kex/sign

Author: xyzzyz

Cargo.toml

@@ -25,21 +25,21 @@ crypto-common = { version = "0.1.6", default-features = false }
 der = { version = "0.7.9", default-features = false }
 digest = { version = "0.10.7", default-features = false }
 ecdsa = { version = "0.16.8", default-features = false, features = ["alloc"] }
-ed25519-dalek = { version = "2", default-features = false, features = ["pkcs8"] }
+ed25519-dalek = { version = "2", default-features = false, features = ["pkcs8"], optional = true }
 hmac = { version = "0.12.1", default-features = false }
-p256 = { version = "0.13.2", default-features = false, features = ["pem", "ecdsa", "ecdh"] }
-p384 = { version = "0.13.0", default-features = false, features = ["pem", "ecdsa", "ecdh"] }
+p256 = { version = "0.13.2", default-features = false, features = ["pem", "ecdsa", "ecdh"], optional = true }
+p384 = { version = "0.13.0", default-features = false, features = ["pem", "ecdsa", "ecdh"], optional = true }
 paste = { version = "1.0.15", default-features = false }
 pkcs8 = { version = "0.10.2", default-features = false, features = ["pem", "pkcs5"] }
 pki-types = { package = "rustls-pki-types", version = "1.0.1", default-features = false }
 rand_core = { version = "0.6.4", default-features = false, features = ["getrandom"] }
-rsa = { version = "0.9.2", default-features = false, features = ["sha2"] }
+rsa = { version = "0.9.2", default-features = false, features = ["sha2"], optional = true }
 rustls = { version = "0.23.12", default-features = false }
 sec1 = { version = "0.7.3", default-features = false, features = ["pkcs8", "pem"] }
 sha2 = { version = "0.10.7", default-features = false }
 signature = { version = "2.1.0", default-features = false }
 webpki = { package = "rustls-webpki", version = "0.102.0", default-features = false }
-x25519-dalek = { version = "2", default-features = false }
+x25519-dalek = { version = "2", default-features = false, optional = true }
 
 [dev-dependencies]
 getrandom = { version = "0.2", features = ["custom"] } # workaround to build on no_std targets
@@ -53,7 +53,9 @@ tls12 = ["rustls/tls12"]
 # zeroize is another typical that can be turned off
 
 # TODO: go through all of these that what gets exposed re: std error type
-std = ["alloc", "webpki/std", "pki-types/std", "rustls/std", "ed25519-dalek/std"]
+std = ["alloc", "webpki/std", "pki-types/std", "rustls/std"]
 # TODO: go through all of these to ensure to_vec etc. impls are exposed
-alloc = ["webpki/alloc", "pki-types/alloc", "aead/alloc", "ed25519-dalek/alloc"]
+alloc = ["webpki/alloc", "pki-types/alloc", "aead/alloc"]
 zeroize = ["ed25519-dalek/zeroize", "x25519-dalek/zeroize"]
+x25519 = ["dep:x25519-dalek"]
+ed25519 = ["dep:ed25519-dalek", "ed25519-dalek/alloc", "ed25519-dalek/std", "alloc"]

src/kx.rs

@@ -1,13 +1,8 @@
-#[cfg(feature = "alloc")]
-use alloc::boxed::Box;
-
-use crypto::{SharedSecret, SupportedKxGroup};
-use paste::paste;
-use rustls::crypto;
-
+#[cfg(feature = "x25519")]
 #[derive(Debug)]
 pub struct X25519;
 
+#[cfg(feature = "x25519")]
 impl crypto::SupportedKxGroup for X25519 {
     fn name(&self) -> rustls::NamedGroup {
         rustls::NamedGroup::X25519
@@ -20,13 +15,15 @@ impl crypto::SupportedKxGroup for X25519 {
     }
 }
 
+#[cfg(feature = "x25519")]
 pub struct X25519KeyExchange {
     priv_key: x25519_dalek::EphemeralSecret,
     pub_key: x25519_dalek::PublicKey,
 }
 
