05caa959c4
* Make verifiers composable * fix: remove unused code and improve signature verification logic * fix: simplify abstractions and renamed some things * fix: improve tl interface. * fix: sort out signer/verifier
43 lines
1.0 KiB
Go
43 lines
1.0 KiB
Go
package signerverifier
|
|
|
|
import (
|
|
"crypto"
|
|
"crypto/ecdsa"
|
|
"crypto/x509"
|
|
"encoding/pem"
|
|
"fmt"
|
|
)
|
|
|
|
const pemType = "PUBLIC KEY"
|
|
|
|
func ParsePublicKey(pubkeyBytes []byte) (crypto.PublicKey, error) {
|
|
p, _ := pem.Decode(pubkeyBytes)
|
|
if p == nil {
|
|
return nil, fmt.Errorf("pubkey file does not contain any PEM data")
|
|
}
|
|
if p.Type != pemType {
|
|
return nil, fmt.Errorf("pubkey file does not contain a public key")
|
|
}
|
|
return x509.ParsePKIXPublicKey(p.Bytes)
|
|
}
|
|
|
|
func ParseECDSAPublicKey(pubkeyBytes []byte) (*ecdsa.PublicKey, error) {
|
|
pk, err := ParsePublicKey(pubkeyBytes)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
ecdsaPubKey, ok := pk.(*ecdsa.PublicKey)
|
|
if !ok {
|
|
return nil, fmt.Errorf("error public key is not an ecdsa key: %w", err)
|
|
}
|
|
return ecdsaPubKey, nil
|
|
}
|
|
|
|
func ConvertToPEM(ecdsaPubKey *ecdsa.PublicKey) ([]byte, error) {
|
|
pubKeyBytes, err := x509.MarshalPKIXPublicKey(ecdsaPubKey)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("error failed to marshal public key: %w", err)
|
|
}
|
|
return pem.EncodeToMemory(&pem.Block{Type: pemType, Bytes: pubKeyBytes}), nil
|
|
}
|