Bugs/ed keys loading (#365)

* Add missing context parameters for supportsDenormalization() (#359)

Co-authored-by: Stephan Wentz <swentz@brainbits.net>

* Rebase

* PKCS#8 Loading

* PHPStan errors fixed

* foo.key removed

Co-authored-by: Stephan Wentz <stephan@wentz.it>
Co-authored-by: Stephan Wentz <swentz@brainbits.net>

Author: 3 people

src/Bundle/JoseFramework/Serializer/JWESerializer.php

@@ -26,7 +26,7 @@ public function __construct(
         $this->serializerManager = $serializerManager;
     }
 
-    public function supportsDenormalization(mixed $data, string $type, string $format = null): bool
+    public function supportsDenormalization(mixed $data, string $type, string $format = null, array $context = []): bool
     {
         return $type === JWE::class
             && class_exists(JWESerializerManager::class)

src/Bundle/JoseFramework/Serializer/JWSSerializer.php

@@ -26,7 +26,7 @@ public function __construct(
         $this->serializerManager = $serializerManager;
     }
 
-    public function supportsDenormalization(mixed $data, string $type, string $format = null): bool
+    public function supportsDenormalization(mixed $data, string $type, string $format = null, array $context = []): bool
     {
         return $type === JWS::class
             && class_exists(JWSSerializerManager::class)

src/Component/KeyManagement/KeyConverter/ECKey.php

@@ -64,7 +64,7 @@ private static function loadPEM(string $data): array
         }
         $children = $asnObject->getChildren();
         if (self::isPKCS8($children)) {
-            $children = self::loadPKCS8($children);
+            return self::loadPKCS8($children);
         }
 
         if (count($children) === 4) {
@@ -82,6 +82,19 @@ private static function loadPEM(string $data): array
      */
     private static function loadPKCS8(array $children): array
     {
+        $oidList = $children[1]->getContent();
+        if (! is_array($oidList) || count($oidList) !== 2) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $oid = $oidList[1];
+        if (! $oid instanceof ObjectIdentifier) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $oid = $oid->getContent();
+        if (! is_string($oid)) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+
         $data = $children[2]->getContent();
         if (! is_string($data)) {
             throw new InvalidArgumentException('Unable to load the key.');
@@ -91,8 +104,72 @@ private static function loadPKCS8(array $children): array
         if (! $asnObject instanceof Sequence) {
             throw new InvalidArgumentException('Unable to load the key.');
         }
+        if ($asnObject->count() < 2) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $version = $asnObject->getChildren()[0];
+        if (! $version instanceof Integer && $version->getContent() !== '1') {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $privateKey = $asnObject->getChildren()[1];
+        if (! $privateKey instanceof OctetString) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $privateKey = $privateKey->getContent();
+        if (! is_string($privateKey)) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $dBin = hex2bin($privateKey);
+        if (! is_string($dBin)) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+
+        $attributes = $asnObject->getChildren();
+        $publicKeys = array_reduce($attributes, static function (array $carry, mixed $attribute): array {
+            if (! $attribute instanceof ExplicitlyTaggedObject) {
+                return $carry;
+            }
+            $attribute = $attribute->getContent();
+            if (! is_array($attribute) || count($attribute) === 0) {
+                return $carry;
+            }
+            $value = $attribute[0];
+            if ($value instanceof BitString) {
+                $carry[] = $value;
+            }
+            return $carry;
+        }, []);
+
+        if (count($publicKeys) !== 1) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $publicKey = $publicKeys[0];
+
+        if (! $publicKey instanceof BitString) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
+        $bits = $publicKey->getContent();
+        if (! is_string($bits)) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $bits_length = mb_strlen($bits, '8bit');
+        if (mb_strpos($bits, '04', 0, '8bit') !== 0) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+
+        $xBin = hex2bin(mb_substr($bits, 2, ($bits_length - 2) / 2, '8bit'));
+        $yBin = hex2bin(mb_substr($bits, (int) (($bits_length - 2) / 2 + 2), ($bits_length - 2) / 2, '8bit'));
+        if (! is_string($xBin) || ! is_string($yBin)) {
+            throw new InvalidArgumentException('Unable to load the key.');
+        }
 
-        return $asnObject->getChildren();
+        return [
+            'kty' => 'EC',
+            'crv' => self::getCurve($oid),
+            'x' => Base64UrlSafe::encodeUnpadded($xBin),
+            'y' => Base64UrlSafe::encodeUnpadded($yBin),
+            'd' => Base64UrlSafe::encodeUnpadded($dBin),
+        ];
     }
 
     private static function loadPublicPEM(array $children): array

src/Component/KeyManagement/KeyConverter/KeyConverter.php

@@ -7,13 +7,19 @@
 use function array_key_exists;
 use function count;
 use function extension_loaded;
+use FG\ASN1\Universal\BitString;
+use FG\ASN1\Universal\Integer;
+use FG\ASN1\Universal\ObjectIdentifier;
+use FG\ASN1\Universal\OctetString;
+use FG\ASN1\Universal\Sequence;
 use InvalidArgumentException;
 use function is_array;
 use function is_string;
 use const OPENSSL_KEYTYPE_EC;
 use const OPENSSL_KEYTYPE_RSA;
 use const OPENSSL_RAW_DATA;
 use OpenSSLCertificate;
+use ParagonIE\ConstantTime\Base64;
 use ParagonIE\ConstantTime\Base64UrlSafe;
 use const PHP_EOL;
 use const PREG_PATTERN_ORDER;
@@ -185,20 +191,131 @@ private static function loadKeyFromPEM(string $pem, ?string $password = null): a
             throw new InvalidArgumentException('Unable to get details of the key');
         }
 
