asn1(core): RFC 8410 OIDs + ABSENT params; preserve unknown AlgorithmIdentifier params via Asn1Any; add SEQUENCE OF support; update API/ABI and changelog

- Add ObjectIdentifier extensions for Ed25519/Ed448/X25519/X448
- Enforce RFC 8410 on encode (omit parameters); decoder tolerates NULL
- Introduce Asn1Any and carry parameters in UnknownKeyAlgorithmIdentifier
- Support StructureKind.LIST (SEQUENCE OF) in DER codec
- Update API dumps and CHANGELOG; add PR description

Author: ariawisp

CHANGELOG.md

@@ -1,5 +1,14 @@
 # CHANGELOG
 
+## Unreleased
+
+### ASN.1/DER
+
+- RFC 8410 compliance: Ed25519/Ed448/X25519/X448 AlgorithmIdentifier encodes with ABSENT parameters; decoder tolerates explicit NULL.
+- Unknown AlgorithmIdentifier parameters are preserved as raw ASN.1 for round-trip via new `Asn1Any` type.
+- Support SEQUENCE OF (list) encode/decode in DER codec.
+
+
 ## 0.5.0 – CryptoKit & optimal providers
 
 > Published 30 Jun 2025

cryptography-serialization/asn1/api/cryptography-serialization-asn1.api

@@ -90,3 +90,22 @@ public final class dev/whyoleg/cryptography/serialization/asn1/ObjectIdentifier$
 	public final fun serializer ()Lkotlinx/serialization/KSerializer;
 }
 
+public final class dev/whyoleg/cryptography/serialization/asn1/Asn1Any {
+	public static final field Companion Ldev/whyoleg/cryptography/serialization/asn1/Asn1Any$Companion;
+	public fun <init> ([B)V
+	public final fun getBytes ()[B
+}
+
+public final synthetic class dev/whyoleg/cryptography/serialization/asn1/Asn1Any$$serializer : kotlinx/serialization/internal/GeneratedSerializer {
+	public static final field INSTANCE Ldev/whyoleg/cryptography/serialization/asn1/Asn1Any$$serializer;
+	public final fun childSerializers ()[Lkotlinx/serialization/KSerializer;
+	public final fun deserialize (Lkotlinx/serialization/encoding/Decoder;)Ldev/whyoleg/cryptography/serialization/asn1/Asn1Any;
+	public synthetic fun deserialize (Lkotlinx/serialization/encoding/Decoder;)Ljava/lang/Object;
+	public final fun getDescriptor ()Lkotlinx/serialization/descriptors/SerialDescriptor;
+	public final fun serialize (Lkotlinx/serialization/encoding/Encoder;Ldev/whyoleg/cryptography/serialization/asn1/Asn1Any;)V
+	public synthetic fun serialize (Lkotlinx/serialization/encoding/Encoder;Ljava/lang/Object;)V
+}
+
+public final class dev/whyoleg/cryptography/serialization/asn1/Asn1Any$Companion {
+	public final fun serializer ()Lkotlinx/serialization/KSerializer;
+}

cryptography-serialization/asn1/api/cryptography-serialization-asn1.klib.api

@@ -48,6 +48,26 @@ final class dev.whyoleg.cryptography.serialization.asn1/BitArray { // dev.whyole
     }
 }
 
