Improve ssi-crypto.

[timothee-haudebourg]

Description

Improves the ssi-crypto library:

• Make the purpose of the library clearer: a flexible dynamic interface for cryptographic primitives built on top of RustCrypto (and ring), where algorithms can be selected at run time instead of compile time.
• Add signing and verification traits that can be used by JWK, COSE and Data Integrity (in the future), instead of format specific traits that must be re-implemented (e.g. JwsSigner).
• Re-export RustCrypto libraries (depending on the features), so that dependents don't have to depend on dozens of crypto libraries themselves.

The important changes are in the ssi-crypto library. The only reason why there are so many changes in other files is because I renamed a few algorithm variants to follow Rust naming conventions, and merged the ssi-crypto error types into one.

Tested

• Original test suite still passes.
• Added unit test for each supported cryptographic function.

[sbihel]

Are the changes to the algorithms casing really that important? I understand it's not exactly idiomatic, but at the same time they're essentially acronyms so it doesn't matter that much, it's additional breaking changes, and it makes this PR harder to review

[timothee-haudebourg]

Are the changes to the algorithms casing really that important?

No its not important, but it's the convention and I feel like it's now or never to make breaking changes. I can make that in another PR, but would that really help?

Alternatively I can revert the names for the ssi_jwk::Algorithm type only. It wasn't really my intention to change them, but they are defined with a macro that binds the names to the ssi_crypto::Algorithm names, so my IDE automatically changed them. It's really the change to ssi_jwk::Algorithm that bleeds out to the rest of the crates.

[cobward]

Suggested change

// pub struct

[cobward]

Curve instead of KeyType?

[timothee-haudebourg]

I went back and forth between KeyType and Curve 😅 If you prefer Curve I'll use that instead.

[cobward]

Suggested change

	// let padding;
	// let hashed;

[cobward]

Suggested change

	pub enum AnyES {
	pub enum AnyES256K {

[timothee-haudebourg]

I intend to remove what's in the static module. Those types are used by the Data Integrity libs, but now that we have low-level Signer and Verifier traits we'll be able to use the Algorithm type directly. Also I feel like defining static types for crypto algorithm is RustCrypto's job, not ssi-crypto's.

[cobward]

FWIW you can use k256::EncodedPoint::from_untagged_bytes or from_affine_coordinates to avoid messing around with SEC1 tags.

[timothee-haudebourg]

Most of the key conversion functions are coming straight from ssi_jwk.

avoid messing around with SEC1 tags

Oh that's what the 0x04 is? Yeah that's why I did change anything, I wasn't sure what format that was.

[cobward]

Why Box<[u8]> instead of Vec?

[timothee-haudebourg]

Vec provides more capabilities like resizing that we don't need here. So to me the question is more "Why Vec when Box<[u8]> is enough"?

[cobward]

Because in most applications an owned slice will be a Vec, so we're adding unnecessary overhead by requiring conversion between Box<[u8]> and Vec.

Additional capabilities on a Vec don't actually cause any issues right? There's just an extra byte of memory used to store the capacity of the slice.

Conversion from Vec to Box<[u8]> requires shrinking the Vec to capacity, manually dropping and reading the vec into a new buffer. I'm not an expert but I think that also implies that the original Vec buffer is not reused and therefore not zeroized. So overall I think it makes more sense to take ownership of the Vec. I was wrong about that part, the Box manually drops the original buffer

[timothee-haudebourg]

RustCrypo always use fixed-length arrays, not Vec, so I'm not worried about shrinking stuff. But it's true that many functions are expecting Vecs so I'm not going to fight for it, I'll remove the Box<[u8]>s.

[cobward]

Can you leave comments describing why the unwrap won't ever panic.

[timothee-haudebourg]

@cobward, @sbihel, ready for another review.