Make AppCastGenerator multi-platform + add ed25519 support #98
Conversation
|
Oh wow, thanks so much for your work. It will take me a few days to look at this probably, but thank you for contributing! I'll try to look at the Xamarin.Mac thing too. I do have a Mac on hand and can take a look, I think. Perhaps if the project were created on macOS then referenced from the SLN manually? I'm not opposed to having a separate SLN if we have to. I did a quick test, and a Xamarin library project can reference the latest previews of NetSparkle on macOS, so it should be possible... |
mphill
changed the title
|
Hi! After some research, I would rather not use NSec.Cryptography here. Notably, it isn't very compatible with .NET Framework and forces users to use I also second-guessed using Chaos.NaCl due to the low level of testing it has had. It has some unit tests, but there are other more well-used/supported frameworks. So, I did some legwork, and now there is an Please use BouncyCastle instead. Here is some sample code: Create public/private key pair: private static readonly SecureRandom Random = new SecureRandom();
Ed25519KeyPairGenerator kpg = new Ed25519KeyPairGenerator();
kpg.Init(new Ed25519KeyGenerationParameters(Random));
AsymmetricCipherKeyPair kp = kpg.GenerateKeyPair();
Ed25519PrivateKeyParameters privateKey = (Ed25519PrivateKeyParameters)kp.Private;
Ed25519PublicKeyParameters publicKey = (Ed25519PublicKeyParameters)kp.Public;
var privKeyBase64 = Convert.ToBase64String(privateKey.GetEncoded());
var pubKeyBase64 = Convert.ToBase64String(publicKey.GetEncoded());
// write keys to file as neededImport key: var publicKey = "base 64 encoded public key";
var signer = new Ed25519Signer();
byte[] pubKeyBytes = Convert.FromBase64String(publicKey);
var cipherParams = new Ed25519PublicKeyParameters(pubKeyBytes, 0);
signer.Init(false, cipherParams);Sign: // create signature for item
byte[] msg = new byte[Random.NextInt() & 255]; // byte array of data to sign
Random.NextBytes(msg); // just creating byte array
var signer = new Ed25519Signer();
signer.Init(true, privateKey);
signer.BlockUpdate(msg, 0, msg.Length);
byte[] signature = signer.GenerateSignature();
var signatureForAppCast = Convert.ToBase64String(signature); // output for app cast in base 64 |
src/NetSparkle.Tools.AppCastGenerator/NetSparkle.Tools.AppCastGenerator.csproj
Outdated
Show resolved
Hide resolved
|
Thanks for all this work, here! This is really great and will make this project a whole lot better. Once you've made the requested changes, I'll run some more tests on my end before merging. |
|
It's going to take me some time to figure out bouncycastle and get that integrated. That's too bad about NSec, it's a solid project. |
|
If you want, I can do that and send a PR to your repo? Mostly it's just some changes to the sample code I posted above. There's already an ed25519 checker that uses BouncyCastle in this repo. |
|
The problem is I keep getting With BouncyCastle: I have to use the portable version. I will try to integrate it quickly. |
|
Yeah, |
|
I removed my verifier from the main project, it will need to be redone with bouncy, however the rest of the comments should be resolved in the last commit. |
# Conflicts: # src/NetSparkle.UI.WPF/NetSparkle.UI.WPF.csproj # src/NetSparkle/SignatureVerifiers/Ed25519Checker.cs
|
Looks like you did that work already!! So glad I didn't!!! Haha. I resolved the merge conflicts. |
|
Things are looking fairly good. I am working on writing some tests and some small tweaks but it will be merged soon. :) Thank you! |
|
Where do people normally host appcasts? Would it be worth file to include AWS/Azure uploading? i.e. appcast_generator --publish --target aws |
|
@mphill Thank you so much for all your contributions. I have merged in your code along with a few extra features/tests. I also updated the README for some extra clarification. As far as where people host app casts, I have never asked. I can see the use for such a feature, but I definitely am not going to worry about that for 2.0.0 and won't merge any PR for that right now. If you'd like to file an issue for discussion on that idea, please do. |
I have NetSparkle working with MacOS now but I am having a rough time trying to to include a reference to Xamarin.Mac in the NetSparkle project.
For some reason VS does not want to let me correctly add a reference to Xamarin.mac.
I had to make
WebRequestAppCastDataDownloaderpublic in order to exposeTrustEverySSLConnectionreturn sslPolicyErrors == SslPolicyErrors.None && certificate is X509Certificate2 cert2 && cert2.Verify();Specifically cert2.Verify() crashes on MacOS/Mono - so I am bypassing it for now. Since the class was private I could not set the variable outside of the class, and there was no way to do it from code.
In the mean time, I made a large refactor to the AppCastGenerator to make it work with windows, mac and linux, and work with any extension (zip, dmg, exe, tar.gz) and some enhancements to help it integrate with github releases, like https://github.com/NetSparkleUpdater/NetSparkle/releases
I tried to see how far I could get with https://github.com/NetSparkleUpdater/NetSparkle/releases.atom but the atom feed is little light on detail.
See
sparkle-project/Sparkle#648
It's a BIG refactor. All of the parameters have changed, there are many more options too.
Update:
AppCastGeneratornow used ed25519 and supports generating and verifying signatures