Sith/eboutic/tests/test_crypto.py

#!/usr/bin/env python3
#
# Skia < skia AT libskia DOT so >
#
# Beerware licensed software - 2017
#

import base64
from pathlib import Path
from typing import TYPE_CHECKING

import pytest
from cryptography.exceptions import InvalidSignature
from cryptography.hazmat.primitives.asymmetric.padding import PKCS1v15
from cryptography.hazmat.primitives.hashes import SHA1
from cryptography.hazmat.primitives.serialization import (
    load_pem_private_key,
    load_pem_public_key,
)
from django.conf import settings

if TYPE_CHECKING:
    from cryptography.hazmat.primitives.asymmetric.rsa import (
        RSAPrivateKey,
        RSAPublicKey,
    )


def test_signature_valid():
    """Test that data sent to the bank is correctly signed."""
    data = "Amount=400&BasketID=4000&Auto=42&Error=00000\n".encode("utf-8")

    # Sign
    key_dir = Path(settings.BASE_DIR) / "eboutic" / "tests"
    privkey: RSAPrivateKey = load_pem_private_key(
        (key_dir / "private_key.pem").read_bytes(), None
    )
    pubkey: RSAPublicKey = load_pem_public_key(
        (key_dir / "public_key.pem").read_bytes()
    )
    signature = privkey.sign(data, PKCS1v15(), SHA1())
    b64sig = base64.b64encode(signature)
    signature = base64.b64decode(b64sig)
    try:
        pubkey.verify(signature, data, PKCS1v15(), SHA1())
    except InvalidSignature:
        pytest.fail("Failed to validate signature")
various deps updates 2024-07-26 17:30:02 +00:00			`#!/usr/bin/env python3`
			`#`
			`# Skia < skia AT libskia DOT so >`
			`#`
			`# Beerware licensed software - 2017`
			`#`

			`import base64`
			`from pathlib import Path`
Add more Ruff rules (#891) * ruff: apply rule F * ruff: apply rule E * ruff: apply rule SIM * ruff: apply rule TCH * ruff: apply rule ERA * ruff: apply rule PLW * ruff: apply rule FLY * ruff: apply rule PERF * ruff: apply rules FURB & RUF 2024-10-15 09:36:26 +00:00			`from typing import TYPE_CHECKING`
various deps updates 2024-07-26 17:30:02 +00:00
			`import pytest`
			`from cryptography.exceptions import InvalidSignature`
			`from cryptography.hazmat.primitives.asymmetric.padding import PKCS1v15`
			`from cryptography.hazmat.primitives.hashes import SHA1`
			`from cryptography.hazmat.primitives.serialization import (`
			`load_pem_private_key,`
			`load_pem_public_key,`
			`)`
			`from django.conf import settings`

Add more Ruff rules (#891) * ruff: apply rule F * ruff: apply rule E * ruff: apply rule SIM * ruff: apply rule TCH * ruff: apply rule ERA * ruff: apply rule PLW * ruff: apply rule FLY * ruff: apply rule PERF * ruff: apply rules FURB & RUF 2024-10-15 09:36:26 +00:00			`if TYPE_CHECKING:`
			`from cryptography.hazmat.primitives.asymmetric.rsa import (`
			`RSAPrivateKey,`
			`RSAPublicKey,`
			`)`

various deps updates 2024-07-26 17:30:02 +00:00
			`def test_signature_valid():`
			`"""Test that data sent to the bank is correctly signed."""`
			`data = "Amount=400&BasketID=4000&Auto=42&Error=00000\n".encode("utf-8")`

			`# Sign`
			`key_dir = Path(settings.BASE_DIR) / "eboutic" / "tests"`
			`privkey: RSAPrivateKey = load_pem_private_key(`
			`(key_dir / "private_key.pem").read_bytes(), None`
			`)`
			`pubkey: RSAPublicKey = load_pem_public_key(`
			`(key_dir / "public_key.pem").read_bytes()`
			`)`
			`signature = privkey.sign(data, PKCS1v15(), SHA1())`
			`b64sig = base64.b64encode(signature)`
			`signature = base64.b64decode(b64sig)`
			`try:`
			`pubkey.verify(signature, data, PKCS1v15(), SHA1())`
			`except InvalidSignature:`
			`pytest.fail("Failed to validate signature")`