diff options
| author | Justus Winter <justus@sequoia-pgp.org> | 2024-04-16 17:08:33 +0200 |
|---|---|---|
| committer | Justus Winter <justus@sequoia-pgp.org> | 2024-04-16 17:37:16 +0200 |
| commit | c46f6d9b8868f57ae4b571d67f97b2bf2474da74 (patch) | |
| tree | 4f8ca74791fb8ae64751b7661f01c0eeb018004b | |
| parent | 67f3f2a360d8a2b861aaf450a9e4f09ddedc4a71 (diff) | |
openpgp: Make signature verification take an immutable reference.justus/ro-sig-verification
- Previously, all signature verification methods took a mutable self
reference in order to persist authentication results. Now that we
use interior mutability for that, signature verification doesn't
have to take a mutable reference any longer, enabling more
optimizations down the road.
| -rw-r--r-- | openpgp/NEWS | 3 | ||||
| -rw-r--r-- | openpgp/src/cert.rs | 8 | ||||
| -rw-r--r-- | openpgp/src/crypto/tests/dsa.rs | 2 | ||||
| -rw-r--r-- | openpgp/src/crypto/tests/ecdsa.rs | 2 | ||||
| -rw-r--r-- | openpgp/src/crypto/tests/rsa.rs | 2 | ||||
| -rw-r--r-- | openpgp/src/packet/key.rs | 4 | ||||
| -rw-r--r-- | openpgp/src/packet/signature.rs | 62 | ||||
| -rw-r--r-- | openpgp/src/packet/signature/subpacket.rs | 5 | ||||
| -rw-r--r-- | openpgp/src/policy.rs | 2 |
9 files changed, 44 insertions, 46 deletions
diff --git a/openpgp/NEWS b/openpgp/NEWS index da2b53b3..ae818a99 100644 --- a/openpgp/NEWS +++ b/openpgp/NEWS @@ -10,6 +10,9 @@ curve P-384. - The RustCrypto backend now supports ECDH and ECDSA over the NIST curve P-521. +** Notable changes + - All signature verification methods now take an immutable + reference to the signature. * Changes in 1.20.0 ** New functionality - S2K::Implicit diff --git a/openpgp/src/cert.rs b/openpgp/src/cert.rs index 67a98526..b18526c4 100644 --- a/openpgp/src/cert.rs +++ b/openpgp/src/cert.rs @@ -1645,7 +1645,7 @@ impl Cert { t!("check!({}, {}, {:?}, {}, ...)", $desc, stringify!($binding), $binding.$sigs, stringify!($verify_method)); - for mut sig in mem::take(&mut $binding.$sigs).into_iter() { + for sig in mem::take(&mut $binding.$sigs).into_iter() { match sig.$verify_method(self.primary.key(), self.primary.key(), $($verify_args),*) { @@ -1683,7 +1683,7 @@ impl Cert { t!("check_3rd_party!({}, {}, {:?}, {}, {}, ...)", $desc, stringify!($binding), $binding.$sigs, stringify!($verify_method), stringify!($hash_method)); - for mut sig in mem::take(&mut $binding.$sigs) { + for sig in mem::take(&mut $binding.$sigs) { // Use hash prefix as heuristic. let key = self.primary.key(); match sig.hash_algo().context().and_then(|mut ctx| { @@ -1853,7 +1853,7 @@ impl Cert { let primary_fp: KeyHandle = self.key_handle(); - 'outer: for (unknown_idx, mut sig) in bad_sigs { + 'outer: for (unknown_idx, sig) in bad_sigs { // Did we find a new place for sig? let mut found_component = false; @@ -6343,7 +6343,7 @@ Pu1xwz57O4zo1VYf6TqHJzVC3OMvMUM2hhdecMUe5x6GorNaj6g= .unwrap(); // Have alice certify the binding "bob@bar.com" and bob's key. - let mut alice_certifies_bob + let alice_certifies_bob = bob_userid_binding.userid().bind( &mut alice.primary_key().key().clone().parts_into_secret() .unwrap().into_keypair().unwrap(), diff --git a/openpgp/src/crypto/tests/dsa.rs b/openpgp/src/crypto/tests/dsa.rs index 8a9fbb9a..7f1d93ee 100644 --- a/openpgp/src/crypto/tests/dsa.rs +++ b/openpgp/src/crypto/tests/dsa.rs @@ -41,7 +41,7 @@ fn fips_186_3() -> Result<()> { let mut h = hash.context()?; h.update(msg); let mut d = h.into_digest()?; - let mut sig: Signature = + let sig: Signature = Signature4::new(SignatureType::Binary, PublicKeyAlgorithm::DSA, hash, diff --git a/openpgp/src/crypto/tests/ecdsa.rs b/openpgp/src/crypto/tests/ecdsa.rs index 68d47d48..aba93a7c 100644 --- a/openpgp/src/crypto/tests/ecdsa.rs +++ b/openpgp/src/crypto/tests/ecdsa.rs @@ -37,7 +37,7 @@ fn fips_186_4() -> Result<()> { let mut h = hash.context()?; h.update(msg); let mut d = h.into_digest()?; - let mut sig: Signature = + let sig: Signature = Signature4::new(SignatureType::Binary, PublicKeyAlgorithm::ECDSA, hash, diff --git a/openpgp/src/crypto/tests/rsa.rs b/openpgp/src/crypto/tests/rsa.rs index 9bb82aad..0b8b9cc0 100644 --- a/openpgp/src/crypto/tests/rsa.rs +++ b/openpgp/src/crypto/tests/rsa.rs @@ -33,7 +33,7 @@ fn fips_186_3_verification() -> Result<()> { let mut h = hash.context()?; h.update(msg); let mut d = h.into_digest()?; - let mut sig: Signature = + let sig: Signature = Signature4::new(SignatureType::Binary, PublicKeyAlgorithm::RSAEncryptSign, hash, diff --git a/openpgp/src/packet/key.rs b/openpgp/src/packet/key.rs index f7287f5d..8992fa0f 100644 --- a/openpgp/src/packet/key.rs +++ b/openpgp/src/packet/key.rs @@ -2250,7 +2250,7 @@ mod tests { let hash = HashAlgorithm::default(); // Sign. - let mut sig = SignatureBuilder::new(SignatureType::Binary) + let sig = SignatureBuilder::new(SignatureType::Binary) .sign_hash(&mut keypair, hash.context().unwrap()).unwrap(); // Verify. @@ -2431,7 +2431,7 @@ mod tests { mpi::Signature::EdDSA{ r: mpi::MPI::new(r), s: mpi::MPI::new(s) }); - let mut sig: Signature = sig.into(); + let sig: Signature = sig.into(); sig.verify_message(&key, b"Hello, World\n").unwrap(); } diff --git a/openpgp/src/packet/signature.rs b/openpgp/src/packet/signature.rs index 9d573023..5e4e214e 100644 --- a/openpgp/src/packet/signature.rs +++ b/openpgp/src/packet/signature.rs @@ -2691,7 +2691,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify_signature<P, R>(&mut self, key: &Key<P, R>) -> Result<()> + pub fn verify_signature<P, R>(&self, key: &Key<P, R>) -> Result<()> where P: key::KeyParts, R: key::KeyRole, { @@ -2715,7 +2715,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify_hash<P, R>(&mut self, key: &Key<P, R>, + pub fn verify_hash<P, R>(&self, key: &Key<P, R>, mut hash: Box<dyn hash::Digest>) -> Result<()> where P: key::KeyParts, @@ -2740,7 +2740,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify_digest<P, R, D>(&mut self, key: &Key<P, R>, digest: D) + pub fn verify_digest<P, R, D>(&self, key: &Key<P, R>, digest: D) -> Result<()> where P: key::KeyParts, R: key::KeyRole, @@ -2753,7 +2753,7 @@ impl Signature { /// Verifies the signature against `computed_digest`, or /// `self.computed_digest` if the former is `None`. - fn verify_digest_internal(&mut self, + fn verify_digest_internal(&self, key: &Key<key::PublicParts, key::UnspecifiedRole>, computed_digest: Option<Cow<[u8]>>) -> Result<()> @@ -2841,7 +2841,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify<P, R>(&mut self, key: &Key<P, R>) -> Result<()> + pub fn verify<P, R>(&self, key: &Key<P, R>) -> Result<()> where P: key::KeyParts, R: key::KeyRole, { @@ -2867,7 +2867,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify_standalone<P, R>(&mut self, key: &Key<P, R>) -> Result<()> + pub fn verify_standalone<P, R>(&self, key: &Key<P, R>) -> Result<()> where P: key::KeyParts, R: key::KeyRole, { @@ -2896,7 +2896,7 @@ impl Signature { /// is not revoked, not expired, has a valid self-signature, has a /// subkey binding signature (if appropriate), has the signing /// capability, etc. - pub fn verify_timestamp<P, R>(&mut self, key: &Key<P, R>) -> Result<()> + pub fn verify_timestamp<P, R>(&self, key: &Key<P, R>) -> Result<()> where P: key::KeyParts, R: key::KeyRole, { @@ -2932,7 +2932,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_direct_key<P, Q, R>(&mut self, + pub fn verify_direct_key<P, Q, R>(&self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>) -> Result<()> @@ -2970,7 +2970,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_primary_key_revocation<P, Q, R>(&mut self, + pub fn verify_primary_key_revocation<P, Q, R>(&self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>) -> Result<()> @@ -3014,7 +3014,7 @@ impl Signature { /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. pub fn verify_subkey_binding<P, Q, R, S>( - &mut self, + &self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, subkey: &Key<S, key::SubordinateRole>) @@ -3040,11 +3040,11 @@ impl Signature { let mut last_result = Err(Error::BadSignature( "Primary key binding signature missing".into()).into()); - for backsig in self.subpackets_mut(SubpacketTag::EmbeddedSignature) + for backsig in self.subpackets(SubpacketTag::EmbeddedSignature) { let result = if let