attest/signerverifier/parse.go

package signerverifier

import (
	"crypto"
	"crypto/ecdsa"
	"crypto/x509"
	"encoding/pem"
	"fmt"
)

const pemType = "PUBLIC KEY"

func ParsePublicKey(pubkeyBytes []byte) (crypto.PublicKey, error) {
	p, _ := pem.Decode(pubkeyBytes)
	if p == nil {
		return nil, fmt.Errorf("pubkey file does not contain any PEM data")
	}
	if p.Type != pemType {
		return nil, fmt.Errorf("pubkey file does not contain a public key")
	}
	return x509.ParsePKIXPublicKey(p.Bytes)
}

func ParseECDSAPublicKey(pubkeyBytes []byte) (*ecdsa.PublicKey, error) {
	pk, err := ParsePublicKey(pubkeyBytes)
	if err != nil {
		return nil, err
	}
	ecdsaPubKey, ok := pk.(*ecdsa.PublicKey)
	if !ok {
		return nil, fmt.Errorf("error public key is not an ecdsa key: %w", err)
	}
	return ecdsaPubKey, nil
}

func ConvertToPEM(ecdsaPubKey *ecdsa.PublicKey) ([]byte, error) {
	pubKeyBytes, err := x509.MarshalPKIXPublicKey(ecdsaPubKey)
	if err != nil {
		return nil, fmt.Errorf("error failed to marshal public key: %w", err)
	}
	return pem.EncodeToMemory(&pem.Block{Type: pemType, Bytes: pubKeyBytes}), nil
}
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`package signerverifier`

			`import (`
Use a Factory to create signature verifiers at policy evaluation time (#165) * Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier 2024-09-18 13:34:10 +01:00			`"crypto"`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`"crypto/ecdsa"`
			`"crypto/x509"`
			`"encoding/pem"`
			`"fmt"`
			`)`

			`const pemType = "PUBLIC KEY"`

Use a Factory to create signature verifiers at policy evaluation time (#165) * Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier 2024-09-18 13:34:10 +01:00			`func ParsePublicKey(pubkeyBytes []byte) (crypto.PublicKey, error) {`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`p, _ := pem.Decode(pubkeyBytes)`
			`if p == nil {`
			`return nil, fmt.Errorf("pubkey file does not contain any PEM data")`
			`}`
			`if p.Type != pemType {`
			`return nil, fmt.Errorf("pubkey file does not contain a public key")`
			`}`
Use a Factory to create signature verifiers at policy evaluation time (#165) * Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier 2024-09-18 13:34:10 +01:00			`return x509.ParsePKIXPublicKey(p.Bytes)`
			`}`

			`func ParseECDSAPublicKey(pubkeyBytes []byte) (*ecdsa.PublicKey, error) {`
			`pk, err := ParsePublicKey(pubkeyBytes)`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`if err != nil {`
Use a Factory to create signature verifiers at policy evaluation time (#165) * Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier 2024-09-18 13:34:10 +01:00			`return nil, err`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`}`
Use a Factory to create signature verifiers at policy evaluation time (#165) * Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier 2024-09-18 13:34:10 +01:00			`ecdsaPubKey, ok := pk.(*ecdsa.PublicKey)`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`if !ok {`
			`return nil, fmt.Errorf("error public key is not an ecdsa key: %w", err)`
			`}`
			`return ecdsaPubKey, nil`
			`}`

fix: standardize casing of initialisms (#112) * fix: standardize casing of initialisms * fix: rename intoto -> inToto and Intoto to InToto * fix: fix all linting errors 2024-08-01 15:35:15 +01:00			`func ConvertToPEM(ecdsaPubKey *ecdsa.PublicKey) ([]byte, error) {`
feat: add tlog and signerverifier 2024-04-19 09:08:31 -05:00			`pubKeyBytes, err := x509.MarshalPKIXPublicKey(ecdsaPubKey)`
			`if err != nil {`
			`return nil, fmt.Errorf("error failed to marshal public key: %w", err)`
			`}`
			`return pem.EncodeToMemory(&pem.Block{Type: pemType, Bytes: pubKeyBytes}), nil`
			`}`