lysann/passforios-gopenpgp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
415 commits 1 branch 1 tag 98 MiB
Commit graph

16 commits

Author SHA1 Message Date
Lukas Burkhalter
a3608a3d8d
Add SHA3 to allowed signature hashes (#304) 2024-10-29 11:39:45 +01:00
Dmitriy Matrenichev
158eba9411
Reset origText in verifySignature before the retry 
This is partial fix for #231

Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>
 2023-04-13 10:45:56 -04:00
M. Thiercelin
97323a4c2b
Add signature context for embedded signatures 2023-04-06 12:28:12 +02:00
M. Thiercelin
c55b9d203c
Add API to sign stream with context 2023-04-06 11:45:50 +02:00
M. Thiercelin
257c381604
Add SIGNATURE_BAD_CONTEXT status to verification error. 
Add a special status for verification errors that are
caused by the signature context.
 2023-04-06 10:34:04 +02:00
M. Thiercelin
e9fca4d62f
Wrap the cause of signature verification errors. 
Instead of swallowing the cause of verification errors,
we use error wrapping to communicate the cause to the caller.
 2023-04-05 13:50:55 +02:00
M. Thiercelin
1ec90e34ea
Add API to add contexts to detached signatures. 
Using the notation data packets of signatures, we add a way to
set a context to detached signatures.
We also add a way to enforce that signatures have the right context
during verification.
 2023-03-13 11:48:31 +01:00
Daniel Huigens
9d05b3e9b6 Use returned signature in GetVerifiedSignatureTimestamp 
Instead of parsing the signature packets manually, use the signature
packet returned by VerifyDetachedSignatureAndHash to get the
signature creation time.
 2023-02-20 12:53:44 +01:00
Daniel Huigens
379e4814e0 More strictly verify detached signatures 
Reject detached signatures from revoked and expired keys.
 2023-02-20 12:53:44 +01:00
marin thiercelin
77df8cba3d
Fix signature status when verifying unsigned message 
Return `SIGNATURE_NOT_SIGNED` instead of `SIGNATURE_NO_VERIFIER` when
verifying a messages with no embedded signatures.
 2021-07-16 12:17:18 +02:00
Daniel Huigens
d0daa53ca6
Update x/crypto fork to github.com/ProtonMail/go-crypto (#106) 2020-12-08 18:34:39 +01:00
wussler
53a85837e0
Improve error handling, fix linter (#92) 
* Improve error handling, fix linter
 2020-10-29 12:42:32 +01:00
Daniel Huigens
608bedaaf1
Reject signatures using insecure hash algorithms (#52) 2020-06-25 13:45:59 +02:00
zugzwang
ac8a49c114
Update lint (#44) 
* Reduce complexity of SignatureCollector.Accept

* Add stylecheck linter, and lint accordingly

* Rephrase some comments

* godot - Top level comments should end with a dot.

* nestif - Reduce nested complexity of code

* Review changes

Co-authored-by: Aron Wussler <aron@wussler.it>
 2020-04-28 13:55:36 +02:00
wussler
54f45d0471
Openpgp security update (V2) (#31) 
* Change keyring unlock functionalities

* Add keyring#Lock, keyring#CheckIntegrity, tests

* Update helpers, fix bugs

* Update go.mod with ProtonMail/crypto commit

* Change key management system

* Clear keys from memory + tests

* Create SessionKey with direct encryption for datapackets. Move symmetrickey to password.

* Fix upstream dependencies

* Update module to V2, documentation

* Add linter

* Add v2 folder to .gitignore

* Minor changes to KeyID getters

* Remove old changelog

* Improve docs, remove compilation script
 2019-12-27 19:35:43 +01:00
wussler
9195b9ae92
Fix compilation for gomobile iOS (#17) 
* Move signature verification to errors

* Move cleartext messages to ClearTextMessage struct

* Fix documentation
 2019-07-02 07:36:02 -07:00