mc/metacrypt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add comprehensive ACME test suite (60 tests, 2100 lines)

Browse Source 
Test coverage for the entire ACME server implementation:

- helpers_test.go: memBarrier, key generation, JWS/EAB signing, test fixtures
- nonce_test.go: issue/consume lifecycle, reuse rejection, concurrency
- jws_test.go: JWS parsing/verification (ES256, ES384, RS256), JWK parsing,
  RFC 7638 thumbprints, EAB HMAC verification, key authorization
- eab_test.go: EAB credential CRUD, account/order listing
- validate_test.go: HTTP-01 challenge validation with httptest servers,
  authorization/order state machine transitions
- handlers_test.go: full ACME protocol flow via chi router — directory,
  nonce, account creation with EAB, order creation, authorization retrieval,
  challenge triggering, finalize (order-not-ready), cert retrieval/revocation,
  CSR identifier validation

One production change: extract dnsResolver variable in validate.go for
DNS-01 test injection (no behavior change).

All 60 tests pass with -race. Full project vet and test clean.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Kyle Isom
2026-03-25 21:01:23 -07:00
parent 7f9e7f433f
commit 7749c035ae
8 changed files with 2101 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

176
internal/acme/eab_test.go Normal file
View File

@@ -0,0 +1,176 @@
package acme
import (
"context"
"encoding/json"
"testing"
"time"
)
func TestCreateEAB(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
cred, err := h.CreateEAB(ctx, "alice")
if err != nil {
t.Fatalf("CreateEAB() error: %v", err)
}
if cred.KID == "" {
t.Fatalf("expected non-empty KID")
}
if len(cred.HMACKey) != 32 {
t.Fatalf("expected 32-byte HMAC key, got %d bytes", len(cred.HMACKey))
}
if cred.Used {
t.Fatalf("expected Used=false for new credential")
}
if cred.CreatedBy != "alice" {
t.Fatalf("expected CreatedBy=alice, got %s", cred.CreatedBy)
}
if cred.CreatedAt.IsZero() {
t.Fatalf("expected non-zero CreatedAt")
}
}
func TestGetEAB(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
created, err := h.CreateEAB(ctx, "bob")
if err != nil {
t.Fatalf("CreateEAB() error: %v", err)
}
got, err := h.GetEAB(ctx, created.KID)
if err != nil {
t.Fatalf("GetEAB() error: %v", err)
}
if got.KID != created.KID {
t.Fatalf("KID mismatch: got %s, want %s", got.KID, created.KID)
}
if got.CreatedBy != "bob" {
t.Fatalf("CreatedBy mismatch: got %s, want bob", got.CreatedBy)
}
if len(got.HMACKey) != 32 {
t.Fatalf("expected 32-byte HMAC key, got %d bytes", len(got.HMACKey))
}
if got.Used != false {
t.Fatalf("expected Used=false, got true")
}
}
func TestGetEABNotFound(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
_, err := h.GetEAB(ctx, "nonexistent-kid")
if err == nil {
t.Fatalf("expected error for non-existent KID, got nil")
}
}
func TestMarkEABUsed(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
cred, err := h.CreateEAB(ctx, "carol")
if err != nil {
t.Fatalf("CreateEAB() error: %v", err)
}
if cred.Used {
t.Fatalf("expected Used=false before marking")
}
if err := h.MarkEABUsed(ctx, cred.KID); err != nil {
t.Fatalf("MarkEABUsed() error: %v", err)
}
got, err := h.GetEAB(ctx, cred.KID)
if err != nil {
t.Fatalf("GetEAB() after mark error: %v", err)
}
if !got.Used {
t.Fatalf("expected Used=true after marking, got false")
}
}
func TestListAccountsEmpty(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
accounts, err := h.ListAccounts(ctx)
if err != nil {
t.Fatalf("ListAccounts() error: %v", err)
}
if len(accounts) != 0 {
t.Fatalf("expected 0 accounts, got %d", len(accounts))
}
}
func TestListAccounts(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
// Store two accounts directly in the barrier.
for i, name := range []string{"user-a", "user-b"} {
acc := &Account{
ID: name,
Status: StatusValid,
Contact: []string{"mailto:" + name + "@example.com"},
JWK: []byte(`{"kty":"EC"}`),
CreatedAt: time.Now(),
MCIASUsername: name,
}
data, err := json.Marshal(acc)
if err != nil {
t.Fatalf("marshal account %d: %v", i, err)
}
path := h.barrierPrefix() + "accounts/" + name + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store account %d: %v", i, err)
}
}
accounts, err := h.ListAccounts(ctx)
if err != nil {
t.Fatalf("ListAccounts() error: %v", err)
}
if len(accounts) != 2 {
t.Fatalf("expected 2 accounts, got %d", len(accounts))
}
}
func TestListOrders(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
// Store two orders directly in the barrier.
for i, id := range []string{"order-1", "order-2"} {
order := &Order{
ID: id,
AccountID: "test-account",
Status: StatusPending,
Identifiers: []Identifier{{Type: IdentifierDNS, Value: "example.com"}},
AuthzIDs: []string{"authz-1"},
ExpiresAt: time.Now().Add(24 * time.Hour),
CreatedAt: time.Now(),
IssuerName: "test-issuer",
}
data, err := json.Marshal(order)
if err != nil {
t.Fatalf("marshal order %d: %v", i, err)
}
path := h.barrierPrefix() + "orders/" + id + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store order %d: %v", i, err)
}
}
orders, err := h.ListOrders(ctx)
if err != nil {
t.Fatalf("ListOrders() error: %v", err)
}
if len(orders) != 2 {
t.Fatalf("expected 2 orders, got %d", len(orders))
}
}

