oil AST

(command.CommandList
  children: [
    (command.Assignment
      keyword: Assign_None
      pairs: [
        (assign_pair
          lhs: (lhs_expr.LhsName name:test_description spids:[12])
          op: Equal
          rhs: {(SQ <'merge signature verification tests'>)}
          spids: [12]
        )
      ]
      spids: [12]
    )
    (C {(.)} {(./test-lib.sh)})
    (C {(.)} {(DQ ($ VSub_Name '$TEST_DIRECTORY') (/lib-gpg.sh))})
    (C {(test_expect_success)} {(GPG)} {(SQ <'create signed commits'>)} 
      {
        (SQ <'\n'> <'\techo 1 >file && git add file &&\n'> 
          <'\ttest_tick && git commit -m initial &&\n'> <'\tgit tag initial &&\n'> <'\n'> <'\tgit checkout -b side-signed &&\n'> 
          <'\techo 3 >elif && git add elif &&\n'> <'\ttest_tick && git commit -S -m "signed on side" &&\n'> <'\tgit checkout initial &&\n'> <'\n'> 
          <'\tgit checkout -b side-unsigned &&\n'> <'\techo 3 >foo && git add foo &&\n'> <'\ttest_tick && git commit -m "unsigned on side" &&\n'> 
          <'\tgit checkout initial &&\n'> <'\n'> <'\tgit checkout -b side-bad &&\n'> <'\techo 3 >bar && git add bar &&\n'> 
          <'\ttest_tick && git commit -S -m "bad on side" &&\n'> <'\tgit cat-file commit side-bad >raw &&\n'> <'\tsed -e "s/bad/forged bad/" raw >forged &&\n'> 
          <'\tgit hash-object -w -t commit forged >forged.commit &&\n'> <'\tgit checkout initial &&\n'> <'\n'> <'\tgit checkout -b side-untrusted &&\n'> 
          <'\techo 3 >baz && git add baz &&\n'> <'\ttest_tick && git commit -SB7227189 -m "untrusted on side" &&\n'> <'\n'> <'\tgit checkout master\n'>
        )
      }
    )
    (C {(test_expect_success)} {(GPG)} {(SQ <'merge unsigned commit with verification'>)} 
      {
        (SQ <'\n'> 
          <
'\ttest_must_fail git merge --ff-only --verify-signatures side-unsigned 2>mergeerror &&\n'
          > <'\ttest_i18ngrep "does not have a GPG signature" mergeerror\n'>
        )
      }
    )
    (C {(test_expect_success)} {(GPG)} {(SQ <'merge commit with bad signature with verification'>)} 
      {
        (SQ <'\n'> 
          <
'\ttest_must_fail git merge --ff-only --verify-signatures $(cat forged.commit) 2>mergeerror &&\n'
          > <'\ttest_i18ngrep "has a bad GPG signature" mergeerror\n'>
        )
      }
    )
    (C {(test_expect_success)} {(GPG)} {(SQ <'merge commit with untrusted signature with verification'>)} 
      {
        (SQ <'\n'> 
          <
'\ttest_must_fail git merge --ff-only --verify-signatures side-untrusted 2>mergeerror &&\n'
          > <'\ttest_i18ngrep "has an untrusted GPG signature" mergeerror\n'>
        )
      }
    )
    (C {(test_expect_success)} {(GPG)} {(SQ <'merge signed commit with verification'>)} 
      {
        (SQ <'\n'> 
          <'\tgit merge --verbose --ff-only --verify-signatures side-signed >mergeoutput &&\n'> <'\ttest_i18ngrep "has a good GPG signature" mergeoutput\n'>
        )
      }
    )
    (C {(test_expect_success)} {(GPG)} {(SQ <'merge commit with bad signature without verification'>)} 
      {(SQ <'\n'> <'\tgit merge $(cat forged.commit)\n'>)}
    )
    (C {(test_done)})
  ]
)