spki: Adds a SignatureBitStringEncoding trait

This is used to differentiate the different encoding for signatures as x509 related structures rely on `BitString` encoding of the various signatures. This is mostly used as a marker trait to ensure misuse resistance of the API.
RustCrypto · May 4, 2023 · e467cef · e467cef
1 parent 476d1a0
commit e467cef
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 1 deletion.
diff --git a/spki/src/lib.rs b/spki/src/lib.rs
@@ -61,6 +61,7 @@ pub use {
         spki::SubjectPublicKeyInfoOwned,
         traits::{
             DynAssociatedAlgorithmIdentifier, DynSignatureAlgorithmIdentifier, EncodePublicKey,
+            SignatureBitStringEncoding,
         },
     },
     der::Document,

diff --git a/spki/src/traits.rs b/spki/src/traits.rs
@@ -6,7 +6,7 @@ use der::{EncodeValue, Tagged};
 #[cfg(feature = "alloc")]
 use {
     crate::AlgorithmIdentifierOwned,
-    der::{Any, Document},
+    der::{asn1::BitString, Any, Document},
 };
 
 #[cfg(feature = "pem")]
@@ -173,3 +173,12 @@ where
         })
     }
 }
+
+/// Returns the `BitString` encoding of the signature.
+///
+/// X.509 and CSR structures require signatures to be BitString encoded.
+#[cfg(feature = "alloc")]
+pub trait SignatureBitStringEncoding {
+    /// `BitString` encoding for this signature.
+    fn to_bitstring(&self) -> der::Result<BitString>;
+}