com/keybase/go-crypto/openpgp"
+ "github.com/keybase/go-crypto/openpgp/armor"
+ "github.com/keybase/go-crypto/openpgp/packet"
)
// GPGKey represents a GPG key.
diff --git a/models/gpg_key_test.go b/models/gpg_key_test.go
index 507cfabd23..cc70096d0b 100644
--- a/models/gpg_key_test.go
+++ b/models/gpg_key_test.go
@@ -43,7 +43,28 @@ MkM/fdpyc2hY7Dl/+qFmN5MG5yGmMpQcX+RNNR222ibNC1D3wg==
-----END PGP PUBLIC KEY BLOCK-----`
key, err := checkArmoredGPGKeyString(testGPGArmor)
- assert.Nil(t, err, "Could not parse a valid GPG armored key", key)
+ assert.NoError(t, err, "Could not parse a valid GPG public armored rsa key", key)
+ //TODO verify value of key
+}
+
+func TestCheckArmoredbrainpoolP256r1GPGKeyString(t *testing.T) {
+ testGPGArmor := `-----BEGIN PGP PUBLIC KEY BLOCK-----
+Version: GnuPG v2
+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ZiSe
+-----END PGP PUBLIC KEY BLOCK-----`
+
+ key, err := checkArmoredGPGKeyString(testGPGArmor)
+ assert.NoError(t, err, "Could not parse a valid GPG public armored brainpoolP256r1 key", key)
//TODO verify value of key
}
@@ -79,11 +100,11 @@ MkM/fdpyc2hY7Dl/+qFmN5MG5yGmMpQcX+RNNR222ibNC1D3wg==
=i9b7
-----END PGP PUBLIC KEY BLOCK-----`
ekey, err := checkArmoredGPGKeyString(testGPGArmor)
- assert.Nil(t, err, "Could not parse a valid GPG armored key", ekey)
+ assert.NoError(t, err, "Could not parse a valid GPG armored key", ekey)
pubkey := ekey.PrimaryKey
content, err := base64EncPubKey(pubkey)
- assert.Nil(t, err, "Could not base64 encode a valid PublicKey content", ekey)
+ assert.NoError(t, err, "Could not base64 encode a valid PublicKey content", ekey)
key := &GPGKey{
KeyID: pubkey.KeyIdString(),
@@ -144,21 +165,21 @@ Unknown GPG key with good email
`
//Reading Sign
goodSig, err := extractSignature(testGoodSigArmor)
- assert.Nil(t, err, "Could not parse a valid GPG armored signature", testGoodSigArmor)
+ assert.NoError(t, err, "Could not parse a valid GPG armored signature", testGoodSigArmor)
badSig, err := extractSignature(testBadSigArmor)
- assert.Nil(t, err, "Could not parse a valid GPG armored signature", testBadSigArmor)
+ assert.NoError(t, err, "Could not parse a valid GPG armored signature", testBadSigArmor)
//Generating hash of commit
goodHash, err := populateHash(goodSig.Hash, []byte(testGoodPayload))
- assert.Nil(t, err, "Could not generate a valid hash of payload", testGoodPayload)
+ assert.NoError(t, err, "Could not generate a valid hash of payload", testGoodPayload)
badHash, err := populateHash(badSig.Hash, []byte(testBadPayload))
- assert.Nil(t, err, "Could not generate a valid hash of payload", testBadPayload)
+ assert.NoError(t, err, "Could not generate a valid hash of payload", testBadPayload)
//Verify
err = verifySign(goodSig, goodHash, key)
- assert.Nil(t, err, "Could not validate a good signature")
+ assert.NoError(t, err, "Could not validate a good signature")
err = verifySign(badSig, badHash, key)
- assert.NotNil(t, err, "Validate a bad signature")
+ assert.Error(t, err, "Validate a bad signature")
err = verifySign(goodSig, goodHash, cannotsignkey)
- assert.NotNil(t, err, "Validate a bad signature with a kay that can not sign")
+ assert.Error(t, err, "Validate a bad signature with a kay that can not sign")
}