aboutsummaryrefslogtreecommitdiff
path: root/sign_request_test.go
blob: fef7db5f6b6a3db17a99c09f5baa0f4a817b34a5 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
package main

import (
  "bytes"
  "crypto/x509"
  "encoding/pem"
  "io/ioutil"
  "net"
  "testing"
)

type CSRTest struct {
  ShouldBe []string
  Set      func(*SignFlags)
  Fetch    func(*x509.CertificateRequest) []string
}

const (
  RAW_PRIVATE_KEY = `-----BEGIN EC PRIVATE KEY-----
MIHbAgEBBEFkAEFc5264Yo7Xo+yj3ZwaqdffTphGT3/8Q+pvi4ULmXaFiGoTkR5X
lKnlRUEp0I4Ra9U7GjLDtFLwTaLzdXuUT6AHBgUrgQQAI6GBiQOBhgAEAdW0usq0
zEzvhR0u5ZSbOXRzg+TbICZGfOLy9KpKfz6I6suFOAO7f3fwDNOqMfyYUhtenMz7
T/BKArg+v58UWHrwAb/UeI4l+OMOoMHYtNNO4nAjTdyY8yFSFY5syzKEYIBzUoLM
VSfuxBk5ZS2J478X1Vxacq03keDeAY43Oc80XBih
-----END EC PRIVATE KEY-----`
)

func SetupTest() (*SignFlags, *bytes.Buffer) {
  p, _ := pem.Decode([]byte(RAW_PRIVATE_KEY))
  buf := bytes.NewBuffer(make([]byte, 0))

  flags := &SignFlags{
    private_key: load_private_key_ecdsa(p),
    output_stream: buf,
  }
  return flags, buf
}

func TestCSRGeneration(t *testing.T) {
  tests := []CSRTest {
    {
      []string{"foo"},
      func(f *SignFlags) { f.BaseAttributes.CommonName = "foo" },
      func(c *x509.CertificateRequest) []string { return []string{c.Subject.CommonName} },
    }, {
      []string{"foo.com", "bar.com", "baz.com"},
      func(f *SignFlags) { f.DNSNames = []string{ "foo.com", "bar.com", "baz.com" }},
      func(c *x509.CertificateRequest) []string { return c.DNSNames },
    },
    {
      []string{"127.0.0.1", "192.168.0.1"},
      func(f *SignFlags) { f.IPAddresses = []net.IP{net.ParseIP("127.0.0.1"), net.ParseIP("192.168.0.1") }},
      func(c *x509.CertificateRequest) []string {
        res := make([]string, 0)
        for _, ip := range c.IPAddresses {
          res = append(res, ip.String())
        }
        return res
      },
    },
  }
  for _, test := range tests {
    flags, io := SetupTest()
    test.Set(flags)

    create_csr(*flags)
    res, _ := ioutil.ReadAll(io)
    raw, _ := pem.Decode(res)

    csr, _ := x509.ParseCertificateRequest(raw.Bytes)
    if !diff(test.ShouldBe, test.Fetch(csr)) {
      t.Logf("Expected: %v\nbut got: %v", test.ShouldBe, test.Fetch(csr))
      t.Fail()
    }
  }
}

func diff(a, b []string) bool {
  if len(a) != len(b) { return false }
  for i, e := range a {
    if e != b[i] { return false }
  }
  return true
}