func main()

in image/resources/netapp-exports/internal/testcert/gen_certs.go [38:91]

• 45 lines of code
• 5 McCabe index (conditional complexity)

func main() {
	key, err := rsa.GenerateKey(rand.Reader, 1024)
	if err != nil {
		log.Fatalf("could not generate private key: %v", err)
	}

	notBefore := time.Now()
	notAfter := notBefore.Add(1000000 * time.Hour)

	template := x509.Certificate{
		SerialNumber: big.NewInt(1),
		Subject: pkix.Name{
			Organization: []string{"Acme Co"},
		},

		NotBefore: notBefore,
		NotAfter:  notAfter,

		IsCA:     true,
		KeyUsage: x509.KeyUsageDigitalSignature | x509.KeyUsageKeyEncipherment | x509.KeyUsageCertSign,

		DNSNames:    []string{"localhost"},
		IPAddresses: []net.IP{net.IPv4(127, 0, 0, 1)},
	}

	cert, err := encodeCert(&template, key)
	if err != nil {
		log.Fatal(err)
	}

	template.DNSNames = nil
	template.IPAddresses = nil
	template.Subject.CommonName = "localhost"
	commonNameCert, err := encodeCert(&template, key)
	if err != nil {
		log.Fatal(err)
	}

	keyOut, err := encodeKey(key)
	if err != nil {
		log.Fatal(err)
	}

	fmt.Fprintln(out, "package testcert")
	fmt.Fprintln(out)
	fmt.Fprintln(out, "// generated")
	fmt.Fprintln(out, "// go run gen_certs.go > testcert.go")
	fmt.Fprintln(out)
	write("PEM encoded TLS certificate with SAN for localhost and 127.0.0.1", "LocalhostCert", cert)
	fmt.Fprintln(out)
	write("PEM encoded TLS certificate with CN for localhost (no SAN)", "CommonNameCert", commonNameCert)
	fmt.Fprintln(out)
	write("PEM encoded private key for above TLS certificates", "PrivateKey", keyOut)
}