diff options
| author | Michał Górny <mgorny@gentoo.org> | 2022-09-17 12:02:20 +0200 |
|---|---|---|
| committer | Michał Górny <mgorny@gentoo.org> | 2022-09-17 12:02:20 +0200 |
| commit | 503bac7e04330c5bd82ba3e7d9878b85d5024a94 (patch) | |
| tree | a20bca595e1e280281a955e4d8cc09805203ab64 | |
| parent | b5533242200179fe2a9571417674b400cfebce22 (diff) | |
| download | gemato-503bac7e04330c5bd82ba3e7d9878b85d5024a94.tar.gz | |
Fix update w/ require_secure_hashes to require at least one hash
Signed-off-by: Michał Górny <mgorny@gentoo.org>
| -rw-r--r-- | gemato/recursiveloader.py | 8 | ||||
| -rw-r--r-- | gemato/verify.py | 2 | ||||
| -rw-r--r-- | tests/test_openpgp.py | 5 | ||||
| -rw-r--r-- | tests/test_recursiveloader.py | 7 | ||||
| -rw-r--r-- | tests/test_verify.py | 8 |
5 files changed, 18 insertions, 12 deletions
diff --git a/gemato/recursiveloader.py b/gemato/recursiveloader.py index 612ea2d..e3d9646 100644 --- a/gemato/recursiveloader.py +++ b/gemato/recursiveloader.py @@ -316,7 +316,7 @@ class ManifestRecursiveLoader: if require_secure_hashes and hashes is not None: insecure = list(filter(lambda x: not is_hash_secure(x), hashes)) - if insecure: + if insecure or not hashes: raise ManifestInsecureHashes(insecure) @@ -762,7 +762,7 @@ class ManifestRecursiveLoader: hashes = self.hashes if self.require_secure_hashes and hashes is not None: insecure = list(filter(lambda x: not is_hash_secure(x), hashes)) - if insecure: + if insecure or not hashes: raise ManifestInsecureHashes(insecure) if sort is None: @@ -881,7 +881,7 @@ class ManifestRecursiveLoader: hashes = self.hashes if self.require_secure_hashes and hashes is not None: insecure = list(filter(lambda x: not is_hash_secure(x), hashes)) - if insecure: + if insecure or not hashes: raise ManifestInsecureHashes(insecure) self.load_manifests_for_path(path) @@ -1153,7 +1153,7 @@ class ManifestRecursiveLoader: assert hashes is not None if self.require_secure_hashes: insecure = list(filter(lambda x: not is_hash_secure(x), hashes)) - if insecure: + if insecure or not hashes: raise ManifestInsecureHashes(insecure) manifest_filenames = get_potential_compressed_names('Manifest') diff --git a/gemato/verify.py b/gemato/verify.py index 1a951c0..8e6cbd1 100644 --- a/gemato/verify.py +++ b/gemato/verify.py @@ -265,7 +265,7 @@ def update_entry_for_path(path, e, hashes=None, expected_dev=None, hashes = list(e.checksums) if require_secure_hashes: insecure = list(filter(lambda x: not is_hash_secure(x), hashes)) - if insecure: + if insecure or not hashes: raise ManifestInsecureHashes(insecure) with contextlib.closing(get_file_metadata(path, hashes)) as g: diff --git a/tests/test_openpgp.py b/tests/test_openpgp.py index d11e0c1..7b02e0e 100644 --- a/tests/test_openpgp.py +++ b/tests/test_openpgp.py @@ -986,7 +986,8 @@ def test_recursive_manifest_loader_require_secure(tmp_path, privkey_env, f.write(SIGNED_MANIFEST) ctx = (pytest.raises(ManifestInsecureHashes) - if insecure and sign is not False and require_secure is not False + if insecure is not None and sign is not False + and require_secure is not False else contextlib.nullcontext()) with ctx: m = ManifestRecursiveLoader(tmp_path / "Manifest", @@ -1023,7 +1024,7 @@ def test_update_require_secure_cli(base_tree, caplog, hashes_arg, if str(OpenPGPNoImplementation('install gpg')) in caplog.text: pytest.skip('OpenPGP implementation missing') - expected = (1 if insecure and sign != "--no-sign" + expected = (1 if insecure is not None and sign != "--no-sign" and require_secure != "--no-require-secure_hashes" else 0) assert retval == expected diff --git a/tests/test_recursiveloader.py b/tests/test_recursiveloader.py index 860bace..ed24d03 100644 --- a/tests/test_recursiveloader.py +++ b/tests/test_recursiveloader.py @@ -2467,6 +2467,7 @@ INSECURE_HASH_TESTS = [ ("SHA1", ["SHA1"]), ("SHA512", None), ("SHA1 SHA512", ["SHA1"]), + ("", []), ] @@ -2474,7 +2475,7 @@ INSECURE_HASH_TESTS = [ def test_insecure_hashes(layout_factory, hashes_arg, insecure): layout = BasicTestLayout tmp_path = layout_factory.create(layout) - ctx = (pytest.raises(ManifestInsecureHashes) if insecure + ctx = (pytest.raises(ManifestInsecureHashes) if insecure is not None else contextlib.nullcontext()) with ctx: ManifestRecursiveLoader(tmp_path / layout.TOP_MANIFEST, @@ -2497,7 +2498,7 @@ def test_insecure_hashes_update(layout_factory, hashes_arg, insecure, func, hashes=["SHA512"], allow_xdev=False, require_secure_hashes=True) - ctx = (pytest.raises(ManifestInsecureHashes) if insecure + ctx = (pytest.raises(ManifestInsecureHashes) if insecure is not None else contextlib.nullcontext()) with ctx: func(m, arg, hashes=hashes_arg.split()) @@ -2519,7 +2520,7 @@ def test_insecure_hashes_update_cli(layout_factory, caplog, hashes_arg, insecure, command): layout = BasicTestLayout tmp_path = layout_factory.create(layout) - expected = 1 if insecure else 0 + expected = 1 if insecure is not None else 0 assert gemato.cli.main(["gemato", command, "--hashes", hashes_arg, "--require-secure-hashes", "--force-rewrite", str(tmp_path)]) == expected diff --git a/tests/test_verify.py b/tests/test_verify.py index 43f2830..f54cd74 100644 --- a/tests/test_verify.py +++ b/tests/test_verify.py @@ -458,6 +458,9 @@ def test_unreadable_file(test_tree, function, args): ("MD5", "SHA1 SHA512", True), ("MD5", "SHA512", False), ("SHA512", "MD5 SHA512", True), + ("", None, True), + ("", "SHA512", False), + ("SHA512", "", True), ]) def test_insecure_hashes(test_tree, entry_hash, hashes_arg, insecure): ctx = (pytest.raises(ManifestInsecureHashes) if insecure @@ -465,8 +468,9 @@ def test_insecure_hashes(test_tree, entry_hash, hashes_arg, insecure): with ctx: update_entry_for_path( test_tree / "empty-file", - new_manifest_entry("DATA", "empty-file", 0, {entry_hash: ""}), - hashes=hashes_arg.split() if hashes_arg else None, + new_manifest_entry("DATA", "empty-file", 0, + {entry_hash: ""} if entry_hash else {}), + hashes=hashes_arg.split() if hashes_arg is not None else None, require_secure_hashes=True) |