Skip to content

Reintroduce alg JWK field for Ed25519 keys #401

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 7, 2025
Merged

Reintroduce alg JWK field for Ed25519 keys #401

merged 1 commit into from
Mar 7, 2025

Conversation

@panva
Copy link
Member

@panva panva commented Mar 6, 2025
edited by pr-preview bot
Loading

With https://datatracker.ietf.org/doc/draft-ietf-jose-fully-specified-algorithms/ submitted to IESG for Publication we can add the new "alg" to the Ed25519 JWK export while accepting both old and new in JWK import.

I don't think this is strictly necessary but I'm opening this here as an option in hopes that it will strike at least one of the objections raised prior by @davidben that (I think?) continues to block the unflagging of Ed25519 in Chromium.

Refs WICG/webcrypto-secure-curves#24
Refs #362 (comment)
Refs https://issues.chromium.org/issues/40074061

Preview | Diff

@javifernandez
Copy link
Collaborator

javifernandez commented Mar 6, 2025

Thanks !

continues to block the unflagging of Ed25519 in Chromium.

I wouldn't say that is a blocker, but it definitively doesn't help to support removing the experimental runtime flag. So the sooner we can address the issue, the better.

twiss
twiss approved these changes Mar 7, 2025
View reviewed changes
Copy link
Member

@twiss twiss left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! LGTM. If you have time, could you also make a corresponding PR to https://github.com/WICG/webcrypto-secure-curves, to keep them in sync? (Perhaps we should remove Ed25519 from there, but Ed448 also needs the same change, I'm guessing.) Otherwise I can also do it 😊

@panva
Copy link
Member Author

panva commented Mar 7, 2025

I'm happy to do a PR https://github.com/WICG/webcrypto-secure-curves removing Curve25519 and separately updating Ed448 with "alg" per this PR

@twiss twiss changed the title reintroduce alg for Ed25519 Reintroduce alg JWK field for Ed25519 keys Mar 7, 2025
This was referenced Mar 7, 2025
Merged
Merged
@twiss twiss merged commit e3459a5 into w3c:main Mar 7, 2025
2 checks passed
github-actions bot added a commit that referenced this pull request Mar 7, 2025
@panva @github-actions
Reintroduce alg JWK field for Ed25519 keys (#401)
084003c 
SHA: e3459a5
Reason: push, by twiss

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@panva panva deleted the eddsa-alg branch March 7, 2025 16:05
@javifernandez
Copy link
Collaborator

javifernandez commented Mar 7, 2025
edited
Loading

Shouldn't the PR#42333 to the corresponding tests in the WPT repository be reverted then ? Or at least, write again the correct test cases for the new behavior.

@panva
Copy link
Member Author

panva commented Mar 7, 2025

Shouldn't the PR#42333 to the corresponding tests in the WPT repository be reverted then ? Or at least, write again the correct test cases for the new behavior.

I'm working on that just now.

@javifernandez
Copy link
Collaborator

javifernandez commented Mar 7, 2025

Shouldn't the PR#42333 to the corresponding tests in the WPT repository be reverted then ? Or at least, write again the correct test cases for the new behavior.

I'm working on that just now.

Great ! Thank you very much

@panva panva mentioned this pull request Mar 7, 2025
Merged
@panva
Copy link
Member Author

panva commented Mar 7, 2025

web-platform-tests/wpt#51198

@javifernandez javifernandez mentioned this pull request Mar 10, 2025
Closed
aarongable pushed a commit to chromium/chromium that referenced this pull request Apr 2, 2025
@javifernandez
Changes in the JWK 'alg' member for Ed25519
92a9ca0 
The PR#401 [1] changed the spec to accept either "EdDSA" (current) or
"Ed25519" in the JWK import operation and just "Ed25519" in the export
operation.

The PR#51198 [2] has updated the corresponding tests in the WPT
repository.

[1] w3c/webcrypto#401
[2] web-platform-tests/wpt#51198

Bug: 402138569
Change-Id: I4ec52a9314bf9fa52c861549c5e4e47f610ecee1
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/6339929
Commit-Queue: Javier Fernandez <[email protected]>
Reviewed-by: David Benjamin <[email protected]>
Cr-Commit-Position: refs/heads/main@{#1441790}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@twiss twiss twiss approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@panva @javifernandez @twiss