+final class dev.whyoleg.cryptography.serialization.asn1/Asn1Any { // dev.whyoleg.cryptography.serialization.asn1/Asn1Any|null[0]
+    constructor <init>(kotlin/ByteArray) // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.<init>|<init>(kotlin.ByteArray){}[0]
+
+    final val bytes // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.bytes|{}bytes[0]
+        final fun <get-bytes>(): kotlin/ByteArray // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.bytes.<get-bytes>|<get-bytes>(){}[0]
+
+    final object $serializer : kotlinx.serialization.internal/GeneratedSerializer<dev.whyoleg.cryptography.serialization.asn1/Asn1Any> { // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer|null[0]
+        final val descriptor // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer.descriptor|{}descriptor[0]
+            final fun <get-descriptor>(): kotlinx.serialization.descriptors/SerialDescriptor // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer.descriptor.<get-descriptor>|<get-descriptor>(){}[0]
+
+        final fun childSerializers(): kotlin/Array<kotlinx.serialization/KSerializer<*>> // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer.childSerializers|childSerializers(){}[0]
+        final fun deserialize(kotlinx.serialization.encoding/Decoder): dev.whyoleg.cryptography.serialization.asn1/Asn1Any // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer.deserialize|deserialize(kotlinx.serialization.encoding.Decoder){}[0]
+        final fun serialize(kotlinx.serialization.encoding/Encoder, dev.whyoleg.cryptography.serialization.asn1/Asn1Any) // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.$serializer.serialize|serialize(kotlinx.serialization.encoding.Encoder;dev.whyoleg.cryptography.serialization.asn1.Asn1Any){}[0]
+    }
+
+    final object Companion { // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.Companion|null[0]
+        final fun serializer(): kotlinx.serialization/KSerializer<dev.whyoleg.cryptography.serialization.asn1/Asn1Any> // dev.whyoleg.cryptography.serialization.asn1/Asn1Any.Companion.serializer|serializer(){}[0]
+    }
+
+
 final value class dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier { // dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier|null[0]
     constructor <init>(kotlin/String) // dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier.<init>|<init>(kotlin.String){}[0]
 

cryptography-serialization/asn1/modules/api/cryptography-serialization-asn1-modules.api

@@ -248,6 +248,5 @@ public final class dev/whyoleg/cryptography/serialization/asn1/modules/UnknownKe
 	public synthetic fun <init> (Ljava/lang/String;Lkotlin/jvm/internal/DefaultConstructorMarker;)V
 	public fun getAlgorithm-STa95mE ()Ljava/lang/String;
 	public synthetic fun getParameters ()Ljava/lang/Object;
-	public fun getParameters ()Ljava/lang/Void;
+	public fun getParameters ()Ljava/lang/Object;
 }
-

cryptography-serialization/asn1/modules/api/cryptography-serialization-asn1-modules.klib.api

@@ -200,12 +200,12 @@ final class dev.whyoleg.cryptography.serialization.asn1.modules/SubjectPublicKey
 }
 
 final class dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier : dev.whyoleg.cryptography.serialization.asn1.modules/KeyAlgorithmIdentifier { // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier|null[0]
-    constructor <init>(dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier) // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.<init>|<init>(dev.whyoleg.cryptography.serialization.asn1.ObjectIdentifier){}[0]
+    constructor <init>(dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier, kotlin/Any?) // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.<init>|<init>(dev.whyoleg.cryptography.serialization.asn1.ObjectIdentifier;kotlin.Any?){}[0]
 
     final val algorithm // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.algorithm|{}algorithm[0]
         final fun <get-algorithm>(): dev.whyoleg.cryptography.serialization.asn1/ObjectIdentifier // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.algorithm.<get-algorithm>|<get-algorithm>(){}[0]
     final val parameters // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.parameters|{}parameters[0]
-        final fun <get-parameters>(): kotlin/Nothing? // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.parameters.<get-parameters>|<get-parameters>(){}[0]
+        final fun <get-parameters>(): kotlin/Any? // dev.whyoleg.cryptography.serialization.asn1.modules/UnknownKeyAlgorithmIdentifier.parameters.<get-parameters>|<get-parameters>(){}[0]
 }
 
 final value class dev.whyoleg.cryptography.serialization.asn1.modules/EcParameters { // dev.whyoleg.cryptography.serialization.asn1.modules/EcParameters|null[0]

cryptography-serialization/asn1/modules/src/commonMain/kotlin/KeyAlgorithmIdentifier.kt

@@ -10,7 +10,7 @@ import kotlinx.serialization.*
 @Serializable(KeyAlgorithmIdentifierSerializer::class)
 public interface KeyAlgorithmIdentifier : AlgorithmIdentifier
 
-public class UnknownKeyAlgorithmIdentifier(override val algorithm: ObjectIdentifier) : KeyAlgorithmIdentifier {
-    override val parameters: Nothing? get() = null
-}
-
+public class UnknownKeyAlgorithmIdentifier(
+    override val algorithm: ObjectIdentifier,
+    override val parameters: Any? = null,
+) : KeyAlgorithmIdentifier

cryptography-serialization/asn1/modules/src/commonMain/kotlin/KeyAlgorithmIdentifierSerializer.kt

