xaked/blackbox
1
0
Fork 0
mirror of https://github.com/StackExchange/blackbox.git synced 2025-12-13 02:12:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
blackbox/integrationTest
History
Lightning 3a137a4a17 don't bypass the web of trust (#378) (#379) 
* don't bypass the web of trust (#378)

the choice whether to use a web of trust and on which trust level is up
to the user of PGP/GPG and must not be overriden by tools that are set
on top

users can decide to ignore this safety net by setting their gpg.conf
adequately, defining an alias for `gpg --trust-model=always` or passing
the env GPG to blackbox in this way but we should not override their
preferences hardcoded

* update README

add note about the web of trust

* fix broken test

assume that we have `--quick-generate-key` if we run gpg2 instead of
doing a dry run for that (which has side effects that break the test)
2024-01-17 08:23:09 -05:00
..
test_data
Implement blackbox in Golang (#250)
2020-07-24 14:21:33 -04:00
asserts.go
Implement blackbox in Golang (#250)
2020-07-24 14:21:33 -04:00
integration_test.go
Implement blackbox in Golang (#250)
2020-07-24 14:21:33 -04:00
ithelpers.go
don't bypass the web of trust (#378) (#379)
2024-01-17 08:23:09 -05:00
NOTES.txt
Implement blackbox in Golang (#250)
2020-07-24 14:21:33 -04:00
README.txt
Implement blackbox in Golang (#250)
2020-07-24 14:21:33 -04:00

README.txt 

Each test does the following:
1. Copy the files from testdata/NNNN
2. Run the command in test_NNNN.sh
3. 


TEST ENROLLMENT:

PHASE 'Alice creates a repo.  She creates secret.txt.'
PHASE 'Alice wants to be part of the secret system.'
PHASE 'She creates a GPG key...'
PHASE 'Initializes BB...'
PHASE 'and adds herself as an admin.'
PHASE 'Bob arrives.'
PHASE 'Bob creates a gpg key.'
PHASE 'Alice does the second part to enroll bob.'
PHASE 'She enrolls bob.'
PHASE 'She enrolls secrets.txt.'
PHASE 'She decrypts secrets.txt.'
PHASE 'She edits secrets.txt.'
PHASE 'Alice copies files to a non-repo directory. (NO REPO)'
PHASE 'Alice shreds these non-repo files. (NO REPO)'
PHASE 'Alice decrypts secrets.txt (NO REPO).'
PHASE 'Alice edits secrets.txt. (NO REPO EDIT)'
PHASE 'Alice decrypts secrets.txt (NO REPO EDIT).'
PHASE 'appears.'
#PHASE 'Bob makes sure he has all new keys.'

TEST INDIVIDUAL COMMANDS:

PHASE 'Bob postdeploys... default.'
PHASE 'Bob postdeploys... with a GID.'
PHASE 'Bob cleans up the secret.'
PHASE 'Bob removes Alice.'
PHASE 'Bob reencrypts files so alice can not access them.'
PHASE 'Bob decrypts secrets.txt.'
PHASE 'Bob edits secrets.txt.'
PHASE 'Bob decrypts secrets.txt VERSION 3.'
PHASE 'Bob exposes a secret in the repo.'
PHASE 'Bob corrects it by registering it.'
PHASE 'Bob enrolls my/path/to/relsecrets.txt.'
PHASE 'Bob decrypts relsecrets.txt.'
PHASE 'Bob enrolls !important!.txt'
PHASE 'Bob enrolls #andpounds.txt'
PHASE 'Bob enrolls stars*bars?.txt'
PHASE 'Bob enrolls space space.txt'
PHASE 'Bob checks out stars*bars?.txt.'
PHASE 'Bob checks out space space.txt.'
PHASE 'Bob shreds all exposed files.'
PHASE 'Bob updates all files.'
PHASE 'Bob DEregisters mistake.txt'
PHASE 'Bob enrolls multiple files: multi1.txt and multi2.txt'
PHASE 'Alice returns. She should be locked out'
PHASE 'Alice tries to decrypt secret.txt. Is blocked.'
Reference in New Issue View Git Blame Copy Permalink