Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Migrate PKCS#12 serialization with keys to Rust #10901

Merged
merged 1 commit into from
May 31, 2024
Merged

Migrate PKCS#12 serialization with keys to Rust #10901

merged 1 commit into from
May 31, 2024

Conversation

alex
Copy link
Member

@alex alex commented Apr 28, 2024

No description provided.

@reaperhulk
Copy link
Member

This looks good on code review, but could you drop a der2ascii output of both OpenSSL and this code for an example unencrypted p12 blob in a comment? 😄

@alex
Copy link
Member Author

alex commented May 31, 2024

Generated with:

import sys

from cryptography import x509
from cryptography.hazmat.primitives import serialization 
from cryptography.hazmat.primitives.serialization import pkcs12

cert = x509.load_pem_x509_certificate(
    open('vectors/cryptography_vectors/x509/cryptography.io.pem', 'rb').read()
)
key = serialization.load_pem_private_key(
    open('vectors/cryptography_vectors/asymmetric/PKCS8/ec_private_key.pem', 'rb').read(), None
)
sys.stdout.buffer.write(pkcs12.serialize_key_and_certificates(
    b'lol', key, None, [pkcs12.PKCS12Certificate(cert, b'foo')], serialization.NoEncryption()
))

And here's what's generated by OpenSSL:

