#[macro_use]
extern crate pretty_assertions;
#[macro_use]
extern crate nom;
#[macro_use]
extern crate der_parser;
#[macro_use]
extern crate hex_literal;
#[macro_use]
extern crate rusticata_macros;
use der_parser::ber::{ber_read_element_content_as, BerObjectContent, BerTag, BitStringObject};
use der_parser::der::*;
use der_parser::error::*;
use der_parser::oid::*;
use nom::{Err, ErrorKind, IResult};
#[test]
fn test_der_bool() {
let empty = &b""[..];
let b_true = DerObject::from_obj(BerObjectContent::Boolean(true));
let b_false = DerObject::from_obj(BerObjectContent::Boolean(false));
assert_eq!(parse_der_bool(&[0x01, 0x01, 0x00]), Ok((empty, b_false)));
assert_eq!(parse_der_bool(&[0x01, 0x01, 0xff]), Ok((empty, b_true)));
assert_eq!(
parse_der_bool(&[0x01, 0x01, 0x7f]),
Err(Err::Error(error_position!(
&[0x7f][..],
ErrorKind::Custom(DER_CONSTRAINT_FAIL)
)))
);
}
#[test]
fn test_der_int() {
let empty = &b""[..];
let bytes = hex!("02 03 01 00 01");
let expected = DerObject::from_obj(BerObjectContent::Integer(b"\x01\x00\x01"));
assert_eq!(parse_der_integer(&bytes), Ok((empty, expected)));
let res = parse_der_u64(&bytes);
assert_eq!(res.expect("integer").1, 0x10001);
let bytes = hex!("04 03 41 41 41");
let res = parse_der_integer(&bytes);
assert!(res.is_err());
let res = parse_der_u64(&bytes);
assert!(res.is_err());
let bytes = hex!("02 0b 40 41 02 03 04 05 06 07 08 09 0a");
let res = parse_der_integer(&bytes);
assert!(res.is_ok());
let res = parse_der_u64(&bytes);
assert!(res.is_err());
}
#[test]
fn test_der_bitstring_primitive() {
let empty = &b""[..];
let bytes = &[0x03, 0x04, 0x06, 0x6e, 0x5d, 0xc0];
let expected = DerObject::from_obj(BerObjectContent::BitString(
6,
BitStringObject { data: &bytes[3..] },
));
assert_eq!(parse_der_bitstring(bytes), Ok((empty, expected)));
let bytes = &[0x03, 0x04, 0x06, 0x6e, 0x5d, 0xe0];
assert_eq!(
parse_der_bitstring(bytes),
Err(Err::Error(error_position!(
&bytes[2..],
ErrorKind::Custom(DER_CONSTRAINT_FAIL)
)))
);
let bytes = &[0x03, 0x81, 0x04, 0x06, 0x6e, 0x5d, 0xc0];
assert_eq!(
parse_der_bitstring(bytes),
Err(Err::Error(error_position!(
&bytes[..],
ErrorKind::Custom(DER_CONSTRAINT_FAIL)
)))
);
}
#[test]
fn test_der_bitstring_constructed() {
let bytes = &[
0x23, 0x80, 0x03, 0x03, 0x00, 0x0a, 0x3b, 0x03, 0x05, 0x04, 0x5f, 0x29, 0x1c, 0xd0, 0x00,
0x00,
];
assert_eq!(
parse_der_bitstring(bytes),
Err(Err::Error(error_position!(
&bytes[..],
ErrorKind::Custom(DER_CONSTRAINT_FAIL)
)))
);
}
#[test]
fn test_der_octetstring_primitive() {
let empty = &b""[..];
let bytes = [0x04, 0x05, 0x41, 0x41, 0x41, 0x41, 0x41];
let expected = DerObject::from_obj(BerObjectContent::OctetString(b"AAAAA"));
assert_eq!(parse_der_octetstring(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_null() {
let empty = &b""[..];
let expected = DerObject::from_obj(BerObjectContent::Null);
assert_eq!(parse_der_null(&[0x05, 0x00]), Ok((empty, expected)));
}
#[test]
fn test_der_oid() {
let empty = &b""[..];
let bytes = [
0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x05,
];
let expected = DerObject::from_obj(BerObjectContent::OID(Oid::from(&[
1, 2, 840, 113549, 1, 1, 5,
])));
assert_eq!(parse_der_oid(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_enum() {
let empty = &b""[..];
let expected = DerObject::from_obj(BerObjectContent::Enum(2));
assert_eq!(parse_der_enum(&[0x0a, 0x01, 0x02]), Ok((empty, expected)));
}
#[test]
fn test_der_utf8string() {
let empty = &b""[..];
let bytes = [
0x0c, 0x0a, 0x53, 0x6f, 0x6d, 0x65, 0x2d, 0x53, 0x74, 0x61, 0x74, 0x65,
];
let expected = DerObject::from_obj(BerObjectContent::UTF8String(b"Some-State"));
assert_eq!(parse_der_utf8string(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_relativeoid() {