787
internal/acme/handlers_test.go Normal file
View File

@@ -0,0 +1,787 @@
package acme
import (
"bytes"
"context"
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
"crypto/x509"
"encoding/base64"
"encoding/json"
"io"
"net/http"
"net/http/httptest"
"strings"
"testing"
"time"
"github.com/go-chi/chi/v5"
)
// setupACMERouter creates a Handler with an in-memory barrier and registers all
// ACME routes on a chi router. All handler tests route through chi so that
// chi.URLParam works correctly.
func setupACMERouter(t *testing.T) (*Handler, chi.Router) {
t.Helper()
h := testHandler(t)
r := chi.NewRouter()
h.RegisterRoutes(r)
return h, r
}
// doACME sends an HTTP request through the chi router and returns the recorder.
func doACME(t *testing.T, r chi.Router, method, path string, body []byte) *httptest.ResponseRecorder {
t.Helper()
var bodyReader io.Reader
if body != nil {
bodyReader = bytes.NewReader(body)
}
req := httptest.NewRequest(method, path, bodyReader)
w := httptest.NewRecorder()
r.ServeHTTP(w, req)
return w
}
// --- Directory ---
func TestHandleDirectory(t *testing.T) {
_, r := setupACMERouter(t)
w := doACME(t, r, http.MethodGet, "/directory", nil)
if w.Code != http.StatusOK {
t.Fatalf("expected 200, got %d", w.Code)
}
if ct := w.Header().Get("Content-Type"); ct != "application/json" {
t.Fatalf("expected Content-Type application/json, got %s", ct)
}
var dir directoryResponse
if err := json.Unmarshal(w.Body.Bytes(), &dir); err != nil {
t.Fatalf("unmarshal directory: %v", err)
}
base := "https://acme.test/acme/test-pki"
if dir.NewNonce != base+"/new-nonce" {
t.Fatalf("newNonce = %s, want %s/new-nonce", dir.NewNonce, base)
}
if dir.NewAccount != base+"/new-account" {
t.Fatalf("newAccount = %s, want %s/new-account", dir.NewAccount, base)
}
if dir.NewOrder != base+"/new-order" {
t.Fatalf("newOrder = %s, want %s/new-order", dir.NewOrder, base)
}
if dir.RevokeCert != base+"/revoke-cert" {
t.Fatalf("revokeCert = %s, want %s/revoke-cert", dir.RevokeCert, base)
}
if dir.Meta == nil {
t.Fatalf("meta is nil")
}
if !dir.Meta.ExternalAccountRequired {
t.Fatalf("externalAccountRequired should be true")
}
}
// --- Nonce endpoints ---
func TestHandleNewNonceHEAD(t *testing.T) {
_, r := setupACMERouter(t)
w := doACME(t, r, http.MethodHead, "/new-nonce", nil)
if w.Code != http.StatusOK {
t.Fatalf("expected 200, got %d", w.Code)
}
if nonce := w.Header().Get("Replay-Nonce"); nonce == "" {
t.Fatalf("Replay-Nonce header missing")
}
if cc := w.Header().Get("Cache-Control"); cc != "no-store" {
t.Fatalf("Cache-Control = %q, want no-store", cc)
}
}
func TestHandleNewNonceGET(t *testing.T) {
_, r := setupACMERouter(t)
w := doACME(t, r, http.MethodGet, "/new-nonce", nil)
if w.Code != http.StatusNoContent {
t.Fatalf("expected 204, got %d", w.Code)
}
if nonce := w.Header().Get("Replay-Nonce"); nonce == "" {
t.Fatalf("Replay-Nonce header missing")
}
}
// --- New Account ---
func TestHandleNewAccountSuccess(t *testing.T) {
h, r := setupACMERouter(t)
ctx := context.Background()
// Generate a key pair for the new account.
key, jwk := generateES256Key(t)
// Create an EAB credential.
eab, err := h.CreateEAB(ctx, "testuser")
if err != nil {
t.Fatalf("create EAB: %v", err)
}
// Build EAB inner JWS.
eabJWS := signEAB(t, eab.KID, eab.HMACKey, jwk)
// Build outer payload with EAB.
payload, err := json.Marshal(newAccountPayload{
TermsOfServiceAgreed: true,
Contact: []string{"mailto:test@example.com"},
ExternalAccountBinding: eabJWS,
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
nonce := getNonce(t, h)
header := JWSHeader{
Alg: "ES256",
Nonce: nonce,
URL: "https://acme.test/acme/test-pki/new-account",
JWK: jwk,
}
body := signJWS(t, key, "ES256", header, payload)
w := doACME(t, r, http.MethodPost, "/new-account", body)
if w.Code != http.StatusCreated {
t.Fatalf("expected 201, got %d; body: %s", w.Code, w.Body.String())
}
loc := w.Header().Get("Location")
if loc == "" {
t.Fatalf("Location header missing")
}
if !strings.HasPrefix(loc, "https://acme.test/acme/test-pki/account/") {
t.Fatalf("Location = %s, want prefix https://acme.test/acme/test-pki/account/", loc)
}
var resp map[string]interface{}
if err := json.Unmarshal(w.Body.Bytes(), &resp); err != nil {
t.Fatalf("unmarshal response: %v", err)
}
if resp["status"] != StatusValid {
t.Fatalf("status = %v, want %s", resp["status"], StatusValid)
}
}
func TestHandleNewAccountMissingEAB(t *testing.T) {
h, r := setupACMERouter(t)
key, jwk := generateES256Key(t)
// Payload with no externalAccountBinding.
payload, err := json.Marshal(newAccountPayload{
TermsOfServiceAgreed: true,
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
nonce := getNonce(t, h)
header := JWSHeader{
Alg: "ES256",
Nonce: nonce,
URL: "https://acme.test/acme/test-pki/new-account",
JWK: jwk,
}
body := signJWS(t, key, "ES256", header, payload)
w := doACME(t, r, http.MethodPost, "/new-account", body)
if w.Code != http.StatusBadRequest {
t.Fatalf("expected 400, got %d; body: %s", w.Code, w.Body.String())
}
if !strings.Contains(w.Body.String(), "externalAccountRequired") {
t.Fatalf("response should mention externalAccountRequired, got: %s", w.Body.String())
}
}
func TestHandleNewAccountBadNonce(t *testing.T) {
_, r := setupACMERouter(t)
key, jwk := generateES256Key(t)
payload, err := json.Marshal(newAccountPayload{
TermsOfServiceAgreed: true,
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
// Use a random nonce that was never issued.
header := JWSHeader{
Alg: "ES256",
Nonce: "never-issued-fake-nonce",
URL: "https://acme.test/acme/test-pki/new-account",
JWK: jwk,
}
body := signJWS(t, key, "ES256", header, payload)
w := doACME(t, r, http.MethodPost, "/new-account", body)
if w.Code != http.StatusBadRequest {
t.Fatalf("expected 400, got %d; body: %s", w.Code, w.Body.String())
}
if !strings.Contains(w.Body.String(), "badNonce") {
t.Fatalf("response should contain badNonce, got: %s", w.Body.String())
}
}
// --- New Order ---
// buildKIDJWS creates a JWS signed with KID authentication (for all requests
// except new-account). The KID is the full account URL.
func buildKIDJWS(t *testing.T, h *Handler, key *ecdsa.PrivateKey, accID, url string, payload []byte) []byte {
t.Helper()
nonce := getNonce(t, h)
header := JWSHeader{
Alg: "ES256",
Nonce: nonce,
URL: url,
KID: h.accountURL(accID),
}
return signJWS(t, key, "ES256", header, payload)
}
func TestHandleNewOrderSuccess(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
payload, err := json.Marshal(newOrderPayload{
Identifiers: []Identifier{{Type: IdentifierDNS, Value: "example.com"}},
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
url := "https://acme.test/acme/test-pki/new-order"
body := buildKIDJWS(t, h, key, acc.ID, url, payload)
w := doACME(t, r, http.MethodPost, "/new-order", body)
if w.Code != http.StatusCreated {
t.Fatalf("expected 201, got %d; body: %s", w.Code, w.Body.String())
}
var resp map[string]interface{}
if err := json.Unmarshal(w.Body.Bytes(), &resp); err != nil {
t.Fatalf("unmarshal response: %v", err)
}
if resp["status"] == nil {
t.Fatalf("response missing 'status'")
}
if resp["identifiers"] == nil {
