//go:build integration package integration import ( "bytes" "os" "os/exec" "strings" "testing" "github.com/letsencrypt/boulder/test" ) func TestCAALogChecker(t *testing.T) { t.Parallel() c, err := makeClient() test.AssertNotError(t, err, "makeClient failed") domains := []string{random_domain()} result, err := authAndIssue(c, nil, domains, true) test.AssertNotError(t, err, "authAndIssue failed") test.AssertEquals(t, result.Order.Status, "valid") test.AssertEquals(t, len(result.Order.Authorizations), 1) // Should be no specific output, since everything is good cmd := exec.Command("bin/boulder", "caa-log-checker", "-ra-log", "/var/log/boulder-ra.log", "-va-logs", "/var/log/boulder-va.log") stdErr := new(bytes.Buffer) cmd.Stderr = stdErr out, err := cmd.Output() numLines := strings.Split(string(bytes.TrimSpace(out)), "\n") test.AssertEquals(t, len(numLines), 1) test.AssertContains(t, string(out), "Versions: caa-log-checker=(Unspecified Unspecified) Golang=(") test.AssertEquals(t, stdErr.String(), "") test.AssertNotError(t, err, "caa-log-checker failed") // Should be output, issuances in boulder-ra.log won't match an empty // va log. Because we can't control what happens before this test // we don't know how many issuances there have been. We just // test for caa-log-checker outputting _something_ since any // output, with a 0 exit code, indicates it's found bad issuances. tmp, err := os.CreateTemp(os.TempDir(), "boulder-va-empty") test.AssertNotError(t, err, "failed to create temporary file") defer os.Remove(tmp.Name()) cmd = exec.Command("bin/boulder", "caa-log-checker", "-ra-log", "/var/log/boulder-ra.log", "-va-logs", tmp.Name()) stdErr = new(bytes.Buffer) cmd.Stderr = stdErr out, err = cmd.Output() test.AssertError(t, err, "caa-log-checker didn't fail") if stdErr.String() == "" || string(out) == "" { t.Errorf("expected caa-log-checker to emit an error on stderr and an info log on stdout. Stdout:\n%s\n\nStderr:\n%s", string(out), stdErr) } }