synta 0.2.0

ASN.1 parser, decoder, and encoder library with DER/BER support and C FFI
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221

# Certificate

The `synta-certificate` crate provides typed X.509 v3 certificate structures
based on RFC 5280.

## Dependency

```toml
[dependencies]
synta-certificate = "0.1"
synta = "0.1"
```

## Core types

```mermaid
graph TD
    C(["Certificate"])
    T(["tbsCertificate"])
    SA["signatureAlgorithm<br/>AlgorithmIdentifier"]
    SV["signatureValue<br/>BitString"]
    C --> T
    C --> SA
    C --> SV

    T --> VER["version<br/>Option&lt;Integer&gt;"]
    T --> SER["serialNumber<br/>Integer"]
    T --> SIG["signature<br/>AlgorithmIdentifier"]
    T --> ISS["issuer<br/>RawDer"]
    T --> VAL["validity<br/>notBefore · notAfter"]
    T --> SUB["subject<br/>RawDer"]
    T --> SPKI(["subjectPublicKeyInfo"])
    T --> EXT["extensions<br/>Option&lt;RawDer&gt;"]

    SPKI --> ALG["algorithm<br/>AlgorithmIdentifier"]
    SPKI --> KEY["subjectPublicKey<br/>BitStringRef"]
```

| Type | Description |
|------|-------------|
| `Certificate<'a>` | Top-level X.509 certificate (lifetime bound to input buffer) |
| `TBSCertificate<'a>` | To-be-signed certificate data |
| `AlgorithmIdentifier<'a>` | Algorithm OID with optional parameters |
| `SubjectPublicKeyInfo<'a>` | Public key algorithm and key bits |
| `Validity` | `notBefore` / `notAfter` validity period |
| `Time` | CHOICE of `UTCTime` or `GeneralizedTime` |

## Key field types

| Field | Rust type | Notes |
|-------|-----------|-------|
| `tbs_certificate.issuer` | `RawDer<'a>` | Zero-copy; raw DER bytes of the Name SEQUENCE |
| `tbs_certificate.subject` | `RawDer<'a>` | Zero-copy; raw DER bytes of the Name SEQUENCE |
| `tbs_certificate.extensions` | `Option<RawDer<'a>>` | Zero-copy; decoded lazily |
| `subject_public_key_info.subject_public_key` | `BitStringRef<'a>` | Zero-copy; borrowed key bits |
| `tbs_certificate.serial_number` | `Integer` | Eagerly decoded |
| `tbs_certificate.version` | `Option<Integer>` | Eagerly decoded |
| `signature_algorithm.algorithm` | `ObjectIdentifier` | Eagerly decoded |

## Parsing a certificate

```rust,ignore
use synta::{Decoder, Encoding};
use synta_certificate::{Certificate, format_dn};

let der = std::fs::read("cert.der")?;
let mut decoder = Decoder::new(&der, Encoding::Der);
let cert: Certificate = decoder.decode()?;

let tbs = &cert.tbs_certificate;

// Serial number (eagerly decoded)
println!("Serial: {:?}", tbs.serial_number);

// Issuer and subject — zero-copy RawDer<'a> spans
let issuer_str  = format_dn(tbs.issuer.as_bytes());
let subject_str = format_dn(tbs.subject.as_bytes());
println!("Issuer:  {}", issuer_str);
println!("Subject: {}", subject_str);
```

## Encoding a certificate

```rust,ignore
use synta::{Encoder, Encoding};
use synta_certificate::Certificate;

let cert = Certificate { /* ... */ };

let mut encoder = Encoder::new(Encoding::Der);
encoder.encode(&cert)?;
let der_bytes = encoder.finish()?;
```

## DN formatting

`format_dn` walks the raw DER directly with no intermediate allocation,
matching the `openssl x509 -text` output style:

```rust,ignore
use synta_certificate::format_dn;

let dn = format_dn(cert.tbs_certificate.subject.as_bytes());
// → "CN=example.com, O=Example Inc, C=US"
```

`format_dn_slash` produces the slash-prefix form used in AKI DirName output:

```rust,ignore
use synta_certificate::format_dn_slash;

let dirn = format_dn_slash(name_der);
// → "/C=US/O=Example Inc/CN=example.com"
```