+#[cfg(feature = "x25519")]
 impl crypto::ActiveKeyExchange for X25519KeyExchange {
-    fn complete(self: Box<X25519KeyExchange>, peer: &[u8]) -> Result<SharedSecret, rustls::Error> {
+    fn complete(self: Box<X25519KeyExchange>, peer: &[u8]) -> Result<crypto::SharedSecret, rustls::Error> {
         let peer_array: [u8; 32] = peer
             .try_into()
             .map_err(|_| rustls::Error::from(rustls::PeerMisbehaved::InvalidKeyShare))?;
@@ -48,7 +45,7 @@ impl crypto::ActiveKeyExchange for X25519KeyExchange {
 
 macro_rules! impl_kx {
     ($name:ident, $kx_name:ty, $secret:ty, $public_key:ty) => {
-        paste! {
+        paste::paste! {
 
             #[derive(Debug)]
             #[allow(non_camel_case_types)]
@@ -79,7 +76,7 @@ macro_rules! impl_kx {
                 fn complete(
                     self: Box<[<$name KeyExchange>]>,
                     peer: &[u8],
-                ) -> Result<SharedSecret, rustls::Error> {
+                ) -> Result<crypto::SharedSecret, rustls::Error> {
                     let their_pub = $public_key::from_sec1_bytes(peer)
                         .map_err(|_| rustls::Error::from(rustls::PeerMisbehaved::InvalidKeyShare))?;
                     Ok(self
@@ -102,7 +99,8 @@ macro_rules! impl_kx {
     };
 }
 
+#[cfg(feature = "p256")]
 impl_kx! {SecP256R1, rustls::NamedGroup::secp256r1, p256::ecdh::EphemeralSecret, p256::PublicKey}
+#[cfg(feature = "p384")]
 impl_kx! {SecP384R1, rustls::NamedGroup::secp384r1, p384::ecdh::EphemeralSecret, p384::PublicKey}
 
-pub const ALL_KX_GROUPS: &[&dyn SupportedKxGroup] = &[&X25519, &SecP256R1, &SecP384R1];

src/lib.rs

@@ -44,7 +44,7 @@ use alloc::sync::Arc;
 use rustls::crypto::{
     CipherSuiteCommon, CryptoProvider, GetRandomFailed, KeyProvider, SecureRandom,
 };
-use rustls::{CipherSuite, SupportedCipherSuite, Tls13CipherSuite};
+use rustls::{crypto, CipherSuite, SupportedCipherSuite, Tls13CipherSuite};
 
 #[cfg(feature = "tls12")]
 use rustls::SignatureScheme;
@@ -55,7 +55,7 @@ pub struct Provider;
 pub fn provider() -> CryptoProvider {
     CryptoProvider {
         cipher_suites: ALL_CIPHER_SUITES.to_vec(),
-        kx_groups: kx::ALL_KX_GROUPS.to_vec(),
+        kx_groups: ALL_KX_GROUPS.to_vec(),
         signature_verification_algorithms: verify::ALGORITHMS,
         secure_random: &Provider,
         key_provider: &Provider,
@@ -261,9 +261,31 @@ static ALL_CIPHER_SUITES: &[SupportedCipherSuite] = misc::const_concat_slices!(
     TLS13_SUITES,
 );
 
+#[cfg(feature = "p256")]
+pub use verify::ecdsa::{ECDSA_P256_SHA256, ECDSA_P256_SHA384};
+#[cfg(feature = "p384")]
+pub use verify::ecdsa::{ECDSA_P384_SHA256, ECDSA_P384_SHA384};
+
+#[cfg(feature = "ed25519")]
+pub use verify::eddsa::ED25519;
+
+#[cfg(feature = "rsa")]
+pub use verify::rsa::{RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, RSA_PSS_SHA512};
+
+const ALL_KX_GROUPS: &[&dyn crypto::SupportedKxGroup] = &[
+    #[cfg(feature = "x25519")]
+    &X25519,
+    #[cfg(feature = "p256")]
+    &SecP256R1,
+    #[cfg(feature = "p384")]
+    &SecP384R1
+];
+
 mod aead;
 mod hash;
 mod hmac;
+
+#[cfg(any(feature = "x25519", feature = "p256", feature = "p384"))]
 mod kx;
 mod misc;
 pub mod quic;

src/sign.rs

@@ -2,8 +2,13 @@
 use alloc::{sync::Arc, vec::Vec};
 use core::marker::PhantomData;
 
-use self::ecdsa::{EcdsaSigningKeyP256, EcdsaSigningKeyP384};
+#[cfg(feature = "p256")]
+use self::ecdsa::EcdsaSigningKeyP256;
+#[cfg(feature = "p384")]
+use self::ecdsa::EcdsaSigningKeyP384;
+#[cfg(feature = "ed25519")]
 use self::eddsa::Ed25519SigningKey;
+#[cfg(feature = "rsa")]
 use self::rsa::RsaSigningKey;
 
 use pki_types::PrivateKeyDer;
@@ -72,24 +77,47 @@ where
 /// # Errors
 ///
 /// Returns an error if the key couldn't be decoded.
+#[allow(unused_variables, reason = "the argument is unused if all features are disabled")]
 pub fn any_supported_type(der: &PrivateKeyDer<'_>) -> Result<Arc<dyn SigningKey>, rustls::Error> {
-    RsaSigningKey::try_from(der)
-        .map(|x| Arc::new(x) as _)
-        .or_else(|_| any_ecdsa_type(der))
-        .or_else(|_| any_eddsa_type(der))
+    #[cfg(feature = "rsa")]
+    if let Ok(key) = RsaSigningKey::try_from(der) {
+        return Ok(Arc::new(key));
+    }
+
+    #[cfg(any(feature = "p256", feature = "p384"))]
+    if let Ok(key) = any_ecdsa_type(der) {
+        return Ok(key);
+    }
+
+    #[cfg(feature = "ed25519")]
+    if let Ok(key) = any_eddsa_type(der) {
+        return Ok(key);
+    }
+
+    Err(rustls::Error::General("unsupported private key format".into()))
 }
 
+#[cfg(any(feature = "p256", feature = "p384"))]
 /// Extract any supported ECDSA key from the given DER input.
 ///
 /// # Errors
 ///
 /// Returns an error if the key couldn't be decoded.
 pub fn any_ecdsa_type(der: &PrivateKeyDer<'_>) -> Result<Arc<dyn SigningKey>, rustls::Error> {
-    let p256 = |_| EcdsaSigningKeyP256::try_from(der).map(|x| Arc::new(x) as _);
-    let p384 = |_| EcdsaSigningKeyP384::try_from(der).map(|x| Arc::new(x) as _);
-    p256(()).or_else(p384)
+    #[cfg(feature = "p256")]
+    if let Ok(key) = EcdsaSigningKeyP256::try_from(der) {
+        return Ok(Arc::new(key));
+    }
+
+    #[cfg(feature = "p384")]
+    if let Ok(key) = EcdsaSigningKeyP384::try_from(der) {
+        return Ok(Arc::new(key));
+    }
+
+    Err(rustls::Error::General("unsupported private key format".into()))
 }
 
+#[cfg(feature = "ed25519")]
 /// Extract any supported EDDSA key from the given DER input.
 ///
 /// # Errors
@@ -100,6 +128,9 @@ pub fn any_eddsa_type(der: &PrivateKeyDer<'_>) -> Result<Arc<dyn SigningKey>, ru
     Ed25519SigningKey::try_from(der).map(|x| Arc::new(x) as _)
 }
 
+#[cfg(any(feature = "p256", feature = "p384"))]
 pub mod ecdsa;
+#[cfg(feature = "ed25519")]
 pub mod eddsa;
+#[cfg(feature = "rsa")]
 pub mod rsa;

src/sign/ecdsa.rs

@@ -62,5 +62,7 @@ macro_rules! impl_ecdsa {
     };
 }
 
+#[cfg(feature = "p256")]
 impl_ecdsa! {P256, SignatureScheme::ECDSA_NISTP256_SHA256, p256::ecdsa::SigningKey, p256::ecdsa::DerSignature}
+#[cfg(feature = "p384")]
 impl_ecdsa! {P384, SignatureScheme::ECDSA_NISTP384_SHA384, p384::ecdsa::SigningKey, p384::ecdsa::DerSignature}

src/verify.rs

@@ -1,46 +1,82 @@
 use rustls::crypto::WebPkiSupportedAlgorithms;
 use rustls::SignatureScheme;
 
