chore(ci): add ci

jakobmoellerdev · jakobmoellerdev · commit 88f7e1dff85c · 2025-06-25T20:32:34.000+02:00
diff --git a/cmd/signing-server/main_test.go b/cmd/signing-server/main_test.go
@@ -79,7 +79,8 @@ func TestSoftHSMConcurrentSignRequests(t *testing.T) {
 			RunServer:        true,
 		}); err != nil {
 			cancel()
-			t.Fatalf("Failed to start signing server: %v", err)
+			t.Errorf("Failed to start signing server: %v", err)
+			return
 		}
 	}()
 
@@ -148,10 +149,15 @@ outer:
 			if hsmPublicKeyFile == "" {
 				log.Println("HSM_PUBLIC_KEY_FILE environment variable is not set, skipping public key verification")
 			} else {
-				if block == nil || block.Type != "PUBLIC KEY" {
+				hsmPublicKeyData, err := os.ReadFile(hsmPublicKeyFile)
+				if err != nil {
+					log.Fatalf("Failed to read public key file %s: %v", hsmPublicKeyFile, err)
+				}
+				publicKeyBlock, _ := pem.Decode(hsmPublicKeyData)
+				if publicKeyBlock == nil || publicKeyBlock.Type != "PUBLIC KEY" {
 					log.Fatal("Failed to parse PEM block for public key")
 				}
-				pub, err := x509.ParsePKIXPublicKey(block.Bytes)
+				pub, err := x509.ParsePKIXPublicKey(publicKeyBlock.Bytes)
 				if err != nil {
 					log.Fatalf("Failed to parse public key: %v", err)
 				}
@@ -165,6 +171,8 @@ outer:
 				}
 				if err := rsa.VerifyPSS(rsaPubKey, crypto.SHA256, rawDigest, block.Bytes, nil); err != nil {
 					log.Fatalf("Signature verification failed: %v", err)
+				} else {
+					log.Printf("Signature verification succeeded for request %d", index)
 				}
 			}
 

Original file line number	Diff line number	Diff line change
`@@ -79,7 +79,8 @@ func TestSoftHSMConcurrentSignRequests(t *testing.T) {`
`79`	`79`	`RunServer: true,`
`80`	`80`	`}); err != nil {`
`81`	`81`	`cancel()`
`82`		`- t.Fatalf("Failed to start signing server: %v", err)`
	`82`	`+ t.Errorf("Failed to start signing server: %v", err)`
	`83`	`+ return`
`83`	`84`	`}`
`84`	`85`	`}()`
`85`	`86`
`@@ -148,10 +149,15 @@ outer:`
`148`	`149`	`if hsmPublicKeyFile == "" {`
`149`	`150`	`log.Println("HSM_PUBLIC_KEY_FILE environment variable is not set, skipping public key verification")`
`150`	`151`	`} else {`
`151`		`- if block == nil \|\| block.Type != "PUBLIC KEY" {`
	`152`	`+ hsmPublicKeyData, err := os.ReadFile(hsmPublicKeyFile)`
	`153`	`+ if err != nil {`
	`154`	`+ log.Fatalf("Failed to read public key file %s: %v", hsmPublicKeyFile, err)`
	`155`	`+ }`
	`156`	`+ publicKeyBlock, _ := pem.Decode(hsmPublicKeyData)`
	`157`	`+ if publicKeyBlock == nil \|\| publicKeyBlock.Type != "PUBLIC KEY" {`
`152`	`158`	`log.Fatal("Failed to parse PEM block for public key")`
`153`	`159`	`}`
`154`		`- pub, err := x509.ParsePKIXPublicKey(block.Bytes)`
	`160`	`+ pub, err := x509.ParsePKIXPublicKey(publicKeyBlock.Bytes)`
`155`	`161`	`if err != nil {`
`156`	`162`	`log.Fatalf("Failed to parse public key: %v", err)`
`157`	`163`	`}`
`@@ -165,6 +171,8 @@ outer:`
`165`	`171`	`}`
`166`	`172`	`if err := rsa.VerifyPSS(rsaPubKey, crypto.SHA256, rawDigest, block.Bytes, nil); err != nil {`
`167`	`173`	`log.Fatalf("Signature verification failed: %v", err)`
	`174`	`+ } else {`
	`175`	`+ log.Printf("Signature verification succeeded for request %d", index)`
`168`	`176`	`}`
`169`	`177`	`}`
`170`	`178`