httpsig icon indicating copy to clipboard operation
httpsig copied to clipboard

Published 20 hours ago verified publisher icon ahknight

hs2019 with PSS support

Open fulder opened this issue 4 years ago • 1 comments

Implement support for new hs2019 algorithm together with PSS digital signature algorithm in order to follow the latest v12 draft

As the digital signature algorithm should now be derived from the keyId both the Signer and Verifier classes are now accepting a new (optional) sign_algorithm parameter which should be a subclass of the new SignAlgorithm superclass. This way we can easy add support for other digital signature algorithms by adding a custom class (implementing the sign and verify functions).

This has been implemented in parallel with the previously accepted algorithms (e.g. rsa-sha256). This means these algorithms are still supported although a deprecation message is now printed while they are used and they should probably be removed in next major release of this library (together with some cleanup of the 'old' code).

The test_signature tests has been updated to the new hs2019 with one test left for the deprecated rsa-sha256. The README file has also been updated with the new algorithm.

fulder avatar Aug 25 '20 08:08 fulder

+1

McLoone avatar Aug 27 '20 10:08 McLoone