elliptic-curve: impl AssociatedAlgorithmIdentifier

elliptic-curve/Cargo.toml

@@ -74,3 +74,8 @@ voprf = ["digest"]
 [package.metadata.docs.rs]
 features = ["bits", "ecdh", "hash2curve", "jwk", "pem", "std", "voprf"]
 rustdoc-args = ["--cfg", "docsrs"]
+
+
+[patch.crates-io]
+der = { git = "https://github.com/RustCrypto/formats.git" }
+spki = { git = "https://github.com/RustCrypto/formats.git" }

elliptic-curve/src/public_key.rs

@@ -12,6 +12,9 @@ use alloc::boxed::Box;
 #[cfg(feature = "jwk")]
 use crate::{JwkEcKey, JwkParameters};
 
+#[cfg(feature = "pkcs8")]
+use pkcs8::spki::{AlgorithmIdentifier, AssociatedAlgorithmIdentifier, ObjectIdentifier};
+
 #[cfg(feature = "pem")]
 use core::str::FromStr;
 
@@ -419,7 +422,20 @@ where
     }
 }
 
-#[cfg(all(feature = "pkcs8", feature = "sec1"))]
+#[cfg(feature = "pkcs8")]
+impl<C> AssociatedAlgorithmIdentifier for PublicKey<C>
+where
+    C: AssociatedOid + CurveArithmetic,
+{
+    type Params = ObjectIdentifier;
+
+    const ALGORITHM_IDENTIFIER: AlgorithmIdentifier<ObjectIdentifier> = AlgorithmIdentifier {
+        oid: ALGORITHM_OID,
+        parameters: Some(C::OID),
+    };
+}
+
+#[cfg(feature = "pkcs8")]
 impl<C> TryFrom<pkcs8::SubjectPublicKeyInfoRef<'_>> for PublicKey<C>
 where
     C: AssociatedOid + CurveArithmetic,
@@ -433,7 +449,7 @@ where
     }
 }
 
-#[cfg(all(feature = "pkcs8", feature = "sec1"))]
+#[cfg(feature = "pkcs8")]
 impl<C> TryFrom<&pkcs8::SubjectPublicKeyInfoRef<'_>> for PublicKey<C>
 where
     C: AssociatedOid + CurveArithmetic,
@@ -463,16 +479,11 @@ where
     FieldBytesSize<C>: ModulusSize,
 {
     fn to_public_key_der(&self) -> pkcs8::spki::Result<der::Document> {
-        let algorithm = pkcs8::AlgorithmIdentifierRef {
-            oid: ALGORITHM_OID,
-            parameters: Some((&C::OID).into()),
-        };
-
         let public_key_bytes = self.to_encoded_point(false);
         let subject_public_key = der::asn1::BitStringRef::new(0, public_key_bytes.as_bytes())?;
 
-        pkcs8::SubjectPublicKeyInfoRef {
-            algorithm,
+        pkcs8::SubjectPublicKeyInfo {
+            algorithm: Self::ALGORITHM_IDENTIFIER,
             subject_public_key,
         }
         .try_into()

elliptic-curve/src/secret_key/pkcs8.rs

@@ -6,6 +6,7 @@ use crate::{
     sec1::{ModulusSize, ValidatePublicKey},
     Curve, FieldBytesSize, ALGORITHM_OID,
 };
+use pkcs8::spki::{AlgorithmIdentifier, AssociatedAlgorithmIdentifier, ObjectIdentifier};
 use sec1::EcPrivateKey;
 
 // Imports for the `EncodePrivateKey` impl
@@ -26,9 +27,21 @@ use {
     pkcs8::DecodePrivateKey,
 };
 
+impl<C> AssociatedAlgorithmIdentifier for SecretKey<C>
+where
+    C: AssociatedOid + Curve,
+{
+    type Params = ObjectIdentifier;
+
+    const ALGORITHM_IDENTIFIER: AlgorithmIdentifier<ObjectIdentifier> = AlgorithmIdentifier {
+        oid: ALGORITHM_OID,
+        parameters: Some(C::OID),
+    };
+}
+
 impl<C> TryFrom<pkcs8::PrivateKeyInfo<'_>> for SecretKey<C>
 where
-    C: Curve + AssociatedOid + ValidatePublicKey,
+    C: AssociatedOid + Curve + ValidatePublicKey,
     FieldBytesSize<C>: ModulusSize,
 {
     type Error = pkcs8::Error;
@@ -51,6 +64,7 @@ where
     FieldBytesSize<C>: ModulusSize,
 {
     fn to_pkcs8_der(&self) -> pkcs8::Result<der::SecretDocument> {
+        // TODO(tarcieri): make `PrivateKeyInfo` generic around `Params`
         let algorithm_identifier = pkcs8::AlgorithmIdentifierRef {
             oid: ALGORITHM_OID,
             parameters: Some((&C::OID).into()),