Skip to content

add support for RFC5914 structs. #356

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tarcieri merged 5 commits into from
Feb 2, 2022
Merged

add support for RFC5914 structs. #356

tarcieri merged 5 commits into from
Feb 2, 2022

Conversation

@carl-wallace
Copy link
Contributor

@carl-wallace carl-wallace commented Jan 27, 2022

make adjusts to some prior structure definitions to work around macro-related issues. Notes on non-use of macros

In trust_anchor_format.rs

  • Choice was not used on TrustAnchorChoice owing to types not available in Asn1Type enum
  • Sequence was not used on TrustAnchorInfo owing to lack of DecodeValue required by context_specific

error[E0277]: the trait bound TrustAnchorInfo<'a>: DecodeValue<'_> is not satisfied
--> x509/src/trust_anchor_format.rs:295:22
|
295 | .context_specific::<TrustAnchorInfo<'a>>(TAC_TA_INFO_TAG, TagMode::Explicit)?;
| ^^^^^^^^^^^^^^^^ the trait DecodeValue<'_> is not implemented for TrustAnchorInfo<'a>
|
note: required by a bound in Decoder::<'a>::context_specific
--> der/src/decoder.rs:172:12
|
172 | T: DecodeValue<'a> + FixedTag,
| ^^^^^^^^^^^^^^^ required by this bound in Decoder::<'a>::context_specific

  • Sequence was not used on CertPathControls to use decode_implicit for each field (trailing bits were left using the default decoder even with mods to Certificate and NameConstraints)

In certificate.rs

  • Sequence was not used on Certificate due to same issue as described above for TrustAnchorInfo (i.e., tension between use of DecodeValue and Decodable)
  • Sequence was not used on NameConstraints for the same DecodeValue vs Decodable issue.

@carl-wallace
add support for RFC5914 structs. make adjusts to some prior structure…
14e4bec 
… definitions to work around macro-related issues. Notes on non-use of macros

In trust_anchor_format.rs
- Choice was not used on TrustAnchorChoice owing to types not available in Asn1Type enum
- Sequence was not used on TrustAnchorInfo owing to lack of DecodeValue required by context_specific

error[E0277]: the trait bound `TrustAnchorInfo<'a>: DecodeValue<'_>` is not satisfied
   --> x509/src/trust_anchor_format.rs:295:22
    |
295 |                     .context_specific::<TrustAnchorInfo<'a>>(TAC_TA_INFO_TAG, TagMode::Explicit)?;
    |                      ^^^^^^^^^^^^^^^^ the trait `DecodeValue<'_>` is not implemented for `TrustAnchorInfo<'a>`
    |
note: required by a bound in `Decoder::<'a>::context_specific`
   --> der/src/decoder.rs:172:12
    |
172 |         T: DecodeValue<'a> + FixedTag,
    |            ^^^^^^^^^^^^^^^ required by this bound in `Decoder::<'a>::context_specific`

- Sequence was not used on CertPathControls to use decode_implicit for each field (trailing bits were left using the default decoder even with mods to Certificate and NameConstraints)

In certificate.rs
- Sequence was not used on Certificate due to same issue as described above for TrustAnchorInfo (i.e., tension between use of DecodeValue and Decodable)
- Sequence was not used on NameConstraints for the same DecodeValue vs Decodable issue.
@npmccallum npmccallum mentioned this pull request Jan 29, 2022
Closed
tarcieri
tarcieri reviewed Feb 1, 2022
View reviewed changes
@tarcieri
Copy link
Member

tarcieri commented Feb 2, 2022

@carl-wallace can you rebase? I just want to make sure #377 didn't cause any breakages

@carl-wallace
Copy link
Contributor Author

carl-wallace commented Feb 2, 2022

I pushed changes to use x501 in the trust_anchor_format file.

tarcieri
tarcieri reviewed Feb 2, 2022
View reviewed changes
x509/src/trust_anchor_format.rs
Comment on lines +50 to +77
impl<'a> DecodeValue<'a> for TrustAnchorInfo<'a> {
fn decode_value(decoder: &mut Decoder<'a>, _length: Length) -> der::Result<Self> {
let version = match decoder.decode()? {
Some(v) => Some(v),
_ => Some(1),
};

let pub_key = decoder.decode()?;
let key_id = decoder.decode()?;
let ta_title = decoder.decode()?;
let cert_path = decoder.decode()?;
let extensions =
::der::asn1::ContextSpecific::decode_explicit(decoder, ::der::TagNumber::N1)?
.map(|cs| cs.value);
let ta_title_lang_tag =
::der::asn1::ContextSpecific::decode_explicit(decoder, ::der::TagNumber::N2)?
.map(|cs| cs.value);
Ok(Self {
version,
pub_key,
key_id,
ta_title,
cert_path,
extensions,
ta_title_lang_tag,
})
}
}
Copy link
Member

@tarcieri tarcieri Feb 2, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can this one use the proc macro now?

Copy link
Member

@tarcieri tarcieri Feb 2, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I guess you left a note here:

Sequence was not used on TrustAnchorInfo owing to lack of DecodeValue required by context_specific

It should probably work now.

@tarcieri
Copy link
Member

tarcieri commented Feb 2, 2022

In the interest of moving things along I'm going to go ahead and merge this.

Perhaps @npmccallum can take a look at converting them to a proc macro in #363.

@tarcieri tarcieri merged commit d4f9f00 into RustCrypto:master Feb 2, 2022
@carl-wallace carl-wallace deleted the rfc5914_and_related_mods branch March 21, 2022 10:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tarcieri tarcieri tarcieri left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@carl-wallace @tarcieri