@@ -11,11 +11,31 @@ import kotlinx.serialization.encoding.*
 
 @OptIn(ExperimentalSerializationApi::class)
 internal object KeyAlgorithmIdentifierSerializer : AlgorithmIdentifierSerializer<KeyAlgorithmIdentifier>() {
-    override fun CompositeEncoder.encodeParameters(value: KeyAlgorithmIdentifier): Unit = when (value) {
-        is RsaKeyAlgorithmIdentifier     -> encodeParameters(NothingSerializer(), RsaKeyAlgorithmIdentifier.parameters)
-        is EcKeyAlgorithmIdentifier -> encodeParameters(EcParameters.serializer(), value.parameters)
-        is UnknownKeyAlgorithmIdentifier -> encodeParameters(NothingSerializer(), value.parameters)
-        else                             -> encodeParameters(NothingSerializer(), null)
+    override fun CompositeEncoder.encodeParameters(value: KeyAlgorithmIdentifier) {
+        when (value) {
+            is RsaKeyAlgorithmIdentifier     -> encodeParameters(NothingSerializer(), null) // explicit NULL per RSA
+            is EcKeyAlgorithmIdentifier      -> encodeParameters(EcParameters.serializer(), value.parameters)
+            is UnknownKeyAlgorithmIdentifier -> {
+                // RFC 8410: parameters MUST be ABSENT for Ed25519/Ed448/X25519/X448
+                if (value.algorithm.isRfc8410NoParams()) return
+                when (val p = value.parameters) {
+                    null        -> {
+                        // For unknown algorithms, prefer ABSENT when no parameters provided
+                        // (do nothing). If explicit NULL must be preserved, p will be Asn1Any(05 00).
+                        return
+                    }
+                    is Asn1Any -> encodeParameters(Asn1Any.serializer(), p)
+                    else       -> {
+                        // Fallback: encode NULL to avoid guessing structure
+                        encodeParameters(NothingSerializer(), null)
+                    }
+                }
+            }
+            else                             -> {
+                // Safe default for other known types if any
+                encodeParameters(NothingSerializer(), null)
+            }
+        }
     }
 
     override fun CompositeDecoder.decodeParameters(algorithm: ObjectIdentifier): KeyAlgorithmIdentifier = when (algorithm) {
@@ -26,8 +46,14 @@ internal object KeyAlgorithmIdentifierSerializer : AlgorithmIdentifierSerializer
         }
         ObjectIdentifier.EC  -> EcKeyAlgorithmIdentifier(decodeParameters(EcParameters.serializer()))
         else                 -> {
-            // TODO: somehow we should ignore parameters here
-            UnknownKeyAlgorithmIdentifier(algorithm)
+            // Capture unknown parameters as raw ASN.1 for round-trip when present; null means ABSENT
+            val raw: Asn1Any? = try {
+                decodeParameters(Asn1Any.serializer())
+            } catch (_: IllegalStateException) {
+                // No element to read (ABSENT)
+                null
+            }
+            UnknownKeyAlgorithmIdentifier(algorithm, raw)
         }
     }
-}
+}

cryptography-serialization/asn1/modules/src/commonMain/kotlin/Oids.kt

@@ -0,0 +1,19 @@
+/*
+ * Copyright (c) 2025 Oleg Yukhnevich. Use of this source code is governed by the Apache 2.0 license.
+ */
+
+package dev.whyoleg.cryptography.serialization.asn1.modules
+
+import dev.whyoleg.cryptography.serialization.asn1.ObjectIdentifier
+
+public val ObjectIdentifier.Companion.Ed25519: ObjectIdentifier get() = ObjectIdentifier("1.3.101.112")
+public val ObjectIdentifier.Companion.Ed448: ObjectIdentifier get() = ObjectIdentifier("1.3.101.113")
+
+public val ObjectIdentifier.Companion.X25519: ObjectIdentifier get() = ObjectIdentifier("1.3.101.110")
+public val ObjectIdentifier.Companion.X448: ObjectIdentifier get() = ObjectIdentifier("1.3.101.111")
+
+internal fun ObjectIdentifier.isRfc8410NoParams(): Boolean =
+    this == ObjectIdentifier.Ed25519 ||
+    this == ObjectIdentifier.Ed448 ||
+    this == ObjectIdentifier.X25519 ||
+    this == ObjectIdentifier.X448

