go-dhparam/generator_test.go

package dhparam

import (
	"bytes"
	"context"
	"fmt"
	"os"
	"os/exec"
	"strings"
	"testing"
	"time"
)

//nolint:errcheck,gosec,revive
func opensslOutput(r GeneratorResult) {
	switch r {
	case GeneratorFoundPossiblePrime:
		os.Stderr.WriteString(".")
	case GeneratorFirstConfirmation:
		os.Stderr.WriteString("+")
	case GeneratorSafePrimeFound:
		os.Stderr.WriteString("*\n")
	}
}

func execGeneratorIntegration(t *testing.T, bitsize int, generator Generator) {
	dh, err := Generate(bitsize, generator, opensslOutput)
	if err != nil {
		t.Fatalf("Unable to generate DH params: %s", err)
	}

	pem, err := dh.ToPEM()
	if err != nil {
		t.Fatalf("Unable to generate PEM encoded version: %s", err)
	}

	buf := new(bytes.Buffer)

	f, err := os.CreateTemp("", "dhparam.*")
	if err != nil {
		t.Fatalf("Unable to create tempfile: %s", err)
	}
	defer os.Remove(f.Name()) //nolint:errcheck

	if _, err = f.Write(pem); err != nil {
		t.Fatalf("Unable to write tempfile: %s", err)
	}

	f.Close() //nolint:errcheck,gosec,revive

	cmd := exec.Command("openssl", "dhparam", "-inform", "PEM", "-in", f.Name(), "-check", "-noout", "-text") //#nosec:G204 // Only for tests
	cmd.Stdin = bytes.NewReader(pem)
	cmd.Stdout = buf
	cmd.Stderr = buf

	if err := cmd.Run(); err != nil {
		t.Errorf("Validation command was not successful: %s", err)
	}

	result := buf.String()
	fullOutput := false

	for _, expect := range []string{
		fmt.Sprintf("DH Parameters: (%d bit)", bitsize),
		"DH parameters appear to be ok.",
		fmt.Sprintf("G:    %d (0x%x)", generator, generator),
	} {
		if !strings.Contains(result, expect) {
			t.Errorf("Did not find expected OpenSSL output: %q", expect)
			fullOutput = true
		}
	}

	if fullOutput {
		t.Logf("Received OpenSSL output:\n%s", result)
	}
}

func TestGenerator512bit(t *testing.T) {
	execGeneratorIntegration(t, 512, GeneratorTwo)
}

func TestGenerator1024bit(t *testing.T) {
	execGeneratorIntegration(t, 1024, GeneratorTwo)
}

func TestGenerator2048bit(t *testing.T) {
	execGeneratorIntegration(t, 2048, GeneratorTwo)
}

func TestGeneratorInterrupt(t *testing.T) {
	start := time.Now()
	ctx, cancel := context.WithTimeout(context.TODO(), 100*time.Millisecond)
	dh, err := GenerateWithContext(ctx, 4096, GeneratorTwo, nil)
	cancel()
	duration := time.Since(start)
	if duration > 1*time.Second {
		t.Fatal("Function was not canceled early")
	}
	if err != context.DeadlineExceeded {
		t.Fatal("Expected error to be context.DeadlineExceeded")
	}
	if dh != nil {
		t.Fatal("Expected result to be nil")
	}
}

func TestGenerator5(t *testing.T) {
	execGeneratorIntegration(t, 512, GeneratorFive)
}
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`package dhparam`

			`import (`
			`"bytes"`
Added GenerateWithContext (#2) 2020-05-04 15:59:29 +00:00			`"context"`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`"fmt"`
Older OpenSSL versions do not accept "-" as input Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:45:02 +00:00			`"os"`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`"os/exec"`
			`"strings"`
			`"testing"`
Added GenerateWithContext (#2) 2020-05-04 15:59:29 +00:00			`"time"`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`)`

Fix linter errors, update required Go version 2024-09-20 08:08:32 +00:00			`//nolint:errcheck,gosec,revive`
Test: Keep travis awake by sending output Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 10:27:44 +00:00			`func opensslOutput(r GeneratorResult) {`
			`switch r {`
			`case GeneratorFoundPossiblePrime:`
			`os.Stderr.WriteString(".")`
			`case GeneratorFirstConfirmation:`
			`os.Stderr.WriteString("+")`
			`case GeneratorSafePrimeFound:`
			`os.Stderr.WriteString("*\n")`
			`}`
			`}`

Switch to enum Generator value Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:33:53 +00:00			`func execGeneratorIntegration(t *testing.T, bitsize int, generator Generator) {`
Test: Keep travis awake by sending output Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 10:27:44 +00:00			`dh, err := Generate(bitsize, generator, opensslOutput)`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`if err != nil {`
			`t.Fatalf("Unable to generate DH params: %s", err)`
			`}`

			`pem, err := dh.ToPEM()`
			`if err != nil {`
			`t.Fatalf("Unable to generate PEM encoded version: %s", err)`
			`}`

			`buf := new(bytes.Buffer)`

Update minimum Go version and use stdlib error-wrapping (#3) 2023-02-10 15:45:24 +00:00			`f, err := os.CreateTemp("", "dhparam.*")`
Older OpenSSL versions do not accept "-" as input Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:45:02 +00:00			`if err != nil {`
			`t.Fatalf("Unable to create tempfile: %s", err)`
			`}`
Fix linter errors, update required Go version 2024-09-20 08:08:32 +00:00			`defer os.Remove(f.Name()) //nolint:errcheck`
Older OpenSSL versions do not accept "-" as input Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:45:02 +00:00
			`if _, err = f.Write(pem); err != nil {`
			`t.Fatalf("Unable to write tempfile: %s", err)`
			`}`

Fix linter errors, update required Go version 2024-09-20 08:08:32 +00:00			`f.Close() //nolint:errcheck,gosec,revive`
Older OpenSSL versions do not accept "-" as input Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:45:02 +00:00
Fix linter errors, update required Go version 2024-09-20 08:08:32 +00:00			`cmd := exec.Command("openssl", "dhparam", "-inform", "PEM", "-in", f.Name(), "-check", "-noout", "-text") //#nosec:G204 // Only for tests`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`cmd.Stdin = bytes.NewReader(pem)`
			`cmd.Stdout = buf`
			`cmd.Stderr = buf`

			`if err := cmd.Run(); err != nil {`
			`t.Errorf("Validation command was not successful: %s", err)`
			`}`

			`result := buf.String()`
			`fullOutput := false`

			`for _, expect := range []string{`
			`fmt.Sprintf("DH Parameters: (%d bit)", bitsize),`
			`"DH parameters appear to be ok.",`
Test: Adopt expected output to new OpenSSL version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2023-02-10 15:50:23 +00:00			`fmt.Sprintf("G: %d (0x%x)", generator, generator),`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`} {`
			`if !strings.Contains(result, expect) {`
			`t.Errorf("Did not find expected OpenSSL output: %q", expect)`
			`fullOutput = true`
			`}`
			`}`

			`if fullOutput {`
			`t.Logf("Received OpenSSL output:\n%s", result)`
			`}`
			`}`

			`func TestGenerator512bit(t *testing.T) {`
Switch to enum Generator value Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:33:53 +00:00			`execGeneratorIntegration(t, 512, GeneratorTwo)`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`}`

			`func TestGenerator1024bit(t *testing.T) {`
Switch to enum Generator value Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:33:53 +00:00			`execGeneratorIntegration(t, 1024, GeneratorTwo)`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`}`

			`func TestGenerator2048bit(t *testing.T) {`
Switch to enum Generator value Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:33:53 +00:00			`execGeneratorIntegration(t, 2048, GeneratorTwo)`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`}`

Added GenerateWithContext (#2) 2020-05-04 15:59:29 +00:00			`func TestGeneratorInterrupt(t *testing.T) {`
			`start := time.Now()`
			`ctx, cancel := context.WithTimeout(context.TODO(), 100*time.Millisecond)`
			`dh, err := GenerateWithContext(ctx, 4096, GeneratorTwo, nil)`
			`cancel()`
			`duration := time.Since(start)`
			`if duration > 1*time.Second {`
			`t.Fatal("Function was not canceled early")`
			`}`
			`if err != context.DeadlineExceeded {`
			`t.Fatal("Expected error to be context.DeadlineExceeded")`
			`}`
			`if dh != nil {`
			`t.Fatal("Expected result to be nil")`
			`}`
			`}`

Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`func TestGenerator5(t *testing.T) {`
Switch to enum Generator value Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-08 09:33:53 +00:00			`execGeneratorIntegration(t, 512, GeneratorFive)`
Initial version Signed-off-by: Knut Ahlers <knut@ahlers.me> 2018-10-07 23:07:43 +00:00			`}`