let empty = &b""[..];
let bytes = [0x0d, 0x04, 0xc2, 0x7b, 0x03, 0x02];
let expected = DerObject::from_obj(BerObjectContent::RelativeOID(Oid::from(&[8571, 3, 2])));
assert_eq!(parse_der_relative_oid(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_seq() {
let empty = &b""[..];
let bytes = [0x30, 0x05, 0x02, 0x03, 0x01, 0x00, 0x01];
let expected = DerObject::from_seq(vec![DerObject::from_int_slice(b"\x01\x00\x01")]);
assert_eq!(parse_der_sequence(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_set() {
let empty = &b""[..];
let bytes = [0x31, 0x05, 0x02, 0x03, 0x01, 0x00, 0x01];
let expected = DerObject::from_set(vec![DerObject::from_int_slice(b"\x01\x00\x01")]);
assert_eq!(parse_der_set(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_seq_defined() {
let empty = &b""[..];
let bytes = [
0x30, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_seq(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_defined!(i, parse_der_integer, parse_der_integer)
};
assert_eq!(parser(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_set_defined() {
let empty = &b""[..];
let bytes = [
0x31, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_set(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_set_defined!(i, parse_der_integer, parse_der_integer)
};
assert_eq!(parser(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_seq_of() {
let empty = &b""[..];
let bytes = [
0x30, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_seq(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_of!(i, parse_der_integer)
};
assert_eq!(parser(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_seq_of_incomplete() {
let bytes = [0x30, 0x07, 0x02, 0x03, 0x01, 0x00, 0x01, 0x00, 0x00];
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_of!(i, parse_der_integer)
};
assert_eq!(
parser(&bytes),
Err(Err::Error(error_position!(&bytes[7..], ErrorKind::Eof)))
);
}
#[test]
fn test_der_set_of() {
let empty = &b""[..];
let bytes = [
0x31, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_set(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_set_of!(i, parse_der_integer)
};
assert_eq!(parser(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_utctime() {
let empty = &b""[..];
let bytes = hex!("17 0D 30 32 31 32 31 33 31 34 32 39 32 33 5A");
let expected = DerObject::from_obj(BerObjectContent::UTCTime(&bytes[2..]));
assert_eq!(parse_der_utctime(&bytes), Ok((empty, expected)));
let bytes = hex!("17 0c 30 32 31 32 31 33 31 34 32 39 32 33");
parse_der_utctime(&bytes).err().expect("expected error");
}
#[test]
fn test_der_generalizedtime() {
let empty = &b""[..];
let bytes = [
0x18, 0x0D, 0x30, 0x32, 0x31, 0x32, 0x31, 0x33, 0x31, 0x34, 0x32, 0x39, 0x32, 0x33, 0x5A,
];
let expected = DerObject::from_obj(BerObjectContent::GeneralizedTime(&bytes[2..]));
assert_eq!(parse_der_generalizedtime(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_generalstring() {
let empty = &b""[..];
let bytes = [0x1b, 0x04, 0x63, 0x69, 0x66, 0x73];
let expected = DerObject::from_obj(BerObjectContent::GeneralString(b"cifs"));
assert_eq!(parse_der_generalstring(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_contextspecific() {
let bytes = [0xa0, 0x03, 0x02, 0x01, 0x02];
let empty = &b""[..];
let expected = DerObject {
class: 2,
structured: 1,
tag: BerTag(0),
content: BerObjectContent::Unknown(BerTag(0), &bytes[2..]),
};
assert_eq!(parse_der(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_explicit() {
let empty = &b""[..];
let bytes = [0xa0, 0x03, 0x02, 0x01, 0x02];
let expected = DerObject {
class: 2,
structured: 1,
tag: BerTag(0),
content: BerObjectContent::ContextSpecific(
BerTag(0),
Some(Box::new(DerObject::from_int_slice(b"\x02"))),
),
};
assert_eq!(