cryptography-serialization/asn1/src/commonMain/kotlin/Any.kt

@@ -0,0 +1,15 @@
+/*
+ * Copyright (c) 2025 Oleg Yukhnevich. Use of this source code is governed by the Apache 2.0 license.
+ */
+
+package dev.whyoleg.cryptography.serialization.asn1
+
+import kotlinx.serialization.Serializable
+
+/**
+ * Represents a raw ASN.1 element (tag + length + value) captured as-is.
+ * Useful for preserving unknown parameters for round-trip encoding.
+ */
+@Serializable
+public class Asn1Any(public val bytes: ByteArray)
+

cryptography-serialization/asn1/src/commonMain/kotlin/internal/DerDecoder.kt

@@ -29,32 +29,7 @@ internal class DerDecoder(
         return tag
     }
 
-    override fun decodeElementIndex(descriptor: SerialDescriptor): Int {
-        if (input.eof) return CompositeDecoder.DECODE_DONE
-
-        val tag = input.peakTag()
-
-        while (true) {
-            val index = currentIndex
-            tagOverride = descriptor.getElementContextSpecificTag(index)
-
-            if (descriptor.isElementOptional(index)) {
-                val requiredTag = checkNotNull(tagOverride) {
-                    "Optional element $descriptor[$index] must have context specific tag"
-                }
-
-                // if the tag is different,
-                // then an optional element is absent,
-                // and so we need to increment the index
-                if (tag != requiredTag.tag) {
-                    currentIndex++
-                    continue
-                }
-            }
-
-            return currentIndex++
-        }
-    }
+    
 
     override fun decodeNotNullMark(): Boolean = input.isNotNull()
     override fun decodeNull(): Nothing? = input.readNull()
@@ -69,18 +44,47 @@ internal class DerDecoder(
         BitArray.serializer().descriptor         -> input.readBitString(getAndResetTagOverride()) as T
         ObjectIdentifier.serializer().descriptor -> input.readObjectIdentifier(getAndResetTagOverride()) as T
         BigInt.serializer().descriptor           -> input.readInteger(getAndResetTagOverride()) as T
+        Asn1Any.serializer().descriptor          -> Asn1Any(input.readAnyElement(getAndResetTagOverride())) as T
         else                                     -> deserializer.deserialize(this)
     }
 
     // structures: SEQUENCE and SEQUENCE OF
     override fun beginStructure(descriptor: SerialDescriptor): CompositeDecoder = when (descriptor.kind) {
-        StructureKind.CLASS, is PolymorphicKind -> DerDecoder(der, input.readSequence(getAndResetTagOverride()))
-        else                                    -> throw SerializationException("This serial kind is not supported as structure: $descriptor")
+        StructureKind.CLASS, is PolymorphicKind, StructureKind.LIST -> DerDecoder(der, input.readSequence(getAndResetTagOverride()))
+        else                                                         -> throw SerializationException("This serial kind is not supported as structure: $descriptor")
     }
 
     override fun decodeInline(descriptor: SerialDescriptor): Decoder = this
     override fun decodeInlineElement(descriptor: SerialDescriptor, index: Int): Decoder = this
 
+    override fun decodeElementIndex(descriptor: SerialDescriptor): Int {
+        if (descriptor.kind == StructureKind.LIST) {
+            return if (input.eof) CompositeDecoder.DECODE_DONE else currentIndex++
+        }
+        if (input.eof) return CompositeDecoder.DECODE_DONE
+
+        val tag = input.peakTag()
+
+        while (true) {
+            val index = currentIndex
+            if (index >= descriptor.elementsCount) return CompositeDecoder.DECODE_DONE
+            tagOverride = descriptor.getElementContextSpecificTag(index)
+
+            if (descriptor.isElementOptional(index)) {
+                val requiredTag = checkNotNull(tagOverride) {
+                    "Optional element $descriptor[$index] must have context specific tag"
+                }
+
+                if (tag != requiredTag.tag) {
+                    currentIndex++
+                    continue
+                }
+            }
+
+            return currentIndex++
+        }
+    }
+
     // could be supported, but later when it will be needed
     override fun decodeEnum(enumDescriptor: SerialDescriptor): Int = error("Enum decoding is not supported")
     override fun decodeString(): String = error("String decoding is not supported")