R/gy_sign.R
In ku-awdc/GOLDFINGER: Support Package for GOLDFINGER
Defines functions
gy_verify
gy_sign
Documented in
gy_sign
#' @name gy_sign
#' @title Sign and verify a file
#'
#' @param object
#'
#' @return
#' @export
#'
#' @rdname gy_serialise
#' @export
gy_sign <- function(object, method="hash"){
## TODO: method can be hash, base, qs, none (where none means it is already raw)
## Serialise/hash the object:
sopts <- c("hash", serialization_options[serialization_options!="custom"], "none")
mtch <- pmatch(method, sopts)
if(is.na(mtch)) stop(str_c("Unrecognised serialisation method '", method, "' - options are: ", str_c(sopts, collapse=", ")))
method <- sopts[mtch]
if(method %in% serialization_options){
if(method=="base") warning("Serialisation using base::serialize is not recommended for signing", call.=FALSE)
object <- gy_serialise(object, method=method)
}else if(method=="hash"){
object <- hash(qserialize(object, preset="uncompressed"))
}else if(method=="none"){
if(!is.raw(object)) stop("The object must be type raw for method=none", call.=FALSE)
}else{
stop("Serialisation method '", method, "' is not yet implemented - perhaps update the package?", call.=FALSE)
}
## Get private and public keys for this user:
local <- get_localuser()
private_ed <- get_gykey(local$group, local$user, local$salt, local$encr_ed)
public_ed <- local$public_ed
public_test <- sig_pubkey(private_ed)
if(!identical(public_ed, public_test)) stop("Something went wrong: the public ed key cannot be regenerated", call.=FALSE)
## Sign the object:
signature <- sig_sign(object, private_ed)
attr(signature, "user") <- str_c(local$group, ":", local$user)
attr(signature, "ser_method") <- method
attr(signature, "versions") <- get_versions(type="verify")
return(signature)
}
#' @rdname gy_sign
#' @export
gy_verify <- function(object, signature, public_ed = NULL, silent=FALSE){
if(!is.raw(signature)) stop("The provided signature must be of type raw", call.=FALSE)
versions <- attr(signature, "versions", exact=TRUE)
if(is.null(versions)) stop("The versions attribute is missing")
check_version(versions)
## Serialise/hash the object:
sopts <- c("hash", serialization_options[serialization_options!="custom"], "none")
mtch <- pmatch(attr(signature, "ser_method", exact=TRUE), sopts)
if(length(mtch)!=1 || is.na(mtch)) stop(str_c("Unrecognised serialisation method attribute '", method, "' - options are: ", str_c(sopts, collapse=", ")))
method <- sopts[mtch]
if(method %in% serialization_options){
object <- gy_serialise(object, method=method)
}else if(method=="hash"){
object <- hash(qserialize(object, preset="uncompressed"))
}else if(method=="none"){
if(!is.raw(object)) stop("The object must be type raw for method=none", call.=FALSE)
}else{
stop("Serialisation method '", method, "' is not yet implemented - perhaps update the package?", call.=FALSE)
}
## Get the relevant public key:
if(is.null(public_ed)){
usrattr <- attr(signature, "user", exact=TRUE)
if(is.null(usrattr)){
stop("The provided signature does not have a 'user' attribute", call.=FALSE)
}
warning("FIXME\n")
public_ed <- get_public_key(usrattr, "ed")
}
## Verify:
ok <- try(sig_verify(object, signature, public_ed))
if(inherits(ok, "try-error")) ok <- FALSE
if(!silent){
if(ok){
cat("Verification succeeded\n")
}else{
stop("Verification failed - the object may have been tampered with", call.=FALSE)
}
}
invisible(ok)
}
ku-awdc/GOLDFINGER documentation built on Feb. 18, 2025, 4:44 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions gy_verify gy_sign
Documented in gy_sign
#' @name gy_sign
#' @title Sign and verify a file
#'
#' @param object
#'
#' @return
#' @export
#'
#' @rdname gy_serialise
#' @export
gy_sign <- function(object, method="hash"){
## TODO: method can be hash, base, qs, none (where none means it is already raw)
## Serialise/hash the object:
sopts <- c("hash", serialization_options[serialization_options!="custom"], "none")
mtch <- pmatch(method, sopts)
if(is.na(mtch)) stop(str_c("Unrecognised serialisation method '", method, "' - options are: ", str_c(sopts, collapse=", ")))
method <- sopts[mtch]
if(method %in% serialization_options){
if(method=="base") warning("Serialisation using base::serialize is not recommended for signing", call.=FALSE)
object <- gy_serialise(object, method=method)
}else if(method=="hash"){
object <- hash(qserialize(object, preset="uncompressed"))
}else if(method=="none"){
if(!is.raw(object)) stop("The object must be type raw for method=none", call.=FALSE)
}else{
stop("Serialisation method '", method, "' is not yet implemented - perhaps update the package?", call.=FALSE)
}
## Get private and public keys for this user:
local <- get_localuser()
private_ed <- get_gykey(local$group, local$user, local$salt, local$encr_ed)
public_ed <- local$public_ed
public_test <- sig_pubkey(private_ed)
if(!identical(public_ed, public_test)) stop("Something went wrong: the public ed key cannot be regenerated", call.=FALSE)
## Sign the object:
signature <- sig_sign(object, private_ed)
attr(signature, "user") <- str_c(local$group, ":", local$user)
attr(signature, "ser_method") <- method
attr(signature, "versions") <- get_versions(type="verify")
return(signature)
}
#' @rdname gy_sign
#' @export
gy_verify <- function(object, signature, public_ed = NULL, silent=FALSE){
if(!is.raw(signature)) stop("The provided signature must be of type raw", call.=FALSE)
versions <- attr(signature, "versions", exact=TRUE)
if(is.null(versions)) stop("The versions attribute is missing")
check_version(versions)
## Serialise/hash the object:
sopts <- c("hash", serialization_options[serialization_options!="custom"], "none")
mtch <- pmatch(attr(signature, "ser_method", exact=TRUE), sopts)
if(length(mtch)!=1 || is.na(mtch)) stop(str_c("Unrecognised serialisation method attribute '", method, "' - options are: ", str_c(sopts, collapse=", ")))
method <- sopts[mtch]
if(method %in% serialization_options){
object <- gy_serialise(object, method=method)
}else if(method=="hash"){
object <- hash(qserialize(object, preset="uncompressed"))
}else if(method=="none"){
if(!is.raw(object)) stop("The object must be type raw for method=none", call.=FALSE)
}else{
stop("Serialisation method '", method, "' is not yet implemented - perhaps update the package?", call.=FALSE)
}
## Get the relevant public key:
if(is.null(public_ed)){
usrattr <- attr(signature, "user", exact=TRUE)
if(is.null(usrattr)){
stop("The provided signature does not have a 'user' attribute", call.=FALSE)
}
warning("FIXME\n")
public_ed <- get_public_key(usrattr, "ed")
}
## Verify:
ok <- try(sig_verify(object, signature, public_ed))
if(inherits(ok, "try-error")) ok <- FALSE
if(!silent){
if(ok){
cat("Verification succeeded\n")
}else{
stop("Verification failed - the object may have been tampered with", call.=FALSE)
}
}
invisible(ok)
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.