[PATCH] tests/openpgp: Provide fake pinentries for downstream developers.

Daniel Kahn Gillmor dkg at fifthhorseman.net
Tue Sep 13 08:09:58 CEST 2016


* tests/openpgp/fake-pinentries/README.txt and
  tests/openpgp/fake-pinentries/fake-pinentry.{sh,py,pl,php}}: New
  public domain files to encourage better test suite practices from
  downstream developers.

Signed-off-by: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
---
 tests/openpgp/fake-pinentries/README.txt        | 28 ++++++++++++++++++++
 tests/openpgp/fake-pinentries/fake-pinentry.php | 25 ++++++++++++++++++
 tests/openpgp/fake-pinentries/fake-pinentry.pl  | 28 ++++++++++++++++++++
 tests/openpgp/fake-pinentries/fake-pinentry.py  | 29 +++++++++++++++++++++
 tests/openpgp/fake-pinentries/fake-pinentry.sh  | 34 +++++++++++++++++++++++++
 5 files changed, 144 insertions(+)
 create mode 100644 tests/openpgp/fake-pinentries/README.txt
 create mode 100755 tests/openpgp/fake-pinentries/fake-pinentry.php
 create mode 100755 tests/openpgp/fake-pinentries/fake-pinentry.pl
 create mode 100755 tests/openpgp/fake-pinentries/fake-pinentry.py
 create mode 100755 tests/openpgp/fake-pinentries/fake-pinentry.sh

diff --git a/tests/openpgp/fake-pinentries/README.txt b/tests/openpgp/fake-pinentries/README.txt
new file mode 100644
index 0000000..7a08b32
--- /dev/null
+++ b/tests/openpgp/fake-pinentries/README.txt
@@ -0,0 +1,28 @@
+Fake Pinentries for Test Suites
+===============================
+
+If you're writing a test suite, it should use one of these pinentries
+by setting the following line in $GNUPGHOME/gpg-agent.conf:
+
+    pinentry-program /path/to/fake-pinentry.ext
+
+Note that different fake-pinentry programs have been supplied here in
+different languages, with the intent of making them available to
+developers who have different languages available.
+
+They are in the public domain, so they should be reusable by any
+project.  Feel free to copy them into your own project's test suite.
+
+Rationale
+---------
+
+If you're implementing software that uses GnuPG, you probably want a
+test suite that exercises your code, and you may have some that
+involve secret key material locked with a passphrase.  However, you
+don't want to require your developers to manually enter a passphrase
+while tests are run, and you probably also don't want to deal with
+alternate codepaths/workflows like using gpg's loopback pinentry.
+
+The solution for this is to use a fake pinentry in your test suite,
+one that simply returns a pre-selected passphrase.  In this case, all
+the other code is the 
diff --git a/tests/openpgp/fake-pinentries/fake-pinentry.php b/tests/openpgp/fake-pinentries/fake-pinentry.php
new file mode 100755
index 0000000..2d8f2c8
--- /dev/null
+++ b/tests/openpgp/fake-pinentries/fake-pinentry.php
@@ -0,0 +1,25 @@
+#!/usr/bin/php
+# Use this for your test suites when a PHP interpreter is available.
+#
+# The encrypted keys in your test suite that you expect to work must
+# be locked with a passphrase of "passphrase"
+#
+# Author: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
+#
+# License: This trivial work is hereby explicitly placed into the
+# public domain.  Anyone may reuse it, modify it, redistribute it for
+# any purpose.
+
+<?php
+print("OK This is only for test suites, and should never be used in production\n");
+while (true) {
+    $line = strtolower(trim(fgets(STDIN)));
+    if (($line === "") || ($line[0] == '#'))
+        continue;
+    if ((0 === strncmp("getpin", $line, 6)))
+        print("D passphrase\n");
+    print("OK\n");
+    if ((0 === strncmp("bye", $line, 3)))
+        break;
+}
+?>
\ No newline at end of file
diff --git a/tests/openpgp/fake-pinentries/fake-pinentry.pl b/tests/openpgp/fake-pinentries/fake-pinentry.pl
new file mode 100755
index 0000000..250b27c
--- /dev/null
+++ b/tests/openpgp/fake-pinentries/fake-pinentry.pl
@@ -0,0 +1,28 @@
+#!/usr/bin/perl -w
+# Use this for your test suites when a perl interpreter is available.
+#
+# The encrypted keys in your test suite that you expect to work must
+# be locked with a passphrase of "passphrase"
+#
+# Author: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
+#
+# License: This trivial work is hereby explicitly placed into the
+# public domain.  Anyone may reuse it, modify it, redistribute it for
+# any purpose.
+
+use strict;
+use warnings;
+
+# turn off buffering
+$| = 1;
+
+print "OK This is only for test suites, and should never be used in production\n";
+while (<STDIN>) {
+  chomp;
+  next if (/^$/);
+  next if (/^#/)
+  print ("D passphrase\n") if (/^getpin/i);
+  print "OK\n";
+  exit if (/^bye/i);
+}
+1;
diff --git a/tests/openpgp/fake-pinentries/fake-pinentry.py b/tests/openpgp/fake-pinentries/fake-pinentry.py
new file mode 100755
index 0000000..57d6941
--- /dev/null
+++ b/tests/openpgp/fake-pinentries/fake-pinentry.py
@@ -0,0 +1,29 @@
+#!/usr/bin/env python
+# Use this for your test suites when a python interpreter is available.
+#
+# The encrypted keys in your test suite that you expect to work must
+# be locked with a passphrase of "passphrase"
+#
+# Author: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
+#
+# License: This trivial work is hereby explicitly placed into the
+# public domain.  Anyone may reuse it, modify it, redistribute it for
+# any purpose.
+
+import sys, os
+
+# turn off buffering:
+sys.stdin = os.fdopen(sys.stdin.fileno(), 'r', 0)
+sys.stdout = os.fdopen(sys.stdout.fileno(), 'w', 0)
+
+print("OK This is only for test suites, and should never be used in production")
+while True:
+    ln = sys.stdin.readline().lower()
+    if (ln.strip() == '') or (ln.startswith('#')):
+        continue
+    if (ln.startswith('getpin')):
+        sys.stdout.write('D passphrase\n')
+    sys.stdout.write('OK\n')
+    if (ln.startswith('bye')):
+        break
+        
diff --git a/tests/openpgp/fake-pinentries/fake-pinentry.sh b/tests/openpgp/fake-pinentries/fake-pinentry.sh
new file mode 100755
index 0000000..57bbf91
--- /dev/null
+++ b/tests/openpgp/fake-pinentries/fake-pinentry.sh
@@ -0,0 +1,34 @@
+#!/bin/sh
+# Use this for your test suites when a POSIX shell is available.
+#
+# The encrypted keys in your test suite that you expect to work must
+# be locked with a passphrase of "passphrase"
+#
+# Author: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
+#
+# License: This trivial work is hereby explicitly placed into the
+# public domain.  Anyone may reuse it, modify it, redistribute it for
+# any purpose.
+
+echo "OK This is only for test suites, and should never be used in production"
+while read cmd rest; do
+    cmd=$(printf "%s" "$cmd" | tr 'A-Z' 'a-z')
+    if [ -z "$cmd" ]; then
+        continue;
+    fi
+    case "$cmd" in
+        \#*)
+        ;;
+        getpin)
+            echo "D passphrase"
+            echo "OK"
+            ;;
+        bye)
+            echo "OK"
+            exit 0
+            ;;
+        *)
+            echo "OK"
+            ;;
+    esac
+done
-- 
2.9.3




More information about the Gnupg-devel mailing list