-        switch ($details['type']) {
-            case OPENSSL_KEYTYPE_EC:
-                $ec_key = ECKey::createFromPEM($pem);
+        return match ($details['type']) {
+            OPENSSL_KEYTYPE_EC => ECKey::createFromPEM($pem)->toArray(),
+            OPENSSL_KEYTYPE_RSA => RSAKey::createFromPEM($pem)->toArray(),
+            -1 => self::tryToLoadOtherKeyTypes($pem),
+            default => throw new InvalidArgumentException('Unsupported key type'),
+        };
+    }
 
-                return $ec_key->toArray();
+    /**
+     * This method tries to load Ed448, X488, Ed25519 and X25519 keys.
+     */
+    private static function tryToLoadOtherKeyTypes(string $pem): array
+    {
+        try {
+            preg_match_all('#(-.*-)#', $pem, $matches, PREG_PATTERN_ORDER);
+            $data = preg_replace('#-.*-|\r|\n| #', '', $pem);
+            if (! is_string($data)) {
+                throw new InvalidArgumentException('Unsupported key type');
+            }
+            $der = Base64::decode($data);
+            $sequence = Sequence::fromBinary($der);
+            if (! $sequence instanceof Sequence) {
+                throw new InvalidArgumentException('Unsupported key type');
+            }
 
-            case OPENSSL_KEYTYPE_RSA:
-                $rsa_key = RSAKey::createFromPEM($pem);
+            return match ($sequence->count()) {
+                2 => self::tryToLoadPublicKeyTypes($sequence),
+                3 => self::tryToLoadPrivateKeyTypes($sequence),
+                default => throw new InvalidArgumentException('Unsupported key type'),
+            };
+        } catch (Throwable $e) {
+            throw new InvalidArgumentException('Unsupported key type', 0, $e);
+        }
+    }
 
-                return $rsa_key->toArray();
+    /**
+     * This method tries to load Ed448 or Ed25519 keys.
+     */
+    private static function tryToLoadPublicKeyTypes(Sequence $sequence): array
+    {
+        [$curveId, $x] = $sequence;
+        if (! $curveId instanceof Sequence || $curveId->count() === 0) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        if (! $x instanceof BitString) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $oid = $curveId[0];
+        if (! $oid instanceof ObjectIdentifier) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $curve = $oid->getContent();
+        if (! is_string($curve)) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
 
-            default:
-                throw new InvalidArgumentException('Unsupported key type');
+        return [
+            'kty' => 'OKP',
+            'crv' => self::getCurve($curve),
+            'x' => Base64UrlSafe::encodeUnpadded($x->getBinaryContent()),
+        ];
+    }
+
+    /**
+     * This method tries to load X448 or X25519 keys.
+     */
+    private static function tryToLoadPrivateKeyTypes(Sequence $sequence): array
+    {
+        [$version, $curveId, $octetD] = $sequence;
+        if ($version instanceof Integer && $version->getContent() !== '0') {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        if (! $curveId instanceof Sequence || $curveId->count() === 0) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        if (! $octetD instanceof OctetString) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $oid = $curveId[0];
+        if (! $oid instanceof ObjectIdentifier) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $curve = $oid->getContent();
+        if (! is_string($curve)) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $crv = self::getCurve($curve);
+        $binOctetdD = $octetD->getBinaryContent();
+        $d = OctetString::fromBinary($binOctetdD);
+        $d = $d->getContent();
+        if (! is_string($d)) {
+            throw new InvalidArgumentException('Unsupported key type');
+        }
+        $dBin = hex2bin($d);
+        if (! is_string($dBin)) {
+            throw new InvalidArgumentException('Unsupported key type');
         }
+
+        $data = [
+            'kty' => 'OKP',
+            'crv' => $crv,
+            'd' => Base64UrlSafe::encodeUnpadded($dBin),
+        ];
+
+        if (($crv === 'Ed25519' || $crv === 'X25519') && extension_loaded('sodium')) {
+            $data['x'] = Base64UrlSafe::encodeUnpadded(sodium_crypto_sign_publickey_from_secretkey($d));
+        }
+
+        return $data;
+    }
+
+    /**
+     * This method modifies the PEM to get 64 char lines and fix bug with old OpenSSL versions.
+     */
+    private static function getCurve(string $oid): string
+    {
+        return match ($oid) {
+            '1.3.101.115' => 'Ed448ph',
+            '1.3.101.114' => 'Ed25519ph',
+            '1.3.101.113' => 'Ed448',
+            '1.3.101.112' => 'Ed25519',
+            '1.3.101.111' => 'X448',
+            '1.3.101.110' => 'X25519',
+            default => throw new InvalidArgumentException('Unsupported key type.'),
+        };
     }
 
     /**

src/SignatureAlgorithm/EdDSA/EdDSA.php

@@ -32,14 +32,18 @@ public function sign(JWK $key, string $input): string
         if (! $key->has('d')) {
             throw new InvalidArgumentException('The EC key is not private');
         }
-        $x = $key->get('x');
-        if (! is_string($x)) {
-            throw new InvalidArgumentException('Invalid "x" parameter.');
-        }
         $d = $key->get('d');
         if (! is_string($d)) {
             throw new InvalidArgumentException('Invalid "d" parameter.');
         }
+        if (! $key->has('x')) {
+            $x = sodium_crypto_sign_publickey_from_secretkey($d);
+        } else {
+            $x = $key->get('x');
+        }
+        if (! is_string($x)) {
+            throw new InvalidArgumentException('Invalid "x" parameter.');
+        }
         $x = Base64UrlSafe::decode($x);
         $d = Base64UrlSafe::decode($d);
         $secret = $d . $x;