Federated forge server

[[ 🗃 ^rjQ3E vervis ]] :: [📥 Inbox] [📤 Outbox] [🐤 Followers] [🤝 Collaborators] [🛠 Commits]

Clone

HTTPS: git clone https://vervis.peers.community/repos/rjQ3E

SSH: git clone USERNAME@vervis.peers.community:rjQ3E

Branches

Tags

main :: src / Crypto / PubKey /

Encoding.hs

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

{- This file is part of Vervis.
 -
 - Written in 2019 by fr33domlover <fr33domlover@riseup.net>.
 -
 - ♡ Copying is an act of love. Please copy, reuse and share.
 -
 - The author(s) have dedicated all copyright and related and neighboring
 - rights to this software to the public domain worldwide. This software is
 - distributed without any warranty.
 -
 - You should have received a copy of the CC0 Public Domain Dedication along
 - with this software. If not, see
 - <http://creativecommons.org/publicdomain/zero/1.0/>.
 -}

module Crypto.PubKey.Encoding
    ( -- * Plain binary ASN1 encoding
      --
      -- These functions decode and encode a key using binary BER/DER ASN1
      -- encoding. Use them if you need a way to serialize keys and don't care
      -- about the format or the fact it's binary and not textual.
      decodePubKeyASN1
    , encodePubKeyASN1

      -- * Textual PEM encoding
      --
      -- PEM is essentially a Base64 textual representation of ASN1 encoding.
      -- It's a common standard format. Use these functions if you need to
      -- serialize keys and you prefer a textual format or need
      -- interoperability with cryptography related tools that expect PEM
      -- files.
    , decodePubKeyPEM
    , encodePubKeyPEM
    )
where

import Control.Exception
import Control.Monad
import Data.ASN1.BinaryEncoding
import Data.ASN1.Encoding
import Data.ASN1.Types
import Data.Bifunctor
import Data.ByteString (ByteString)
import Data.List
import Data.Text (Text)
import Data.PEM
import Data.Text.Encoding
import Data.X509

decodePubKeyASN1 :: ByteString -> Either String PubKey
decodePubKeyASN1 b = do
    asn1s <- first displayException $ decodeASN1' BER b
    (pkey, rest) <- fromASN1 asn1s
    unless (null rest) $ Left "Remaining ASN1 stream isn't empty"
    Right pkey

encodePubKeyASN1 :: PubKey -> ByteString
encodePubKeyASN1 pkey = encodeASN1' DER $ toASN1 pkey []

decodePubKeyPEM :: Text -> Either String PubKey
decodePubKeyPEM t = do
    pems <- pemParseBS $ encodeUtf8 t
    pem <-
        case pems of
            []  -> Left "Empty PEM"
            [x] -> Right x
            _   -> Left "Multiple PEM sections"
    let name = pemName pem
    unless
        ("PUBLIC KEY" `isSuffixOf` name && not ("PRIVATE" `isInfixOf` name)) $
            Left "PEM name suggests it isn't a public key"
    unless (null $ pemHeader pem) $ Left "PEM headers found"
    decodePubKeyASN1 $ pemContent pem

encodePubKeyPEM :: PubKey -> Text
encodePubKeyPEM =
    decodeUtf8 . pemWriteBS . PEM "PUBLIC KEY" [] . encodePubKeyASN1
[See repo JSON]