Add wrappers for Time-Stamp Protocol (RFC 3161) implementation of OpenSSL #1336
Conversation
krisztian-kovacs
force-pushed
the
timestamping
branch
from
43d7e39 to
ec2c8db
Compare
|
CI is unhappy with the use of TryFrom. |
|
Indeed, I've seen the CI issue yesterday evening -- will come up with a fix today. Just to confirm: is 1.31 the MSRV rust-openssl is targeting? |
krisztian-kovacs
force-pushed
the
timestamping
branch
7 times, most recently
from
718c43c to
64f106c
Compare
|
It took me some time to get the FFI bindings right for all versions of OpenSSL and LibreSSL, but hopefully it's OK now. |
|
Does the code look reasonable? Or is there something I could make to improve it? |
krisztian-kovacs
force-pushed
the
timestamping
branch
from
64f106c to
b8afda8
Compare
krisztian-kovacs
force-pushed
the
timestamping
branch
3 times, most recently
from
3ff8821 to
af2b0a3
Compare
openssl/src/ts.rs
Outdated
| /// A builder used to construct a `TsMsgImprint` | ||
| pub struct TsMsgImprintBuilder(TsMsgImprint); | ||
|
|
||
| impl TsMsgImprintBuilder { |
There was a problem hiding this comment.
TS_MSG_IMPRINT isn't reference counted, so there's no need for a separate builder type.
There was a problem hiding this comment.
Fixed, thanks!
| /// Sets the algorithm identifier of the message digest algorithm. | ||
| /// | ||
| /// This corresponds to `TS_MSG_IMPRINT_set_algo`. | ||
| pub fn set_algo(&mut self, digest: &MessageDigest) -> Result<(), ErrorStack> { |
There was a problem hiding this comment.
It seems like this should take an X509Algorithm rather than a MessageDigest.
There was a problem hiding this comment.
Hmm, in that case I think it should be possible to easily construct an X509Algorithm from a MessageDigest. Now there's no public interface for constructing an X509Algorithm at all.
Also, according to RFC 3161 only message digest algorithms are valid here: "The hash algorithm indicated in the hashAlgorithm field SHOULD be a known hash algorithm (one-way and collision resistant)." -- that's why I thought that using a MessageDigest on this interface would be more precise and useful.
There was a problem hiding this comment.
Oh, and OpenSSL is inconsistent here: TS_MSG_IMPRINT_set_algo() uses X509_ALGOR, but its counterpart on the server side, TS_RESP_CTX_add_md() takes an EVP_MD. The server-side only accepts imprints with digest algorithms explicitly added via TS_RESP_CTX_add_md().
openssl/src/ts.rs
Outdated
|
|
||
| pub struct TsReqBuilder(TsReq); | ||
|
|
||
| impl TsReqBuilder { |
There was a problem hiding this comment.
Similarly, no need for a builder.
There was a problem hiding this comment.
Fixed, thanks!
openssl/src/ts.rs
Outdated
| /// Corresponds to `TS_REQ_to_TS_VERIFY_CTX`. | ||
| pub fn from_req(request: &TsReqRef) -> Result<TsVerifyContext, ErrorStack> { | ||
| unsafe { | ||
| ffi::init(); |
There was a problem hiding this comment.
This isn't necessary since a TsReqRef already exists.
There was a problem hiding this comment.
Removed, thanks!
openssl/src/ts.rs
Outdated
| unsafe { | ||
| ffi::init(); | ||
| let ctx: *mut ffi::TS_VERIFY_CTX = cvt_p(ffi::TS_VERIFY_CTX_new())?; | ||
| let ctx = cvt_p(ffi::TS_REQ_to_TS_VERIFY_CTX(request.as_ptr(), ctx))?; |
There was a problem hiding this comment.
The TS_VERIFY_CTX is leaked if this fails.
There was a problem hiding this comment.
Fixed, thanks. It seems there's no point in constructing a verify context and passing it to TS_REQ_to_TS_VERIFY_CTX() anyway and we're better off with passing in NULL.
openssl/src/ts.rs
Outdated
|
|
||
| pub struct TsRespContextBuilder(TsRespContext); | ||
|
|
||
| impl TsRespContextBuilder { |
There was a problem hiding this comment.
Probably same here WRT not needing a builder.
There was a problem hiding this comment.
Fixed, thanks for the review!
krisztian-kovacs
force-pushed
the
timestamping
branch
2 times, most recently
from
aa20354 to
4b67566
Compare
krisztian-kovacs
force-pushed
the
timestamping
branch
from
4b67566 to
99db458
Compare
|
I've rebased these changes to the latest master. |
These are required by the timestamping code.
This change adds a partial wrapper for the Time-Stamp Protocol (RFC 3161) implementation in OpenSSL. The aim is to have enough coverage to create a client that can interact with a Time Stamp Authority by creating time-stamp requests and verifying responses returned by the authority.
This change adds the missing wrappers to be able to generate a minimally functional Time Stamp Authority, signing time stamp requests and generating time stamp responses.
|
Hi, can you tell me what the state of the PR is? I'd like to use this feature in a project of mine. (No rush, of course! :) ) |
|
Hi, I'm also interested, when this PR might get merged, it would be pretty useful. :) |
|
@sfackler does this PR still have work that needs to be done before it can be merged? (apart from the merge conflict I mean) If so, I'll gladly implement it on a separate PR, as timestamping is a feature I need. |
The aim of these patch set is to cover enough functionality to implement a client interfacing with a time-stamping authority to request and verify timestamps.
This pull request is more of a request to review -- I'm a first time contributor to rust-openssl. It has only been tested with OpenSSL 1.1.0.