crypto: align webcrypto RSA key import/export with other implementations (!42816) · Merge requests · Rodrigo Test / Test Group-nodejs / node

Rodrigo Muino Tomonari requested to merge github/fork/panva/webcrypto-align-spki-pkcs8 into master Apr 21, 2022

As per https://github.com/w3c/webcrypto/issues/307#issuecomment-1075166833 and https://github.com/w3c/webcrypto/pull/305 the general direction WebCrypto API is headed is to remove what isn't interoperable between most implementations.

This PR removes the option to import keyObject.asymmetricKeyType === 'rsa-pss' keys in webcrypto RSA-PSS algorithm.

While this seems contradictory it is in line with what most implementations do and also solves all individual issues from #39959 (closed).

Furthermore, after https://github.com/w3c/webcrypto/pull/305 all RSA algorithm exports should be OID rsaEncryption and we cannot do that if what was imported is an id-RSASSA-PSS. We likewise couldn't export id-RSASSA-PSS when rsaEncryption was imported as RSA-PSS algorithm.

closes #39959 (closed) see https://github.com/w3c/webcrypto/issues/307 see https://github.com/w3c/webcrypto/pull/305

Admin message

Admin message

crypto: align webcrypto RSA key import/export with other implementations

Merge request reports