SEQUENCE {
  INTEGER { 3 }
  SEQUENCE {
    # data
    OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
    [0] {
      OCTET_STRING {
        SEQUENCE {
          SEQUENCE {
            # data
            OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
            [0] {
              OCTET_STRING {
                SEQUENCE {
                  SEQUENCE {
                    # certBag
                    OBJECT_IDENTIFIER { 1.2.840.113549.1.12.10.1.3 }
                    [0] {
                      SEQUENCE {
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.22.1 }
                        [0] {
                          OCTET_STRING {
                            SEQUENCE {
                              SEQUENCE {
                                [0] {
                                  INTEGER { 2 }
                                }
                                INTEGER { 16160 }
                                SEQUENCE {
                                  # sha256WithRSAEncryption
                                  OBJECT_IDENTIFIER { 1.2.840.113549.1.1.11 }
                                  NULL {}
                                }
                                SEQUENCE {
                                  SET {
                                    SEQUENCE {
                                      # countryName
                                      OBJECT_IDENTIFIER { 2.5.4.6 }
                                      PrintableString { "US" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationName
                                      OBJECT_IDENTIFIER { 2.5.4.10 }
                                      PrintableString { "GeoTrust Inc." }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # commonName
                                      OBJECT_IDENTIFIER { 2.5.4.3 }
                                      PrintableString { "RapidSSL SHA256 CA - G3" }
                                    }
                                  }
                                }
                                SEQUENCE {
                                  UTCTime { "141015120932Z" }
                                  UTCTime { "181116011503Z" }
                                }
                                SEQUENCE {
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "GT48742965" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "See www.rapidssl.com/resources/cps (c)14" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "Domain Control Validated - RapidSSL(R)" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # commonName
                                      OBJECT_IDENTIFIER { 2.5.4.3 }
                                      PrintableString { "www.cryptography.io" }
                                    }
                                  }
                                }
                                SEQUENCE {
                                  SEQUENCE {
                                    # rsaEncryption
                                    OBJECT_IDENTIFIER { 1.2.840.113549.1.1.1 }
                                    NULL {}
                                  }
                                  BIT_STRING {
                                    `00`
                                    SEQUENCE {
                                      INTEGER { `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` }
                                      INTEGER { 65537 }
                                    }
                                  }
                                }
                                [3] {
                                  SEQUENCE {
                                    SEQUENCE {
                                      # authorityKeyIdentifier
                                      OBJECT_IDENTIFIER { 2.5.29.35 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          [0 PRIMITIVE] { `c39cf3fcd3460834bbce467fa07c5bf3e208cb59` }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # authorityInfoAccess
                                      OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.1.1 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            # ocsp
                                            OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.48.1 }
                                            [6 PRIMITIVE] { "http://gv.symcd.com" }
                                          }
                                          SEQUENCE {
                                            # caIssuers
                                            OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.48.2 }
                                            [6 PRIMITIVE] { "http://gv.symcb.com/gv.crt" }
                                          }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # keyUsage
                                      OBJECT_IDENTIFIER { 2.5.29.15 }
                                      BOOLEAN { TRUE }
                                      OCTET_STRING {
                                        BIT_STRING { b`101` }
                                      }
                                    }
                                    SEQUENCE {
                                      # extKeyUsage
                                      OBJECT_IDENTIFIER { 2.5.29.37 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          # serverAuth
                                          OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.3.1 }
                                          # clientAuth
                                          OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.3.2 }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # subjectAltName
                                      OBJECT_IDENTIFIER { 2.5.29.17 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          [2 PRIMITIVE] { "www.cryptography.io" }
                                          [2 PRIMITIVE] { "cryptography.io" }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # cRLDistributionPoints
                                      OBJECT_IDENTIFIER { 2.5.29.31 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            [0] {
                                              [0] {
                                                [6 PRIMITIVE] { "http://gv.symcb.com/gv.crl" }
                                              }
                                            }
                                          }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # basicConstraints
                                      OBJECT_IDENTIFIER { 2.5.29.19 }
                                      BOOLEAN { TRUE }
                                      OCTET_STRING {
                                        SEQUENCE {}
                                      }
                                    }
                                    SEQUENCE {
                                      # certificatePolicies
                                      OBJECT_IDENTIFIER { 2.5.29.32 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            OBJECT_IDENTIFIER { 2.16.840.1.113733.1.7.54 }
                                            SEQUENCE {
                                              SEQUENCE {
                                                OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.2.1 }
                                                IA5String { "https://www.rapidssl.com/legal" }
                                              }
                                            }
                                          }
                                        }
                                      }
                                    }
                                  }
                                }
                              }
                              SEQUENCE {
                                # sha256WithRSAEncryption
                                OBJECT_IDENTIFIER { 1.2.840.113549.1.1.11 }
                                NULL {}
                              }
                              BIT_STRING { `00` `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` }
                            }
                          }
                        }
                      }
                    }
                    SET {
                      SEQUENCE {
                        # friendlyName
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.20 }
                        SET {
                          BMPString { u"foo" }
                        }
                      }
                    }
                  }
                }
              }
            }
          }
          SEQUENCE {
            # data
            OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
            [0] {
              OCTET_STRING {
                SEQUENCE {
                  SEQUENCE {
                    # keyBag
                    OBJECT_IDENTIFIER { 1.2.840.113549.1.12.10.1.1 }
                    [0] {
                      SEQUENCE {
                        INTEGER { 0 }
                        SEQUENCE {
                          # ecPublicKey
                          OBJECT_IDENTIFIER { 1.2.840.10045.2.1 }
                          # secp256r1
                          OBJECT_IDENTIFIER { 1.2.840.10045.3.1.7 }
                        }
                        OCTET_STRING {
                          SEQUENCE {
                            INTEGER { 1 }
                            OCTET_STRING { `622ad3652c7ee4ef18ead9467246ba5ba6ed262a1c76b76895f72e912a13124f` }
                            [1] {
                              BIT_STRING { `00` `0424bcf36eecf6b519cb16538bfba6d35fa82255abc0b1ce8d0c5153d0830277689b4d33540c39051ac82ad1c1f92583e0ffac5494c0452ab5987b7c90e216acf7` }
                            }
                          }
                        }
                      }
                    }
                    SET {
                      SEQUENCE {
                        # friendlyName
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.20 }
                        SET {
                          BMPString { u"lol" }
                        }
                      }
                    }
                  }
                }
              }
            }
          }
        }
      }
    }
  }
  SEQUENCE {
    SEQUENCE {
      SEQUENCE {
        # sha256
        OBJECT_IDENTIFIER { 2.16.840.1.101.3.4.2.1 }
        NULL {}
      }
      OCTET_STRING { `dd08043b4ba616a910ce46fd6a5f54ca77b6f30e0165cfdd8423727077e48bc0` }
    }
    OCTET_STRING { `ceaf46f48572079c` }
    INTEGER { 2048 }
  }
}

And with rust:

