signed

package

v0.0.0-...-03904d5 Latest Latest Go to latest Published: May 11, 2015 License: BSD-3-Clause Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/endophage/go-tuf

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func RegisterVerifier(name string, v Verifier)
func Unmarshal(b []byte, v interface{}, role string, minVersion int, db *keys.DB) error
func UnmarshalTrusted(b []byte, v interface{}, role string, db *keys.DB) error
func Verify(s *data.Signed, role string, minVersion int, db *keys.DB) error
func VerifySignatures(s *data.Signed, role string, db *keys.DB) error
type CryptoService
type Ed25519
- func NewEd25519() *Ed25519
- func (trust *Ed25519) Create() (*keys.PublicKey, error)
- func (trust *Ed25519) PublicKeys(keyIDs ...string) (map[string]*keys.PublicKey, error)
- func (trust *Ed25519) RemoveKey(keyID string)
- func (trust *Ed25519) Sign(keyIDs []string, toSign []byte) ([]data.Signature, error)
type Ed25519Verifier
- func (v Ed25519Verifier) Verify(key *data.Key, sig []byte, msg []byte) error
type ErrExpired
- func (e ErrExpired) Error() string
type ErrLowVersion
- func (e ErrLowVersion) Error() string
type KeyService
type RSAVerifier
- func (v RSAVerifier) Verify(key *data.Key, sig []byte, msg []byte) error
type Signer
- func NewSigner(service CryptoService) *Signer
- func (signer *Signer) Create() (*keys.PublicKey, error)
- func (signer *Signer) PublicKeys(keyIDs ...string) (map[string]*keys.PublicKey, error)
- func (signer *Signer) Sign(s *data.Signed, keys ...*keys.PublicKey) error
type SigningService
type Verifier

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrMissingKey    = errors.New("tuf: missing key")
	ErrNoSignatures  = errors.New("tuf: data has no signatures")
	ErrInvalid       = errors.New("tuf: signature verification failed")
	ErrWrongMethod   = errors.New("tuf: invalid signature type")
	ErrUnknownRole   = errors.New("tuf: unknown role")
	ErrRoleThreshold = errors.New("tuf: valid signatures did not meet threshold")
	ErrWrongType     = errors.New("tuf: meta file has wrong type")
)

View Source

var IsExpired = func(t time.Time) bool {
	return t.Sub(time.Now()) <= 0
}

View Source

var Verifiers = map[string]Verifier{
	"ed25519": Ed25519Verifier{},
	"rsa":     RSAVerifier{},
}

Verifiers serves as a map of all verifiers available on the system and can be injected into a verificationService. For testing and configuration purposes, it will not be used by default.

Functions ¶

func RegisterVerifier ¶

func RegisterVerifier(name string, v Verifier)

RegisterVerifier provides a convenience function for init() functions to register additional verifiers or replace existing ones.

func Unmarshal ¶

func Unmarshal(b []byte, v interface{}, role string, minVersion int, db *keys.DB) error

func UnmarshalTrusted ¶

func UnmarshalTrusted(b []byte, v interface{}, role string, db *keys.DB) error

func Verify ¶

func Verify(s *data.Signed, role string, minVersion int, db *keys.DB) error

func VerifySignatures ¶

func VerifySignatures(s *data.Signed, role string, db *keys.DB) error

Types ¶

type CryptoService ¶

type CryptoService interface {
	SigningService
	KeyService
}

type Ed25519 ¶

type Ed25519 struct {
	// contains filtered or unexported fields
}

Ed25519 implements a simple in memory keystore and trust service

func NewEd25519 ¶

func NewEd25519() *Ed25519

func (*Ed25519) Create ¶

func (trust *Ed25519) Create() (*keys.PublicKey, error)

func (*Ed25519) PublicKeys ¶

func (trust *Ed25519) PublicKeys(keyIDs ...string) (map[string]*keys.PublicKey, error)

func (*Ed25519) RemoveKey ¶

func (trust *Ed25519) RemoveKey(keyID string)

func (*Ed25519) Sign ¶

func (trust *Ed25519) Sign(keyIDs []string, toSign []byte) ([]data.Signature, error)

type Ed25519Verifier ¶

type Ed25519Verifier struct{}

func (Ed25519Verifier) Verify ¶

func (v Ed25519Verifier) Verify(key *data.Key, sig []byte, msg []byte) error

type ErrExpired ¶

type ErrExpired struct {
	Expired time.Time
}

func (ErrExpired) Error ¶

func (e ErrExpired) Error() string

type ErrLowVersion ¶

type ErrLowVersion struct {
	Actual  int
	Current int
}

func (ErrLowVersion) Error ¶

func (e ErrLowVersion) Error() string

type KeyService ¶

type KeyService interface {
	Create() (*keys.PublicKey, error)
	PublicKeys(keyIDs ...string) (map[string]*keys.PublicKey, error)
}

type RSAVerifier ¶

type RSAVerifier struct{}

func (RSAVerifier) Verify ¶

func (v RSAVerifier) Verify(key *data.Key, sig []byte, msg []byte) error

type Signer ¶

type Signer struct {
	// contains filtered or unexported fields
}

Signer encapsulates a signing service with some convenience methods to interface between TUF keys and the generic service interface

func NewSigner ¶

func NewSigner(service CryptoService) *Signer

func (*Signer) Create ¶

func (signer *Signer) Create() (*keys.PublicKey, error)

func (*Signer) PublicKeys ¶

func (signer *Signer) PublicKeys(keyIDs ...string) (map[string]*keys.PublicKey, error)

func (*Signer) Sign ¶

func (signer *Signer) Sign(s *data.Signed, keys ...*keys.PublicKey) error

Sign takes a data.Signed and a key, calculated and adds the signature to the data.Signed

type SigningService ¶

type SigningService interface {
	Sign(keyIDs []string, data []byte) ([]data.Signature, error)
}

type Verifier ¶

type Verifier interface {
	Verify(key *data.Key, sig []byte, msg []byte) error
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL