smimesign/command_sign_test.go

183 строки
4.7 KiB
Go
Исходник Обычный вид История

package main
import (
"crypto/x509"
"testing"
"github.com/mastahyeti/cms"
"github.com/mastahyeti/cms/protocol"
"github.com/stretchr/testify/require"
)
func TestSign(t *testing.T) {
defer testSetup(t, "--sign", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
sd, err := cms.ParseSignedData(stdoutBuf.Bytes())
require.NoError(t, err)
_, err = sd.Verify(x509.VerifyOptions{Roots: ca.ChainPool()})
require.NoError(t, err)
}
func TestSignIncludeCertsDefault(t *testing.T) {
defer testSetup(t, "--sign", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 2, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
}
func TestSignIncludeCertsMinus2(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=-2", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 2, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
}
func TestSignIncludeCertsMinus1(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=-1", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 3, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
require.True(t, certs[2].Equal(ca.Certificate))
}
func TestSignIncludeCerts0(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=0", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 0, len(certs))
}
func TestSignIncludeCerts1(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=1", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 1, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
}
func TestSignIncludeCerts2(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=2", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 2, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
}
func TestSignIncludeCerts3(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=3", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 3, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
require.True(t, certs[2].Equal(ca.Certificate))
}
func TestSignIncludeCerts4(t *testing.T) {
defer testSetup(t, "--sign", "--include-certs=4", "-u", certHexFingerprint(leaf.Certificate))()
stdinBuf.WriteString("hello, world!")
commandSign()
ci, err := protocol.ParseContentInfo(stdoutBuf.Bytes())
require.NoError(t, err)
sd, err := ci.SignedDataContent()
require.NoError(t, err)
certs, err := sd.X509Certificates()
require.NoError(t, err)
require.Equal(t, 3, len(certs))
require.True(t, certs[0].Equal(leaf.Certificate))
require.True(t, certs[1].Equal(intermediate.Certificate))
require.True(t, certs[2].Equal(ca.Certificate))
}