• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1#
2# This file is part of pyasn1-modules software.
3#
4# Created by Russ Housley
5# Copyright (c) 2019, Vigil Security, LLC
6# License: http://snmplabs.com/pyasn1/license.html
7#
8
9import sys
10
11from pyasn1.type import univ
12
13from pyasn1.codec.der.decoder import decode as der_decode
14from pyasn1.codec.der.encoder import encode as der_encode
15
16from pyasn1_modules import pem
17from pyasn1_modules import rfc5652
18from pyasn1_modules import rfc6211
19
20try:
21    import unittest2 as unittest
22except ImportError:
23    import unittest
24
25
26class SignedMessageTestCase(unittest.TestCase):
27    signed_message_pem_text = """\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54"""
55
56    def setUp(self):
57        self.asn1Spec = rfc5652.ContentInfo()
58
59    def testDerCodec(self):
60        substrate = pem.readBase64fromText(self.signed_message_pem_text)
61        asn1Object, rest = der_decode (substrate, asn1Spec=self.asn1Spec)
62        assert not rest
63        assert asn1Object.prettyPrint()
64        assert der_encode(asn1Object) == substrate
65
66        assert asn1Object['contentType'] == rfc5652.id_signedData
67        sd, rest = der_decode(asn1Object['content'], asn1Spec=rfc5652.SignedData())
68        assert not rest
69        assert sd.prettyPrint()
70        assert der_encode(sd) == asn1Object['content']
71
72        for sa in sd['signerInfos'][0]['signedAttrs']:
73            sat = sa['attrType']
74            sav0 = sa['attrValues'][0]
75
76            if sat in rfc6211.id_aa_cmsAlgorithmProtect:
77                sav, rest = der_decode(sav0, asn1Spec=rfc6211.CMSAlgorithmProtection())
78                assert not rest
79                assert sav.prettyPrint()
80                assert der_encode(sav) == sav0
81
82    def testOpenTypes(self):
83        substrate = pem.readBase64fromText(self.signed_message_pem_text)
84        asn1Object, rest = der_decode(substrate,
85            asn1Spec=self.asn1Spec, decodeOpenTypes=True)
86        assert not rest
87        assert asn1Object.prettyPrint()
88        assert der_encode(asn1Object) == substrate
89
90        assert asn1Object['contentType'] in rfc5652.cmsContentTypesMap.keys()
91        assert asn1Object['contentType'] == rfc5652.id_signedData
92
93        sd = asn1Object['content']
94        assert sd['version'] == rfc5652.CMSVersion().subtype(value='v1')
95
96        ect = sd['encapContentInfo']['eContentType']
97        assert ect in rfc5652.cmsContentTypesMap.keys()
98        assert ect == rfc5652.id_data
99
100        for sa in sd['signerInfos'][0]['signedAttrs']:
101            if sa['attrType'] == rfc6211.id_aa_cmsAlgorithmProtect:
102                assert sa['attrType'] in rfc5652.cmsAttributesMap.keys()
103
104                sav0 = sa['attrValues'][0]
105                digest_oid = univ.ObjectIdentifier('2.16.840.1.101.3.4.2.2')
106                sig_oid = univ.ObjectIdentifier('1.2.840.10045.4.3.3')
107                assert sav0['digestAlgorithm']['algorithm'] == digest_oid
108                assert sav0['signatureAlgorithm']['algorithm'] == sig_oid
109
110
111suite = unittest.TestLoader().loadTestsFromModule(sys.modules[__name__])
112
113if __name__ == '__main__':
114    import sys
115
116    result = unittest.TextTestRunner(verbosity=2).run(suite)
117    sys.exit(not result.wasSuccessful())
118