Maik Riechert
Maik Riechert
I see, alright. I found https://github.com/pyca/cryptography/issues/6810 which is closed because OpenSSL does not support it. I wonder how COSE implementations in other languages deal with that issue, for example go-cose...
I just checked the COSE RFC and it says: > Implementations SHOULD use a deterministic version of ECDSA such as the one defined in [[RFC6979](https://www.rfc-editor.org/rfc/rfc9053.html#RFC6979)]. So it's not a MUST,...
In case someone has an urgent need for this for EC keys, here's what I use currently, adapted from @BrianSipos' RSA equivalent: ```py from cose.keys.ec2 import EC2Key from cose.keys.curves import...
Making it optional seems ok but I wouldn't automatically use `ecdsa` if it happens to be installed, after all it can come in through a dependency of some other package....
@TimothyClaeys What do you think?
See also a similar discussion on go-cose: https://github.com/veraison/go-cose/issues/73#issuecomment-1172520960
Good point, it says "latest" on the docs, shouldn't it include the version? Otherwise it becomes a little hard to check. EDIT: The problem is not "latest", but rather that...
@TimothyClaeys Are you happy for me to create the target branch and PR? Is there anything I haven't considered above?
Alternatively, `phdr` and `uhdr` could be included in the API docs. However, accessing those directly would mean that the check in `get_attr` for disallowing parameters appearing in both buckets would...
What's the use case for indefinite length strings? COSE requires to use [Canonical CBOR](https://datatracker.ietf.org/doc/html/rfc8152#section-14) which forbids those.