-use self::ecdsa::{ECDSA_P256_SHA256, ECDSA_P256_SHA384, ECDSA_P384_SHA256, ECDSA_P384_SHA384};
+#[cfg(feature = "p256")]
+use self::ecdsa::{ECDSA_P256_SHA256, ECDSA_P256_SHA384};
+#[cfg(feature = "p384")]
+use self::ecdsa::{ECDSA_P384_SHA256, ECDSA_P384_SHA384};
+#[cfg(feature = "ed25519")]
 use self::eddsa::ED25519;
+#[cfg(feature = "rsa")]
 use self::rsa::{
     RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384,
     RSA_PSS_SHA512,
 };
 
 pub static ALGORITHMS: WebPkiSupportedAlgorithms = WebPkiSupportedAlgorithms {
     all: &[
+        #[cfg(feature = "p256")]
         ECDSA_P256_SHA256,
+        #[cfg(feature = "p256")]
         ECDSA_P256_SHA384,
+        #[cfg(feature = "p384")]
         ECDSA_P384_SHA256,
+        #[cfg(feature = "p384")]
         ECDSA_P384_SHA384,
+        #[cfg(feature = "ed25519")]
         ED25519,
+        #[cfg(feature = "rsa")]
         RSA_PKCS1_SHA256,
+        #[cfg(feature = "rsa")]
         RSA_PKCS1_SHA384,
+        #[cfg(feature = "rsa")]
         RSA_PKCS1_SHA512,
+        #[cfg(feature = "rsa")]
         RSA_PSS_SHA256,
+        #[cfg(feature = "rsa")]
         RSA_PSS_SHA384,
+        #[cfg(feature = "rsa")]
         RSA_PSS_SHA512,
     ],
     mapping: &[
         (
             SignatureScheme::ECDSA_NISTP384_SHA384,
-            &[ECDSA_P384_SHA384, ECDSA_P256_SHA384],
+            &[
+                #[cfg(feature = "p384")]
+                ECDSA_P384_SHA384,
+                #[cfg(feature = "p256")]
+                ECDSA_P256_SHA384
+            ],
         ),
         (
             SignatureScheme::ECDSA_NISTP256_SHA256,
-            &[ECDSA_P256_SHA256, ECDSA_P384_SHA256],
+            &[
+                #[cfg(feature = "p256")]
+                ECDSA_P256_SHA256,
+                #[cfg(feature = "p384")]
+                ECDSA_P384_SHA256
+            ],
         ),
+        #[cfg(feature = "ed25519")]
         (SignatureScheme::ED25519, &[ED25519]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PKCS1_SHA256, &[RSA_PKCS1_SHA256]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PKCS1_SHA384, &[RSA_PKCS1_SHA384]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PKCS1_SHA512, &[RSA_PKCS1_SHA512]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PSS_SHA256, &[RSA_PSS_SHA256]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PSS_SHA384, &[RSA_PSS_SHA384]),
+        #[cfg(feature = "rsa")]
         (SignatureScheme::RSA_PSS_SHA512, &[RSA_PSS_SHA512]),
     ],
 };
 
+#[cfg(any(feature = "p256", feature = "p384"))]
 pub mod ecdsa;
+#[cfg(feature = "ed25519")]
 pub mod eddsa;
+#[cfg(feature = "rsa")]
 pub mod rsa;

src/verify/ecdsa.rs

@@ -48,7 +48,11 @@ macro_rules! impl_generic_ecdsa_verifer {
     };
 }
 
+#[cfg(feature = "p256")]
 impl_generic_ecdsa_verifer! {ECDSA_P256_SHA256, alg_id::ECDSA_P256, alg_id::ECDSA_SHA256, p256::ecdsa::VerifyingKey, p256::ecdsa::DerSignature, sha2::Sha256}
+#[cfg(feature = "p256")]
 impl_generic_ecdsa_verifer! {ECDSA_P256_SHA384, alg_id::ECDSA_P256, alg_id::ECDSA_SHA384, p256::ecdsa::VerifyingKey, p256::ecdsa::DerSignature, sha2::Sha384}
+#[cfg(feature = "p384")]
 impl_generic_ecdsa_verifer! {ECDSA_P384_SHA256, alg_id::ECDSA_P384, alg_id::ECDSA_SHA256, p384::ecdsa::VerifyingKey, p384::ecdsa::DerSignature, sha2::Sha256}
+#[cfg(feature = "p384")]
 impl_generic_ecdsa_verifer! {ECDSA_P384_SHA384, alg_id::ECDSA_P384, alg_id::ECDSA_SHA384, p384::ecdsa::VerifyingKey, p384::ecdsa::DerSignature, sha2::Sha384}