1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
mtn_setup()
check(get("hooks.lua"))
function trusted(rev, name, value, ...) -- ... is signers
check(mtn("trusted", "--rcfile", "hooks.lua", rev, name, value, ...), 0, true, false)
local t = qgrep(" trusted", "stdout")
local u = qgrep(" untrusted", "stdout") or qgrep(" UNtrusted", "stdout")
check(t ~= u)
return t
end
-- create two arbitrary revisions
addfile("goodfile", "good")
commit()
good = base_revision()
addfile("badfile", "bad")
commit()
bad = base_revision()
check(mtn("automate", "generate_key", "foo@bar.com", "foo@bar.com"), 0, false, false)
check(mtn("automate", "generate_key", "alice@trusted.com", "alice@trusted.com"), 0, false, false)
check(mtn("automate", "generate_key", "mallory@evil.com", "mallory@evil.com"), 0, false, false)
-- Idea here is to check a bunch of combinations, to make sure that
-- trust hooks get all information correctly
check(trusted(good, "foo", "bar", "foo@bar.com"))
check(trusted(good, "foo", "bar", "alice@trusted.com"))
check(not trusted(good, "foo", "bar", "mallory@evil.com"))
check(trusted(good, "bad-cert", "bad-val", "foo@bar.com"))
check(trusted(bad, "good-cert", "bad-val", "foo@bar.com"))
check(trusted(bad, "bad-cert", "good-val", "foo@bar.com"))
check(not trusted(bad, "bad-cert", "bad-val", "foo@bar.com"))
check(trusted(bad, "bad-cert", "bad-val", "alice@trusted.com"))
check(trusted(good, "foo", "bar", "foo@bar.com", "alice@trusted.com"))
check(trusted(good, "foo", "bar", "alice@trusted.com", "foo@bar.com"))
check(not trusted(good, "foo", "bar", "foo@bar.com", "mallory@evil.com"))
check(not trusted(good, "foo", "bar", "mallory@evil.com", "foo@bar.com"))
check(trusted(bad, "bad-cert", "bad-val", "foo@bar.com", "alice@trusted.com"))
check(trusted(bad, "bad-cert", "bad-val", "alice@trusted.com", "foo@bar.com"))
|