t.Fatalf("response missing 'identifiers'")
}
authzs, ok := resp["authorizations"].([]interface{})
if !ok || len(authzs) == 0 {
t.Fatalf("expected at least 1 authorization URL, got %v", resp["authorizations"])
}
if resp["finalize"] == nil {
t.Fatalf("response missing 'finalize'")
}
finalize, ok := resp["finalize"].(string)
if !ok || !strings.HasPrefix(finalize, "https://acme.test/acme/test-pki/finalize/") {
t.Fatalf("finalize = %v, want prefix https://acme.test/acme/test-pki/finalize/", finalize)
}
}
func TestHandleNewOrderMultipleIdentifiers(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
payload, err := json.Marshal(newOrderPayload{
Identifiers: []Identifier{
{Type: IdentifierDNS, Value: "example.com"},
{Type: IdentifierDNS, Value: "www.example.com"},
},
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
url := "https://acme.test/acme/test-pki/new-order"
body := buildKIDJWS(t, h, key, acc.ID, url, payload)
w := doACME(t, r, http.MethodPost, "/new-order", body)
if w.Code != http.StatusCreated {
t.Fatalf("expected 201, got %d; body: %s", w.Code, w.Body.String())
}
var resp map[string]interface{}
if err := json.Unmarshal(w.Body.Bytes(), &resp); err != nil {
t.Fatalf("unmarshal response: %v", err)
}
authzs, ok := resp["authorizations"].([]interface{})
if !ok {
t.Fatalf("authorizations is not an array: %v", resp["authorizations"])
}
if len(authzs) != 2 {
t.Fatalf("expected 2 authorization URLs, got %d", len(authzs))
}
}
func TestHandleNewOrderEmptyIdentifiers(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
payload, err := json.Marshal(newOrderPayload{
Identifiers: []Identifier{},
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
url := "https://acme.test/acme/test-pki/new-order"
body := buildKIDJWS(t, h, key, acc.ID, url, payload)
w := doACME(t, r, http.MethodPost, "/new-order", body)
if w.Code != http.StatusBadRequest {
t.Fatalf("expected 400, got %d; body: %s", w.Code, w.Body.String())
}
}
func TestHandleNewOrderUnsupportedType(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
payload, err := json.Marshal(newOrderPayload{
Identifiers: []Identifier{{Type: "email", Value: "user@example.com"}},
})
if err != nil {
t.Fatalf("marshal payload: %v", err)
}
url := "https://acme.test/acme/test-pki/new-order"
body := buildKIDJWS(t, h, key, acc.ID, url, payload)
w := doACME(t, r, http.MethodPost, "/new-order", body)
if w.Code != http.StatusBadRequest {
t.Fatalf("expected 400, got %d; body: %s", w.Code, w.Body.String())
}
if !strings.Contains(w.Body.String(), "unsupportedIdentifier") {
t.Fatalf("response should contain unsupportedIdentifier, got: %s", w.Body.String())
}
}
// --- Get Authorization ---
// createTestOrder creates an account and an order in the barrier, returning all
// the objects needed for subsequent tests.
func createTestOrder(t *testing.T, h *Handler, domains ...string) (*Account, *ecdsa.PrivateKey, *Order) {
t.Helper()
ctx := context.Background()
acc, key, _ := createTestAccount(t, h)
if len(domains) == 0 {
domains = []string{"example.com"}
}
var identifiers []Identifier
var authzIDs []string
for _, domain := range domains {
authzID := newID()
authzIDs = append(authzIDs, authzID)
httpChallID := newID()
dnsChallID := newID()
httpChall := &Challenge{
ID: httpChallID,
AuthzID: authzID,
Type: ChallengeHTTP01,
Status: StatusPending,
Token: newToken(),
}
dnsChall := &Challenge{
ID: dnsChallID,
AuthzID: authzID,
Type: ChallengeDNS01,
Status: StatusPending,
Token: newToken(),
}
identifier := Identifier{Type: IdentifierDNS, Value: domain}
identifiers = append(identifiers, identifier)
authz := &Authorization{
ID: authzID,
AccountID: acc.ID,
Status: StatusPending,
Identifier: identifier,
ChallengeIDs: []string{httpChallID, dnsChallID},
ExpiresAt: time.Now().Add(7 * 24 * time.Hour),
}
challPrefix := h.barrierPrefix() + "challenges/"
authzPrefix := h.barrierPrefix() + "authz/"
httpData, _ := json.Marshal(httpChall)
dnsData, _ := json.Marshal(dnsChall)
authzData, _ := json.Marshal(authz)
if err := h.barrier.Put(ctx, challPrefix+httpChallID+".json", httpData); err != nil {
t.Fatalf("store http challenge: %v", err)
}
if err := h.barrier.Put(ctx, challPrefix+dnsChallID+".json", dnsData); err != nil {
t.Fatalf("store dns challenge: %v", err)
}
if err := h.barrier.Put(ctx, authzPrefix+authzID+".json", authzData); err != nil {
t.Fatalf("store authz: %v", err)
}
}
orderID := newID()
order := &Order{
ID: orderID,
AccountID: acc.ID,
Status: StatusPending,
Identifiers: identifiers,
AuthzIDs: authzIDs,
ExpiresAt: time.Now().Add(7 * 24 * time.Hour),
CreatedAt: time.Now(),
IssuerName: "test-issuer",
}
orderData, _ := json.Marshal(order)
if err := h.barrier.Put(ctx, h.barrierPrefix()+"orders/"+orderID+".json", orderData); err != nil {
t.Fatalf("store order: %v", err)
}
return acc, key, order
}
func TestHandleGetAuthzSuccess(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, order := createTestOrder(t, h)
authzID := order.AuthzIDs[0]
reqURL := "https://acme.test/acme/test-pki/authz/" + authzID
// POST-as-GET: empty payload.
body := buildKIDJWS(t, h, key, acc.ID, reqURL, nil)
w := doACME(t, r, http.MethodPost, "/authz/"+authzID, body)
if w.Code != http.StatusOK {
t.Fatalf("expected 200, got %d; body: %s", w.Code, w.Body.String())
}
var resp map[string]interface{}
if err := json.Unmarshal(w.Body.Bytes(), &resp); err != nil {
t.Fatalf("unmarshal response: %v", err)
}
if resp["status"] == nil {
t.Fatalf("response missing 'status'")
}
if resp["identifier"] == nil {
t.Fatalf("response missing 'identifier'")
}
challenges, ok := resp["challenges"].([]interface{})
if !ok || len(challenges) == 0 {
t.Fatalf("expected non-empty challenges array, got %v", resp["challenges"])
}
}
// --- Challenge ---
func TestHandleChallengeTriggersProcessing(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, order := createTestOrder(t, h)
ctx := context.Background()
// Load the first authz to get a challenge ID.
authzID := order.AuthzIDs[0]
authz, err := h.loadAuthz(ctx, authzID)
if err != nil {
t.Fatalf("load authz: %v", err)
}
// Find the http-01 challenge.
var httpChallID string
for _, challID := range authz.ChallengeIDs {
chall, err := h.loadChallenge(ctx, challID)
if err != nil {
continue
}
if chall.Type == ChallengeHTTP01 {
httpChallID = chall.ID
break
}
}
if httpChallID == "" {
t.Fatalf("no http-01 challenge found")
}
challPath := "/challenge/" + ChallengeHTTP01 + "/" + httpChallID
reqURL := "https://acme.test/acme/test-pki" + challPath
body := buildKIDJWS(t, h, key, acc.ID, reqURL, []byte("{}"))
w := doACME(t, r, http.MethodPost, challPath, body)
if w.Code != http.StatusOK {
t.Fatalf("expected 200, got %d; body: %s", w.Code, w.Body.String())
}
var resp map[string]interface{}
if err := json.Unmarshal(w.Body.Bytes(), &resp); err != nil {
t.Fatalf("unmarshal response: %v", err)
}
if resp["status"] != StatusProcessing {
t.Fatalf("status = %v, want %s", resp["status"], StatusProcessing)
}
}
// --- Finalize ---
func TestHandleFinalizeOrderNotReady(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, order := createTestOrder(t, h)
// Order is in "pending" status, not "ready".
