Skip to content

fix: update signature encoding to follow JWS specification #402

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
elribonazo merged 2 commits into from
Mar 25, 2025
Merged

fix: update signature encoding to follow JWS specification #402

elribonazo merged 2 commits into from
Mar 25, 2025

Conversation

@mineme0110
Copy link
Contributor

@mineme0110 mineme0110 commented Mar 13, 2025

Description:

The signed presentation for the credential request is DER-encoded, according to the JWS specification, the signature should not be DER-encoded. Instead, it should be a concatenation of R || S, Base64 URL-safe encoded (as per RFC 7515, Section 8.1)

(hyperledger-identus/cloud-agent#1541)

Alternatives Considered (optional):

Yes not follow the JWS and fix in cloud-agent to support both DER Encoded and JWS but will require handling both and wont benefit much, since it is JWT we should follow JWS spec

Checklist:

  • My PR follows the contribution guidelines of this project
  • My PR is free of third-party dependencies that don't comply with the Allowlist
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have added tests that prove my fix is effective or that my feature works
  • I have checked the PR title to follow the conventional commit specification

@mineme0110 mineme0110 requested a review from a team as a code owner March 13, 2025 10:16
@mineme0110 mineme0110 changed the title fix: Signature encoding required to follow JWS specification fix: update signature encoding to follow JWS specification Mar 13, 2025
@coveralls
Copy link

coveralls commented Mar 13, 2025
edited
Loading

Pull Request Test Coverage Report for Build 14056150531

Details

  • 19 of 38 (50.0%) changed or added relevant lines in 2 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage decreased (-0.2%) to 75.378%
Changes Missing Coverage Covered Lines Changed/Added Lines %
src/pollux/utils/jwt/DER.ts 17 36 47.22%
Totals Coverage Status
Change from base Build 14056133001: -0.2%
Covered Lines: 3445
Relevant Lines: 4378
💛 - Coveralls

@elribonazo
Copy link
Contributor

elribonazo commented Mar 18, 2025

@mineme0110 mind retesting again? I've restored the function we had in the past to normalise the der signature into compact raw, should be working now!

mineme0110
mineme0110 commented Mar 18, 2025
View reviewed changes
@elribonazo elribonazo force-pushed the fix-signature-encoding branch from 48c601b to bd755c3 Compare March 25, 2025 09:26
mineme0110 and others added 2 commits March 25, 2025 10:30
@mineme0110 @elribonazo
fix: Signature encoding required by JWS specification
33da7b7 
Signed-off-by: mineme0110 <shailesh.patil@iohk.io>
@elribonazo
fix: restore der signature normalisation into compact signature
cc184c4 
Signed-off-by: Francisco Javier Ribo Labrador <elribonazo@gmail.com>
@elribonazo elribonazo force-pushed the fix-signature-encoding branch from bd755c3 to cc184c4 Compare March 25, 2025 09:30
@elribonazo elribonazo enabled auto-merge (squash) March 25, 2025 09:46
@elribonazo elribonazo merged commit 6ad04c0 into main Mar 25, 2025
6 checks passed
@elribonazo elribonazo deleted the fix-signature-encoding branch March 25, 2025 09:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@elribonazo elribonazo elribonazo approved these changes

@curtis-h curtis-h Awaiting requested review from curtis-h

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mineme0110 @coveralls @elribonazo