|
Packit |
d7e8d0 |
#!/usr/bin/env python
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
# Copyright (C) 2016 g10 Code GmbH
|
|
Packit |
d7e8d0 |
#
|
|
Packit |
d7e8d0 |
# This file is part of GPGME.
|
|
Packit |
d7e8d0 |
#
|
|
Packit |
d7e8d0 |
# GPGME is free software; you can redistribute it and/or modify it
|
|
Packit |
d7e8d0 |
# under the terms of the GNU General Public License as published by
|
|
Packit |
d7e8d0 |
# the Free Software Foundation; either version 2 of the License, or
|
|
Packit |
d7e8d0 |
# (at your option) any later version.
|
|
Packit |
d7e8d0 |
#
|
|
Packit |
d7e8d0 |
# GPGME is distributed in the hope that it will be useful, but WITHOUT
|
|
Packit |
d7e8d0 |
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
|
Packit |
d7e8d0 |
# or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General
|
|
Packit |
d7e8d0 |
# Public License for more details.
|
|
Packit |
d7e8d0 |
#
|
|
Packit |
d7e8d0 |
# You should have received a copy of the GNU Lesser General Public
|
|
Packit |
d7e8d0 |
# License along with this program; if not, see <http://www.gnu.org/licenses/>.
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
from __future__ import absolute_import, print_function, unicode_literals
|
|
Packit |
d7e8d0 |
del absolute_import, print_function, unicode_literals
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
import os
|
|
Packit |
d7e8d0 |
import gpg
|
|
Packit |
d7e8d0 |
import support
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
def fail(msg):
|
|
Packit |
d7e8d0 |
raise RuntimeError(msg)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
def check_result(r, typ):
|
|
Packit |
d7e8d0 |
if r.invalid_signers:
|
|
Packit |
d7e8d0 |
fail("Invalid signer found: {}".format(r.invalid_signers.fpr))
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
if len(r.signatures) != 1:
|
|
Packit |
d7e8d0 |
fail("Unexpected number of signatures created")
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
signature = r.signatures[0]
|
|
Packit |
d7e8d0 |
if signature.type != typ:
|
|
Packit |
d7e8d0 |
fail("Wrong type of signature created")
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
if signature.pubkey_algo != gpg.constants.pk.DSA:
|
|
Packit |
d7e8d0 |
fail("Wrong pubkey algorithm reported: {}".format(
|
|
Packit |
d7e8d0 |
signature.pubkey_algo))
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
if signature.hash_algo != gpg.constants.md.SHA1:
|
|
Packit |
d7e8d0 |
fail("Wrong hash algorithm reported: {}".format(
|
|
Packit |
d7e8d0 |
signature.hash_algo))
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
if signature.sig_class != 1:
|
|
Packit |
d7e8d0 |
fail("Wrong signature class reported: {}".format(
|
|
Packit |
d7e8d0 |
signature.sig_class))
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
if signature.fpr != "A0FF4590BB6122EDEF6E3C542D727CC768697734":
|
|
Packit |
d7e8d0 |
fail("Wrong fingerprint reported: {}".format(signature.fpr))
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c = gpg.Context()
|
|
Packit |
d7e8d0 |
c.set_textmode(True)
|
|
Packit |
d7e8d0 |
c.set_armor(True)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
source = gpg.Data("Hallo Leute\n")
|
|
Packit |
d7e8d0 |
sink = gpg.Data()
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c.op_sign(source, sink, gpg.constants.sig.mode.NORMAL)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
result = c.op_sign_result()
|
|
Packit |
d7e8d0 |
check_result(result, gpg.constants.sig.mode.NORMAL)
|
|
Packit |
d7e8d0 |
support.print_data(sink)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
# Now a detached signature.
|
|
Packit |
d7e8d0 |
source.seek(0, os.SEEK_SET)
|
|
Packit |
d7e8d0 |
sink = gpg.Data()
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c.op_sign(source, sink, gpg.constants.sig.mode.DETACH)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
result = c.op_sign_result()
|
|
Packit |
d7e8d0 |
check_result(result, gpg.constants.sig.mode.DETACH)
|
|
Packit |
d7e8d0 |
support.print_data(sink)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
# And finally a cleartext signature. */
|
|
Packit |
d7e8d0 |
source.seek(0, os.SEEK_SET)
|
|
Packit |
d7e8d0 |
sink = gpg.Data()
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c.op_sign(source, sink, gpg.constants.sig.mode.CLEAR)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
result = c.op_sign_result()
|
|
Packit |
d7e8d0 |
check_result(result, gpg.constants.sig.mode.CLEAR)
|
|
Packit |
d7e8d0 |
support.print_data(sink)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
# Idiomatic interface.
|
|
Packit |
d7e8d0 |
with gpg.Context(armor=True, textmode=True) as c:
|
|
Packit |
d7e8d0 |
message = "Hallo Leute\n".encode()
|
|
Packit |
d7e8d0 |
signed, _ = c.sign(message)
|
|
Packit |
d7e8d0 |
assert len(signed) > 0
|
|
Packit |
d7e8d0 |
assert signed.find(b'BEGIN PGP MESSAGE') > 0, 'Message not found'
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
signed, _ = c.sign(message, mode=gpg.constants.sig.mode.DETACH)
|
|
Packit |
d7e8d0 |
assert len(signed) > 0
|
|
Packit |
d7e8d0 |
assert signed.find(b'BEGIN PGP SIGNATURE') > 0, 'Signature not found'
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
signed, _ = c.sign(message, mode=gpg.constants.sig.mode.CLEAR)
|
|
Packit |
d7e8d0 |
assert len(signed) > 0
|
|
Packit |
d7e8d0 |
assert signed.find(b'BEGIN PGP SIGNED MESSAGE') > 0, 'Message not found'
|
|
Packit |
d7e8d0 |
assert signed.find(message) > 0, 'Message content not found'
|
|
Packit |
d7e8d0 |
assert signed.find(b'BEGIN PGP SIGNATURE') > 0, 'Signature not found'
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
with gpg.Context() as c:
|
|
Packit |
d7e8d0 |
message = "Hallo Leute\n".encode()
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c.signers = [c.get_key(support.sign_only, True)]
|
|
Packit |
d7e8d0 |
c.sign(message)
|
|
Packit |
d7e8d0 |
|
|
Packit |
d7e8d0 |
c.signers = [c.get_key(support.encrypt_only, True)]
|
|
Packit |
d7e8d0 |
try:
|
|
Packit |
d7e8d0 |
c.sign(message)
|
|
Packit |
d7e8d0 |
except gpg.errors.InvalidSigners as e:
|
|
Packit |
d7e8d0 |
assert len(e.signers) == 1
|
|
Packit |
d7e8d0 |
assert support.encrypt_only.endswith(e.signers[0].fpr)
|
|
Packit |
d7e8d0 |
else:
|
|
Packit |
d7e8d0 |
assert False, "Expected an InvalidSigners error, got none"
|