Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NameTypeAndValue of type "unique_indentifier" cannot be prepared #268

Closed
vxgmichel opened this issue Sep 29, 2023 · 0 comments · Fixed by #271
Closed

NameTypeAndValue of type "unique_indentifier" cannot be prepared #268

vxgmichel opened this issue Sep 29, 2023 · 0 comments · Fixed by #271

Comments

@vxgmichel
Copy link

Loosely related to issue #228 and PR #241.

Note that the NameTypeAndValue class can hold a unique_identifier which is an OctetBitString:

asn1crypto/asn1crypto/x509.py

Line 652 in af8a325

class NameTypeAndValue(Sequence):

asn1crypto/asn1crypto/x509.py

Line 677 in af8a325

'unique_identifier': OctetBitString,

However, the prepped_value property relies on the value being a unicode string:

asn1crypto/asn1crypto/x509.py

Lines 700 to 712 in af8a325

@property
def prepped_value(self):
"""
Returns the value after being processed by the internationalized string
preparation as specified by RFC 5280
:return:
A unicode string
"""
if self._prepped is None:
self._prepped = self._ldap_string_prep(self['value'].native)
return self._prepped

For this reason, attempting to hash a Name with a RDNSequence that includes a unique_identifier fails with the following error:

../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:1055: in hashable
    return self.chosen.hashable
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:949: in hashable
    return '\x1E'.join(rdn.hashable for rdn in self)
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:949: in <genexpr>
    return '\x1E'.join(rdn.hashable for rdn in self)
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:856: in hashable
    values = self._get_values(self)
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:925: in _get_values
    for ntv in rdn:
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:931: in <listcomp>
    [output.update([(ntv['type'].native, ntv.prepped_value)]) for ntv in rdn]
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:711: in prepped_value
    self._prepped = self._ldap_string_prep(self['value'].native)
../../miniconda/envs/parsec/lib/python3.9/site-packages/asn1crypto/x509.py:749: in _ldap_string_prep
    string = re.sub('[\u00ad\u1806\u034f\u180b-\u180d\ufe0f-\uff00\ufffc]+', '', string)
pattern = '[\xad᠆͏᠋-᠍️-\uff00]+', repl = '', string = b'test_ca', count = 0, flags = 0
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 
    def sub(pattern, repl, string, count=0, flags=0):
        """Return the string obtained by replacing the leftmost
        non-overlapping occurrences of the pattern in string by the
        replacement repl.  repl can be either a string or a callable;
        if a string, backslash escapes in it are processed.  If it is
        a callable, it's passed the Match object and must return
        a replacement string to be used."""
>       return _compile(pattern, flags).sub(repl, string, count)
E       TypeError: cannot use a string pattern on a bytes-like object
../../miniconda/envs/parsec/lib/python3.9/re.py:210: TypeError
wbond added a commit that referenced this issue Nov 2, 2023
@wbond
Fix x509.Name.build() to properly handle all fields
4fee9d8 
Previously it did not properly handle the following fields:

 - unique_identifier
 - tpm_manufacturer
 - tpm_model
 - tpm_version
 - platform_manufacturer
 - platform_model
 - platform_version

Fixes #260 and #268
@wbond wbond mentioned this issue Nov 2, 2023
Merged
wbond added a commit that referenced this issue Nov 3, 2023
@wbond
Allows an x509.Name to be hashable if it container unique_identifier
6c17891 
Fixes #268
@wbond wbond mentioned this issue Nov 3, 2023
Merged
wbond added a commit that referenced this issue Nov 3, 2023
@wbond
Allows an x509.Name to be hashable if it contains unique_identifier
505429b 
Fixes #268
wbond added a commit that referenced this issue Nov 3, 2023
@wbond
Allows an x509.Name to be hashable if it contains unique_identifier
7bc07e7 
Fixes #268
@wbond wbond closed this as completed in #271 Nov 3, 2023
wbond added a commit that referenced this issue Nov 3, 2023
@wbond
Allows an x509.Name to be hashable if it contains unique_identifier (#…
b763a75 
…271)

Fixes #268
@vxgmichel vxgmichel mentioned this issue Nov 7, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Allows an x509.Name to be hashable if it container unique_identifier wbond/asn1crypto
1 participant
@vxgmichel