mirror of
https://git.code.sf.net/p/linux-ima/ima-evm-utils
synced 2025-04-28 14:43:37 +02:00
ima-evm-utils: Add test for sigfile reading
Test reading of detached IMA signature (--sigfile). Suggested-by: Mimi Zohar <zohar@linux.ibm.com> Signed-off-by: Vitaly Chikunov <vt@altlinux.org> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
This commit is contained in:
Vitaly Chikunov
Mimi Zohar
parent
19b77c8667
commit
2b2a3623c1
@ -100,7 +100,8 @@ _test_sigfile() {
|
|||||||
return "$FAIL"
|
return "$FAIL"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
rm "$file_sig" "$file_sig2"
|
# Leave '$file_sig' for ima_verify --sigfile test.
|
||||||
|
rm "$file_sig2"
|
||||||
}
|
}
|
||||||
|
|
||||||
# Run single sign command
|
# Run single sign command
|
||||||
@ -261,9 +262,12 @@ sign_verify() {
|
|||||||
|
|
||||||
# Normal verify with proper key should pass
|
# Normal verify with proper key should pass
|
||||||
expect_pass check_verify
|
expect_pass check_verify
|
||||||
|
expect_pass check_verify OPTS="--sigfile"
|
||||||
|
|
||||||
# Multiple files and some don't verify
|
# Multiple files and some don't verify
|
||||||
expect_fail check_verify FILE="/dev/null $file"
|
expect_fail check_verify FILE="/dev/null $file"
|
||||||
|
|
||||||
|
rm "$FILE.sig"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
TYPE=evm
|
TYPE=evm
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user