go-pgp/pgp/verify.go

package pgp

import (
	"bytes"
	"errors"
	"fmt"
	"io"

	"golang.org/x/crypto/openpgp"
	"golang.org/x/crypto/openpgp/armor"
	"golang.org/x/crypto/openpgp/packet"
)

func Verify(publicKeyEntity *openpgp.Entity, message []byte, signature []byte) error {
	sig, err := decodeSignature(signature)
	if err != nil {
		return err
	}
	hash := sig.Hash.New()
	messageReader := bytes.NewReader(message)
	io.Copy(hash, messageReader)

	err = publicKeyEntity.PrimaryKey.VerifySignature(hash, sig)
	if err != nil {
		return err
	}
	return nil
}

func decodeSignature(signature []byte) (*packet.Signature, error) {
	signatureReader := bytes.NewReader(signature)
	block, err := armor.Decode(signatureReader)
	if err != nil {
		return nil, fmt.Errorf("Error decoding OpenPGP Armor: %s", err)
	}

	if block.Type != openpgp.SignatureType {
		return nil, errors.New("Invalid signature file")
	}

	reader := packet.NewReader(block.Body)
	pkt, err := reader.Next()
	if err != nil {
		return nil, err
	}

	sig, ok := pkt.(*packet.Signature)
	if !ok {
		return nil, errors.New("Error parsing signature")
	}
	return sig, nil
}
Initial commit 2024-07-25 16:25:01 +02:00			`package pgp`

			`import (`
			`"bytes"`
			`"errors"`
			`"fmt"`
			`"io"`

			`"golang.org/x/crypto/openpgp"`
			`"golang.org/x/crypto/openpgp/armor"`
			`"golang.org/x/crypto/openpgp/packet"`
			`)`

			`func Verify(publicKeyEntity *openpgp.Entity, message []byte, signature []byte) error {`
			`sig, err := decodeSignature(signature)`
			`if err != nil {`
			`return err`
			`}`
			`hash := sig.Hash.New()`
			`messageReader := bytes.NewReader(message)`
			`io.Copy(hash, messageReader)`

			`err = publicKeyEntity.PrimaryKey.VerifySignature(hash, sig)`
			`if err != nil {`
			`return err`
			`}`
			`return nil`
			`}`

			`func decodeSignature(signature []byte) (*packet.Signature, error) {`
			`signatureReader := bytes.NewReader(signature)`
			`block, err := armor.Decode(signatureReader)`
			`if err != nil {`
			`return nil, fmt.Errorf("Error decoding OpenPGP Armor: %s", err)`
			`}`

			`if block.Type != openpgp.SignatureType {`
			`return nil, errors.New("Invalid signature file")`
			`}`

			`reader := packet.NewReader(block.Body)`
			`pkt, err := reader.Next()`
			`if err != nil {`
			`return nil, err`
			`}`

			`sig, ok := pkt.(*packet.Signature)`
			`if !ok {`
			`return nil, errors.New("Error parsing signature")`
			`}`
			`return sig, nil`
			`}`