Add test case for ima file signatures

Resolves: rpm-software-management#3237
ffesti · Nov 20, 2024 · 39df85d · 39df85d
1 parent 5d3a6c4
commit 39df85d
Show file tree

Hide file tree

Showing 2 changed files with 25 additions and 0 deletions.
diff --git a/tests/data/keys/privkey.pem b/tests/data/keys/privkey.pem
@@ -0,0 +1,5 @@
+-----BEGIN EC PRIVATE KEY-----
+MHQCAQEEIAqhMWlmwcHwa2pXlyxUfPUvKMdrHHxGAkKz0EfHrlZpoAcGBSuBBAAK
+oUQDQgAEhJIpSysqJlsr0+nAwQDYaqk4hkLmU+2Pje5jCpI6QfakJD+bVrXqF+5Z
+xbwEh+e+lrhDLfj9+jJTOda4WD83Ng==
+-----END EC PRIVATE KEY-----
diff --git a/tests/rpmsigdig.at b/tests/rpmsigdig.at
@@ -1624,3 +1624,23 @@ POST-IMPORT
 
 gpgconf --kill gpg-agent
 RPMTEST_CLEANUP
+
+AT_SETUP([ima])
+AT_KEYWORDS([rpmsign file signature])
+
+RPMDB_INIT
+cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
+gpg2 --import ${RPMTEST}/data/keys/rpm.org-rsa-2048-test.secret
+runroot rpmsign --key-id 4344591E1964C5FC --addsign --signfiles --fskpath=/data/keys/privkey.pem /tmp/hello-2.0-1.x86_64.rpm
+
+RPMTEST_CHECK([
+runroot rpm -qp --qf "[%{filenames} %{filesignatures}\n]" /tmp/hello-2.0-1.x86_64.rpm | cut -c -20
+runroot rpm -qp --qf "[%{filenames} %{filesignatures}\n]" /data/RPMS/imatest-1.0-1.fc34.noarch.rpm
+],
+[0],
+[/usr/bin/hello 03020
+/usr/share/example1 030204a598255400483046022100e5117bdafa73baaeb1f1dc46ecaa46981a62d417745a33532572b63dc6d95d16022100c789107ac5b91e2d915e1df3c7b78414f6b3f50899d44c1de381d0e938dfc82b
+],
+[ignore])
+
+RPMTEST_CLEANUP