Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: f32ea9f91d
Branches Tags
helm-externa...
/
pkg
/
template
/
v2
/
pem_test.go

pem_test.go 5.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180 
  1. /*
    2. 

  2. Licensed under the Apache License, Version 2.0 (the "License");
    3. 

  3. you may not use this file except in compliance with the License.
    4. 

  4. You may obtain a copy of the License at
    5. 

  5. 

  6. 	http://www.apache.org/licenses/LICENSE-2.0
    7. 

  7. 

  8. Unless required by applicable law or agreed to in writing, software
    9. 

  9. distributed under the License is distributed on an "AS IS" BASIS,
    10. 

  10. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    11. 

  11. See the License for the specific language governing permissions and
    12. 

  12. limitations under the License.
    13. 

  13. */
    14. 

  14. package template
    15. 

  15. 

  16. import "testing"
    17. 

  17. 

  18. const (
    19. 

  19. 	certData = `-----BEGIN CERTIFICATE-----
    20. 

  20. MIIDHTCCAgWgAwIBAgIRAKC4yxy9QGocND+6avTf7BgwDQYJKoZIhvcNAQELBQAw
    21. 

  21. EjEQMA4GA1UEChMHQWNtZSBDbzAeFw0yMTAzMjAyMDA4MDhaFw0yMTAzMjAyMDM4
    22. 

  22. MDhaMBIxEDAOBgNVBAoTB0FjbWUgQ28wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
    23. 

  23. ggEKAoIBAQC3o6/JdZEqNbqNRkopHhJtJG5c4qS5d0tQ/kZYpfD/v/izAYum4Nzj
    24. 

  24. aG15owr92/11W0pxPUliRLti3y6iScTs+ofm2D7p4UXj/Fnho/2xoWSOoWAodgvW
    25. 

  25. Y8jh8A0LQALZiV/9QsrJdXZdS47DYZLsQ3z9yFC/CdXkg1l7AQ3fIVGKdrQBr9kE
    26. 

  26. 1gEDqnKfRxXI8DEQKXr+CKPUwCAytegmy0SHp53zNAvY+kopHytzmJpXLoEhxq4e
    27. 

  27. ugHe52vXHdh/HJ9VjNp0xOH1waAgAGxHlltCW0PVd5AJ0SXROBS/a3V9sZCbCrJa
    28. 

  28. YOOonQSEswveSv6PcG9AHvpNPot2Xs6hAgMBAAGjbjBsMA4GA1UdDwEB/wQEAwIC
    29. 

  29. pDATBgNVHSUEDDAKBggrBgEFBQcDATAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQW
    30. 

  30. BBR00805mrpoonp95RmC3B6oLl+cGTAVBgNVHREEDjAMggpnb29ibGUuY29tMA0G
    31. 

  31. CSqGSIb3DQEBCwUAA4IBAQAipc1b6JrEDayPjpz5GM5krcI8dCWVd8re0a9bGjjN
    32. 

  32. ioWGlu/eTr5El0ffwCNZ2WLmL9rewfHf/bMvYz3ioFZJ2OTxfazqYXNggQz6cMfa
    33. 

  33. lbedDCdt5XLVX2TyerGvFram+9Uyvk3l0uM7rZnwAmdirG4Tv94QRaD3q4xTj/c0
    34. 

  34. mv+AggtK0aRFb9o47z/BypLdk5mhbf3Mmr88C8XBzEnfdYyf4JpTlZrYLBmDCu5d
    35. 

  35. 9RLLsjXxhag8xqMtd1uLUM8XOTGzVWacw8iGY+CTtBKqyA+AE6/bDwZvEwVtsKtC
    36. 

  36. QJ85ioEpy00NioqcF0WyMZH80uMsPycfpnl5uF7RkW8u
    37. 

  37. -----END CERTIFICATE-----
    38. 

  38. `
    39. 

  39. 

  40. 	otherCert = `-----BEGIN CERTIFICATE-----
    41. 

  41. MIIBqjCCAU+gAwIBAgIRAPnGGsBUMbZhmh5QdnYdBmUwCgYIKoZIzj0EAwIwGjEY
    42. 

  42. MBYGA1UEAxMPaW50ZXJtZWRpYXRlLWNhMB4XDTIyMDIwOTEwMjUzMVoXDTIyMDIx
    43. 

  43. MDEwMjUzMVowDjEMMAoGA1UEAxMDZm9vMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcD
    44. 

  44. QgAEqnxdeInykx8JZsLi13rZLekoG2cosQ3F+2InVNy7hCQ7soMqdaJsGQ6LFtov
    45. 

  45. ogUFtOOTRWrunblqNWGZsowHbKOBgTB/MA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUE
    46. 

