Add SubjectPublicKeyInfo format for PEM output and cross implementation tests.

Gasper Zejn · Gasper Zejn · commit 2c117c67e19b · 2018-01-26T11:55:02.000+01:00
diff --git a/jose/backends/cryptography_backend.py b/jose/backends/cryptography_backend.py
@@ -284,10 +284,17 @@ def public_key(self):
 
     def to_pem(self, pem_format='PKCS8'):
         if self.is_public():
-            return self.prepared_key.public_bytes(
+            if pem_format == 'PKCS8':
+                fmt = serialization.PublicFormat.SubjectPublicKeyInfo
+            elif pem_format == 'PKCS1':
+                fmt = serialization.PublicFormat.PKCS1
+            else:
+                raise ValueError("Invalid format specified: %r" % pem_format)
+            pem = self.prepared_key.public_bytes(
                 encoding=serialization.Encoding.PEM,
-                format=serialization.PublicFormat.SubjectPublicKeyInfo
+                format=fmt
             )
+            return pem
 
         if pem_format == 'PKCS8':
             fmt = serialization.PrivateFormat.PKCS8
diff --git a/jose/backends/pycrypto_backend.py b/jose/backends/pycrypto_backend.py
@@ -9,6 +9,7 @@
 from Crypto.Util.asn1 import DerSequence
 
 from jose.backends.base import Key
+from jose.backends.rsa_backend import pem_to_spki
 from jose.utils import base64_to_long, long_to_base64
 from jose.constants import ALGORITHMS
 from jose.exceptions import JWKError
@@ -148,7 +149,15 @@ def to_pem(self, pem_format='PKCS8'):
         else:
             raise ValueError("Invalid pem format specified: %r" % (pem_format,))
 
-        pem = self.prepared_key.exportKey('PEM', pkcs=pkcs)
+        if self.is_public():
+            pem = self.prepared_key.exportKey('PEM', pkcs=1)
+            if pkcs == 8:
+                pem = pem_to_spki(pem, fmt='PKCS8')
+            else:
+                pem = pem_to_spki(pem, fmt='PKCS1')
+            return pem
+        else:
+            pem = self.prepared_key.exportKey('PEM', pkcs=pkcs)
         return pem
 
     def to_dict(self):
diff --git a/jose/backends/rsa_backend.py b/jose/backends/rsa_backend.py
@@ -1,6 +1,10 @@
+import six
+from pyasn1.codec.der import encoder
+from pyasn1.type import univ
+
 import rsa as pyrsa
 import rsa.pem as pyrsa_pem
-import six
+from rsa.asn1 import OpenSSLPubKey, AsnPubKey, PubKeyHeader
 
 from jose.backends.base import Key
 from jose.constants import ALGORITHMS
@@ -73,6 +77,11 @@ def _rsa_recover_prime_factors(n, e, d):
     return (p, q)
 
 
+def pem_to_spki(pem, fmt='PKCS8'):
+    key = RSAKey(pem, ALGORITHMS.RS256)
+    return key.to_pem(fmt)
+
+
 class RSAKey(Key):
     SHA256 = 'SHA-256'
     SHA384 = 'SHA-384'
@@ -171,21 +180,35 @@ def public_key(self):
         return self.__class__(pyrsa.PublicKey(n=self._prepared_key.n, e=self._prepared_key.e), self._algorithm)
 
     def to_pem(self, pem_format='PKCS8'):
-        import rsa.pem
 
         if isinstance(self._prepared_key, pyrsa.PrivateKey):
             der = self._prepared_key.save_pkcs1(format='DER')
             if pem_format == 'PKCS8':
-                pem = rsa.pem.save_pem(PKCS8_RSA_HEADER + der, pem_marker='PRIVATE KEY')
+                pem = pyrsa_pem.save_pem(PKCS8_RSA_HEADER + der, pem_marker='PRIVATE KEY')
             elif pem_format == 'PKCS1':
-                pem = rsa.pem.save_pem(der, pem_marker='RSA PRIVATE KEY')
+                pem = pyrsa_pem.save_pem(der, pem_marker='RSA PRIVATE KEY')
             else:
                 raise ValueError("Invalid pem format specified: %r" % (pem_format,))
         else:
-            # this is a PKCS#8 DER header to identify rsaEncryption
-            header = b'0\x82\x04\xbd\x02\x01\x000\r\x06\t*\x86H\x86\xf7\r\x01\x01\x01\x05\x00'
-            der = self._prepared_key.save_pkcs1(format='DER')
-            pem = rsa.pem.save_pem(header + der, pem_marker='PUBLIC KEY')
+            if pem_format == 'PKCS8':
+                asn_key = AsnPubKey()
+                asn_key.setComponentByName('modulus', self._prepared_key.n)
+                asn_key.setComponentByName('publicExponent', self._prepared_key.e)
+                der = encoder.encode(asn_key)
+
+                header = PubKeyHeader()
+                header['oid'] = univ.ObjectIdentifier('1.2.840.113549.1.1.1')
+                pub_key = OpenSSLPubKey()
+                pub_key['header'] = header
+                pub_key['key'] = univ.BitString.fromOctetString(der)
+
+                der = encoder.encode(pub_key)
+                pem = pyrsa_pem.save_pem(der, pem_marker='PUBLIC KEY')
+            elif pem_format == 'PKCS1':
+                der = self._prepared_key.save_pkcs1(format='DER')
+                pem = pyrsa_pem.save_pem(der, pem_marker='RSA PUBLIC KEY')
+            else:
+                raise ValueError("Invalid pem format specified: %r" % (pem_format,))
         return pem
 
     def to_dict(self):
diff --git a/tests/algorithms/test_RSA.py b/tests/algorithms/test_RSA.py
@@ -184,6 +184,22 @@ def test_to_pem(self, Backend):
         newkey = Backend(pkcs8, ALGORITHMS.RS256)
         assert newkey.to_pem(pem_format='PKCS1').strip() == private_key.strip()
 
+    @pytest.mark.parametrize("BackendFrom", [RSAKey, CryptographyRSAKey, PurePythonRSAKey])
+    @pytest.mark.parametrize("BackendTo", [RSAKey, CryptographyRSAKey, PurePythonRSAKey])
+    def test_public_key_to_pem(self, BackendFrom, BackendTo):
+        key = BackendFrom(private_key, ALGORITHMS.RS256)
+        pubkey = key.public_key()
+
+        pkcs1_pub = pubkey.to_pem(pem_format='PKCS1').strip()
+        pkcs8_pub = pubkey.to_pem(pem_format='PKCS8').strip()
+        assert pkcs1_pub != pkcs8_pub, BackendFrom
+
+        pub1 = BackendTo(pkcs1_pub, ALGORITHMS.RS256)
+        pub8 = BackendTo(pkcs8_pub, ALGORITHMS.RS256)
+
+        assert pkcs8_pub == pub1.to_pem(pem_format='PKCS8').strip()
+        assert pkcs1_pub == pub8.to_pem(pem_format='PKCS1').strip()
+
     def assert_parameters(self, as_dict, private):
         assert isinstance(as_dict, dict)
 
