-
Notifications
You must be signed in to change notification settings - Fork 73
/
Copy pathCMSSignature.swift
79 lines (69 loc) · 2.53 KB
/
CMSSignature.swift
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
//===----------------------------------------------------------------------===//
//
// This source file is part of the SwiftCertificates open source project
//
// Copyright (c) 2023 Apple Inc. and the SwiftCertificates project authors
// Licensed under Apache License v2.0
//
// See LICENSE.txt for license information
// See CONTRIBUTORS.txt for the list of SwiftCertificates project authors
//
// SPDX-License-Identifier: Apache-2.0
//
//===----------------------------------------------------------------------===//
import SwiftASN1
/// A representation of a CMS signature over some data.
///
/// This type hides the specifics of how CMS represents data, instead offering a limited
/// view over a CMS signed-data payload. It also abstracts the specific ASN.1 layout of the
/// signature.
@_spi(CMS)
public struct CMSSignature: Sendable, Hashable {
@usableFromInline
let base: CMSSignedData
/// Returns the certificates associated with the signers
@inlinable
public var signers: [Signer] {
get throws {
try self.base.signerInfos.compactMap { signerInfo in
try self.base.certificates?.certificate(signerInfo: signerInfo).map { Signer(certificate: $0) }
}
}
}
/// The certificates in the signature.
@inlinable
public var certificates: [Certificate] {
self.base.certificates ?? []
}
}
extension CMSSignature: DERImplicitlyTaggable {
@inlinable
public static var defaultIdentifier: ASN1Identifier {
CMSContentInfo.defaultIdentifier
}
@inlinable
public init(derEncoded rootNode: ASN1Node, withIdentifier identifier: ASN1Identifier) throws {
guard let base = try CMSContentInfo(derEncoded: rootNode, withIdentifier: identifier).signedData, base.version == .v1 else {
throw CMS.Error.unexpectedCMSType
}
self.base = base
}
@inlinable
public func serialize(into coder: inout DER.Serializer, withIdentifier identifier: ASN1Identifier) throws {
try CMSContentInfo(self.base).serialize(into: &coder, withIdentifier: identifier)
}
}
extension CMSSignature {
/// One of the "signers" that produced a given CMS block.
///
/// Note that the signer has not been validated, so it is possible that the signer did not actually
/// sign the block in question.
@_spi(CMS)
public struct Signer: Sendable, Hashable {
public let certificate: Certificate
@inlinable
init(certificate: Certificate) {
self.certificate = certificate
}
}
}