Update lint (#44)

* Reduce complexity of SignatureCollector.Accept * Add stylecheck linter, and lint accordingly * Rephrase some comments * godot - Top level comments should end with a dot. * nestif - Reduce nested complexity of code * Review changes Co-authored-by: Aron Wussler <aron@wussler.it>
2020-04-28 13:55:36 +02:00 · 2020-04-28 13:55:36 +02:00 · ac8a49c114
commit ac8a49c114
parent 222decb919
15 changed files with 252 additions and 265 deletions
--- a/crypto/signature.go
+++ b/crypto/signature.go
@ -15,13 +15,14 @@ import (
 	"github.com/ProtonMail/gopenpgp/v2/internal"
 )

-// SignatureVerificationError is returned from Decrypt and VerifyDetached functions when signature verification fails
+// SignatureVerificationError is returned from Decrypt and VerifyDetached
+// functions when signature verification fails.
 type SignatureVerificationError struct {
 	Status  int
 	Message string
 }

-// Error is the base method for all errors
+// Error is the base method for all errors.
 func (e SignatureVerificationError) Error() string {
 	return fmt.Sprintf("Signature Verification Error: %v", e.Message)
 }
@ -30,7 +31,8 @@ func (e SignatureVerificationError) Error() string {
 // Internal functions
 // ------------------

-// newSignatureFailed creates a new SignatureVerificationError, type SIGNATURE_FAILED
+// newSignatureFailed creates a new SignatureVerificationError, type
+// SignatureFailed.
 func newSignatureFailed() SignatureVerificationError {
 	return SignatureVerificationError{
 		constants.SIGNATURE_FAILED,
@ -38,7 +40,8 @@ func newSignatureFailed() SignatureVerificationError {
 	}
 }

-// newSignatureNotSigned creates a new SignatureVerificationError, type SIGNATURE_NOT_SIGNED
+// newSignatureNotSigned creates a new SignatureVerificationError, type
+// SignatureNotSigned.
 func newSignatureNotSigned() SignatureVerificationError {
 	return SignatureVerificationError{
 		constants.SIGNATURE_NOT_SIGNED,
@ -46,7 +49,8 @@ func newSignatureNotSigned() SignatureVerificationError {
 	}
 }

-// newSignatureNoVerifier creates a new SignatureVerificationError, type SIGNATURE_NO_VERIFIER
+// newSignatureNoVerifier creates a new SignatureVerificationError, type
+// SignatureNoVerifier.
 func newSignatureNoVerifier() SignatureVerificationError {
 	return SignatureVerificationError{
 		constants.SIGNATURE_NO_VERIFIER,
@ -54,50 +58,46 @@ func newSignatureNoVerifier() SignatureVerificationError {
 	}
 }

-// processSignatureExpiration handles signature time verification manually, so we can add a margin to the
-// creationTime check.
+// processSignatureExpiration handles signature time verification manually, so
+// we can add a margin to the creationTime check.
 func processSignatureExpiration(md *openpgp.MessageDetails, verifyTime int64) {
-	if md.SignatureError == pgpErrors.ErrSignatureExpired {
-		if verifyTime > 0 {
-			created := md.Signature.CreationTime.Unix()
-			expires := int64(math.MaxInt64)
-			if md.Signature.SigLifetimeSecs != nil {
-				expires = int64(*md.Signature.SigLifetimeSecs) + created
-			}
-			if created-internal.CreationTimeOffset <= verifyTime && verifyTime <= expires {
-				md.SignatureError = nil
-			}
-		} else {
-			// verifyTime = 0: time check disabled, everything is okay
-			md.SignatureError = nil
-		}
+	if md.SignatureError != pgpErrors.ErrSignatureExpired {
+		return
+	}
+	if verifyTime == 0 {
+		// verifyTime = 0: time check disabled, everything is okay
+		md.SignatureError = nil
+		return
+	}
+	created := md.Signature.CreationTime.Unix()
+	expires := int64(math.MaxInt64)
+	if md.Signature.SigLifetimeSecs != nil {
+		expires = int64(*md.Signature.SigLifetimeSecs) + created
+	}
+	if created-internal.CreationTimeOffset <= verifyTime && verifyTime <= expires {
+		md.SignatureError = nil
 	}
 }

-// verifyDetailsSignature verifies signature from message details
+// verifyDetailsSignature verifies signature from message details.
 func verifyDetailsSignature(md *openpgp.MessageDetails, verifierKey *KeyRing) error {
 	if md.IsSigned {
-		if md.SignedBy != nil {
-			if len(verifierKey.entities) > 0 {
-				matches := verifierKey.entities.KeysById(md.SignedByKeyId)
-				if len(matches) > 0 {
-					if md.SignatureError == nil {
-						return nil
-					}
-					return newSignatureFailed()
-				}
-			} else {
-				return newSignatureNoVerifier()
-			}
-		} else {
+		if md.SignedBy == nil || len(verifierKey.entities) == 0 {
 			return newSignatureNoVerifier()
 		}
+		matches := verifierKey.entities.KeysById(md.SignedByKeyId)
+		if len(matches) > 0 {
+			if md.SignatureError == nil {
+				return nil
+			}
+			return newSignatureFailed()
+		}
 	}

 	return newSignatureNoVerifier()
 }

-// verifySignature verifies if a signature is valid with the entity list
+// verifySignature verifies if a signature is valid with the entity list.
 func verifySignature(pubKeyEntries openpgp.EntityList, origText io.Reader, signature []byte, verifyTime int64) error {
 	config := &packet.Config{}
 	if verifyTime == 0 {
@ -113,23 +113,22 @@ func verifySignature(pubKeyEntries openpgp.EntityList, origText io.Reader, signa

 	signer, err := openpgp.CheckDetachedSignature(pubKeyEntries, origText, signatureReader, config)

-	if err == pgpErrors.ErrSignatureExpired && signer != nil {
-		if verifyTime > 0 { // if verifyTime = 0: time check disabled, everything is okay
-			// Maybe the creation time offset pushed it over the edge
-			// Retry with the actual verification time
-			config.Time = func() time.Time {
-				return time.Unix(verifyTime, 0)
-			}
+	if err == pgpErrors.ErrSignatureExpired && signer != nil && verifyTime > 0 {
+		// if verifyTime = 0: time check disabled, everything is okay
+		// Maybe the creation time offset pushed it over the edge
+		// Retry with the actual verification time
+		config.Time = func() time.Time {
+			return time.Unix(verifyTime, 0)
+		}

-			_, err = signatureReader.Seek(0, io.SeekStart)
-			if err != nil {
-				return newSignatureFailed()
-			}
+		_, err = signatureReader.Seek(0, io.SeekStart)
+		if err != nil {
+			return newSignatureFailed()
+		}

-			signer, err = openpgp.CheckDetachedSignature(pubKeyEntries, origText, signatureReader, config)
-			if err != nil {
-				return newSignatureFailed()
-			}
+		signer, err = openpgp.CheckDetachedSignature(pubKeyEntries, origText, signatureReader, config)
+		if err != nil {
+			return newSignatureFailed()
 		}
 	}