Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Read Public Keys from a pemfile #51

Merged
merged 2 commits into from
Aug 3, 2024
Merged

Read Public Keys from a pemfile #51

merged 2 commits into from
Aug 3, 2024

Conversation

holodorum
Copy link
Contributor

@holodorum holodorum commented Jul 31, 2024
edited
Loading

This PR supports reading SPKI from a pemfile, which aids the implementation of RFC 7250 (Raw Public Key support) in rustls.

Main changes:

  • We added two functions to read the public keys from pemfiles, public_key() and public_keys(). The public_key() function returns the first SubjectPublicKeyInfoDer it encounters in a pemfile, while public_keys() returns an iterator over all the public keys within a pemfile. Does it ever happen that we have a pemfile with multiple public keys? If not I'll remove this function.
  • To use SubjectPublicKeyInfoDer pki-types is bumped up from version 1.3 to 1.7.

Contributors:

This PR is made in collaboration with @aochagavia.

@holodorum holodorum mentioned this pull request Jul 31, 2024
Merged
djc
djc approved these changes Aug 1, 2024
View reviewed changes
Copy link
Member

@djc djc left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, this mostly looks good!

cpu
cpu reviewed Aug 1, 2024
View reviewed changes
Copy link
Member

@cpu cpu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems reasonable, but I had a couple of questions.

tests/data/spki.pem
@@ -0,0 +1,14 @@
-----BEGIN PUBLIC KEY-----
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Out of curiosity, how was this generated?

Copy link
Contributor Author

@holodorum holodorum Aug 1, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Using openssl rsa -in private_key.pem -pubout -out public_key.pem

cpu
cpu approved these changes Aug 1, 2024
View reviewed changes
@djc djc merged commit 38c6f8b into rustls:main Aug 3, 2024
8 checks passed
@djc
Copy link
Member

djc commented Aug 3, 2024

  • Published rustls-pemfile v2.1.3 at registry crates-io
  • [new tag] v/2.1.3 -> v/2.1.3
  • Published release notes

# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@ctz ctz ctz left review comments

@djc djc djc approved these changes

@cpu cpu cpu approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@holodorum @djc @cpu @ctz