# frozen_string_literal: true
require_relative "utils"

if defined?(OpenSSL)

class OpenSSL::TestX509Attribute < OpenSSL::TestCase
  def test_new
    ef = OpenSSL::X509::ExtensionFactory.new
    val = OpenSSL::ASN1::Set.new([OpenSSL::ASN1::Sequence.new([
      ef.create_extension("keyUsage", "keyCertSign", true)
    ])])
    attr = OpenSSL::X509::Attribute.new("extReq", val)
    assert_equal("extReq", attr.oid)
    assert_equal(val.to_der, attr.value.to_der)

    attr = OpenSSL::X509::Attribute.new("1.2.840.113549.1.9.14", val)
    assert_equal("extReq", attr.oid)
  end

  def test_from_der
    # oid: challengePassword, values: Set[UTF8String<"abc123">]
    test_der = "\x30\x15\x06\x09\x2a\x86\x48\x86\xf7\x0d\x01\x09\x07\x31\x08" \
      "\x0c\x06\x61\x62\x63\x31\x32\x33".b
    attr = OpenSSL::X509::Attribute.new(test_der)
    assert_equal(test_der, attr.to_der)
    assert_equal("challengePassword", attr.oid)
    assert_equal("abc123", attr.value.value[0].value)
  end

  def test_to_der
    ef = OpenSSL::X509::ExtensionFactory.new
    val = OpenSSL::ASN1::Set.new([OpenSSL::ASN1::Sequence.new([
      ef.create_extension("keyUsage", "keyCertSign", true)
    ])])
    attr = OpenSSL::X509::Attribute.new("extReq", val)
    expected = OpenSSL::ASN1::Sequence.new([
      OpenSSL::ASN1::ObjectId.new("extReq"),
      val
    ])
    assert_equal(expected.to_der, attr.to_der)
  end

  def test_invalid_value
    # should not change the original value
    test_der = "\x30\x15\x06\x09\x2a\x86\x48\x86\xf7\x0d\x01\x09\x07\x31\x08" \
      "\x0c\x06\x61\x62\x63\x31\x32\x33".b
    attr = OpenSSL::X509::Attribute.new(test_der)
    assert_raise(TypeError) {
      attr.value = "1234"
    }
    assert_equal(test_der, attr.to_der)
    assert_raise(OpenSSL::X509::AttributeError) {
      attr.oid = "abc123"
    }
    assert_equal(test_der, attr.to_der)
  end

  def test_dup
    val = OpenSSL::ASN1::Set([
      OpenSSL::ASN1::UTF8String("abc123")
    ])
    attr = OpenSSL::X509::Attribute.new("challengePassword", val)
    assert_equal(attr.to_der, attr.dup.to_der)
  end

  def test_eq
    val1 = OpenSSL::ASN1::Set([
      OpenSSL::ASN1::UTF8String("abc123")
    ])
    attr1 = OpenSSL::X509::Attribute.new("challengePassword", val1)
    attr2 = OpenSSL::X509::Attribute.new("challengePassword", val1)
    ef = OpenSSL::X509::ExtensionFactory.new
    val2 = OpenSSL::ASN1::Set.new([OpenSSL::ASN1::Sequence.new([
      ef.create_extension("keyUsage", "keyCertSign", true)
    ])])
    attr3 = OpenSSL::X509::Attribute.new("extReq", val2)

    assert_equal false, attr1 == 12345
    assert_equal true, attr1 == attr2
    assert_equal false, attr1 == attr3
  end

  def test_marshal
    val = OpenSSL::ASN1::Set([
      OpenSSL::ASN1::UTF8String("abc123")
    ])
    attr = OpenSSL::X509::Attribute.new("challengePassword", val)
    deserialized = Marshal.load(Marshal.dump(attr))

    assert_equal attr.to_der, deserialized.to_der
  end
end

end