Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Standard key conversion to/from cryptography library #44

Open
BrianSipos opened this issue Mar 8, 2021 · 1 comment
Open

Standard key conversion to/from cryptography library #44

BrianSipos opened this issue Mar 8, 2021 · 1 comment
Labels
cose keys Issue related to COSE keys enhancement New feature or request

Comments

@BrianSipos
Copy link
Contributor

Currently the EC2Key and OKPKey classes use the cryptography library internally to do work but don't expose API to use these intermediate representations. When interoperating between cose and other libraries it would be convenient to have a standard API to get these representations.

Without this API an application needs to do some special data manipulation which duplicates already-present internal state of functions within those classes.

For my own use and as an example the RSAKey class in my branch uses the following API (but the names are arbitrary and I have no special need for them):

    @classmethod
    def from_cryptograpy_key_obj(cls, ext_key) -> 'RSAKey':

and

    def to_cryptograpy_key_obj(self):
@TimothyClaeys TimothyClaeys added enhancement New feature or request cose keys Issue related to COSE keys labels Mar 11, 2021
@TimothyClaeys TimothyClaeys mentioned this issue Apr 27, 2021
Closed
@letmaik
Copy link
Collaborator

letmaik commented Mar 14, 2022

In case someone has an urgent need for this for EC keys, here's what I use currently, adapted from @BrianSipos' RSA equivalent:

from cose.keys.ec2 import EC2Key
from cose.keys.curves import P256, P384, P521
from cose.keys.keyparam import EC2KpCurve, EC2KpX, EC2KpY, EC2KpD

def from_cryptography_eckey_obj(ext_key) -> EC2Key:
    """
    Returns an initialized COSE Key object of type EC2Key.
    :param ext_key: Python cryptography key.
    :return: an initialized EC key
    """
    def to_bstr(dec):
        blen = (dec.bit_length() + 7) // 8
        return dec.to_bytes(blen, byteorder='big')

    if hasattr(ext_key, 'private_numbers'):
        priv_nums = ext_key.private_numbers()
        pub_nums = priv_nums.public_numbers
    else:
        priv_nums = None
        pub_nums = ext_key.public_numbers()

    if pub_nums.curve.name == 'secp256r1':
        curve = P256
    elif pub_nums.curve.name == 'secp384r1':
        curve = P384
    elif pub_nums.curve.name == 'secp521r1':
        curve = P521
    else:
        raise NotImplementedError("unsupported curve")

    cose_key = {}
    if pub_nums:
        cose_key.update({
            EC2KpCurve: curve,
            EC2KpX: to_bstr(pub_nums.x),
            EC2KpY: to_bstr(pub_nums.y),
        })
    if priv_nums:
        cose_key.update({
            EC2KpD: to_bstr(priv_nums.private_value),
        })
    return EC2Key.from_dict(cose_key)

@letmaik letmaik mentioned this issue Feb 24, 2023
Merged
@ivarprudnikov ivarprudnikov mentioned this issue Aug 29, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
cose keys Issue related to COSE keys enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@letmaik @BrianSipos @TimothyClaeys