pq_crypto-jwt 0.2.0 → 0.2.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ded8bedea5417580ef9a3199f47543c037c1506dfe2e7a8db86bb6c1f2f94c7a
-  data.tar.gz: 716ed896e2f4960dcd3ca0afbd6ef94a43e45e63ea7f7284c1d277bfb2366418
+  metadata.gz: 32f1a2663779d332f693d8e7fe38cfdb730ad67aba2303c178a116d75a0656a6
+  data.tar.gz: 13b3a76f35d0175700678dd15f6b030ec284c56092a47425a7a1dc5ef5a7e3e5
 SHA512:
-  metadata.gz: 371849705f4387e78f3c98d08982274ad072bf519f2699c6d1df7de5254fe70e01c1e3a8d2c3d54cd2fe1573666c9fc871431726089a5907c586f6dbdfe0a7c0
-  data.tar.gz: 8e408633d2862da41b4e546ad717153a8312e7983698058aeb53da5435523fff670ee1fe4ed2d9cb392b9aed7f655737046122aa9e2e09efe3455eea9f63d941
+  metadata.gz: 53333891ef2330c3e871916102ec6d08f8d7753c8b79f405b26f1f142562f5d6a91cb319aabb62499924b7bcd488a37a21f7a30390a250c356dd12ce83d14cb9
+  data.tar.gz: 16679d31fb72e7ea1d0563e52cbb12ada1f31ed3e8e3554ead19a81a0f3f62a9336c03ba0b43370fba7280706f7bca7d1bddc3038b739959c4a114cc4f755513

data/CHANGELOG.md

@@ -1,5 +1,20 @@
 # Changelog
 
+## 0.2.1
+
+### Fixed
+
+- Streaming detached JWS signing now rejects protected `b64` and `crit` headers instead of allowing semantic mismatch with the base64url-encoded signing input.
+- Streaming detached JWS verification now fails closed for critical headers and `b64: false`.
+- Streaming `chunk_size` is now validated as a positive integer before signing, verification, or detached signing-input reads.
+- CI workflow now matches the documented release matrix for Ruby `3.1`, `3.2`, `3.3`, `3.4`, `4.0` crossed with `jwt ~> 3.1.0` and `jwt ~> 3.2.0`.
+
+### Added
+
+- Negative streaming tests for `crit`, `b64`, malformed base64url headers, and non-positive chunk sizes.
+- RFC 9964 regression tests for ML-DSA public key/signature sizes and AKP JWK thumbprint canonical members.
+- Explicit tests and documentation for trusted private AKP JWK import without `verify_public: true`.
+
 ## 0.2.0
 
 ### Changed

data/README.md

@@ -113,7 +113,7 @@ Private AKP JWK uses RFC 9964 seed format: `priv` is the 32 raw-byte ML-DSA seed
 secret_key = PQCrypto::JWT::JWK.secret_key_from_jwk(private_jwk)
 ```
 
-With `pq_crypto 0.6.1`, private import trusts the JWK `pub` field as metadata because the parent gem does not expose public seed derivation yet. Callers that need a strict `pub`/`priv` consistency check can request it explicitly; this will raise `UnsupportedFeature` until the parent exposes `Signature.public_key_from_seed` or `Signature.keypair_from_seed`:
+With `pq_crypto 0.6.1`, private import trusts the JWK `pub` field as metadata because the parent gem does not expose public seed derivation yet. `secret_key_from_jwk` without `verify_public: true` is suitable only for trusted private JWK material. It does not prove that `pub` belongs to `priv`. Callers that need a strict `pub`/`priv` consistency check can request it explicitly; this will raise `UnsupportedFeature` until the parent exposes `Signature.public_key_from_seed` or `Signature.keypair_from_seed`:
 
 ```ruby
 secret_key = PQCrypto::JWT::JWK.secret_key_from_jwk(private_jwk, verify_public: true)
@@ -173,6 +173,8 @@ PQCrypto::JWT::JWA::MLDSA87
 
 `verify_io` returns `[payload_position, header]` on success. `payload_position` is `nil` for non-seekable streams that do not respond to `#pos`.
 