csrKey, _ := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
template := &x509.CertificateRequest{
DNSNames: []string{"example.com"},
}
csrDER, err := x509.CreateCertificateRequest(rand.Reader, template, csrKey)
if err != nil {
t.Fatalf("create CSR: %v", err)
}
csrB64 := base64.RawURLEncoding.EncodeToString(csrDER)
payload, err := json.Marshal(map[string]string{"csr": csrB64})
if err != nil {
t.Fatalf("marshal finalize payload: %v", err)
}
finalizePath := "/finalize/" + order.ID
reqURL := "https://acme.test/acme/test-pki" + finalizePath
body := buildKIDJWS(t, h, key, acc.ID, reqURL, payload)
w := doACME(t, r, http.MethodPost, finalizePath, body)
if w.Code != http.StatusForbidden {
t.Fatalf("expected 403, got %d; body: %s", w.Code, w.Body.String())
}
if !strings.Contains(w.Body.String(), "orderNotReady") {
t.Fatalf("response should contain orderNotReady, got: %s", w.Body.String())
}
}
// --- Get Certificate ---
func TestHandleGetCertSuccess(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
ctx := context.Background()
certPEM := "-----BEGIN CERTIFICATE-----\nMIIBfake\n-----END CERTIFICATE-----\n"
cert := &IssuedCert{
ID: "test-cert-id",
OrderID: "test-order-id",
AccountID: acc.ID,
CertPEM: certPEM,
IssuedAt: time.Now(),
ExpiresAt: time.Now().Add(90 * 24 * time.Hour),
Revoked: false,
}
certData, _ := json.Marshal(cert)
if err := h.barrier.Put(ctx, h.barrierPrefix()+"certs/test-cert-id.json", certData); err != nil {
t.Fatalf("store cert: %v", err)
}
certPath := "/cert/test-cert-id"
reqURL := "https://acme.test/acme/test-pki" + certPath
body := buildKIDJWS(t, h, key, acc.ID, reqURL, nil)
w := doACME(t, r, http.MethodPost, certPath, body)
if w.Code != http.StatusOK {
t.Fatalf("expected 200, got %d; body: %s", w.Code, w.Body.String())
}
if ct := w.Header().Get("Content-Type"); ct != "application/pem-certificate-chain" {
t.Fatalf("Content-Type = %s, want application/pem-certificate-chain", ct)
}
if !strings.Contains(w.Body.String(), "BEGIN CERTIFICATE") {
t.Fatalf("response body should contain PEM certificate, got: %s", w.Body.String())
}
}
func TestHandleGetCertNotFound(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
certPath := "/cert/nonexistent-cert-id"
reqURL := "https://acme.test/acme/test-pki" + certPath
body := buildKIDJWS(t, h, key, acc.ID, reqURL, nil)
w := doACME(t, r, http.MethodPost, certPath, body)
if w.Code != http.StatusNotFound {
t.Fatalf("expected 404, got %d; body: %s", w.Code, w.Body.String())
}
}
func TestHandleGetCertRevoked(t *testing.T) {
h, r := setupACMERouter(t)
acc, key, _ := createTestAccount(t, h)
ctx := context.Background()
cert := &IssuedCert{
ID: "revoked-cert-id",
OrderID: "test-order-id",
AccountID: acc.ID,
CertPEM: "-----BEGIN CERTIFICATE-----\nMIIBfake\n-----END CERTIFICATE-----\n",
IssuedAt: time.Now(),
ExpiresAt: time.Now().Add(90 * 24 * time.Hour),
Revoked: true,
}
certData, _ := json.Marshal(cert)
if err := h.barrier.Put(ctx, h.barrierPrefix()+"certs/revoked-cert-id.json", certData); err != nil {
t.Fatalf("store cert: %v", err)
}
certPath := "/cert/revoked-cert-id"
reqURL := "https://acme.test/acme/test-pki" + certPath
body := buildKIDJWS(t, h, key, acc.ID, reqURL, nil)
w := doACME(t, r, http.MethodPost, certPath, body)
if w.Code != http.StatusNotFound {
t.Fatalf("expected 404, got %d; body: %s", w.Code, w.Body.String())
}
if !strings.Contains(w.Body.String(), "alreadyRevoked") {
t.Fatalf("response should contain alreadyRevoked, got: %s", w.Body.String())
}
}
// --- CSR Validation (pure function) ---
func TestValidateCSRIdentifiersDNSMatch(t *testing.T) {
h := testHandler(t)
csrKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
t.Fatalf("generate CSR key: %v", err)
}
template := &x509.CertificateRequest{
DNSNames: []string{"example.com", "www.example.com"},
}
csrDER, err := x509.CreateCertificateRequest(rand.Reader, template, csrKey)
if err != nil {
t.Fatalf("create CSR: %v", err)
}
csr, err := x509.ParseCertificateRequest(csrDER)
if err != nil {
t.Fatalf("parse CSR: %v", err)
}
identifiers := []Identifier{
{Type: IdentifierDNS, Value: "example.com"},
{Type: IdentifierDNS, Value: "www.example.com"},
}
if err := h.validateCSRIdentifiers(csr, identifiers); err != nil {
t.Fatalf("validateCSRIdentifiers() unexpected error: %v", err)
}
}
func TestValidateCSRIdentifiersDNSMismatch(t *testing.T) {
h := testHandler(t)
csrKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
t.Fatalf("generate CSR key: %v", err)
}
// CSR has an extra SAN (evil.com) not in the order.
template := &x509.CertificateRequest{
DNSNames: []string{"example.com", "evil.com"},
}
csrDER, err := x509.CreateCertificateRequest(rand.Reader, template, csrKey)
if err != nil {
t.Fatalf("create CSR: %v", err)
}
csr, err := x509.ParseCertificateRequest(csrDER)
if err != nil {
t.Fatalf("parse CSR: %v", err)
}
identifiers := []Identifier{
{Type: IdentifierDNS, Value: "example.com"},
}
if err := h.validateCSRIdentifiers(csr, identifiers); err == nil {
t.Fatalf("expected error for CSR with extra SAN, got nil")
}
}
func TestValidateCSRIdentifiersMissing(t *testing.T) {
h := testHandler(t)
csrKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
t.Fatalf("generate CSR key: %v", err)
}
// CSR is missing www.example.com that the order requires.
template := &x509.CertificateRequest{
DNSNames: []string{"example.com"},
}
csrDER, err := x509.CreateCertificateRequest(rand.Reader, template, csrKey)
if err != nil {
t.Fatalf("create CSR: %v", err)
}
csr, err := x509.ParseCertificateRequest(csrDER)
if err != nil {
t.Fatalf("parse CSR: %v", err)
}
identifiers := []Identifier{
{Type: IdentifierDNS, Value: "example.com"},
{Type: IdentifierDNS, Value: "www.example.com"},
}
if err := h.validateCSRIdentifiers(csr, identifiers); err == nil {
t.Fatalf("expected error for CSR missing a SAN, got nil")
}
}
// --- Helper function tests ---
func TestExtractIDFromURL(t *testing.T) {
url := "https://acme.test/acme/ca/account/abc123"
id := extractIDFromURL(url, "/account/")
if id != "abc123" {
t.Fatalf("extractIDFromURL() = %q, want %q", id, "abc123")
}
// Test with a URL that does not contain the prefix.
id = extractIDFromURL("https://acme.test/other/path", "/account/")
if id != "" {
t.Fatalf("extractIDFromURL() with no match = %q, want empty", id)
}
}
func TestNewIDFormat(t *testing.T) {
id := newID()
// 16 bytes base64url-encoded = 22 characters (no padding).
if len(id) != 22 {
t.Fatalf("newID() length = %d, want 22", len(id))
}
// Verify it is valid base64url.
decoded, err := base64.RawURLEncoding.DecodeString(id)
if err != nil {
t.Fatalf("newID() produced invalid base64url: %v", err)
}
if len(decoded) != 16 {
t.Fatalf("newID() decoded to %d bytes, want 16", len(decoded))
}
}
func TestNewTokenFormat(t *testing.T) {
tok := newToken()
// 32 bytes base64url-encoded = 43 characters (no padding).
if len(tok) != 43 {
t.Fatalf("newToken() length = %d, want 43", len(tok))
}
decoded, err := base64.RawURLEncoding.DecodeString(tok)
if err != nil {
t.Fatalf("newToken() produced invalid base64url: %v", err)
}
if len(decoded) != 32 {
t.Fatalf("newToken() decoded to %d bytes, want 32", len(decoded))
}
}

321
internal/acme/helpers_test.go Normal file
View File

@@ -0,0 +1,321 @@
package acme
import (
"context"
"crypto"
"crypto/ecdsa"
"crypto/elliptic"
"crypto/hmac"
"crypto/rand"
"crypto/rsa"
"crypto/sha256"
"encoding/asn1"
"encoding/base64"
"encoding/json"
"io"
"log/slog"
"math/big"
"strings"
"sync"
"testing"
"time"
"git.wntrmute.dev/kyle/metacrypt/internal/barrier"
)
// memBarrier is an in-memory barrier for testing.
type memBarrier struct {
data map[string][]byte
mu sync.RWMutex
}
func newMemBarrier() *memBarrier {
return &memBarrier{data: make(map[string][]byte)}
}
func (m *memBarrier) Unseal(_ []byte) error { return nil }
func (m *memBarrier) Seal() error { return nil }
func (m *memBarrier) IsSealed() bool { return false }
func (m *memBarrier) Get(_ context.Context, path string) ([]byte, error) {
m.mu.RLock()
defer m.mu.RUnlock()
v, ok := m.data[path]
if !ok {
return nil, barrier.ErrNotFound
}
cp := make([]byte, len(v))
copy(cp, v)
return cp, nil
}
func (m *memBarrier) Put(_ context.Context, path string, value []byte) error {
m.mu.Lock()
defer m.mu.Unlock()
cp := make([]byte, len(value))
copy(cp, value)
m.data[path] = cp
return nil
}
func (m *memBarrier) Delete(_ context.Context, path string) error {
m.mu.Lock()
defer m.mu.Unlock()
delete(m.data, path)
return nil
}
func (m *memBarrier) List(_ context.Context, prefix string) ([]string, error) {
m.mu.RLock()
defer m.mu.RUnlock()
var paths []string
for k := range m.data {
if strings.HasPrefix(k, prefix) {
paths = append(paths, strings.TrimPrefix(k, prefix))
}
}
return paths, nil
}
// generateES256Key generates an ECDSA P-256 key pair and returns the private
// key along with a JWK JSON representation of the public key.
func generateES256Key(t *testing.T) (*ecdsa.PrivateKey, json.RawMessage) {
t.Helper()
key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
t.Fatalf("generate ES256 key: %v", err)
}
byteLen := (key.Curve.Params().BitSize + 7) / 8
xBytes := key.PublicKey.X.Bytes()
yBytes := key.PublicKey.Y.Bytes()
// Pad to curve byte length.
for len(xBytes) < byteLen {
xBytes = append([]byte{0}, xBytes...)
}
for len(yBytes) < byteLen {
yBytes = append([]byte{0}, yBytes...)
}
jwk, err := json.Marshal(map[string]string{
"kty": "EC",
"crv": "P-256",
"x": base64.RawURLEncoding.EncodeToString(xBytes),
"y": base64.RawURLEncoding.EncodeToString(yBytes),
})
if err != nil {
t.Fatalf("marshal ES256 JWK: %v", err)
}
return key, json.RawMessage(jwk)
}
// generateRSA2048Key generates an RSA 2048-bit key pair and returns the
// private key along with a JWK JSON representation of the public key.
func generateRSA2048Key(t *testing.T) (*rsa.PrivateKey, json.RawMessage) {
t.Helper()
key, err := rsa.GenerateKey(rand.Reader, 2048)
if err != nil {
t.Fatalf("generate RSA 2048 key: %v", err)
}
nBytes := key.PublicKey.N.Bytes()
eBytes := big.NewInt(int64(key.PublicKey.E)).Bytes()
jwk, err := json.Marshal(map[string]string{
"kty": "RSA",
"n": base64.RawURLEncoding.EncodeToString(nBytes),
"e": base64.RawURLEncoding.EncodeToString(eBytes),
})
if err != nil {
t.Fatalf("marshal RSA JWK: %v", err)
}
return key, json.RawMessage(jwk)
}
// ecdsaSigASN1 is used to decode an ASN.1 ECDSA signature into R and S.
type ecdsaSigASN1 struct {
R *big.Int
S *big.Int
}
// signJWS creates a valid JWS in flattened serialization.
func signJWS(t *testing.T, key crypto.Signer, alg string, header JWSHeader, payload []byte) []byte {
t.Helper()
headerJSON, err := json.Marshal(header)
if err != nil {
t.Fatalf("marshal JWS header: %v", err)
}
protected := base64.RawURLEncoding.EncodeToString(headerJSON)
var encodedPayload string
if payload != nil {
encodedPayload = base64.RawURLEncoding.EncodeToString(payload)
}
signingInput := []byte(protected + "." + encodedPayload)
var sig []byte
switch alg {
case "ES256", "ES384":
var hashFunc crypto.Hash
if alg == "ES256" {
hashFunc = crypto.SHA256
} else {
hashFunc = crypto.SHA384
}
h := hashFunc.New()
h.Write(signingInput)
digest := h.Sum(nil)
derSig, err := ecdsa.SignASN1(rand.Reader, key.(*ecdsa.PrivateKey), digest)
if err != nil {
t.Fatalf("sign ECDSA: %v", err)
}
var parsed ecdsaSigASN1
if _, err := asn1.Unmarshal(derSig, &parsed); err != nil {
t.Fatalf("unmarshal ECDSA ASN.1 signature: %v", err)
}
ecKey := key.(*ecdsa.PrivateKey)
byteLen := (ecKey.Curve.Params().BitSize + 7) / 8
rBytes := parsed.R.Bytes()
sBytes := parsed.S.Bytes()
for len(rBytes) < byteLen {
rBytes = append([]byte{0}, rBytes...)
}
for len(sBytes) < byteLen {
sBytes = append([]byte{0}, sBytes...)
}
sig = append(rBytes, sBytes...)
case "RS256":
digest := sha256.Sum256(signingInput)
rsaSig, err := rsa.SignPKCS1v15(rand.Reader, key.(*rsa.PrivateKey), crypto.SHA256, digest[:])
if err != nil {
t.Fatalf("sign RSA: %v", err)
}
sig = rsaSig
default:
t.Fatalf("unsupported algorithm: %s", alg)
}
flat := JWSFlat{
Protected: protected,
Payload: encodedPayload,
Signature: base64.RawURLEncoding.EncodeToString(sig),
}
out, err := json.Marshal(flat)
if err != nil {
t.Fatalf("marshal JWSFlat: %v", err)
}
return out
}
// signEAB creates a valid EAB inner JWS (RFC 8555 section 7.3.4).
func signEAB(t *testing.T, kid string, hmacKey []byte, accountJWK json.RawMessage) json.RawMessage {
t.Helper()
header := map[string]string{
"alg": "HS256",
"kid": kid,
"url": "https://acme.test/acme/test-pki/new-account",
}
headerJSON, err := json.Marshal(header)
if err != nil {
t.Fatalf("marshal EAB header: %v", err)
}
protected := base64.RawURLEncoding.EncodeToString(headerJSON)
encodedPayload := base64.RawURLEncoding.EncodeToString(accountJWK)
signingInput := []byte(protected + "." + encodedPayload)
mac := hmac.New(sha256.New, hmacKey)
mac.Write(signingInput)
sig := mac.Sum(nil)
flat := JWSFlat{
Protected: protected,
Payload: encodedPayload,
Signature: base64.RawURLEncoding.EncodeToString(sig),
}
out, err := json.Marshal(flat)
if err != nil {
t.Fatalf("marshal EAB JWSFlat: %v", err)
}
return json.RawMessage(out)
}
// testHandler creates a Handler with in-memory barrier for testing.
func testHandler(t *testing.T) *Handler {
t.Helper()
b := newMemBarrier()
h := &Handler{
mount: "test-pki",
barrier: b,
engines: nil,
nonces: NewNonceStore(),
baseURL: "https://acme.test",
logger: slog.New(slog.NewTextHandler(io.Discard, nil)),
}
// Store a default ACME config with a test issuer.
cfg := &ACMEConfig{DefaultIssuer: "test-issuer"}
cfgData, err := json.Marshal(cfg)
if err != nil {
t.Fatalf("marshal ACME config: %v", err)
}
if err := b.Put(context.Background(), h.barrierPrefix()+"config.json", cfgData); err != nil {
t.Fatalf("store ACME config: %v", err)
}
return h
}
// createTestAccount creates an ACME account in the handler's barrier,
// bypassing the HTTP handler. Returns the account, private key, and JWK.
func createTestAccount(t *testing.T, h *Handler) (*Account, *ecdsa.PrivateKey, json.RawMessage) {
t.Helper()
ctx := context.Background()
key, jwk := generateES256Key(t)
// Create an EAB credential.
eab, err := h.CreateEAB(ctx, "test-user")
if err != nil {
t.Fatalf("create EAB: %v", err)
}
// Mark the EAB as used since we're storing the account directly.
if err := h.MarkEABUsed(ctx, eab.KID); err != nil {
t.Fatalf("mark EAB used: %v", err)
}
// Compute the account ID from the JWK thumbprint.
accountID := thumbprintKey(jwk)
acc := &Account{
ID: accountID,
Status: StatusValid,
Contact: []string{"mailto:test@example.com"},
JWK: jwk,
CreatedAt: time.Now(),
MCIASUsername: "test-user",
}
data, err := json.Marshal(acc)
if err != nil {
t.Fatalf("marshal account: %v", err)
}
path := h.barrierPrefix() + "accounts/" + accountID + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store account: %v", err)
}
return acc, key, jwk
}
// getNonce issues a nonce from the handler's nonce store and returns it.
func getNonce(t *testing.T, h *Handler) string {
t.Helper()
nonce, err := h.nonces.Issue()
if err != nil {
t.Fatalf("issue nonce: %v", err)
}
return nonce
}

