actpub-httpsig 0.2.0

Dual-stack HTTP Message Signatures (Cavage draft-12 + RFC 9421) with RSA & Ed25519 via aws-lc-rs.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122

//! Parsing and emitting the RFC 9421 `Signature:` header.
//!
//! The header is a Structured Field dictionary whose values are byte
//! sequences carrying the raw signature bytes:
//!
//! ```text
//! Signature: sig1=:<base64-signature>:, sig2=:<base64>:
//! ```
//!
//! Each label corresponds one-to-one with a label in the paired
//! `Signature-Input:` header. Callers must look up both when verifying.

use sfv::{BareItem, Dictionary, FieldType, Item, Key, ListEntry, Parser};

use crate::error::Error;

/// Name of the `Signature:` HTTP header, matching the Cavage spelling so
/// that `crate::verify` can dispatch between the two flavours on a single
/// header lookup.
pub const SIGNATURE_HEADER: &str = "signature";

/// Parses the raw `Signature:` header into an ordered list of
/// `(label, signature-bytes)` pairs.
///
/// # Errors
///
/// Returns [`Error::InvalidHeader`] on sf-dictionary parse failure and
/// [`Error::MalformedSignatureHeader`] if any entry is not a byte-seq
/// item.
pub fn parse_signature_dict(raw: &str) -> Result<Vec<(String, Vec<u8>)>, Error> {
    let dict: Dictionary =
        Parser::new(raw)
            .parse()
            .map_err(|e: sfv::Error| Error::InvalidHeader {
                name: SIGNATURE_HEADER,
                reason: e.to_string(),
            })?;

    let mut out = Vec::with_capacity(dict.len());
    for (label, entry) in dict {
        let item = match entry {
            ListEntry::Item(item) => item,
            ListEntry::InnerList(_) => {
                return Err(Error::MalformedSignatureHeader(format!(
                    "entry `{label}` must be a byte-sequence item, not an inner list"
                )));
            }
        };
        let BareItem::ByteSequence(bytes) = item.bare_item else {
            return Err(Error::MalformedSignatureHeader(format!(
                "entry `{label}` must be a byte sequence"
            )));
        };
        out.push((label.into(), bytes));
    }

    Ok(out)
}

/// Serialises a list of `(label, bytes)` pairs into a
/// `Signature:`-compatible value.
///
/// # Panics
///
/// Panics only if a label fails sf-key validation, or if `sfv` fails to
/// serialise an all-byte-sequence dictionary. Both are unreachable for
/// the inputs this crate constructs.
#[must_use]
#[allow(
    clippy::expect_used,
    reason = "serialising an all-byte-sequence dictionary under validated keys cannot fail"
)]
pub fn serialise_signature_dict(entries: &[(String, Vec<u8>)]) -> String {
    let mut dict = Dictionary::new();
    for (label, bytes) in entries {
        let key = Key::try_from(label.clone()).expect("signature label must be a valid sf-key");
        dict.insert(
            key,
            ListEntry::Item(Item::new(BareItem::ByteSequence(bytes.clone()))),
        );
    }
    FieldType::serialize(&dict).expect("byte-sequence dictionary is always serialisable")
}

#[cfg(test)]
mod tests {
    use pretty_assertions::assert_eq;

    use super::*;

    #[test]
    fn roundtrip_single_entry() {
        let sig_bytes = vec![0x01, 0x02, 0x03, 0x04];
        let wire = serialise_signature_dict(&[("sig1".into(), sig_bytes.clone())]);
        assert_eq!(wire, "sig1=:AQIDBA==:");
        let parsed = parse_signature_dict(&wire).expect("parse");
        assert_eq!(parsed, vec![("sig1".into(), sig_bytes)]);
    }

    #[test]
    fn roundtrip_multiple_entries_preserves_order() {
        let entries = vec![
            ("sig1".to_owned(), vec![0u8; 32]),
            ("sig2".to_owned(), vec![0xFFu8; 16]),
        ];
        let wire = serialise_signature_dict(&entries);
        let parsed = parse_signature_dict(&wire).expect("parse");
        assert_eq!(parsed, entries);
    }

    #[test]
    fn inner_list_entry_is_rejected() {
        let err = parse_signature_dict("sig1=(\"@method\")").expect_err("inner list");
        assert!(matches!(err, Error::MalformedSignatureHeader(_)));
    }

    #[test]
    fn non_byte_sequence_is_rejected() {
        let err = parse_signature_dict("sig1=123").expect_err("integer");
        assert!(matches!(err, Error::MalformedSignatureHeader(_)));
    }
}