Add test that no use_policy is not fatal yet
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
This commit is contained in:
parent
b78c7d53ed
commit
480cf9fe29
|
@ -10,9 +10,10 @@ cargo build || (echo "Failed to build"; exit 1)
|
||||||
../../clevis-pin-tpm2-signtool/clevis-pin-tpm2-signtool <policy_working.yaml >policy_working.json
|
../../clevis-pin-tpm2-signtool/clevis-pin-tpm2-signtool <policy_working.yaml >policy_working.json
|
||||||
../../clevis-pin-tpm2-signtool/clevis-pin-tpm2-signtool <policy_broken.yaml >policy_broken.json
|
../../clevis-pin-tpm2-signtool/clevis-pin-tpm2-signtool <policy_broken.yaml >policy_broken.json
|
||||||
)
|
)
|
||||||
echo "Working: with Policy" | ./target/debug/clevis-pin-tpm2 encrypt '{"policy_pubkey_path":"./tests/publickey.json", "policy_ref": "", "policy_path": "./tests/policy_working.json"}' | ./target/debug/clevis-pin-tpm2 decrypt
|
echo "Working: with Policy" | ./target/debug/clevis-pin-tpm2 encrypt '{"use_policy": true, "policy_pubkey_path":"./tests/publickey.json", "policy_ref": "", "policy_path": "./tests/policy_working.json"}' | ./target/debug/clevis-pin-tpm2 decrypt
|
||||||
|
echo "Working: with Policy (no use_policy)" | ./target/debug/clevis-pin-tpm2 encrypt '{"policy_pubkey_path":"./tests/publickey.json", "policy_ref": "", "policy_path": "./tests/policy_working.json"}' | ./target/debug/clevis-pin-tpm2 decrypt
|
||||||
# Negative test (non-valid policy)
|
# Negative test (non-valid policy)
|
||||||
token=$(echo Failed | ./target/debug/clevis-pin-tpm2 encrypt '{"policy_pubkey_path":"./tests/publickey.json", "policy_ref": "", "policy_path": "./tests/policy_broken.json"}')
|
token=$(echo Failed | ./target/debug/clevis-pin-tpm2 encrypt '{"use_policy": true, "policy_pubkey_path":"./tests/publickey.json", "policy_ref": "", "policy_path": "./tests/policy_broken.json"}')
|
||||||
res=$(echo "$token" | ./target/debug/clevis-pin-tpm2 decrypt 2>&1)
|
res=$(echo "$token" | ./target/debug/clevis-pin-tpm2 decrypt 2>&1)
|
||||||
ret=$?
|
ret=$?
|
||||||
if [ $ret == 0 -a "$res" == "Failed" ]
|
if [ $ret == 0 -a "$res" == "Failed" ]
|
||||||
|
|
Loading…
Reference in a new issue