More tests

Author: yaronf

client.go

@@ -7,10 +7,10 @@ import (
 )
 
 // Client represents an HTTP client that optionally signs requests and optionally verifies responses.
-// The Signer may be nil to avoid signing, and so forth.
+// The Signer may be nil to avoid signing. Similarly, if both Verifier and FetchVerifier are nil, no verification takes place.
 // The FetchVerifier callback allows to generate a Verifier based on the particular response.
 // Either Verifier or FetchVerifier may be specified, but not both.
-// The client embeds an http.Client, which may be http.DefaultClient or any other.
+// The client embeds an http.Client, which in most cases can be http.DefaultClient.
 type Client struct {
 	SignatuerName string
 	Signer        *Signer

client_test.go

@@ -102,6 +102,27 @@ func TestClient_Get(t *testing.T) {
 			wantRes: "",
 			wantErr: true,
 		},
+		{
+			name: "verifier fails",
+			fields: fields{
+				sigName: "sig1",
+				signer: func() *Signer {
+					signer, _ := NewHMACSHA256Signer("key1", bytes.Repeat([]byte{1}, 64), NewSignConfig(), HeaderList([]string{"@method"}))
+					return signer
+				}(),
+				verifier: nil,
+				fetchVerifier: func(res *http.Response, req *http.Request) (sigName string, verifier *Verifier) {
+					verifier, _ = NewHMACSHA256Verifier("key1", bytes.Repeat([]byte{2}, 64), NewVerifyConfig(), HeaderList([]string{"@method"}))
+					return "name", verifier
+				},
+				Client: *http.DefaultClient,
+			},
+			args: args{
+				url: "",
+			},
+			wantRes: "",
+			wantErr: true,
+		},
 	}
 
 	ts := makeTestServer()

config.go

@@ -168,7 +168,7 @@ func defaultReqNotVerified(w http.ResponseWriter, _ *http.Request, err error) {
 }
 
 // SetReqNotVerified defines a callback to be called when a request fails to verify. The default
-// callback sends a 401 status code with an error message that includes the error string.
+// callback sends a 401 status code with a generic error message.
 func (h *HandlerConfig) SetReqNotVerified(f func(w http.ResponseWriter, r *http.Request, err error)) *HandlerConfig {
 	h.reqNotVerified = f
 	return h

crypto_test.go

@@ -1,6 +1,8 @@
 package httpsign
 
 import (
+	"crypto/rand"
+	"crypto/rsa"
 	"reflect"
 	"strings"
 	"testing"
@@ -121,3 +123,59 @@ func TestSigner_sign(t *testing.T) {
 		})
 	}
 }
+
+func TestNewRSASigner(t *testing.T) {
+	privateKey, err := rsa.GenerateKey(rand.Reader, 2048)
+	if err != nil {
+		t.Errorf("failed to gen private key")
+	}
+	_ = privateKey.Public()
+
+	type args struct {
+		keyID  string
+		key    *rsa.PrivateKey
+		config *SignConfig
+		fields Fields
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    *Signer
+		wantErr bool
+	}{
+		{
+			name: "empty key ID",
+			args: args{
+				keyID:  "",
+				key:    privateKey,
+				config: nil,
+				fields: nil,
+			},
+			want:    nil,
+			wantErr: true,
+		},
+		{
+			name: "nil key",
+			args: args{
+				keyID:  "kk",
+				key:    nil,
+				config: NewSignConfig(),
+				fields: nil,
+			},
+			want:    nil,
+			wantErr: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := NewRSASigner(tt.args.keyID, tt.args.key, tt.args.config, tt.args.fields)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("NewRSASigner() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if !reflect.DeepEqual(got, tt.want) {
+				t.Errorf("NewRSASigner() got = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}

ecdsa.go

@@ -10,6 +10,9 @@ import (
 // These functions extend the ecdsa package by adding raw, JWS-style signatures
 
 func ecdsaSignRaw(rd io.Reader, priv *ecdsa.PrivateKey, hash []byte) ([]byte, error) {
+	if priv == nil {
+		return nil, fmt.Errorf("nil private key")
+	}
 	r, s, err := ecdsa.Sign(rd, priv, hash)
 	if err != nil {
 		return nil, err
@@ -31,6 +34,9 @@ func ecdsaSignRaw(rd io.Reader, priv *ecdsa.PrivateKey, hash []byte) ([]byte, er
 }
 
 func ecdsaVerifyRaw(pub *ecdsa.PublicKey, hash []byte, sig []byte) (bool, error) {
+	if pub == nil {
+		return false, fmt.Errorf("nil public key")
+	}
 	curve := pub.Params().Name
 	lr, ls, err := sigComponentLen(curve)
 	if err != nil {

ecdsa_test.go

@@ -0,0 +1,114 @@
+package httpsign
+
+import (
+	"bytes"
+	"crypto/ecdsa"
+	"crypto/elliptic"
+	"crypto/rand"
+	"testing"
+)
+
+func Test_sigComponentLen(t *testing.T) {
+	type args struct {
+		curve string
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    int
+		want1   int
+		wantErr bool
+	}{
+		{
+			name: "bad curve",
+			args: args{
+				curve: "P-77",
+			},
+			want:    0,
+			want1:   0,
+			wantErr: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, got1, err := sigComponentLen(tt.args.curve)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("sigComponentLen() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if got != tt.want {
+				t.Errorf("sigComponentLen() got = %v, want %v", got, tt.want)
+			}
+			if got1 != tt.want1 {
+				t.Errorf("sigComponentLen() got1 = %v, want %v", got1, tt.want1)
+			}
+		})
+	}
+}
+
+func Test_ecdsaVerifyRaw(t *testing.T) {
+	privKey, err := ecdsa.GenerateKey(elliptic.P384(), rand.Reader)
+	if err != nil {
+		t.Errorf("Failed to generate private key")
+	}
+	pubKey := privKey.Public().(*ecdsa.PublicKey)
+	privKey2, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
+	if err != nil {
+		t.Errorf("Failed to generate private key")
+	}
+	pubKey2 := privKey2.Public().(*ecdsa.PublicKey)
+	type args struct {
+		pub  *ecdsa.PublicKey
+		hash []byte
+		sig  []byte
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    bool
+		wantErr bool
+	}{
+		{
+			name: "nil pub",
+			args: args{
+				pub:  nil,
+				hash: bytes.Repeat([]byte{88}, 1024),
+				sig:  nil,
+			},
+			want:    false,
+			wantErr: true,
+		},
+		{
+			name: "bad curve",
+			args: args{
+				pub:  pubKey,
+				hash: bytes.Repeat([]byte{88}, 1024),
+				sig:  nil,
+			},
+			want:    false,
+			wantErr: true,
+		},
+		{
+			name: "bad sig",
+			args: args{
+				pub:  pubKey2,
+				hash: bytes.Repeat([]byte{88}, 1024),
+				sig:  nil,
+			},
+			want:    false,
+			wantErr: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := ecdsaVerifyRaw(tt.args.pub, tt.args.hash, tt.args.sig)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("ecdsaVerifyRaw() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if got != tt.want {
+				t.Errorf("ecdsaVerifyRaw() got = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}

