WIP implementation of certificate verification

Fethbita · Oct 27, 2024 · 85017e9 · 85017e9
1 parent 62714b4
commit 85017e9
Show file tree

Hide file tree

Showing 4 changed files with 419 additions and 213 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -30,6 +30,7 @@ openssl = { version = "0.10.66", features = ["vendored"], optional = true }
 rasn = { version = "0.16.6", optional = true}
 rasn-cms = { version = "0.16.6", optional = true}
 rasn-pkix = { version = "0.16.6", optional = true}
+num-bigint = "0.4.6"
 
 [dev-dependencies]
 hex-literal = "0.4.1"

diff --git a/examples/read_emrtd.rs b/examples/read_emrtd.rs
@@ -101,22 +101,22 @@ fn main() -> Result<(), EmrtdError> {
             csca_cert_store.all_certificates().len()
         );
         result = passive_authentication(&ef_sod, &csca_cert_store).unwrap();
-        info!("{:?} {:?} {:?}", result.0.type_(), result.1, result.2);
+        info!("{:?} {:?}", result.1, result.2);
     }
 
     // Read EF.DG1
     sm_object.select_ef(b"\x01\x01", "EF.DG1", true)?;
     let ef_dg1 = sm_object.read_data_from_ef(true)?;
     info!("Data from the EF.DG1: {}", bytes2hex(&ef_dg1));
     #[cfg(feature = "passive_auth")]
-    validate_dg(&ef_dg1, 1, result.0, &result.1)?;
+    validate_dg(&ef_dg1, 1, result.0.clone(), &result.1)?;
 
     // Read EF.DG2
     sm_object.select_ef(b"\x01\x02", "EF.DG2", true)?;
     let ef_dg2 = sm_object.read_data_from_ef(true)?;
     info!("Data from the EF.DG2: {}", bytes2hex(&ef_dg2));
     #[cfg(feature = "passive_auth")]
-    validate_dg(&ef_dg2, 2, result.0, &result.1)?;
+    validate_dg(&ef_dg2, 2, result.0.clone(), &result.1)?;
 
     let jpeg = get_jpeg_from_ef_dg2(&ef_dg2)?;
     std::fs::write("face.jpg", jpeg).expect("Error writing file");