parse_der_explicit(&bytes, BerTag(0), parse_der_integer),
Ok((empty, expected))
);
let expected2 = DerObject::from_obj(BerObjectContent::ContextSpecific(BerTag(1), None));
assert_eq!(
parse_der_explicit(&bytes, BerTag(1), parse_der_integer),
Ok((&bytes[..], expected2))
);
}
#[test]
fn test_der_implicit() {
let empty = &b""[..];
let bytes = [0x81, 0x04, 0x70, 0x61, 0x73, 0x73];
let pass = DerObject::from_obj(BerObjectContent::IA5String(b"pass"));
let expected = DerObject {
class: 2,
structured: 0,
tag: BerTag(1),
content: BerObjectContent::ContextSpecific(BerTag(1), Some(Box::new(pass))),
};
fn der_read_ia5string_content(
i: &[u8],
_tag: BerTag,
len: usize,
) -> IResult<&[u8], BerObjectContent, u32> {
ber_read_element_content_as(i, DerTag::Ia5String, len, false, 0)
}
assert_eq!(
parse_der_implicit(&bytes, BerTag(1), der_read_ia5string_content),
Ok((empty, expected))
);
let expected2 = DerObject::from_obj(BerObjectContent::ContextSpecific(BerTag(2), None));
assert_eq!(
parse_der_implicit(&bytes, BerTag(2), der_read_ia5string_content),
Ok((&bytes[..], expected2))
);
}
#[test]
fn test_der_optional() {
let empty = &b""[..];
let bytes1 = [
0x30, 0x0a, 0x0a, 0x03, 0x00, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x01,
];
let bytes2 = [0x30, 0x05, 0x02, 0x03, 0x01, 0x00, 0x01];
let expected1 = DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::ContextSpecific(
BerTag(0),
Some(Box::new(DerObject::from_obj(BerObjectContent::Enum(1)))),
)),
DerObject::from_int_slice(b"\x01\x00\x01"),
]);
let expected2 = DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::ContextSpecific(BerTag(0), None)),
DerObject::from_int_slice(b"\x01\x00\x01"),
]);
fn parse_optional_enum(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_optional!(i, parse_der_enum)
}
fn parser(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_defined!(i, parse_optional_enum, parse_der_integer)
};
assert_eq!(parser(&bytes1), Ok((empty, expected1)));
assert_eq!(parser(&bytes2), Ok((empty, expected2)));
}
#[test]
fn test_der_seq_dn() {
let empty = &b""[..];
let bytes = [
0x30, 0x45, 0x31, 0x0b, 0x30, 0x09, 0x06, 0x03, 0x55, 0x04, 0x06, 0x13, 0x02, 0x46, 0x52,
0x31, 0x13, 0x30, 0x11, 0x06, 0x03, 0x55, 0x04, 0x08, 0x0c, 0x0a, 0x53, 0x6f, 0x6d, 0x65,
0x2d, 0x53, 0x74, 0x61, 0x74, 0x65, 0x31, 0x21, 0x30, 0x1f, 0x06, 0x03, 0x55, 0x04, 0x0a,
0x0c, 0x18, 0x49, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x65, 0x74, 0x20, 0x57, 0x69, 0x64, 0x67,
0x69, 0x74, 0x73, 0x20, 0x50, 0x74, 0x79, 0x20, 0x4c, 0x74, 0x64,
];
let expected = DerObject::from_seq(vec![
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 6]))), DerObject::from_obj(BerObjectContent::PrintableString(b"FR")),
])]),
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 8]))), DerObject::from_obj(BerObjectContent::UTF8String(b"Some-State")),
])]),
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 10]))), DerObject::from_obj(BerObjectContent::UTF8String(b"Internet Widgits Pty Ltd")),
])]),
]);
assert_eq!(parse_der(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_seq_dn_defined() {
let empty = &b""[..];
let bytes = [
0x30, 0x45, 0x31, 0x0b, 0x30, 0x09, 0x06, 0x03, 0x55, 0x04, 0x06, 0x13, 0x02, 0x46, 0x52,
0x31, 0x13, 0x30, 0x11, 0x06, 0x03, 0x55, 0x04, 0x08, 0x0c, 0x0a, 0x53, 0x6f, 0x6d, 0x65,
0x2d, 0x53, 0x74, 0x61, 0x74, 0x65, 0x31, 0x21, 0x30, 0x1f, 0x06, 0x03, 0x55, 0x04, 0x0a,
0x0c, 0x18, 0x49, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x65, 0x74, 0x20, 0x57, 0x69, 0x64, 0x67,
0x69, 0x74, 0x73, 0x20, 0x50, 0x74, 0x79, 0x20, 0x4c, 0x74, 0x64,
];
let expected = DerObject::from_seq(vec![
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 6]))), DerObject::from_obj(BerObjectContent::PrintableString(b"FR")),