handler_test.go

@@ -60,7 +60,7 @@ func Test_WrapHandler(t *testing.T) {
 
 // test various failures
 func TestWrapHandlerServerSigns(t *testing.T) {
-	serverSignsTestCase := func(t *testing.T, nilSigner, dontSignResponse, earlyExpires, noSigner, badKey, badAlgs bool) {
+	serverSignsTestCase := func(t *testing.T, nilSigner, dontSignResponse, earlyExpires, noSigner, badKey, badAlgs, verifyRequest bool) {
 		// Callback to let the server locate its signing key and configuration
 		var signConfig *SignConfig
 		if !earlyExpires {
@@ -100,6 +100,13 @@ func TestWrapHandlerServerSigns(t *testing.T) {
 		if dontSignResponse {
 			config = config.SetSignResponse(false)
 		}
+		if verifyRequest {
+			serverVerifier, _ := NewHMACSHA256Verifier("key", bytes.Repeat([]byte{9}, 64), NewVerifyConfig(), *NewFields())
+			config = config.SetFetchVerifier(func(r *http.Request) (sigName string, verifier *Verifier) {
+				return "sig333", serverVerifier
+			})
+			config = config.SetVerifyRequest(true) // override
+		}
 		ts := httptest.NewServer(WrapHandler(http.HandlerFunc(simpleHandler), config))
 		defer ts.Close()
 
@@ -117,35 +124,39 @@ func TestWrapHandlerServerSigns(t *testing.T) {
 		verifier, _ := NewHMACSHA256Verifier("key", key, verifyConfig, *NewFields())
 
 		client := NewDefaultClient("sig1", nil, verifier, nil)
-		_, err := client.Get(ts.URL)
-		if err == nil {
-			t.Errorf("Surprise! Signature validation was successful.")
+		res, err := client.Get(ts.URL)
+		if err == nil && res.StatusCode == 200 {
+			t.Errorf("Surprise! Server sent 200 OK and signature validation was successful.")
 		}
 	}
 	nilSigner := func(t *testing.T) {
-		serverSignsTestCase(t, true, false, false, false, false, false)
+		serverSignsTestCase(t, true, false, false, false, false, false, false)
 	}
 	dontSignResponse := func(t *testing.T) {
-		serverSignsTestCase(t, false, true, false, false, false, false)
+		serverSignsTestCase(t, false, true, false, false, false, false, false)
 	}
 	earlyExpires := func(t *testing.T) {
-		serverSignsTestCase(t, false, false, true, false, false, false)
+		serverSignsTestCase(t, false, false, true, false, false, false, false)
 	}
 	noSigner := func(t *testing.T) {
-		serverSignsTestCase(t, false, false, false, true, false, false)
+		serverSignsTestCase(t, false, false, false, true, false, false, false)
 	}
 	badKey := func(t *testing.T) {
-		serverSignsTestCase(t, false, false, false, false, true, false)
+		serverSignsTestCase(t, false, false, false, false, true, false, false)
 	}
 	badAlgs := func(t *testing.T) {
-		serverSignsTestCase(t, false, false, false, false, false, true)
+		serverSignsTestCase(t, false, false, false, false, false, true, false)
+	}
+	failVerify := func(t *testing.T) {
+		serverSignsTestCase(t, false, false, false, false, false, false, true)
 	}
 	t.Run("nil Signer", nilSigner)
 	t.Run("don't sign response", dontSignResponse)
 	t.Run("early expires field", earlyExpires)
 	t.Run("bad fetch Signer", noSigner)
 	t.Run("wrong verification key", badKey)
 	t.Run("failed algorithm check", badAlgs)
+	t.Run("failed request verification", failVerify)
 }
 
 func TestWrapHandlerServerFails(t *testing.T) { // non-default verify handler

signatures.go

@@ -1,7 +1,9 @@
 // Package httpsign signs HTTP requests and responses as defined in draft-ietf-httpbis-message-signatures.
 // See https://www.ietf.org/archive/id/draft-ietf-httpbis-message-signatures-07.html.
 //
-// For client-side message signing, use SignRequest, VerifyResponse etc. For server-side operation,
+// For client-side message signing, use the Client wrapper. Alternatively, use SignRequest, VerifyResponse directly,
+// but this is more complicated.
+// For server-side operation,
 // WrapHandler installs a wrapper around a normal HTTP message handler.
 package httpsign