RubyGems - linzer - Versions diffs - 0.6.4 → 0.6.5 - Mend

linzer 0.6.4 → 0.6.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: bff7f24f79244ceffa58e5b005b45b2384b34f2d23eda4c0a613060c4f708fa4
-  data.tar.gz: bfee805d74cf0e1fc3d3588ec6eac8a1de5b96a16021198d016f0be9fb48e371
+  metadata.gz: 6d5b1a0dfcd7d402e3a5bf2e22102271e3273e1f7092e4dad09ae7078e04dcf3
+  data.tar.gz: 197933c6728e55678e7f29e5161b57fecd0ca39bacb586260412674a538cd8b1
 SHA512:
-  metadata.gz: d62f773a0d20b09bb97987180f251a70b4db5c29eb4ecf2112e486c9169e418085823c813fa68e4063347d421328f171604c3f82bdf1b6ffae0385bfc41fd8ce
-  data.tar.gz: 0e53c41f9485a8028f11f67e368ca0ec60a82f8e795973d258fb96a57cfdcfe085308f4cd2eb0ac55fe8b5ee39c1a4f8d56d3d9d09fa57ee720eda17831e66ae
+  metadata.gz: f6da1cd0829f06c15f1a5cf66af191836294ffeea666e15f969f28c7171bf2b8e887b1fb5aa405fbfc7c840719ce82cc6cdae3b7238f987bb00f6c71e238c930
+  data.tar.gz: 047a03b94451dcffe5982165bc14acc7c6419fe4d8ff9f72e2d4510a77fae87c5960fabdaa0ff129d89724b0185a37454e3a6d9ec6ea903192eadc013e1abb64

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 ## [Unreleased]
+## [0.6.5] - 2025-04-09
+- Add support for RSA (RSASSA-PKCS1-V1_5) and improve RSASSA-PSS handling.
+  Pull request [#10](https://github.com/nomadium/linzer/pull/10)
+  by [oneiros](https://github.com/oneiros).
 ## [0.6.4] - 2025-04-04
 - Allow validating the `created` parameter to mitigate the

data/README.md CHANGED Viewed

@@ -160,7 +160,7 @@ pp signature.to_h
 For now, to consult additional details just take a look at source code and/or the unit tests.
-Please note that is still early days and extensive testing is still ongoing. For now only the following algorithms are supported: RSASSA-PSS using SHA-512, HMAC-SHA256, Ed25519 and ECDSA (P-256 and P-384 curves).
+Please note that is still early days and extensive testing is still ongoing. For now the following algorithms are supported: RSASSA-PSS using SHA-512, RSASSA-PKCS1-v1_5 using SHA-256, HMAC-SHA256, Ed25519 and ECDSA (P-256 and P-384 curves). JSON Web Signature (JWS) algorithms mentioned in the RFC are not supported yet.
 I'll be expanding the library to cover more functionality specified in the RFC
 in subsequent releases.

data/lib/linzer/key/helper.rb CHANGED Viewed

@@ -4,24 +4,38 @@ module Linzer
   class Key
     module Helper
       def generate_rsa_pss_sha512_key(size, key_id = nil)
-        material = OpenSSL::PKey::RSA.generate(size)
-        Linzer::RSA::Key.new(material, id: key_id, digest: "SHA512")
+        material = OpenSSL::PKey.generate_key("RSASSA-PSS")
+        Linzer::RSAPSS::Key.new(material, id: key_id, digest: "SHA512")
       end
       def new_rsa_pss_sha512_key(material, key_id = nil)
         key = OpenSSL::PKey.read(material)
-        Linzer::RSA::Key.new(key, id: key_id, digest: "SHA512")
+        Linzer::RSAPSS::Key.new(key, id: key_id, digest: "SHA512")
       end
+      # XXX: investigate: was this method made redundant after:
+      # https://github.com/nomadium/linzer/pull/10
       def new_rsa_pss_sha512_public_key(material, key_id = nil)
         key = OpenSSL::PKey::RSA.new(material)
-        Linzer::RSA::Key.new(key, id: key_id, digest: "SHA512")
+        Linzer::RSAPSS::Key.new(key, id: key_id, digest: "SHA512")
       end
-      # XXX: to-do
-      # Linzer::RSA::Key
-      # def new_rsa_v1_5_sha256_key
-      # def generate_rsa_v1_5_sha256_key
+      def generate_rsa_v1_5_sha256_key(size, key_id = nil)
+        material = OpenSSL::PKey::RSA.generate(size)
+        Linzer::RSA::Key.new(material, id: key_id, digest: "SHA256")
+      end
+      def new_rsa_v1_5_sha256_key(material, key_id = nil)
+        key = OpenSSL::PKey.read(material)
+        Linzer::RSA::Key.new(key, id: key_id, digest: "SHA256")
+      end
+      # XXX: investigate: was this method made redundant after:
+      # https://github.com/nomadium/linzer/pull/10
+      def new_rsa_v1_5_sha256_public_key(material, key_id = nil)
+        key = OpenSSL::PKey.read(material)
+        Linzer::RSA::Key.new(key, id: key_id, digest: "SHA256")
+      end
       def generate_hmac_sha256_key(key_id = nil)
         material = OpenSSL::Random.random_bytes(64)

data/lib/linzer/rsa.rb CHANGED Viewed

@@ -15,13 +15,7 @@ module Linzer
       def verify(signature, data)
         # XXX: should check if the key is usable for verifying
-        return true if @material.verify_pss(
-          @params[:digest],
-          signature,
-          data,
-          salt_length: @params[:salt_length] || :auto,
-          mgf1_hash:   @params[:digest]
-        )
+        return true if @material.verify(@params[:digest], signature, data)
         false
       end
     end

data/lib/linzer/rsa_pss.rb ADDED Viewed

@@ -0,0 +1,40 @@
+# frozen_string_literal: true
+module Linzer
+  module RSAPSS
+    SALT_LENGTH = 64
+    class Key < Linzer::Key
+      def validate
+        super
+        validate_digest
+      end
+      def sign(data)
+        # XXX: should check if the key is usable for signing
+        @material.sign(@params[:digest], data, signature_options)
+      end
+      def verify(signature, data)
+        # XXX: should check if the key is usable for verifying
+        return true if @material.verify(
+          @params[:digest],
+          signature,
+          data,
+          signature_options
+        )
+        false
+      end
+      private
+      def signature_options
+        {
+          rsa_padding_mode: "pss",
+          rsa_pss_saltlen: @params[:salt_length] || SALT_LENGTH,
+          rsa_mgf1_md:   @params[:digest]
+        }
+      end
+    end
+  end
+end

data/lib/linzer/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Linzer
-  VERSION = "0.6.4"
+  VERSION = "0.6.5"
 end

data/lib/linzer.rb CHANGED Viewed

@@ -14,6 +14,7 @@ require_relative "linzer/message"
 require_relative "linzer/signature"
 require_relative "linzer/key"
 require_relative "linzer/rsa"
+require_relative "linzer/rsa_pss"
 require_relative "linzer/hmac"
 require_relative "linzer/ed25519"
 require_relative "linzer/ecdsa"

metadata CHANGED Viewed

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: linzer
 version: !ruby/object:Gem::Version
-  version: 0.6.4
+  version: 0.6.5
 platform: ruby
 authors:
 - Miguel Landaeta
-autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-04-04 00:00:00.000000000 Z
+date: 2025-04-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: openssl
@@ -104,7 +103,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 3.1.2
-description:
 email:
 - miguel@miguel.cc
 executables: []
@@ -129,6 +127,7 @@ files:
 - lib/linzer/request.rb
 - lib/linzer/response.rb
 - lib/linzer/rsa.rb
+- lib/linzer/rsa_pss.rb
 - lib/linzer/signature.rb
 - lib/linzer/signer.rb
 - lib/linzer/verifier.rb
@@ -140,7 +139,6 @@ metadata:
   homepage_uri: https://github.com/nomadium/linzer
   source_code_uri: https://github.com/nomadium/linzer
   changelog_uri: https://github.com/nomadium/linzer/blob/master/CHANGELOG.md
-post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -155,8 +153,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.3
-signing_key:
+rubygems_version: 3.6.2
 specification_version: 4
 summary: An implementation of HTTP Messages Signatures (RFC9421)
 test_files: []