signature.go 1.88 KB
Newer Older
Lukas Matt's avatar
Lukas Matt committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69
package federation
//
// GangGo Diaspora Federation Library
// Copyright (C) 2017 Lukas Matt <lukas@zauberstuhl.de>
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with this program.  If not, see <http://www.gnu.org/licenses/>.
//

import (
  "crypto"
  "crypto/rand"
  "crypto/sha256"
  "crypto/rsa"
  "encoding/base64"
  "strings"
)

type signature interface {
  SignatureText() []string
}

type Signature struct {
  delim string
  signatureText []string

  Err error
}

func (signature *Signature) New(sig signature) *Signature {
  signature.signatureText = sig.SignatureText()
  signature.delim = SignatureAuthorDelimiter
  if _, ok := sig.(Message); ok {
    signature.delim = SignatureDelimiter
  }
  return signature
}

func (signature *Signature) Sign(privKey *rsa.PrivateKey, sig *string) error {
  h := sha256.New()
  h.Write([]byte(strings.Join(signature.signatureText, signature.delim)))
  digest := h.Sum(nil)

  rng := rand.Reader
  bytes, err := rsa.SignPKCS1v15(rng, privKey, crypto.SHA256, digest[:])
  if err != nil {
    signature.Err = err
    return err
  }
  *sig = base64.StdEncoding.EncodeToString(bytes)
  return nil
}

func (signature *Signature) Verify(pubKey *rsa.PublicKey, sig []byte) bool {
  message := []byte(strings.Join(signature.signatureText, signature.delim))
  err := rsa.VerifyPKCS1v15(pubKey, crypto.SHA256, message[:], sig)
  signature.Err = err
  return err == nil
}