SEQUENCE {
  INTEGER { 3 }
  SEQUENCE {
    # data
    OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
    [0] {
      OCTET_STRING {
        SEQUENCE {
          SEQUENCE {
            # data
            OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
            [0] {
              OCTET_STRING {
                SEQUENCE {
                  SEQUENCE {
                    # certBag
                    OBJECT_IDENTIFIER { 1.2.840.113549.1.12.10.1.3 }
                    [0] {
                      SEQUENCE {
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.22.1 }
                        [0] {
                          OCTET_STRING {
                            SEQUENCE {
                              SEQUENCE {
                                [0] {
                                  INTEGER { 2 }
                                }
                                INTEGER { 16160 }
                                SEQUENCE {
                                  # sha256WithRSAEncryption
                                  OBJECT_IDENTIFIER { 1.2.840.113549.1.1.11 }
                                  NULL {}
                                }
                                SEQUENCE {
                                  SET {
                                    SEQUENCE {
                                      # countryName
                                      OBJECT_IDENTIFIER { 2.5.4.6 }
                                      PrintableString { "US" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationName
                                      OBJECT_IDENTIFIER { 2.5.4.10 }
                                      PrintableString { "GeoTrust Inc." }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # commonName
                                      OBJECT_IDENTIFIER { 2.5.4.3 }
                                      PrintableString { "RapidSSL SHA256 CA - G3" }
                                    }
                                  }
                                }
                                SEQUENCE {
                                  UTCTime { "141015120932Z" }
                                  UTCTime { "181116011503Z" }
                                }
                                SEQUENCE {
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "GT48742965" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "See www.rapidssl.com/resources/cps (c)14" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # organizationUnitName
                                      OBJECT_IDENTIFIER { 2.5.4.11 }
                                      PrintableString { "Domain Control Validated - RapidSSL(R)" }
                                    }
                                  }
                                  SET {
                                    SEQUENCE {
                                      # commonName
                                      OBJECT_IDENTIFIER { 2.5.4.3 }
                                      PrintableString { "www.cryptography.io" }
                                    }
                                  }
                                }
                                SEQUENCE {
                                  SEQUENCE {
                                    # rsaEncryption
                                    OBJECT_IDENTIFIER { 1.2.840.113549.1.1.1 }
                                    NULL {}
                                  }
                                  BIT_STRING {
                                    `00`
                                    SEQUENCE {
                                      INTEGER { `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` }
                                      INTEGER { 65537 }
                                    }
                                  }
                                }
                                [3] {
                                  SEQUENCE {
                                    SEQUENCE {
                                      # authorityKeyIdentifier
                                      OBJECT_IDENTIFIER { 2.5.29.35 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          [0 PRIMITIVE] { `c39cf3fcd3460834bbce467fa07c5bf3e208cb59` }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # authorityInfoAccess
                                      OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.1.1 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            # ocsp
                                            OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.48.1 }
                                            [6 PRIMITIVE] { "http://gv.symcd.com" }
                                          }
                                          SEQUENCE {
                                            # caIssuers
                                            OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.48.2 }
                                            [6 PRIMITIVE] { "http://gv.symcb.com/gv.crt" }
                                          }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # keyUsage
                                      OBJECT_IDENTIFIER { 2.5.29.15 }
                                      BOOLEAN { TRUE }
                                      OCTET_STRING {
                                        BIT_STRING { b`101` }
                                      }
                                    }
                                    SEQUENCE {
                                      # extKeyUsage
                                      OBJECT_IDENTIFIER { 2.5.29.37 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          # serverAuth
                                          OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.3.1 }
                                          # clientAuth
                                          OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.3.2 }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # subjectAltName