  46. FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFLtundVbuKd73OWzo6SY
    47. 

  47. by0Ajeb2MB8GA1UdIwQYMBaAFCLg80J/bZBbOd+Y8+V94l5xM2zEMA4GA1UdEQQH
    48. 

  48. MAWCA2ZvbzAKBggqhkjOPQQDAgNJADBGAiEA4K4SbVNqrEtl7RfwBfJFMnWI+X8D
    49. 

  49. zMPMc4Xqzp2qTxcCIQDsySgtiakypZfWakpB49zJph0kLwGK8xhWvGMUw1N1/w==
    50. 

  50. -----END CERTIFICATE-----
    51. 

  51. `
    52. 

  52. 

  53. 	keyData = `-----BEGIN PRIVATE KEY-----
    54. 

  54. MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQC3o6/JdZEqNbqN
    55. 

  55. RkopHhJtJG5c4qS5d0tQ/kZYpfD/v/izAYum4NzjaG15owr92/11W0pxPUliRLti
    56. 

  56. 3y6iScTs+ofm2D7p4UXj/Fnho/2xoWSOoWAodgvWY8jh8A0LQALZiV/9QsrJdXZd
    57. 

  57. S47DYZLsQ3z9yFC/CdXkg1l7AQ3fIVGKdrQBr9kE1gEDqnKfRxXI8DEQKXr+CKPU
    58. 

  58. wCAytegmy0SHp53zNAvY+kopHytzmJpXLoEhxq4eugHe52vXHdh/HJ9VjNp0xOH1
    59. 

  59. waAgAGxHlltCW0PVd5AJ0SXROBS/a3V9sZCbCrJaYOOonQSEswveSv6PcG9AHvpN
    60. 

  60. Pot2Xs6hAgMBAAECggEACTGPrmVNZDCWa1Y2hkJ0J7SoNcw+9O4M/jwMp4l/PD6P
    61. 

  61. I98S78LYLCZhPLK17SmjUcnFO1AXKW1JeFS2D/fjfP256guvcqQNjLFoioxcOhVb
    62. 

  62. ZGyd1Mi8JPqP5wfOj16gBeYDwTkjz9wqldcfiZaL9XoXetkZecbzR2JwC2FtIVuC
    63. 

  63. 0njTjMNYpaBKnoLb8OTR0EQz7lYEo2MkQiWryz8wseONnFmdfh18p+p10YgCbuCH
    64. 

  64. qesrWfDLLxaxZelNtDhDngg9LoCLmarYy7BgShacmUEgJTZ/x3xFC75thK3ln0OY
    65. 

  65. +ktTgvVotYYaZi7qAjQiEsTvkTAPg5RMpQLd2UIWsQKBgQDCBp+1vURbwGzmTNUg
    66. 

  66. HMipD6WDFdLc9DCacx6+ZqsEPTMWQbCpVZrDKiY0Rjt5F+xOCyMr00J5RDJXRC0G
    67. 

  67. +L7NcJdywOFutT7vB+cmETg7l/6PHweNYBnE66706eTL/KVYZMi4tEinarPWhHmL
    68. 

  68. jasfdLANtpDjdWkRt299TkPRbQKBgQDyS8Rr7KZdv04Csqkf+ASmiJpT5R6Y72kc
    69. 

  69. 3XYpKETyB2FyPZkuh/zInMut9SkkSI9O/jA3zf956jj6sF1DHvp7T8KkIp5OAQeD
    70. 

  70. J9AF65m2MnZfHFUeJ6ZQsggwMWqrD0ycIWP7YWtiBHH+D1wGkjYrssq+bvG/yNpA
    71. 

  71. LtqdKq9lhQKBgQCZA2hIhy61vRckuEsLvCdzTGeW7UsR/XGnHEqOlaEhArKbRsrv
    72. 

  72. gBdA+qiOaSTV5svw8E+YbE7sG6AnuhhYeyreEYEeeoZOLJmpIG5mUwYp2UBj1nC6
    73. 

  73. SaOI7OVZOGu7g09SWokBQQxbG4cgEfFY4Sym7fs5lVTGTP3Dfwppo6NQMQKBgQCo
    74. 

  74. J5NDP3Lafwk58BpV+H/pv8YzUUDh7M2rXbtCpxLqUdr8OOnVlEUISWFF8m5CIyVq
    75. 

  75. MhjuscWLK9Wtjba7/YTjDaDM3sW05xv6lyfU5ATCoNTr/zLHgcb4HAZ4w+L+otiN
    76. 

  76. RtMnxB2NYf5mzuwUF2cG/secUEzwyAlIH/xStSwTLQKBgQCRvqF+rqxnegoOgwVW
    77. 

  77. qrWPv06wXD8dW2FlPpY5GXqA0l6erSK3YsQQToRmbem9ibPD7bd5P4gNbWfxwK4C
    78. 

  78. Wt+1Rcb8OrDhDJbYz85bXBnPecKp4EN0b9SHO0/dsCqn2w30emc+9T/4m1ZDkpBd
    79. 

  79. BixHvI/EJ8YK3ta5WdJWKC6hnA==
    80. 

  80. -----END PRIVATE KEY-----
    81. 

  81. `
    82. 

  82. )
    83. 

  83. 

  84. const (
    85. 

  85. 	filterPrivateKey = "private key"
    86. 

  86. 	filterCert       = "certificate"
    87. 

  87. )
    88. 

  88. 

  89. func TestFilterPEM(t *testing.T) {
    90. 

  90. 	type args struct {
    91. 

  91. 		input   string
    92. 

  92. 		pemType string
    93. 

  93. 	}
    94. 

  94. 	tests := []struct {
    95. 

  95. 		name    string
    96. 

  96. 		args    args
    97. 

  97. 		want    string
    98. 

  98. 		wantErr bool
    99. 

  99. 	}{
    100. 

  100. 		{
    101. 

  101. 			name: "extract cert / cert first",
    102. 

  102. 			args: args{
    103. 

  103. 				input:   certData + keyData,
    104. 

  104. 				pemType: filterCert,
    105. 

  105. 			},
    106. 

  106. 			want: certData,
    107. 

  107. 		},
    108. 

  108. 		{
    109. 

  109. 			name: "extract cert / key first",
    110. 

  110. 			args: args{
    111. 

  111. 				input:   keyData + certData,
    112. 

  112. 				pemType: filterCert,
    113. 

  113. 			},
    114. 

  114. 			want: certData,
    115. 

  115. 		},
    116. 

  116. 		{
    117. 

  117. 			name: "extract multiple certs",
    118. 

  118. 			args: args{
    119. 

  119. 				input:   keyData + certData + keyData + otherCert,
    120. 

  120. 				pemType: filterCert,
    121. 

  121. 			},
    122. 

  122. 			want: certData + otherCert,
    123. 

  123. 		},
    124. 

  124. 		{
    125. 

  125. 			name: "extract key",
    126. 

  126. 			args: args{
    127. 

  127. 				input:   keyData + certData,
    128. 

  128. 				pemType: filterPrivateKey,
    129. 

  129. 			},
    130. 

  130. 			want: keyData,
    131. 

  131. 		},
    132. 

  132. 		{
    133. 

  133. 			name: "key with junk",
    134. 

  134. 			args: args{
    135. 

  135. 				input:   certData + keyData + "some ---junk---",
    136. 

  136. 				pemType: filterPrivateKey,
    137. 

  137. 			},
    138. 

  138. 			want: keyData,
    139. 

  139. 		},
    140. 

  140. 		{
    141. 

  141. 			name: "begin/end with junk",
    142. 

  142. 			args: args{
    143. 

  143. 				// pem.Decode trims junk from the beginning of the input
    144. 

  144. 				// so we are able to decode both cert & key
    145. 

  145. 				input:   "some junk" + certData + keyData + "some ---junk---",
    146. 

  146. 				pemType: filterPrivateKey,
    147. 

  147. 			},
    148. 

  148. 			want: keyData,
    149. 

  149. 		},
    150. 

  150. 		{
    151. 

  151. 			name: "interleaved junk",
    152. 

  152. 			args: args{
    153. 

  153. 				// can parse cert but not key due to junk
    154. 

  154. 				input:   certData + "some junk" + keyData,
    155. 

  155. 				pemType: filterPrivateKey,
    156. 

  156. 			},
    157. 

  157. 			wantErr: true,
    158. 

  158. 		},
    159. 

  159. 		{
    160. 

  160. 			name: "err when junk",
    161. 

  161. 			args: args{
    162. 

  162. 				input:   "---junk---",
    163. 

  163. 				pemType: filterPrivateKey,
    164. 

  164. 			},
    165. 

  165. 			wantErr: true,
    166. 

  166. 		},
    167. 

  167. 	}
    168. 

  168. 	for _, tt := range tests {
    169. 

  169. 		t.Run(tt.name, func(t *testing.T) {
    170. 

  170. 			got, err := filterPEM(tt.args.pemType, tt.args.input)
    171. 

  171. 			if (err != nil) != tt.wantErr {
    172. 

  172. 				t.Errorf("filterPEM() error = %v, wantErr %v", err, tt.wantErr)
    173. 

  173. 				return
    174. 

  174. 			}
    175. 

  175. 			if got != tt.want {
    176. 

  176. 				t.Errorf("filterPEM() = %v, want %v", got, tt.want)
    177. 

  177. 			}
    178. 

  178. 		})
    179. 

  179. 	}
    180. 

  180. }
    181.