328
internal/acme/jws_test.go Normal file
View File

@@ -0,0 +1,328 @@
package acme
import (
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
"crypto/rsa"
"encoding/base64"
"encoding/json"
"testing"
)
// ---------- ParseJWS tests ----------
func TestParseJWSValid(t *testing.T) {
header := JWSHeader{
Alg: "ES256",
Nonce: "test-nonce",
URL: "https://example.com/acme/new-acct",
}
headerJSON, err := json.Marshal(header)
if err != nil {
t.Fatalf("marshal header: %v", err)
}
payload := []byte(`{"termsOfServiceAgreed":true}`)
flat := JWSFlat{
Protected: base64.RawURLEncoding.EncodeToString(headerJSON),
Payload: base64.RawURLEncoding.EncodeToString(payload),
Signature: base64.RawURLEncoding.EncodeToString([]byte("fake-signature")),
}
body, err := json.Marshal(flat)
if err != nil {
t.Fatalf("marshal JWSFlat: %v", err)
}
parsed, err := ParseJWS(body)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
if parsed.Header.Alg != "ES256" {
t.Fatalf("expected alg ES256, got %s", parsed.Header.Alg)
}
if parsed.Header.Nonce != "test-nonce" {
t.Fatalf("expected nonce test-nonce, got %s", parsed.Header.Nonce)
}
if parsed.Header.URL != "https://example.com/acme/new-acct" {
t.Fatalf("expected URL https://example.com/acme/new-acct, got %s", parsed.Header.URL)
}
if string(parsed.Payload) != string(payload) {
t.Fatalf("payload mismatch: got %s", string(parsed.Payload))
}
}
func TestParseJWSInvalidJSON(t *testing.T) {
_, err := ParseJWS([]byte("not valid json at all{{{"))
if err == nil {
t.Fatalf("expected error for invalid JSON, got nil")
}
}
func TestParseJWSEmptyPayload(t *testing.T) {
header := JWSHeader{
Alg: "ES256",
Nonce: "nonce",
URL: "https://example.com/acme/orders",
}
headerJSON, err := json.Marshal(header)
if err != nil {
t.Fatalf("marshal header: %v", err)
}
flat := JWSFlat{
Protected: base64.RawURLEncoding.EncodeToString(headerJSON),
Payload: "",
Signature: base64.RawURLEncoding.EncodeToString([]byte("fake-sig")),
}
body, err := json.Marshal(flat)
if err != nil {
t.Fatalf("marshal JWSFlat: %v", err)
}
parsed, err := ParseJWS(body)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
if len(parsed.Payload) != 0 {
t.Fatalf("expected empty payload, got %d bytes", len(parsed.Payload))
}
}
// ---------- VerifyJWS tests ----------
func TestVerifyJWSES256(t *testing.T) {
key, jwk := generateES256Key(t)
header := JWSHeader{Alg: "ES256", Nonce: "n1", URL: "https://example.com", JWK: jwk}
raw := signJWS(t, key, "ES256", header, []byte(`{"test":true}`))
parsed, err := ParseJWS(raw)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
if err := VerifyJWS(parsed, &key.PublicKey); err != nil {
t.Fatalf("VerifyJWS() error: %v", err)
}
}
func TestVerifyJWSES384(t *testing.T) {
key, err := ecdsa.GenerateKey(elliptic.P384(), rand.Reader)
if err != nil {
t.Fatalf("generate P-384 key: %v", err)
}
byteLen := (key.Curve.Params().BitSize + 7) / 8
xBytes := key.PublicKey.X.Bytes()
yBytes := key.PublicKey.Y.Bytes()
for len(xBytes) < byteLen {
xBytes = append([]byte{0}, xBytes...)
}
for len(yBytes) < byteLen {
yBytes = append([]byte{0}, yBytes...)
}
jwk, err := json.Marshal(map[string]string{
"kty": "EC",
"crv": "P-384",
"x": base64.RawURLEncoding.EncodeToString(xBytes),
"y": base64.RawURLEncoding.EncodeToString(yBytes),
})
if err != nil {
t.Fatalf("marshal P-384 JWK: %v", err)
}
header := JWSHeader{Alg: "ES384", Nonce: "n1", URL: "https://example.com", JWK: json.RawMessage(jwk)}
raw := signJWS(t, key, "ES384", header, []byte(`{"test":"es384"}`))
parsed, parseErr := ParseJWS(raw)
if parseErr != nil {
t.Fatalf("ParseJWS() error: %v", parseErr)
}
if err := VerifyJWS(parsed, &key.PublicKey); err != nil {
t.Fatalf("VerifyJWS() error: %v", err)
}
}
func TestVerifyJWSRS256(t *testing.T) {
key, jwk := generateRSA2048Key(t)
header := JWSHeader{Alg: "RS256", Nonce: "n1", URL: "https://example.com", JWK: jwk}
raw := signJWS(t, key, "RS256", header, []byte(`{"test":"rsa"}`))
parsed, err := ParseJWS(raw)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
if err := VerifyJWS(parsed, &key.PublicKey); err != nil {
t.Fatalf("VerifyJWS() error: %v", err)
}
}
func TestVerifyJWSWrongKey(t *testing.T) {
keyA, jwkA := generateES256Key(t)
keyB, _ := generateES256Key(t)
header := JWSHeader{Alg: "ES256", Nonce: "n1", URL: "https://example.com", JWK: jwkA}
raw := signJWS(t, keyA, "ES256", header, []byte(`{"test":true}`))
parsed, err := ParseJWS(raw)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
if err := VerifyJWS(parsed, &keyB.PublicKey); err == nil {
t.Fatalf("expected error verifying with wrong key, got nil")
}
}
func TestVerifyJWSCorruptedSignature(t *testing.T) {
key, jwk := generateES256Key(t)
header := JWSHeader{Alg: "ES256", Nonce: "n1", URL: "https://example.com", JWK: jwk}
raw := signJWS(t, key, "ES256", header, []byte(`{"test":true}`))
parsed, err := ParseJWS(raw)
if err != nil {
t.Fatalf("ParseJWS() error: %v", err)
}
// Flip the first byte of the raw signature.
parsed.RawSignature[0] ^= 0xFF
if err := VerifyJWS(parsed, &key.PublicKey); err == nil {
t.Fatalf("expected error for corrupted signature, got nil")
}
}
// ---------- ParseJWK tests ----------
func TestParseJWKEC256(t *testing.T) {
key, jwk := generateES256Key(t)
parsed, err := ParseJWK(jwk)
if err != nil {
t.Fatalf("ParseJWK() error: %v", err)
}
ecParsed, ok := parsed.(*ecdsa.PublicKey)
if !ok {
t.Fatalf("expected *ecdsa.PublicKey, got %T", parsed)
}
if ecParsed.X.Cmp(key.PublicKey.X) != 0 || ecParsed.Y.Cmp(key.PublicKey.Y) != 0 {
t.Fatalf("parsed key does not match original")
}
}
func TestParseJWKRSA(t *testing.T) {
key, jwk := generateRSA2048Key(t)
parsed, err := ParseJWK(jwk)
if err != nil {
t.Fatalf("ParseJWK() error: %v", err)
}
rsaParsed, ok := parsed.(*rsa.PublicKey)
if !ok {
t.Fatalf("expected *rsa.PublicKey, got %T", parsed)
}
if rsaParsed.N.Cmp(key.PublicKey.N) != 0 || rsaParsed.E != key.PublicKey.E {
t.Fatalf("parsed key does not match original")
}
}
func TestParseJWKInvalidKty(t *testing.T) {
jwk := json.RawMessage(`{"kty":"OKP","crv":"Ed25519","x":"abc"}`)
_, err := ParseJWK(jwk)
if err == nil {
t.Fatalf("expected error for unsupported kty, got nil")
}
}
func TestParseJWKMissingFields(t *testing.T) {
// EC JWK missing "x" field — the x value will decode as empty.
jwk := json.RawMessage(`{"kty":"EC","crv":"P-256","y":"dGVzdA"}`)
_, err := ParseJWK(jwk)
if err == nil {
// ParseJWK may succeed with empty x but the resulting key is degenerate.
// At minimum, verify the parsed key has zero X which is not on the curve.
pub, _ := ParseJWK(jwk)
if pub != nil {
ecKey, ok := pub.(*ecdsa.PublicKey)
if ok && ecKey.X != nil && ecKey.X.Sign() != 0 {
t.Fatalf("expected error or zero X for missing x field")
}
}
}
}
// ---------- ThumbprintJWK tests ----------
func TestThumbprintJWKDeterministic(t *testing.T) {
_, jwk := generateES256Key(t)
tp1, err := ThumbprintJWK(jwk)
if err != nil {
t.Fatalf("ThumbprintJWK() first call error: %v", err)
}
tp2, err := ThumbprintJWK(jwk)
if err != nil {
t.Fatalf("ThumbprintJWK() second call error: %v", err)
}
if tp1 != tp2 {
t.Fatalf("thumbprints differ: %s vs %s", tp1, tp2)
}
}
func TestThumbprintJWKFormat(t *testing.T) {
_, jwk := generateES256Key(t)
tp, err := ThumbprintJWK(jwk)
if err != nil {
t.Fatalf("ThumbprintJWK() error: %v", err)
}
// base64url of 32 bytes SHA-256 = 43 characters (no padding).
if len(tp) != 43 {
t.Fatalf("expected thumbprint length 43, got %d", len(tp))
}
// Verify it decodes to exactly 32 bytes.
decoded, err := base64.RawURLEncoding.DecodeString(tp)
if err != nil {
t.Fatalf("thumbprint is not valid base64url: %v", err)
}
if len(decoded) != 32 {
t.Fatalf("expected 32 decoded bytes, got %d", len(decoded))
}
}
// ---------- VerifyEAB tests ----------
func TestVerifyEABValid(t *testing.T) {
_, accountJWK := generateES256Key(t)
hmacKey := make([]byte, 32)
if _, err := rand.Read(hmacKey); err != nil {
t.Fatalf("generate HMAC key: %v", err)
}
kid := "test-kid-123"
eabJWS := signEAB(t, kid, hmacKey, accountJWK)
if err := VerifyEAB(eabJWS, kid, hmacKey, accountJWK); err != nil {
t.Fatalf("VerifyEAB() error: %v", err)
}
}
func TestVerifyEABWrongKey(t *testing.T) {
_, accountJWK := generateES256Key(t)
hmacKey := make([]byte, 32)
if _, err := rand.Read(hmacKey); err != nil {
t.Fatalf("generate HMAC key: %v", err)
}
wrongKey := make([]byte, 32)
if _, err := rand.Read(wrongKey); err != nil {
t.Fatalf("generate wrong HMAC key: %v", err)
}
kid := "test-kid-456"
eabJWS := signEAB(t, kid, hmacKey, accountJWK)
if err := VerifyEAB(eabJWS, kid, wrongKey, accountJWK); err == nil {
t.Fatalf("expected error verifying EAB with wrong HMAC key, got nil")
}
}
// ---------- KeyAuthorization tests ----------
func TestKeyAuthorizationFormat(t *testing.T) {
_, jwk := generateES256Key(t)
token := "abc123-challenge-token"
ka, err := KeyAuthorization(token, jwk)
if err != nil {
t.Fatalf("KeyAuthorization() error: %v", err)
}
// Must be "token.thumbprint" format.
thumbprint, err := ThumbprintJWK(jwk)
if err != nil {
t.Fatalf("ThumbprintJWK() error: %v", err)
}
expected := token + "." + thumbprint
if ka != expected {
t.Fatalf("expected %s, got %s", expected, ka)
}
}

88
internal/acme/nonce_test.go Normal file
View File

@@ -0,0 +1,88 @@
package acme
import (
"encoding/base64"
"sync"
"testing"
)
func TestNonceIssueAndConsume(t *testing.T) {
store := NewNonceStore()
nonce, err := store.Issue()
if err != nil {
t.Fatalf("Issue() error: %v", err)
}
if err := store.Consume(nonce); err != nil {
t.Fatalf("Consume() error: %v", err)
}
}
func TestNonceRejectUnknown(t *testing.T) {
store := NewNonceStore()
err := store.Consume("never-issued-nonce")
if err == nil {
t.Fatalf("expected error consuming unknown nonce, got nil")
}
}
func TestNonceRejectReuse(t *testing.T) {
store := NewNonceStore()
nonce, err := store.Issue()
if err != nil {
t.Fatalf("Issue() error: %v", err)
}
if err := store.Consume(nonce); err != nil {
t.Fatalf("first Consume() error: %v", err)
}
err = store.Consume(nonce)
if err == nil {
t.Fatalf("expected error on second Consume(), got nil")
}
}
func TestNonceFormat(t *testing.T) {
store := NewNonceStore()
nonce, err := store.Issue()
if err != nil {
t.Fatalf("Issue() error: %v", err)
}
// 16 bytes base64url-encoded without padding = 22 characters.
if len(nonce) != 22 {
t.Fatalf("expected nonce length 22, got %d", len(nonce))
}
// Verify it is valid base64url (no padding).
decoded, err := base64.RawURLEncoding.DecodeString(nonce)
if err != nil {
t.Fatalf("nonce is not valid base64url: %v", err)
}
if len(decoded) != 16 {
t.Fatalf("expected 16 decoded bytes, got %d", len(decoded))
}
}
func TestNonceConcurrentAccess(t *testing.T) {
store := NewNonceStore()
const goroutines = 50
var wg sync.WaitGroup
wg.Add(goroutines)
errs := make(chan error, goroutines)
for i := 0; i < goroutines; i++ {
go func() {
defer wg.Done()
nonce, err := store.Issue()
if err != nil {
errs <- err
return
}
if err := store.Consume(nonce); err != nil {
errs <- err
return
}
}()
}
wg.Wait()
close(errs)
for err := range errs {
t.Fatalf("concurrent nonce operation failed: %v", err)
}
}

7
internal/acme/validate.go
View File

@@ -14,6 +14,10 @@ import (
"time"
)
// dnsResolver is the DNS resolver used for DNS-01 challenge validation.
// It defaults to the system resolver and can be replaced in tests.
var dnsResolver = net.DefaultResolver
// validateChallenge dispatches to the appropriate validator and updates
// challenge, authorization, and order state in the barrier.
func (h *Handler) validateChallenge(ctx context.Context, chall *Challenge, accountJWK []byte) {
@@ -245,8 +249,7 @@ func validateDNS01(ctx context.Context, chall *Challenge, accountJWK []byte) err
// Strip trailing dot if present; add _acme-challenge prefix.
domain = "_acme-challenge." + domain
resolver := net.DefaultResolver
txts, err := resolver.LookupTXT(ctx, domain)
txts, err := dnsResolver.LookupTXT(ctx, domain)
if err != nil {
return fmt.Errorf("DNS-01: TXT lookup for %s failed: %w", domain, err)
}

