fix: account for p256 curve in tests

bordumb · bordumb · commit f96592fdb007 · 2026-04-11T19:21:51.000+01:00
diff --git a/crates/auths-verifier/src/core.rs b/crates/auths-verifier/src/core.rs
@@ -1582,15 +1582,15 @@ impl<'de> Deserialize<'de> for CommitOid {
 /// Error type for `PublicKeyHex` construction.
 #[derive(Debug, Clone, PartialEq, Eq, thiserror::Error)]
 pub enum PublicKeyHexError {
-    /// The hex string has the wrong length (not 64 chars / 32 bytes).
-    #[error("expected 64 hex chars (32 bytes), got {0} chars")]
+    /// The hex string has the wrong length (not 64 or 66 chars).
+    #[error("expected 64 (Ed25519) or 66 (P-256) hex chars, got {0} chars")]
     InvalidLength(usize),
     /// The string contains non-hex characters.
     #[error("invalid hex: {0}")]
     InvalidHex(String),
 }
 
-/// A validated hex-encoded Ed25519 public key (64 hex chars = 32 bytes).
+/// A validated hex-encoded public key (64 hex chars for Ed25519, 66 for P-256 compressed).
 ///
 /// Use `to_ed25519()` to convert to the byte-array `Ed25519PublicKey` type.
 #[derive(Debug, Clone, PartialEq, Eq, Hash, Serialize)]
@@ -1612,7 +1612,7 @@ impl PublicKeyHex {
     pub fn parse(raw: &str) -> Result<Self, PublicKeyHexError> {
         let s = raw.trim().to_lowercase();
         let bytes = hex::decode(&s).map_err(|e| PublicKeyHexError::InvalidHex(e.to_string()))?;
-        if bytes.len() != 32 {
+        if bytes.len() != 32 && bytes.len() != 33 {
             return Err(PublicKeyHexError::InvalidLength(s.len()));
         }
         Ok(Self(s))
diff --git a/packages/auths-node/__test__/integration.spec.ts b/packages/auths-node/__test__/integration.spec.ts
@@ -49,7 +49,8 @@ describe('identity lifecycle', () => {
     expect(identity.did).toMatch(/^did:keri:/)
     expect(identity.keyAlias).toBeDefined()
     expect(identity.publicKey).toBeDefined()
-    expect(identity.publicKey.length).toBe(64)
+    // 64 hex chars (Ed25519, 32 bytes) or 66 hex chars (P-256 compressed, 33 bytes)
+    expect([64, 66]).toContain(identity.publicKey.length)
   })
 
   it('getPublicKey returns hex string', () => {
diff --git a/tests/e2e/test_device_attestation.py b/tests/e2e/test_device_attestation.py
@@ -66,7 +66,8 @@ def test_device_revoke(self, auths_bin, init_identity):
     def test_device_verify(self, auths_bin, init_identity, tmp_path):
         att_file = tmp_path / "attestation.json"
         att_data = export_attestation(init_identity, att_file)
-        issuer_pk = att_data["device_public_key"]
+        dpk = att_data["device_public_key"]
+        issuer_pk = dpk["key"] if isinstance(dpk, dict) else dpk
 
         verify = run_auths(
             auths_bin,
diff --git a/tests/e2e/test_ephemeral_signing.py b/tests/e2e/test_ephemeral_signing.py
@@ -26,7 +26,7 @@ def test_ephemeral_sign_and_verify():
 
         # Sign with ephemeral CI key
         sign_result = run([
-            "cargo", "run", "-p", "auths_cli", "--",
+            "cargo", "run", "-p", "auths-cli", "--",
             "artifact", "sign", artifact_path,
             "--ci",
             "--ci-platform", "local",