## Parsing DN attributes

`parse_name_attrs` extracts `(dotted_oid, value_str)` pairs from a raw Name DER
span.  TeletexString values are normalised to Latin-1; BMP/Universal to UTF-8.
Unknown tags produce a `#hexstring`.

```rust,ignore
use synta_certificate::parse_name_attrs;

let attrs = parse_name_attrs(cert.tbs_certificate.subject.as_bytes());
for (oid, value) in &attrs {
    println!("{} = {}", oid, value);
}
// e.g. "2.5.4.3 = example.com", "2.5.4.10 = Example Inc"
```

## Subject Alternative Names

```rust,ignore
for (tag, content) in cert.subject_alt_names() {
    match tag {
        2 => println!("DNS: {}", String::from_utf8_lossy(&content)),
        7 if content.len() == 4 => {
            let octets: [u8; 4] = content.try_into().unwrap();
            println!("IP: {}", std::net::Ipv4Addr::from(octets));
        }
        1 => println!("Email: {}", String::from_utf8_lossy(&content)),
        _ => {}
    }
}
```

SAN tag numbers:

| Tag | GeneralName type | Content |
|-----|-----------------|---------|
| 0 | otherName | OtherName value bytes |
| 1 | rfc822Name | IA5String bytes (email) |
| 2 | dNSName | IA5String bytes |
| 4 | directoryName | Complete Name SEQUENCE TLV |
| 6 | uniformResourceIdentifier | IA5String bytes |
| 7 | iPAddress | 4 bytes (IPv4) or 16 bytes (IPv6) |
| 8 | registeredID | OID value bytes |

## PEM encoding and decoding

```rust,ignore
use synta_certificate::{pem_to_der, der_to_pem};

// Decode one or more PEM blocks
let pem = std::fs::read("chain.pem")?;
let ders: Vec<Vec<u8>> = pem_to_der(&pem);

// Encode to PEM
let pem_out = der_to_pem("CERTIFICATE", &der_bytes);
```

Common labels: `"CERTIFICATE"`, `"CERTIFICATE REQUEST"`, `"X509 CRL"`,
`"OCSP RESPONSE"`.

## Signature algorithm identification

```rust,ignore
use synta_certificate::{identify_signature_algorithm, identify_public_key_algorithm};

let name = identify_signature_algorithm(&cert.signature_algorithm.algorithm);
println!("Signature algorithm: {}", name);
// → "SHA256WithRSA", "id-Ed25519", "id-ML-DSA-65", etc.
```

## Building a certificate (openssl feature)

See [PKI Workflow — Building a certificate](../tutorial/pki-workflow.md) for
a full example using `CertificateBuilder` and `OpensslCertificateSigner`.

## Type aliases

| Alias | Underlying type | RFC 5280 name |
|-------|-----------------|---------------|
| `Version` | `Integer` | `Version` |
| `CertificateSerialNumber` | `Integer` | `CertificateSerialNumber` |
| `UniqueIdentifier` | `BitString` | `UniqueIdentifier` |

## Supported signature algorithms

| Algorithm | OID prefix | Standard |
|-----------|-----------|---------|
| RSA (PKCS #1) | 1.2.840.113549.1.1.* | RFC 3279 |
| ECDSA | 1.2.840.10045.4.* | RFC 5480 |
| EdDSA (Ed25519) | 1.3.101.112 | RFC 8410 |
| EdDSA (Ed448) | 1.3.101.113 | RFC 8410 |
| ML-DSA-44/65/87 | 2.16.840.1.101.3.4.3.17–19 | FIPS 204 |
| DSA | 1.2.840.10040.4.* | FIPS 186 |

## Cargo features

| Feature | Default | Description |
|---------|---------|-------------|
| `std` | yes | Standard library support |
| `alloc` | no | Allocation for no_std environments |
| `derive` | yes | Derive macros for Encode/Decode |
| `serde` | no | Serialize/Deserialize on generated types |
| `openssl` | yes | OpenSSL-backed PKCS#12/CMS and certificate/CSR signing (via `native-ossl`) |
| `pqc` | yes | ML-DSA / ML-KEM support (requires OpenSSL 3.5+ and `openssl` feature) |
| `nss` | no | Mozilla NSS signature verification and key-identifier hashing |
| `deprecated-pkcs12-algorithms` | no | Legacy 3DES/RC2 PKCS#12 encryption (requires `openssl`) |