Proposal for creating pkeys from raw parameters #555
Conversation
anakinj
force-pushed
the
pkey-from-parameters
branch
from
d3071b7
to
61052b4
Compare
|
Got the RSA generation pretty much working, with user-friendly parameter names for the most common parameters. Started to look into how to generate EC keys from params, turned out to be a little more complicate than to just throw bignums at it so still a WIP :) Does this approach make sense:
Also would it make sense to incrementally build this and maybe first only support RSA keys and then expanding support for other key types later? |
|
Continued a bit on the EC pkey generation. Seems that OpenSSL only allows passing the Not sure if we want to go into making it convenient by:
Also unsure what other parameters do we want to support on creating, the EC object is pretty simple in Ruby. There is a bunch of different parameters that can be set for the EC pkey, some are inherited from the curve name I guess. Im not an expert on this so all feedback is appreciated :) For the use-case Im interested in this implementation would be good enough. Allow EC keys to be generated based on:
|
|
Continuing my monologue :) This draft now supports all the Now I'm wondering about backwards compatibility. Would be nice to be able to support the same interface for OpenSSL 1.1 and OpenSSL 3.0. The implementation would probably be very different for OpenSSL 1.1. Could someone allow the CI to run on this one? Would be interesting to see all the issues. Also still open for feedback on the code part of things. |
|
Feel a little bad for leaving this open like this, but a little clueless on how to continue or if to continue at all. Any pointers on the direction to take this? Try to use the mutable pkeys in openssl 1.x to handle the parameters or just support openssl 3.0 for now? Maybe @rhenium could have some ideas? |
|
Thank you for working on this! Sorry for taking so long time to review. Yes, As for the implementation, I want generic methods directly defined in OpenSSL::PKey to be minimum and independent of key types as much as possible. I wonder if the parameter name → value type mappings could be done without hard-coding them; OpenSSL's docs mention EVP_PKEY_fromdata_settable() and it appears to be provided for this purpose.
The compatibility is nice to have, but I don't find it a requirement. Once we have OpenSSL 3.0 code in C, I expect this can be implemented in Ruby with existing methods (probably in lib/openssl/pkey.rb). |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
aa6383d
to
0cddb6a
Compare
|
Thanks @rhenium for pointing to Still not happy with the way the aliases are handled, as said earlier my C skills are a little rusty so passing static arrays to the callback was not that straightforward so for now passing both size and pointer was the only option I could figure out, so probably going return to them soonish. |
|
+1 It would be extremely useful to have this method and it would make it easier to migrate some code from OpenSSL v1.1 to OpenSSL v3. Is there any chance to see this merged? |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
7026f0c
to
e3c722f
Compare
|
Excellent work! Meanwhile, is there a Ruby workaround? |
|
@wilsonsilva Probably you can find this commit useful as a start... take a look to the |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
e3c722f
to
0d510ed
Compare
Thank you. The morning you posted this, I had already been on that repo! Thanks for writing that code. https://github.com/wilsonsilva/nostr/blob/main/lib/nostr/crypto.rb#L111-L129 |
anakinj
force-pushed
the
pkey-from-parameters
branch
3 times, most recently
from
a5dc485
to
70bb9d4
Compare
|
I refreshed (and rebased) the branch a bit, curious if the tests pass on CI. |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
a8a6f5d
to
dfe3d55
Compare
anakinj
force-pushed
the
pkey-from-parameters
branch
from
dfe3d55
to
063a6e2
Compare
|
@rhenium could you approve the CI workflow please? |
|
I approved the CI workflow. |
|
I see the failures on the openssl-head and openssl 3 fips cases on CI. For the failure of the openssl-head case, the 2e826d5 fixes it. So, you can pass the case by rebasing this PR on the latest master branch. |
|
For example below are the failures on openssl-head fips. I would like you to consider using FIPS-approved crypto algorithms or bits in your new tests as much as possible because I want to see that this new feature is supported in the FIPS cases. As a reference, I don't think that the following code using the openssl/test/openssl/test_provider.rb Line 3 in a8caa63 Using the method |
|
Thanks for all of the pointers. I'll look into refreshing the branch again and looking into making the tests FIPS compatible. |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
063a6e2
to
ae9a2d5
Compare
|
Thanks for the great pointers again @junaruga, the changes seem to pass CI now. Is there any adjustments that you would wish to see still? |
test/openssl/test_pkey.rb
Outdated
| dmp1: source.dmp1, | ||
| dmq1: source.dmq1, | ||
| iqmp: source.iqmp | ||
| ) |
There was a problem hiding this comment.
