RubyGems - openssl-additions - Versions diffs - 0.5.0 → 0.6.0 - Mend

openssl-additions 0.5.0 → 0.6.0

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '07362825a73c86976d2405912f1edb3525e685d3e0e29322e8ce25cc1df3b3ca'
-  data.tar.gz: e547d3b7f72ecac40a5c180685c22b983b0e5b1179a6b4c09947aeee15bc6bad
+  metadata.gz: 3af2a1bdc82b061267777ed93961fa411eaea3ddeeb4912a0be3772cadfacd48
+  data.tar.gz: '0860f6fa16eb240a6d3408f91a3637f48900dc06d4f2fbe550684df60bccd3f8'
 SHA512:
-  metadata.gz: 977cd5463beca1c0f59f4ab4f470cd9149e8bc9c672701b592697e2c57d3a0a26218a69839d73e870b14314f91365a5cf55c3a86308a255a34982635a2e89ca5
-  data.tar.gz: 3bb1d9f777ffd936311ab4fe1eed977e5c9cd18e2ab42b8e942ce2eebc88bba01a0379912e229ff1da2e90a297c2d926d4e53a123767dcf1043fb9702c72e11e
+  metadata.gz: d27ca892b2505c0fb88095936dd44e880f340d112b2df50e48deb2fc66c96aa8bf36a0ea3d4c599c621e36efa020045709783fb4c239e26a143bd3a08d8fc265
+  data.tar.gz: 7bb76838e1bc1eee2af1b813e3406827dc0fe08ce32defe633be1da3f7037f7f9485a0e534e2fef0d16d99f10a8f4e317711639ab6363fd8796a8e0b6d1eb130

data/lib/openssl/pkey/rsa.rb CHANGED Viewed

@@ -14,4 +14,74 @@ class OpenSSL::PKey::RSA
   def to_spki(_format = nil)
     OpenSSL::X509::SPKI.new(self.public_key.to_der)
   end
+  # Construct a fully-featured RSA private key from fundamental values.
+  #
+  # Many parts of an RSA key are, in fact, derived from the basic numbers that
+  # are (mostly) generated randomly.  Whilst it is always better to let OpenSSL
+  # generate a whole key for you, in *extremely* limited circumstances, it can
+  # be useful to get a key which has been populated using factors derived from
+  # another source.
+  #
+  # @note This method does not attempt to validate that the values for `p` & `q`
+  #   are, in fact, primes, nor does it make any value judgments about your
+  #   choice of `e`.
+  #
+  # @param p [Integer] the larger of the two prime numbers that comprise the
+  #   fundamental RSA private key.
+  #
+  # @param q [Integer] the smaller of the two prime numbers.
+  #
+  # @param e [Integer] the public exponent used by the key.
+  #
+  # @return [OpenSSL::PKey::RSA]
+  #
+  # @raise [OpenSSL::PKey::PKeyError]
+  #
+  def self.from_factors(p, q, e)
+    p, q = q, p if p < q
+    n = p * q
+    # While `lcm = (p - 1).lcm(q - 1)` produces smaller keys, this version
+    # produces key that are identical to OpenSSL, which is generally our
+    # compatibility target.
+    lcm = (p - 1) * (q - 1)
+    if e < 1 || e >= lcm
+      raise OpenSSL::PKey::PKeyError,
+            "e must be 1 < e < lambda(n)"
+    end
+    if e.gcd(lcm) != 1
+      raise OpenSSL::PKey::PKeyError,
+            "e must coprime to lambda(n)"
+    end
+    d, _ = egcd(e, lcm)
+    # Ensure that d > 0
+    d %= lcm if d < 0
+    dmp1 = d % (p - 1)
+    dmq1 = d % (q - 1)
+    iqmp, _ = egcd(q, p)
+    iqmp += p / p.gcd(q) if iqmp < 0
+    OpenSSL::PKey::RSA.new.tap do |k|
+      k.set_key(n, e, d)
+      k.set_factors(p, q)
+      k.set_crt_params(dmp1, dmq1, iqmp)
+    end
+  end
+  private
+  def self.egcd(a, b)
+    return 1, 0 if b == 0
+    q, r = a.divmod b
+    s, t = egcd(b, r)
+    [t, s - q * t]
+  end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: openssl-additions
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.6.0
 platform: ruby
 authors:
 - Matt Palmer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-05-03 00:00:00.000000000 Z
+date: 2020-05-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler