go.chromium.org/luci@v0.0.0-20240309015107-7cdc2e660f33/server/auth/signing/signingtest/signer_test.go

go.chromium.org/luci@v0.0.0-20240309015107-7cdc2e660f33/server/auth/signing/signingtest/signer_test.go (about)

     1  // Copyright 2015 The LUCI Authors.
     2  //
     3  // Licensed under the Apache License, Version 2.0 (the "License");
     4  // you may not use this file except in compliance with the License.
     5  // You may obtain a copy of the License at
     6  //
     7  //      http://www.apache.org/licenses/LICENSE-2.0
     8  //
     9  // Unless required by applicable law or agreed to in writing, software
    10  // distributed under the License is distributed on an "AS IS" BASIS,
    11  // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12  // See the License for the specific language governing permissions and
    13  // limitations under the License.
    14  
    15  package signingtest
    16  
    17  import (
    18  	"context"
    19  	"crypto/x509"
    20  	"testing"
    21  
    22  	. "github.com/smartystreets/goconvey/convey"
    23  )
    24  
    25  func TestSigner(t *testing.T) {
    26  	Convey("Works", t, func() {
    27  		ctx := context.Background()
    28  
    29  		s := NewSigner(nil)
    30  		certs, err := s.Certificates(ctx)
    31  		So(err, ShouldBeNil)
    32  		So(certs.Certificates, ShouldHaveLength, 1)
    33  
    34  		key, sig, err := s.SignBytes(ctx, []byte("some blob"))
    35  		So(err, ShouldBeNil)
    36  		So(key, ShouldEqual, certs.Certificates[0].KeyName)
    37  
    38  		// The signature can be verified.
    39  		cert, err := certs.CertificateForKey(key)
    40  		So(err, ShouldBeNil)
    41  		err = cert.CheckSignature(x509.SHA256WithRSA, []byte("some blob"), sig)
    42  		So(err, ShouldBeNil)
    43  	})
    44  }