+The streaming helper signs the regular compact JWS signing input with a base64url-encoded payload. It does not implement RFC 7797 unencoded payload mode. `sign_io` rejects protected `b64` and `crit` header fields, and `verify_io` fails closed for critical headers or `b64: false`. `chunk_size` must be a positive integer.
+
 ## Non-goals
 
 This adapter deliberately does **not** expose:

data/lib/pq_crypto/jwt/jwa/ml_dsa_streaming.rb

@@ -19,10 +19,12 @@ module PQCrypto
         def sign_io(signing_key:, payload_io: nil, io: nil, header_fields: {}, chunk_size: DEFAULT_CHUNK_SIZE)
           ensure_streaming!
           ensure_key!(signing_key, PQCrypto::Signature::SecretKey, "signing")
+          validate_chunk_size!(chunk_size)
           source = payload_io || io
           raise ArgumentError, "payload_io must respond to #read" unless source.respond_to?(:read)
 
-          encoded_header = base64url(JSON.generate(header_fields.transform_keys(&:to_s).merge("alg" => alg)))
+          header = normalize_signing_header!(header_fields).merge("alg" => alg)
+          encoded_header = base64url(JSON.generate(header))
           input = DetachedSigningInputIO.new(encoded_header, source, chunk_size: chunk_size)
           signature = signing_key.sign_io(input, chunk_size: chunk_size, context: EMPTY_CONTEXT)
           "#{encoded_header}..#{base64url(signature)}"
@@ -35,6 +37,7 @@ module PQCrypto
         def verify_io(verification_key:, token:, payload_io:, chunk_size: DEFAULT_CHUNK_SIZE)
           ensure_streaming!
           ensure_key!(verification_key, PQCrypto::Signature::PublicKey, "verification")
+          validate_chunk_size!(chunk_size)
           raise ArgumentError, "token must be a String" unless token.is_a?(String)
           raise ArgumentError, "payload_io must respond to #read" unless payload_io.respond_to?(:read)
 
@@ -42,7 +45,7 @@ module PQCrypto
           return false unless extra.nil? && encoded_payload == "" && encoded_signature
 
           header = JSON.parse(Base64.urlsafe_decode64(encoded_header))
-          return false unless header.is_a?(Hash) && header["alg"] == alg
+          return false unless supported_streaming_header?(header)
 
           signature = Base64.urlsafe_decode64(encoded_signature)
           return false unless signature_length_valid?(signature)
@@ -71,10 +74,42 @@ module PQCrypto
         def base64url(bytes)
           Base64.urlsafe_encode64(String(bytes).b, padding: false)
         end
+
+        def normalize_signing_header!(header_fields)
+          unless header_fields.respond_to?(:to_hash)
+            raise ArgumentError, "header_fields must be a Hash-like object"
+          end
+
+          header = header_fields.to_hash.each_with_object({}) { |(key, value), out| out[String(key)] = value }
+          unsupported = %w[b64 crit] & header.keys
+          unless unsupported.empty?
+            raise ArgumentError, "unsupported protected header#{unsupported.size == 1 ? '' : 's'}: #{unsupported.join(', ')}"
+          end
+
+          header
+        end
+
+        def supported_streaming_header?(header)
+          return false unless header.is_a?(Hash) && header["alg"] == alg
+          return false if header.key?("crit")
+          return false if header.key?("b64") && header["b64"] != true
+
+          true
+        end
+
+        def validate_chunk_size!(chunk_size)
+          return if chunk_size.is_a?(Integer) && chunk_size.positive?
+
+          raise ArgumentError, "chunk_size must be a positive Integer"
+        end
       end
 
       class DetachedSigningInputIO
         def initialize(encoded_header, payload_io, chunk_size: MLDSAStreaming::DEFAULT_CHUNK_SIZE)
+          unless chunk_size.is_a?(Integer) && chunk_size.positive?
+            raise ArgumentError, "chunk_size must be a positive Integer"
+          end
+
           @prefix = "#{encoded_header}.".b
           @payload_io = payload_io
           @chunk_size = chunk_size

data/lib/pq_crypto/jwt/version.rb

@@ -2,6 +2,6 @@
 
 module PQCrypto
   module JWT
-    VERSION = "0.2.0"
+    VERSION = "0.2.1"
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pq_crypto-jwt
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.2.1
 platform: ruby
 authors:
 - Roman Haydarov
@@ -100,7 +100,7 @@ licenses:
 - MIT
 metadata:
   source_code_uri: https://github.com/roman-haidarov/pq_crypto-jwt
-  changelog_uri: https://github.com/roman-haidarov/pq_crypto-jwt/blob/v0.2.0/CHANGELOG.md
+  changelog_uri: https://github.com/roman-haidarov/pq_crypto-jwt/blob/v0.2.1/CHANGELOG.md
   bug_tracker_uri: https://github.com/roman-haidarov/pq_crypto-jwt/issues
 post_install_message:
 rdoc_options: []