395
internal/acme/validate_test.go Normal file
View File

@@ -0,0 +1,395 @@
package acme
import (
"context"
"encoding/json"
"fmt"
"net/http"
"net/http/httptest"
"strings"
"testing"
"time"
)
// ---------- HTTP-01 validation tests ----------
func TestValidateHTTP01Success(t *testing.T) {
_, jwk := generateES256Key(t)
token := "test-token-http01"
keyAuth, err := KeyAuthorization(token, jwk)
if err != nil {
t.Fatalf("KeyAuthorization() error: %v", err)
}
srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
if r.URL.Path != "/.well-known/acme-challenge/"+token {
http.NotFound(w, r)
return
}
fmt.Fprint(w, keyAuth)
}))
defer srv.Close()
// Strip "http://" prefix to get host:port.
domain := strings.TrimPrefix(srv.URL, "http://")
ctx := context.WithValue(context.Background(), ctxKeyDomain, domain)
chall := &Challenge{
ID: "chall-http01-ok",
AuthzID: "authz-1",
Type: ChallengeHTTP01,
Status: StatusPending,
Token: token,
}
if err := validateHTTP01(ctx, chall, jwk); err != nil {
t.Fatalf("validateHTTP01() error: %v", err)
}
}
func TestValidateHTTP01WrongResponse(t *testing.T) {
token := "test-token-wrong"
_, jwk := generateES256Key(t)
srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, _ *http.Request) {
fmt.Fprint(w, "completely-wrong-response")
}))
defer srv.Close()
domain := strings.TrimPrefix(srv.URL, "http://")
ctx := context.WithValue(context.Background(), ctxKeyDomain, domain)
chall := &Challenge{
ID: "chall-http01-wrong",
AuthzID: "authz-1",
Type: ChallengeHTTP01,
Status: StatusPending,
Token: token,
}
if err := validateHTTP01(ctx, chall, jwk); err == nil {
t.Fatalf("expected error for wrong response, got nil")
}
}
func TestValidateHTTP01NotFound(t *testing.T) {
_, jwk := generateES256Key(t)
token := "test-token-404"
srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, _ *http.Request) {
http.Error(w, "not found", http.StatusNotFound)
}))
defer srv.Close()
domain := strings.TrimPrefix(srv.URL, "http://")
ctx := context.WithValue(context.Background(), ctxKeyDomain, domain)
chall := &Challenge{
ID: "chall-http01-404",
AuthzID: "authz-1",
Type: ChallengeHTTP01,
Status: StatusPending,
Token: token,
}
if err := validateHTTP01(ctx, chall, jwk); err == nil {
t.Fatalf("expected error for 404 response, got nil")
}
}
func TestValidateHTTP01WhitespaceTrimming(t *testing.T) {
_, jwk := generateES256Key(t)
token := "test-token-ws"
keyAuth, err := KeyAuthorization(token, jwk)
if err != nil {
t.Fatalf("KeyAuthorization() error: %v", err)
}
srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
if r.URL.Path != "/.well-known/acme-challenge/"+token {
http.NotFound(w, r)
return
}
// Return keyAuth with trailing whitespace (CRLF).
fmt.Fprint(w, keyAuth+"\r\n")
}))
defer srv.Close()
domain := strings.TrimPrefix(srv.URL, "http://")
ctx := context.WithValue(context.Background(), ctxKeyDomain, domain)
chall := &Challenge{
ID: "chall-http01-ws",
AuthzID: "authz-1",
Type: ChallengeHTTP01,
Status: StatusPending,
Token: token,
}
if err := validateHTTP01(ctx, chall, jwk); err != nil {
t.Fatalf("validateHTTP01() should trim whitespace, got error: %v", err)
}
}
// ---------- DNS-01 validation tests ----------
// TODO: Add DNS-01 unit tests. Testing validateDNS01 requires either a mock
// DNS server or replacing dnsResolver with a custom resolver whose Dial
// function points to a local UDP server. This is left for integration tests.
// ---------- State machine transition tests ----------
func TestUpdateAuthzStatusValid(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
// Create two challenges: one valid, one pending.
chall1 := &Challenge{
ID: "chall-valid-1",
AuthzID: "authz-sm-1",
Type: ChallengeHTTP01,
Status: StatusValid,
Token: "tok1",
}
chall2 := &Challenge{
ID: "chall-pending-1",
AuthzID: "authz-sm-1",
Type: ChallengeDNS01,
Status: StatusPending,
Token: "tok2",
}
storeChallenge(t, h, ctx, chall1)
storeChallenge(t, h, ctx, chall2)
// Create authorization referencing both challenges.
authz := &Authorization{
ID: "authz-sm-1",
AccountID: "test-account",
Status: StatusPending,
Identifier: Identifier{Type: IdentifierDNS, Value: "example.com"},
ChallengeIDs: []string{"chall-valid-1", "chall-pending-1"},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
storeAuthz(t, h, ctx, authz)
h.updateAuthzStatus(ctx, "authz-sm-1")
updated, err := h.loadAuthz(ctx, "authz-sm-1")
if err != nil {
t.Fatalf("loadAuthz() error: %v", err)
}
if updated.Status != StatusValid {
t.Fatalf("expected authz status %s, got %s", StatusValid, updated.Status)
}
}
func TestUpdateAuthzStatusAllInvalid(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
chall1 := &Challenge{
ID: "chall-inv-1",
AuthzID: "authz-sm-2",
Type: ChallengeHTTP01,
Status: StatusInvalid,
Token: "tok1",
}
chall2 := &Challenge{
ID: "chall-inv-2",
AuthzID: "authz-sm-2",
Type: ChallengeDNS01,
Status: StatusInvalid,
Token: "tok2",
}
storeChallenge(t, h, ctx, chall1)
storeChallenge(t, h, ctx, chall2)
authz := &Authorization{
ID: "authz-sm-2",
AccountID: "test-account",
Status: StatusPending,
Identifier: Identifier{Type: IdentifierDNS, Value: "example.com"},
ChallengeIDs: []string{"chall-inv-1", "chall-inv-2"},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
storeAuthz(t, h, ctx, authz)
h.updateAuthzStatus(ctx, "authz-sm-2")
updated, err := h.loadAuthz(ctx, "authz-sm-2")
if err != nil {
t.Fatalf("loadAuthz() error: %v", err)
}
if updated.Status != StatusInvalid {
t.Fatalf("expected authz status %s, got %s", StatusInvalid, updated.Status)
}
}
func TestUpdateAuthzStatusStillPending(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
chall1 := &Challenge{
ID: "chall-pend-1",
AuthzID: "authz-sm-3",
Type: ChallengeHTTP01,
Status: StatusPending,
Token: "tok1",
}
chall2 := &Challenge{
ID: "chall-pend-2",
AuthzID: "authz-sm-3",
Type: ChallengeDNS01,
Status: StatusPending,
Token: "tok2",
}
storeChallenge(t, h, ctx, chall1)
storeChallenge(t, h, ctx, chall2)
authz := &Authorization{
ID: "authz-sm-3",
AccountID: "test-account",
Status: StatusPending,
Identifier: Identifier{Type: IdentifierDNS, Value: "example.com"},
ChallengeIDs: []string{"chall-pend-1", "chall-pend-2"},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
storeAuthz(t, h, ctx, authz)
h.updateAuthzStatus(ctx, "authz-sm-3")
updated, err := h.loadAuthz(ctx, "authz-sm-3")
if err != nil {
t.Fatalf("loadAuthz() error: %v", err)
}
if updated.Status != StatusPending {
t.Fatalf("expected authz status %s, got %s", StatusPending, updated.Status)
}
}
func TestMaybeAdvanceOrderReady(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
// Create two valid authorizations.
for _, id := range []string{"authz-ord-1", "authz-ord-2"} {
authz := &Authorization{
ID: id,
AccountID: "test-account",
Status: StatusValid,
Identifier: Identifier{Type: IdentifierDNS, Value: id + ".example.com"},
ChallengeIDs: []string{},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
storeAuthz(t, h, ctx, authz)
}
// Create an order referencing both authorizations.
order := &Order{
ID: "order-advance-1",
AccountID: "test-account",
Status: StatusPending,
Identifiers: []Identifier{{Type: IdentifierDNS, Value: "example.com"}},
AuthzIDs: []string{"authz-ord-1", "authz-ord-2"},
ExpiresAt: time.Now().Add(24 * time.Hour),
CreatedAt: time.Now(),
IssuerName: "test-issuer",
}
storeOrder(t, h, ctx, order)
h.maybeAdvanceOrder(ctx, order)
// Reload the order from the barrier to verify it was persisted.
updated, err := h.loadOrder(ctx, "order-advance-1")
if err != nil {
t.Fatalf("loadOrder() error: %v", err)
}
if updated.Status != StatusReady {
t.Fatalf("expected order status %s, got %s", StatusReady, updated.Status)
}
}
func TestMaybeAdvanceOrderNotReady(t *testing.T) {
h := testHandler(t)
ctx := context.Background()
// One valid, one pending authorization.
authzValid := &Authorization{
ID: "authz-nr-1",
AccountID: "test-account",
Status: StatusValid,
Identifier: Identifier{Type: IdentifierDNS, Value: "a.example.com"},
ChallengeIDs: []string{},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
authzPending := &Authorization{
ID: "authz-nr-2",
AccountID: "test-account",
Status: StatusPending,
Identifier: Identifier{Type: IdentifierDNS, Value: "b.example.com"},
ChallengeIDs: []string{},
ExpiresAt: time.Now().Add(24 * time.Hour),
}
storeAuthz(t, h, ctx, authzValid)
storeAuthz(t, h, ctx, authzPending)
order := &Order{
ID: "order-nr-1",
AccountID: "test-account",
Status: StatusPending,
Identifiers: []Identifier{{Type: IdentifierDNS, Value: "example.com"}},
AuthzIDs: []string{"authz-nr-1", "authz-nr-2"},
ExpiresAt: time.Now().Add(24 * time.Hour),
CreatedAt: time.Now(),
IssuerName: "test-issuer",
}
storeOrder(t, h, ctx, order)
h.maybeAdvanceOrder(ctx, order)
updated, err := h.loadOrder(ctx, "order-nr-1")
if err != nil {
t.Fatalf("loadOrder() error: %v", err)
}
if updated.Status != StatusPending {
t.Fatalf("expected order status %s, got %s", StatusPending, updated.Status)
}
}
// ---------- Test helpers ----------
func storeChallenge(t *testing.T, h *Handler, ctx context.Context, chall *Challenge) {
t.Helper()
data, err := json.Marshal(chall)
if err != nil {
t.Fatalf("marshal challenge %s: %v", chall.ID, err)
}
path := h.barrierPrefix() + "challenges/" + chall.ID + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store challenge %s: %v", chall.ID, err)
}
}
func storeAuthz(t *testing.T, h *Handler, ctx context.Context, authz *Authorization) {
t.Helper()
data, err := json.Marshal(authz)
if err != nil {
t.Fatalf("marshal authz %s: %v", authz.ID, err)
}
path := h.barrierPrefix() + "authz/" + authz.ID + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store authz %s: %v", authz.ID, err)
}
}
func storeOrder(t *testing.T, h *Handler, ctx context.Context, order *Order) {
t.Helper()
data, err := json.Marshal(order)
if err != nil {
t.Fatalf("marshal order %s: %v", order.ID, err)
}
path := h.barrierPrefix() + "orders/" + order.ID + ".json"
if err := h.barrier.Put(ctx, path, data); err != nil {
t.Fatalf("store order %s: %v", order.ID, err)
}
}