])]),
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 8]))), DerObject::from_obj(BerObjectContent::UTF8String(b"Some-State")),
])]),
DerObject::from_set(vec![DerObject::from_seq(vec![
DerObject::from_obj(BerObjectContent::OID(Oid::from(&[2, 5, 4, 10]))), DerObject::from_obj(BerObjectContent::UTF8String(b"Internet Widgits Pty Ltd")),
])]),
]);
#[inline]
fn parse_directory_string(i: &[u8]) -> IResult<&[u8], DerObject> {
alt!(
i,
parse_der_utf8string | parse_der_printablestring | parse_der_ia5string
)
}
#[inline]
fn parse_attr_type_and_value(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_defined!(i, parse_der_oid, parse_directory_string)
};
#[inline]
fn parse_rdn(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_set_defined!(i, parse_attr_type_and_value)
}
#[inline]
fn parse_name(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_defined!(i, parse_rdn, parse_rdn, parse_rdn)
}
assert_eq!(parse_name(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_defined_seq_macros() {
fn localparse_seq(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_sequence_defined_m! {
i,
parse_der_integer >>
call!(parse_der_integer)
}
}
let empty = &b""[..];
let bytes = [
0x30, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_seq(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
assert_eq!(localparse_seq(&bytes), Ok((empty, expected)));
}
#[test]
fn test_der_defined_set_macros() {
fn localparse_set(i: &[u8]) -> IResult<&[u8], DerObject> {
parse_der_set_defined_m! {
i,
parse_der_integer >>
call!(parse_der_integer)
}
}
let empty = &b""[..];
let bytes = [
0x31, 0x0a, 0x02, 0x03, 0x01, 0x00, 0x01, 0x02, 0x03, 0x01, 0x00, 0x00,
];
let expected = DerObject::from_set(vec![
DerObject::from_int_slice(b"\x01\x00\x01"),
DerObject::from_int_slice(b"\x01\x00\x00"),
]);
assert_eq!(localparse_set(&bytes), Ok((empty, expected)));
}
#[test]
fn test_parse_u32() {
let empty = &b""[..];
assert_eq!(parse_der_u32(&[0x02, 0x01, 0x01]),Ok((empty,1)));
assert_eq!(parse_der_u32(&[0x02, 0x01, 0xff]),Ok((empty,255)));
assert_eq!(parse_der_u32(&[0x02, 0x02, 0x01, 0x23]),Ok((empty,0x123)));
assert_eq!(parse_der_u32(&[0x02, 0x02, 0xff, 0xff]),Ok((empty,0xffff)));
assert_eq!(parse_der_u32(&[0x02, 0x03, 0x01, 0x23, 0x45]),Ok((empty,0x12345)));
assert_eq!(parse_der_u32(&[0x02, 0x03, 0xff, 0xff, 0xff]),Ok((empty,0xffffff)));
assert_eq!(parse_der_u32(&[0x02, 0x04, 0x01, 0x23, 0x45, 0x67]),Ok((empty,0x1234567)));
assert_eq!(parse_der_u32(&[0x02, 0x04, 0xff, 0xff, 0xff, 0xff]),Ok((empty,0xffffffff)));
let s = &[0x02, 0x05, 0x01, 0x23, 0x45, 0x67, 0x89];
assert_eq!(parse_der_u32(s),Err(Err::Error(error_position!(&s[2..],ErrorKind::Custom(BER_INTEGER_TOO_LARGE)))));
let s = &[0x01, 0x01, 0xff];
assert_eq!(parse_der_u32(s),Err(Err::Error(error_position!(&s[2..], ErrorKind::Custom(BER_TAG_ERROR)))));
}
#[test]
fn test_parse_u64() {
let empty = &b""[..];
assert_eq!(parse_der_u64(&[0x02, 0x01, 0x01]),Ok((empty,1)));
assert_eq!(parse_der_u64(&[0x02, 0x01, 0xff]),Ok((empty,255)));
assert_eq!(parse_der_u64(&[0x02, 0x02, 0x01, 0x23]),Ok((empty,0x123)));
assert_eq!(parse_der_u64(&[0x02, 0x02, 0xff, 0xff]),Ok((empty,0xffff)));
assert_eq!(parse_der_u64(&[0x02, 0x03, 0x01, 0x23, 0x45]),Ok((empty,0x12345)));
assert_eq!(parse_der_u64(&[0x02, 0x03, 0xff, 0xff, 0xff]),Ok((empty,0xffffff)));
assert_eq!(parse_der_u64(&[0x02, 0x04, 0x01, 0x23, 0x45, 0x67]),Ok((empty,0x1234567)));
assert_eq!(parse_der_u64(&[0x02, 0x04, 0xff, 0xff, 0xff, 0xff]),Ok((empty,0xffffffff)));
assert_eq!(parse_der_u64(&[0x02, 0x05, 0x01, 0x23, 0x45, 0x67, 0x89]),Ok((empty,0x123456789)));
let s = &[0x01, 0x01, 0xff];
assert_eq!(parse_der_u64(s),Err(Err::Error(error_position!(&s[2..], ErrorKind::Custom(BER_TAG_ERROR)))));
}