Skip to content

feat: COSE Key Thumbprint (RFC 9679) feature and its test #222

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
kentakayama wants to merge 3 commits into
base: main
Choose a base branch
from
Draft

feat: COSE Key Thumbprint (RFC 9679) feature and its test #222

kentakayama wants to merge 3 commits into from
+387 −0

Conversation

@kentakayama
Copy link

@kentakayama kentakayama commented Dec 4, 2025

Calculates canonical (deterministic) thumbprint from fields of Key.
https://www.rfc-editor.org/info/rfc9679

@kentakayama kentakayama marked this pull request as draft December 4, 2025 10:34
@kentakayama kentakayama mentioned this pull request Dec 4, 2025
Open
@kentakayama
fix: Avoid magic numbers
969f617 
Signed-off-by: Ken Takayama <[email protected]>
@kentakayama
refactor: Simplified pre-Thumbprint checks by reusing the existing va…
15e2e05 
…lidate() function.

Since validate() performs extensive checks, it may raise errors that are not critical for COSE Key Thumbprint (RFC 9679) calculation.

Signed-off-by: Ken Takayama <[email protected]>
@kentakayama
Copy link
Author

kentakayama commented Dec 4, 2025

As noted in Pull Request #223, the behavior of Key.validate() has changed, which also affects the error codes received in the Thumbprint() test cases.
If #223 is merged, I will add another commit to ensure Thumbprint() produces the intended error codes.

OR13
OR13 reviewed Dec 4, 2025
View reviewed changes
Copy link
Contributor

@OR13 OR13 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me, I think we should add this

@thomas-fossati
Copy link
Contributor

thomas-fossati commented Dec 4, 2025

As noted in Pull Request #223, the behavior of Key.validate() has changed, which also affects the error codes received in the Thumbprint() test cases. If #223 is merged, I will add another commit to ensure Thumbprint() produces the intended error codes.

Is that the reason why TestKey_Thumbprint fails at present?

@thomas-fossati
Copy link
Contributor

thomas-fossati commented Dec 4, 2025

Hey @kentakayama , thanks for the PR!

You requested reviews, but it's still marked as a draft.
Could you please clarify its status?

cheers!

@kentakayama
Copy link
Author

kentakayama commented Dec 4, 2025
edited
Loading

Hey @kentakayama , thanks for the PR!

You requested reviews, but it's still marked as a draft. Could you please clarify its status?

cheers!

@thomas-fossati
Sorry for the confusion. At first I thought this Pull Request was “perfect!” and submitted it in a non‑Draft state.
However, I realized that many of the checks for computing the Thumbprint overlap with the validate() function, which isn’t great from a maintainability perspective, so I switched it back to Draft.
As a result, it’s now in the state of “review requested but Draft.”

While looking more closely at the validate() function, I revisited RFC 9053 in light of the COSE Key Thumbprint functionality, and I started to think that perhaps it should be handled as in #223.
I believe it might be better to discuss that first.
In fact, because the error checking in #223 was made stricter, the expected error codes in the Thumbprint test cases have also changed, so I think #223 should be resolved first.

@thomas-fossati
Copy link
Contributor

thomas-fossati commented Dec 4, 2025

@thomas-fossati Sorry for the confusion. At first I thought this Pull Request was “perfect!” and submitted it in a non‑Draft state. However, I realized that many of the checks for computing the Thumbprint overlap with the validate() function, which isn’t great from a maintainability perspective, so I switched it back to Draft. As a result, it’s now in the state of “review requested but Draft.”

While looking more closely at the validate() function, I revisited RFC 9053 in light of the COSE Key Thumbprint functionality, and I started to think that perhaps it should be handled as in #223. I believe it might be better to discuss that first. In fact, because the error checking in #223 was made stricter, the expected error codes in the Thumbprint test cases have also changed, so I think #223 should be resolved first.

Thank you for taking the time to explain it to me so clearly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@OR13 OR13 OR13 left review comments

@henkbirkholz henkbirkholz Awaiting requested review from henkbirkholz henkbirkholz is a code owner

@qmuntal qmuntal Awaiting requested review from qmuntal qmuntal is a code owner

@roywill roywill Awaiting requested review from roywill roywill is a code owner

@setrofim setrofim Awaiting requested review from setrofim setrofim is a code owner

@shizhMSFT shizhMSFT Awaiting requested review from shizhMSFT shizhMSFT is a code owner

@SimonFrost-Arm SimonFrost-Arm Awaiting requested review from SimonFrost-Arm SimonFrost-Arm is a code owner

@SteveLasker SteveLasker Awaiting requested review from SteveLasker SteveLasker is a code owner

@thomas-fossati thomas-fossati Awaiting requested review from thomas-fossati thomas-fossati is a code owner

@yogeshbdeshpande yogeshbdeshpande Awaiting requested review from yogeshbdeshpande yogeshbdeshpande is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kentakayama @thomas-fossati @OR13