Struct cryptographic_message_syntax::asn1::rfc5652::SignerInfo

source · []
pub struct SignerInfo {
    pub version: CmsVersion,
    pub sid: SignerIdentifier,
    pub digest_algorithm: DigestAlgorithmIdentifier,
    pub signed_attributes: Option<SignedAttributes>,
    pub signature_algorithm: SignatureAlgorithmIdentifier,
    pub signature: SignatureValue,
    pub unsigned_attributes: Option<UnsignedAttributes>,
    pub signed_attributes_data: Option<Vec<u8>>,
}
Expand description

Per-signer information.

SignerInfo ::= SEQUENCE {
  version CMSVersion,
  sid SignerIdentifier,
  digestAlgorithm DigestAlgorithmIdentifier,
  signedAttrs [0] IMPLICIT SignedAttributes OPTIONAL,
  signatureAlgorithm SignatureAlgorithmIdentifier,
  signature SignatureValue,
  unsignedAttrs [1] IMPLICIT UnsignedAttributes OPTIONAL }

Fields

version: CmsVersionsid: SignerIdentifierdigest_algorithm: DigestAlgorithmIdentifiersigned_attributes: Option<SignedAttributes>signature_algorithm: SignatureAlgorithmIdentifiersignature: SignatureValueunsigned_attributes: Option<UnsignedAttributes>signed_attributes_data: Option<Vec<u8>>

Raw bytes backing signed attributes data.

Does not include constructed tag or length bytes.

Implementations

source

pub fn signed_attributes_digested_content(
    &self
) -> Result<Option<Vec<u8>>, Error>

Obtain content representing the signed attributes data to be digested.

Computing the content to go into the digest calculation is nuanced. From RFC 5652:

The result of the message digest calculation process depends on whether the signedAttrs field is present. When the field is absent, the result is just the message digest of the content as described above. When the field is present, however, the result is the message digest of the complete DER encoding of the SignedAttrs value contained in the signedAttrs field. Since the SignedAttrs value, when present, must contain the content-type and the message-digest attributes, those values are indirectly included in the result. The content-type attribute MUST NOT be included in a countersignature unsigned attribute as defined in Section 11.4. A separate encoding of the signedAttrs field is performed for message digest calculation. The IMPLICIT [0] tag in the signedAttrs is not used for the DER encoding, rather an EXPLICIT SET OF tag is used. That is, the DER encoding of the EXPLICIT SET OF tag, rather than of the IMPLICIT [0] tag, MUST be included in the message digest calculation along with the length and content octets of the SignedAttributes value.

A few things to note here:

  • We must ensure DER (not BER) encoding of the entire SignedAttrs values.
  • The SignedAttr tag must use EXPLICIT SET OF instead of IMPLICIT [0], so default encoding is not appropriate.
  • If this instance came into existence via a parse, we stashed away the raw bytes constituting SignedAttributes to ensure we can do a lossless copy.

Trait Implementations

Returns a copy of the value. Read more

Performs copy-assignment from source. Read more

Formats the value using the given formatter. Read more

This method tests for self and other values to be equal, and is used by ==. Read more

This method tests for !=.

The type returned in the event of a conversion error.

Performs the conversion.

Returns the length of the encoded values for the given mode.

Encodes the values in the given mode and writes them to target.

Converts the encoder into one with an explicit tag.

Captures the encoded values in the given mode.

Auto Trait Implementations

Blanket Implementations

Gets the TypeId of self. Read more

Immutably borrows from an owned value. Read more

Mutably borrows from an owned value. Read more

Compare self to key and return true if they are equal.

Returns the argument unchanged.

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

The resulting type after obtaining ownership.

Creates owned data from borrowed data, usually by cloning. Read more

🔬 This is a nightly-only experimental API. (toowned_clone_into)

Uses borrowed data to replace owned data, usually by cloning. Read more

The type returned in the event of a conversion error.

Performs the conversion.

The type returned in the event of a conversion error.

Performs the conversion.

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more