RubyGems - openssl-additions - Versions diffs - 0.5.0 → 0.6.0 - Mend

openssl-additions 0.5.0 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '07362825a73c86976d2405912f1edb3525e685d3e0e29322e8ce25cc1df3b3ca'
-  data.tar.gz: e547d3b7f72ecac40a5c180685c22b983b0e5b1179a6b4c09947aeee15bc6bad
+  metadata.gz: 3af2a1bdc82b061267777ed93961fa411eaea3ddeeb4912a0be3772cadfacd48
+  data.tar.gz: '0860f6fa16eb240a6d3408f91a3637f48900dc06d4f2fbe550684df60bccd3f8'
 SHA512:
-  metadata.gz: 977cd5463beca1c0f59f4ab4f470cd9149e8bc9c672701b592697e2c57d3a0a26218a69839d73e870b14314f91365a5cf55c3a86308a255a34982635a2e89ca5
-  data.tar.gz: 3bb1d9f777ffd936311ab4fe1eed977e5c9cd18e2ab42b8e942ce2eebc88bba01a0379912e229ff1da2e90a297c2d926d4e53a123767dcf1043fb9702c72e11e
+  metadata.gz: d27ca892b2505c0fb88095936dd44e880f340d112b2df50e48deb2fc66c96aa8bf36a0ea3d4c599c621e36efa020045709783fb4c239e26a143bd3a08d8fc265
+  data.tar.gz: 7bb76838e1bc1eee2af1b813e3406827dc0fe08ce32defe633be1da3f7037f7f9485a0e534e2fef0d16d99f10a8f4e317711639ab6363fd8796a8e0b6d1eb130

data/lib/openssl/pkey/rsa.rb CHANGED Viewed

@@ -14,4 +14,74 @@ class OpenSSL::PKey::RSA
   def to_spki(_format = nil)
     OpenSSL::X509::SPKI.new(self.public_key.to_der)
   end
+  # Construct a fully-featured RSA private key from fundamental values.
+  #
+  # Many parts of an RSA key are, in fact, derived from the basic numbers that
+  # are (mostly) generated randomly.  Whilst it is always better to let OpenSSL
+  # generate a whole key for you, in *extremely* limited circumstances, it can
+  # be useful to get a key which has been populated using factors derived from
+  # another source.
+  #
+  # @note This method does not attempt to validate that the values for `p` & `q`
+  #   are, in fact, primes, nor does it make any value judgments about your
+  #   choice of `e`.
+  #
+  # @param p [Integer] the larger of the two prime numbers that comprise the
+  #   fundamental RSA private key.
+  #
+  # @param q [Integer] the smaller of the two prime numbers.
+  #
+  # @param e [Integer] the public exponent used by the key.
+  #
+  # @return [OpenSSL::PKey::RSA]
+  #
+  # @raise [OpenSSL::PKey::PKeyError]
+  #
+  def self.from_factors(p, q, e)
+    p, q = q, p if p < q
+    n = p * q
+    # While `lcm = (p - 1).lcm(q - 1)` produces smaller keys, this version
+    # produces key that are identical to OpenSSL, which is generally our
+    # compatibility target.
+    lcm = (p - 1) * (q - 1)
+    if e < 1 || e >= lcm
+      raise OpenSSL::PKey::PKeyError,
+            "e must be 1 < e < lambda(n)"
+    end
+    if e.gcd(lcm) != 1
+      raise OpenSSL::PKey::PKeyError,
+            "e must coprime to lambda(n)"
+    end
+    d, _ = egcd(e, lcm)
+    # Ensure that d > 0
+    d %= lcm if d < 0
+    dmp1 = d % (p - 1)
+    dmq1 = d % (q - 1)
+    iqmp, _ = egcd(q, p)
+    iqmp += p / p.gcd(q) if iqmp < 0
+    OpenSSL::PKey::RSA.new.tap do |k|
+      k.set_key(n, e, d)
+      k.set_factors(p, q)
+      k.set_crt_params(dmp1, dmq1, iqmp)
+    end
+  end
+  private
+  def self.egcd(a, b)
+    return 1, 0 if b == 0
+    q, r = a.divmod b
+    s, t = egcd(b, r)
+    [t, s - q * t]
+  end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: openssl-additions
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.6.0
 platform: ruby
 authors:
 - Matt Palmer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-05-03 00:00:00.000000000 Z
+date: 2020-05-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler