feat: Implement full support for ECDSA and RSA keys #270
Conversation
|
any chance of getting a review of this? |
There was a problem hiding this comment.
This looks great. My only concern is the backwards compatibility issue. In the long term I think this is what we need to do (use the spec compliant key types). We could just do this patch as part of a major release. What do others think? @asraa @trishankatdatadog
|
Making it backwards compatible with what go-tuf was doing before wouldn't be that difficult.. however the old implementation doesn't follow the spec, and is incompatible with py-tuf and it also doesn't have the necessary functions to actually generate ecdsa/rsa keys, so for someone to have a compatibility issue here they'd have need to have done quite a lot of work outside of go-tuf to make keys in the right format. |
There was a problem hiding this comment.
One problem I see with the ECDSA keys is that if you're using an existing TUF root with ecdsa keys, your root key IDs won't match on update. This is a big problem when you're trying to sign the next root. I think we have to make this backwards compatible, maybe with a flag or an option
|
Fixes issue #223 |
There was a problem hiding this comment.
Thanks! Hoping to revive this so we can get go-tuf python compliant in the next release.
I just have one proposition on supporting the old key types for a short period of time so users can have a migration plan away from it.
Let me know if you need any help! I'm happy to contribute.
| @@ -23,23 +25,35 @@ form of TUF_{{ROLE}}_PASSPHRASE | |||
|
|
|||
| Options: | |||
| --expires=<days> Set the root metadata file to expire <days> days from now. | |||
| --type=<type> Set the type of key to generate [default: ed25519]. | |||
There was a problem hiding this comment.
could you please document the other key type possibilities? it's a bit hard to discern in the code because they are consts.
| return p.key | ||
| } | ||
|
|
||
| func (p *p256Verifier) UnmarshalPublicKey(key *data.PublicKey) error { | ||
| func (p *ecdsaVerifier) UnmarshalPublicKey(key *data.PublicKey) error { |
There was a problem hiding this comment.
Question: To keep backwards compatibility with existing roots (at least for 1-2 releases), could we do something like rename the old ecdsaVerifier to deprecatedEcdsaVerifier, and attempt to json.Unmarshal into that one?
I'm hoping to be able to still support old verifiers.
For example, if TUF attempts to UnmarshalPublicKey on an old ecdsa key, the resulting object would return the deprecatd Public() and Marshal() as the received data.
|
|
||
| var _ = Suite(EcdsaSuite{}) | ||
|
|
||
| func (EcdsaSuite) TestSignVerify(c *C) { |
There was a problem hiding this comment.
if you go with backwards compatibility, could you add a test with hard-coded deprecated key material, and make sure that properties like PublicData() and Public() and Verify() still work?
|
Damn, I got busy, sorry. Let me look ASAP, maybe tonight. |
…357) * * fix!: ECDSA verifiers now expect PEM-encoded public keys per TUF specification * feat: ECDSA signers are now implemented * feat: RSA verifiers and signers are implemented BREAKING CHANGE: ECDSA verifiers expect PEM-encoded public keys. If you rely on previous behavior of hex-encoded public keys for verifiers, then you must import pkg/deprecated/set_ecdsa that will allow a fallback for hex-encoded ECDSA keys. Co-authored-by: Asra Ali <[email protected]> Co-authored-by: Toby Bristow <[email protected]> Signed-off-by: Asra Ali <[email protected]> * add comment Signed-off-by: Asra Ali <[email protected]> Signed-off-by: Asra Ali <[email protected]> Co-authored-by: Toby Bristow <[email protected]>
Release Notes:
gen-keysub command, the--typeflag can be specified to select a key type (according the the types in https://theupdateframework.github.io/specification/latest/#keytype). Defaults toed25519keys.Types of changes:
Description of the changes being introduced by the pull request:
Previously support for ECDSA and RSA keys was only partially implemented:
RSA PUBLIC KEYwhich is used for PKCS1 encoding. While the spec doesn't specify which encoding should be used (and just specifies "PEM"), the python reference implementation uses PKIX for both ECDSA and RSA keys.gen-keysubcommand does not allow key types to be specified, added a--typeflag to allow the user to select the key type to be generated.As well as the above fixes, some additional improvements to the library were made:
KeyType,KeySchemeandHashAlgorithm, rather than just using strings, and fixed a few places where the key type and scheme had been mixed up.data.PKIXPublicKeytype which abstracts away a lot of the boiler plate for marshalling/unmarshalling public keys.I opted not to maintain backwards compatibility as there is currently no implementation to generate ECDSA or RSA keys, and the go-tuf implementation wouldn't have worked with keys serialised according the the TUF specification, so there didn't seem any benefit to maintaining this functionality.
Please verify and check that the pull request fulfills the following requirements: