Add a test for verifying i2pgit reseed signature

2025-07-17 13:54:33 -04:00 · 2022-08-02 11:27:45 -04:00
parent cdc9998f10
commit c9b5fa1406
2 changed files with 22 additions and 2 deletions
--- a/.gitignore
+++ b/.gitignore
@ -5,4 +5,5 @@
 *.coverprofile
 *exportable-fuzz.zip
 go-i2p
-*.exe
+*.exe
+.idea/
--- a/lib/su3/su3_test.go
+++ b/lib/su3/su3_test.go
@ -43,7 +43,10 @@ func appendBytes(b ...[]byte) []byte {

 func fileRSAPubKey(t *testing.T, filename string) *rsa.PublicKey {
 	b := fileBytes(t, filename)
-	block, _ := pem.Decode(b)
+	block, rest := pem.Decode(b)
+	if len(rest) > 0 {
+		t.Fatalf("cannot decode PEM block %s: %d bytes left over", filename, len(rest))
+	}
 	cert, err := x509.ParseCertificate(block.Bytes)
 	if err != nil {
 		t.Fatalf("cannot parse certificate file %s: %s", filename, err)
@ -64,6 +67,20 @@ var aliceContent []byte
 var aliceSignature []byte
 var aliceSU3 []byte

+func TestSig_reseed_i2pgit(t *testing.T) {
+	t.Skip()
+	key := fileRSAPubKey(t, "./testdata/hankhill19580_at_gmail.com.crt")
+	content := fileBytes(t, "./testdata/reseed-i2pgit-content.zip")
+	sig := fileBytes(t, "./testdata/reseed-i2pgit-signature")
+	hash := crypto.SHA512.New()
+	hash.Write(content)
+	digest := hash.Sum(nil)
+	err := rsa.VerifyPKCS1v15(key, 0, digest, sig)
+	if err != nil {
+		t.Fatal(err)
+	}
+}
+
 func TestRead(t *testing.T) {
 	tests := []struct {
 		name          string
@ -272,7 +289,9 @@ func TestRead(t *testing.T) {
 	}

 	for _, test := range tests {
+		test := test
 		t.Run(test.name, func(t *testing.T) {
+			t.Parallel()
 			if test.skip {
 				t.Skip()
 			}