def test_remove_existing_signature_not_found(self, mock_repo):
signer = Signer()
os.remove = MagicMock()
signer.sign(
"tests/tests_sign_workflow/data/signature/not_found.tar.gz",
".sig")
os.remove.assert_not_called()
def test_accepted_file_types_sig(self, git_repo: Mock) -> None:
artifacts = [
"bad-xml.xml",
"the-jar.jar",
"the-zip.zip",
"the-whl.whl",
"the-rpm.rpm",
"the-war.war",
"the-pom.pom",
"the-module.module",
"the-tar.tar.gz",
"random-file.txt",
"something-1.0.0.0.jar",
"opensearch_sql_cli-1.0.0-py3-none-any.whl",
"cratefile.crate"
]
expected = [
call(os.path.join("path", "the-jar.jar"), ".sig"),
call(os.path.join("path", "the-zip.zip"), ".sig"),
call(os.path.join("path", "the-whl.whl"), ".sig"),
call(os.path.join("path", "the-rpm.rpm"), ".sig"),
call(os.path.join("path", "the-war.war"), ".sig"),
call(os.path.join("path", "the-pom.pom"), ".sig"),
call(os.path.join("path", "the-module.module"), ".sig"),
call(os.path.join("path", "the-tar.tar.gz"), ".sig"),
call(os.path.join("path", "something-1.0.0.0.jar"), ".sig"),
call(os.path.join("path", "opensearch_sql_cli-1.0.0-py3-none-any.whl"), ".sig"),
call(os.path.join("path", "cratefile.crate"), ".sig")
]
signer = Signer()
signer.sign = MagicMock() # type: ignore
signer.sign_artifacts(artifacts, Path("path"), ".sig")
self.assertEqual(signer.sign.call_args_list, expected)
def test_accepted_file_types_asc(self, git_repo):
artifacts = [
"bad-xml.xml",
"the-jar.jar",
"the-zip.zip",
"the-war.war",
"the-pom.pom",
"the-module.module",
"the-tar.tar.gz",
"random-file.txt",
"something-1.0.0.0.jar",
]
expected = [
call(os.path.join("path", "the-jar.jar"), ".asc"),
call(os.path.join("path", "the-zip.zip"), ".asc"),
call(os.path.join("path", "the-war.war"), ".asc"),
call(os.path.join("path", "the-pom.pom"), ".asc"),
call(os.path.join("path", "the-module.module"), ".asc"),
call(os.path.join("path", "the-tar.tar.gz"), ".asc"),
call(os.path.join("path", "something-1.0.0.0.jar"), ".asc"),
]
signer = Signer()
signer.sign = MagicMock()
signer.sign_artifacts(artifacts, "path", ".asc")
self.assertEqual(signer.sign.call_args_list, expected)
def test_signer_sign_sig(self, mock_repo):
signer = Signer()
signer.sign("/path/the-jar.jar", ".sig")
mock_repo.assert_has_calls([
call().execute(
"./opensearch-signer-client -i /path/the-jar.jar -o /path/the-jar.jar.sig -p pgp"
)
])
def test_remove_existing_signature_found(self, mock_repo):
signer = Signer()
os.remove = MagicMock()
signer.sign(
"tests/tests_sign_workflow/data/signature/tar_dummy_artifact_1.0.0.tar.gz",
".sig")
os.remove.assert_called_with(
"tests/tests_sign_workflow/data/signature/tar_dummy_artifact_1.0.0.tar.gz.sig"
)
def main():
parser = argparse.ArgumentParser(description="Sign artifacts")
parser.add_argument("target", type=Path, help="Path to local manifest file or artifact directory.")
parser.add_argument("--component", nargs="?", help="Component name")
parser.add_argument("--type", nargs="?", help="Artifact type")
parser.add_argument("--sigtype", choices=ACCEPTED_SIGNATURE_FILE_TYPES, help="Type of Signature file", default=".asc")
parser.add_argument(
"-v",
"--verbose",
help="Show more verbose output.",
action="store_const",
default=logging.INFO,
const=logging.DEBUG,
dest="logging_level",
)
args = parser.parse_args()
console.configure(level=args.logging_level)
sign = SignArtifacts.from_path(path=args.target,
component=args.component,
artifact_type=args.type,
signature_type=args.sigtype,
signer=Signer())
sign.sign()
def main() -> int:
args = SignArgs()
console.configure(level=args.logging_level)
sign = SignArtifacts.from_path(
path=args.target,
components=args.components,
artifact_type=args.type,
signature_type=args.sigtype,
signer=Signer()
)
sign.sign()
return 0
def test_signer_sign_asc(self, mock_repo: Mock) -> None:
signer = Signer()
signer.sign("/path/the-jar.jar", ".asc")
mock_repo.assert_has_calls(
[call().execute("./opensearch-signer-client -i /path/the-jar.jar -o /path/the-jar.jar.asc -p pgp")])
def test_signer_verify_sig(self, mock_repo: Mock) -> None:
signer = Signer()
signer.verify("/path/the-jar.jar.sig")
mock_repo.assert_has_calls([call().execute("gpg --verify-files /path/the-jar.jar.sig")])
def test_signer_checks_out_tool(self, mock_repo: Mock) -> None:
Signer()
self.assertEqual(mock_repo.return_value.execute.call_count, 2)
mock_repo.return_value.execute.assert_has_calls([call("./bootstrap"), call("rm config.cfg")])
def test_sign_artifact_called(self, mock_repo: Mock) -> None:
signer = Signer()
signer.generate_signature_and_verify = MagicMock() # type: ignore
signer.sign_artifact("the-jar.zip", Path("/path"), ".sig")
signer.generate_signature_and_verify.assert_called_with("the-jar.zip", Path("/path"), ".sig")
def test_signer_verify_asc(self, mock_repo):
signer = Signer()
signer.verify("/path/the-jar.jar.asc")
mock_repo.assert_has_calls(
[call().execute("gpg --verify-files /path/the-jar.jar.asc")])
def test_signer_checks_out_tool(self, mock_execute, mock_signer):
Signer()
self.assertEqual(mock_execute.call_count, 2)
mock_execute.assert_has_calls(
[call("./bootstrap"), call("rm config.cfg")])
def test_sign_artifact_called(self, mock_repo):
signer = Signer()
signer.generate_signature_and_verify = MagicMock()
signer.sign_artifact("the-jar.zip", "/path", ".sig")
signer.generate_signature_and_verify.assert_called_with(
"the-jar.zip", "/path", ".sig")
