Skip to content

Commit

Permalink
Fix expired certificate
Browse files Browse the repository at this point in the history
  • Loading branch information
@romainthomas
romainthomas committed Mar 11, 2023
1 parent 47b1313 commit e9d1116
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions tests/pe/test_authenticode.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,9 +67,9 @@ def test_api():
assert cert_signer.issuer == "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 Assured ID Code Signing CA"
assert cert_signer.subject == "C=CZ, L=Praha, O=Avast Software s.r.o., OU=RE stapler cistodc, CN=Avast Software s.r.o."

assert cert_ca.verify(cert_signer) == lief.PE.x509.VERIFICATION_FLAGS.OK
assert cert_ca.verify(cert_signer) == lief.PE.x509.VERIFICATION_FLAGS.BADCERT_EXPIRED
assert cert_ca.verify(cert_ca) == lief.PE.x509.VERIFICATION_FLAGS.BADCERT_NOT_TRUSTED
assert cert_signer.is_trusted_by([cert_ca]) == lief.PE.x509.VERIFICATION_FLAGS.OK
assert cert_signer.is_trusted_by([cert_ca]) == lief.PE.x509.VERIFICATION_FLAGS.BADCERT_EXPIRED

ca_bundles = lief.PE.x509.parse(get_sample("pkcs7/windows-ca-bundle.pem"))
assert cert_ca.is_trusted_by(ca_bundles) == lief.PE.x509.VERIFICATION_FLAGS.OK
Expand Down

0 comments on commit e9d1116

Please sign in to comment.