Maybe the position of the ) can be adjusted. As a reference, below is what Rubocop style guide suggests.
https://github.com/rubocop/ruby-style-guide?tab=readme-ov-file#method-arguments-alignment
@anakinj Thank you for working for applying the FIPS-approved crypto algorithms. I think the logic for the FIPS part is good to me. I think you can squash the 6 commits to 1 commit in this PR now, because eventually I think we want to see just one commit for this PR. Then perhaps you may need small adjustments about the coding style. While the maximum line length in the current existing code is sometimes more than 80 bytes, I may try to keep the maximum 80 bytes for the code I implement newly if I were you. @rhenium may have his opinion about the style. |
test/openssl/test_pkey.rb
Outdated
|
|
||
| key = OpenSSL::PKey.from_parameters("ED25519", pub: "\xD0\x8E\xA8\x96\xB6Fbi{$k\xAC\xB8\xA2V\xF4n\xC3\xD06}R\x8A\xE6I\xA7r\xF6D{W\x84") | ||
| assert_instance_of OpenSSL::PKey::PKey, key | ||
| assert_equal "-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEA0I6olrZGYml7JGusuKJW9G7D0DZ9UormSady9kR7V4Q=\n-----END PUBLIC KEY-----\n", key.public_to_pem |
There was a problem hiding this comment.
I think you can use Ruby's heredoc syntax for a better readability. You can refer to other parts using the heredoc in the test/openssl/test_pkey.rb.
There was a problem hiding this comment.
Adjusted to have the expected public presented in heredoc. Looks way prettier
test/openssl/test_pkey.rb
Outdated
| def test_s_from_parameters_rsa_with_n_e_and_d_given_as_integers | ||
| new_key = OpenSSL::PKey.from_parameters("RSA", n: 3161751493, | ||
| e: 65537, | ||
| d: 2064855961) |
There was a problem hiding this comment.
Is it intentional that you are using mixture of the symbol keys such as n: in some tests and String keys such as "n" => in other tests?
There was a problem hiding this comment.
The intention was to test that keys could also be passed as strings. Maybe it would be clearer to have a dedicated test for that instead of testing it "on the side"?
There was a problem hiding this comment.
Yes, I think the dedicated test for testing the symbol keys is a good idea to show the intention clearly. Checking the existing test/openssl/test_pkey.rb, there are only the cases using String keys for a hash in the file. So, in my opinion, maybe it's better to use the String keys as a default, and a dedicated test for testing the symbol keys.
There was a problem hiding this comment.
Now tests are using string keys, except one dedicated test with symbol keys
test/openssl/test_pkey.rb
Outdated
| "rsa-exponent1" => source.dmp1, | ||
| "rsa-exponent2" => source.dmq1, | ||
| "rsa-coefficient1" => source.iqmp | ||
| ) |
There was a problem hiding this comment.
The thing for the ) is same with the one I mentioned in another part.
There was a problem hiding this comment.
Adjusted the alignment of everything
| if (cur > end) | ||
| break; | ||
| cur += snprintf(cur, end-cur, fmt, params->aliases[i].alias); | ||
| } |
There was a problem hiding this comment.
The use of snprintf() makes me a bit nervous. Could you use Ruby String for building the error message? Ruby exposes a number of functions for interacting with string, for example:
// Creates an empty string
VALUE str = rb_str_new(NULL, 0);
// Append to `str` using printf-style format
rb_str_catf(str, "%s", params->aliases[i].alias);ossl_raise() supports "%"PRIsVALUE format specifier for including Ruby object in the message (as apposed to "%s" for a C string).
There was a problem hiding this comment.
Thanks for the pointer (and the patience), this is my first really touching a bigger gem with C extensions. So learning here.
There was a problem hiding this comment.
I ended up using an array and joining with a comma as I probably would have done in Ruby also. This to avoid the complexity of checking if a comma needs to be appended or not. Think the result is pretty tidy.
ext/openssl/ossl_pkey.c
Outdated
| else | ||
| from_params_args.aliases = fcc_aliases; | ||
|
|
||
| rb_hash_foreach(options, &add_parameter_to_builder, (VALUE) &from_params_args); |
There was a problem hiding this comment.
ctx will leak if rb_hash_foreach() raises an exception. Please wrap it with rb_protect() so that they can freed before escaping from this function.
There was a problem hiding this comment.
Adjusted this one. There were more leaks than just this one but now I think it might be freeing everything when exceptions happen. This approach also removes the need to free things inside the iterator function.
ext/openssl/ossl_pkey.c
Outdated
| static VALUE | ||
| ossl_pkey_s_from_parameters(int argc, VALUE *argv, VALUE self) | ||
| { | ||
| #if OSSL_OPENSSL_PREREQ(3, 0, 0) |
There was a problem hiding this comment.
Style nit: please remove spaces before #
test/openssl/test_pkey.rb
Outdated
| e = assert_raise(OpenSSL::PKey::PKeyError) { | ||
| OpenSSL::PKey.from_parameters("ASR", {}) | ||
| } | ||
| assert_match(/^EVP_PKEY_CTX_new_from_name: unsupported/, e.message) |
There was a problem hiding this comment.
| e = assert_raise(OpenSSL::PKey::PKeyError) { | |
| OpenSSL::PKey.from_parameters("ASR", {}) | |
| } | |
| assert_match(/^EVP_PKEY_CTX_new_from_name: unsupported/, e.message) | |
| assert_raise_with_message(OpenSSL::PKey::PKeyError, /^EVP_PKEY_CTX_new_from_name: unsupported/) { | |
| OpenSSL::PKey.from_parameters("ASR", {}) | |
| } |
We can use assert_raise_with_message for this kind of test.
test/openssl/test_pkey.rb
Outdated
| end | ||
|
|
||
| def test_s_from_parameters_rsa_with_openssl_internal_names | ||
| source = OpenSSL::PKey::RSA.generate(2048) |
There was a problem hiding this comment.
Please avoid generating a new RSA/DSA/DH key because it can take a long time. For this feature, pre-generated keys (Fixtures.pkey("rsa2048"), for example, for RSA) should work.
There was a problem hiding this comment.
I change the key generations to use fixtures. For the EC test I added 3 new fixtures for each EC curve used in these tests. The existing p256.pem and ec-prime256v1.pem serve the same purpose and could probably be unified, but think that could happen in separate.
Below is the ruby/ruby's coding style. And there is no comment about the maximum line length. So, I think the style of the maximum length 80 bytes is optional, and nice to have. https://github.com/ruby/ruby/wiki/Developer-How-To#coding-style |
|
I'm sorry for the slow response. As for the method name, can we maybe have a different one than This is based on The implementatation, I'm not sure what value the alias names for RSA/DSA/DH give us. Since this is a completely new method, I think we can simply forget about the old names and only accept what |
|
Thanks for all the feedback. The suggested About the aliases, it's mainly because of convenience and keeping the consistency on how this gem has named the parameters and how the average user is subject to the parameters. I have a few arguments for and against the aliases :) Being able to pass back the same values that are referred to for the PKey types. Think it just would be a bit confusing that sometimes the RSA parameter is Think the biggest challenge with all this is the need to know a bit of the internals of openssl to be able to use this method. Maybe all this could be documented for the method. With comprehensive descriptions of what these parameters also sometimes are called. Maybe there could even be some new methods on the PKey objects that use the names used internally. Also the aliases will cause a bit of confusion if a potential I'm fine either way, I would say you decide if aliases are valuable or not. I will comply :) EDIT: |
anakinj
force-pushed
the
pkey-from-parameters
branch
from
d726b4e
to
762bdb1
Compare
anakinj
force-pushed
the
pkey-from-parameters
branch
from
762bdb1
to
2b73110
Compare
Hi.
I'm Joakim and have never done anything else than used and read the code for this gem.
I'm involved in the
ruby-jwtgem and as @bellebaum pointed out in #551 there is the need to create RSA (and other keys) from raw parameters. Due to the changes in mutability of keys in OpenSSL 3.0 it is no longer possible that easily.This PR is a suggestion on how the interface for the OpenSSL gem could look like and a very rough implementation that probably does not work for all the key types (yet).
It's a while ago I did C so apologies for the potential messiness.
Do you think this direction and way solving the problem is feasible? Im open for all feedback.