                                      OBJECT_IDENTIFIER { 2.5.29.17 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          [2 PRIMITIVE] { "www.cryptography.io" }
                                          [2 PRIMITIVE] { "cryptography.io" }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # cRLDistributionPoints
                                      OBJECT_IDENTIFIER { 2.5.29.31 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            [0] {
                                              [0] {
                                                [6 PRIMITIVE] { "http://gv.symcb.com/gv.crl" }
                                              }
                                            }
                                          }
                                        }
                                      }
                                    }
                                    SEQUENCE {
                                      # basicConstraints
                                      OBJECT_IDENTIFIER { 2.5.29.19 }
                                      BOOLEAN { TRUE }
                                      OCTET_STRING {
                                        SEQUENCE {}
                                      }
                                    }
                                    SEQUENCE {
                                      # certificatePolicies
                                      OBJECT_IDENTIFIER { 2.5.29.32 }
                                      OCTET_STRING {
                                        SEQUENCE {
                                          SEQUENCE {
                                            OBJECT_IDENTIFIER { 2.16.840.1.113733.1.7.54 }
                                            SEQUENCE {
                                              SEQUENCE {
                                                OBJECT_IDENTIFIER { 1.3.6.1.5.5.7.2.1 }
                                                IA5String { "https://www.rapidssl.com/legal" }
                                              }
                                            }
                                          }
                                        }
                                      }
                                    }
                                  }
                                }
                              }
                              SEQUENCE {
                                # sha256WithRSAEncryption
                                OBJECT_IDENTIFIER { 1.2.840.113549.1.1.11 }
                                NULL {}
                              }
                              BIT_STRING { `00` `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` }
                            }
                          }
                        }
                      }
                    }
                    SET {
                      SEQUENCE {
                        # friendlyName
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.20 }
                        SET {
                          BMPString { u"foo" }
                        }
                      }
                    }
                  }
                }
              }
            }
          }
          SEQUENCE {
            # data
            OBJECT_IDENTIFIER { 1.2.840.113549.1.7.1 }
            [0] {
              OCTET_STRING {
                SEQUENCE {
                  SEQUENCE {
                    # keyBag
                    OBJECT_IDENTIFIER { 1.2.840.113549.1.12.10.1.1 }
                    [0] {
                      SEQUENCE {
                        INTEGER { 0 }
                        SEQUENCE {
                          # ecPublicKey
                          OBJECT_IDENTIFIER { 1.2.840.10045.2.1 }
                          # secp256r1
                          OBJECT_IDENTIFIER { 1.2.840.10045.3.1.7 }
                        }
                        OCTET_STRING {
                          SEQUENCE {
                            INTEGER { 1 }
                            OCTET_STRING { `622ad3652c7ee4ef18ead9467246ba5ba6ed262a1c76b76895f72e912a13124f` }
                            [1] {
                              BIT_STRING { `00` `0424bcf36eecf6b519cb16538bfba6d35fa82255abc0b1ce8d0c5153d0830277689b4d33540c39051ac82ad1c1f92583e0ffac5494c0452ab5987b7c90e216acf7` }
                            }
                          }
                        }
                      }
                    }
                    SET {
                      SEQUENCE {
                        # friendlyName
                        OBJECT_IDENTIFIER { 1.2.840.113549.1.9.20 }
                        SET {
                          BMPString { u"lol" }
                        }
                      }
                    }
                  }
                }
              }
            }
          }
        }
      }
    }
  }
  SEQUENCE {
    SEQUENCE {
      SEQUENCE {
        # sha256
        OBJECT_IDENTIFIER { 2.16.840.1.101.3.4.2.1 }
        NULL {}
      }
      OCTET_STRING { `d10bdfea7a68ffdb68c22b7b550259c07ff34dac5a4b46270303baa6cade2793` }
    }
    OCTET_STRING { `0b89aa2405a693ce` }
    INTEGER { 2048 }
  }
}

And for simplicity, a diff of them:

--- /dev/fd/63	2024-05-31 06:18:25
+++ /dev/fd/62	2024-05-31 06:18:25
@@ -283,9 +283,9 @@
         OBJECT_IDENTIFIER { 2.16.840.1.101.3.4.2.1 }
         NULL {}
       }
-      OCTET_STRING { `dd08043b4ba616a910ce46fd6a5f54ca77b6f30e0165cfdd8423727077e48bc0` }
+      OCTET_STRING { `d10bdfea7a68ffdb68c22b7b550259c07ff34dac5a4b46270303baa6cade2793` }
     }
-    OCTET_STRING { `ceaf46f48572079c` }
+    OCTET_STRING { `0b89aa2405a693ce` }
     INTEGER { 2048 }
   }
 }

@reaperhulk reaperhulk merged commit bac21b3 into pyca:main May 31, 2024
58 checks passed
@alex alex deleted the minimal-pkcs12 branch May 31, 2024 14:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@reaperhulk reaperhulk reaperhulk approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@alex @reaperhulk