SubpacketValue::EmbeddedSignature(sig) = - backsig.value_mut() + backsig.value() { sig.verify_primary_key_binding(pk, subkey) } else { @@ -3083,7 +3083,7 @@ impl Signature { /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. pub fn verify_primary_key_binding<P, Q>( - &mut self, + &self, pk: &Key<P, key::PrimaryRole>, subkey: &Key<Q, key::SubordinateRole>) -> Result<()> @@ -3121,7 +3121,7 @@ impl Signature { /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. pub fn verify_subkey_revocation<P, Q, R, S>( - &mut self, + &self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, subkey: &Key<S, key::SubordinateRole>) @@ -3161,7 +3161,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_userid_binding<P, Q, R>(&mut self, + pub fn verify_userid_binding<P, Q, R>(&self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, userid: &UserID) @@ -3203,7 +3203,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_userid_revocation<P, Q, R>(&mut self, + pub fn verify_userid_revocation<P, Q, R>(&self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, userid: &UserID) @@ -3249,7 +3249,7 @@ impl Signature { /// /// [Section 5.2.3.30 of RFC 4880bis]: https://tools.ietf.org/html/draft-ietf-openpgp-rfc4880bis-10.html#section-5.2.3.30 pub fn verify_userid_attestation<P, Q, R>( - &mut self, + &self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, userid: &UserID) @@ -3297,7 +3297,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_user_attribute_binding<P, Q, R>(&mut self, + pub fn verify_user_attribute_binding<P, Q, R>(&self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, ua: &UserAttribute) @@ -3340,7 +3340,7 @@ impl Signature { /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. pub fn verify_user_attribute_revocation<P, Q, R>( - &mut self, + &self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, ua: &UserAttribute) @@ -3386,7 +3386,7 @@ impl Signature { /// /// [Section 5.2.3.30 of RFC 4880bis]: https://tools.ietf.org/html/draft-ietf-openpgp-rfc4880bis-10.html#section-5.2.3.30 pub fn verify_user_attribute_attestation<P, Q, R>( - &mut self, + &self, signer: &Key<P, R>, pk: &Key<Q, key::PrimaryRole>, ua: &UserAttribute) @@ -3434,7 +3434,7 @@ impl Signature { /// key is not revoked, not expired, has a valid self-signature, /// has a subkey binding signature (if appropriate), has the /// signing capability, etc. - pub fn verify_message<M, P, R>(&mut self, signer: &Key<P, R>, + pub fn verify_message<M, P, R>(&self, signer: &Key<P, R>, msg: M) -> Result<()> where M: AsRef<[u8]>, @@ -3836,7 +3836,7 @@ mod test { let hash = hash_algo.context().unwrap(); // Make signature. - let mut sig = sig.sign_hash(&mut pair, hash).unwrap(); + let sig = sig.sign_hash(&mut pair, hash).unwrap(); // Good signature. let mut hash = hash_algo.context().unwrap(); @@ -3870,7 +3870,7 @@ mod test { = Key4::generate_ecc(true, curve).unwrap().into(); let msg = b"Hello, World"; let mut pair = key.into_keypair().unwrap(); - let mut sig = SignatureBuilder::new(SignatureType::Binary) + let sig = SignatureBuilder::new(SignatureType::Binary) .sign_message(&mut pair, msg).unwrap(); sig.verify_message(pair.public(), msg).unwrap(); @@ -3885,7 +3885,7 @@ mod test { let p = Packet::from_bytes( crate::tests::message("a-cypherpunks-manifesto.txt.ed25519.sig")) .unwrap(); - let mut sig = if let Packet::Signature(s) = p { + let sig = if let Packet::Signature(s) = p { s } else { panic!("Expected a Signature, got: {:?}", p); @@ -3906,7 +3906,7 @@ mod test { let p = Packet::from_bytes( crate::tests::message("a-cypherpunks-manifesto.txt.dennis-simon-anton-v3.sig")) .unwrap(); - let mut sig = if let Packet::Signature(s) = p { + let sig = if let Packet::Signature(s) = p { assert_eq!(s.version(), 3); s } else { @@ -3955,7 +3955,7 @@ mod test { let test2 = Cert::from_bytes( crate::tests::key("test2-signed-by-test1.pgp")).unwrap(); let uid = test2.userids().with_policy(p, None).next().unwrap(); - let mut cert = uid.certifications().next().unwrap().clone(); + let cert = uid.certifications().next().unwrap().clone(); cert.verify_userid_binding(cert_key1, test2.primary_key().key(), @@ -4018,7 +4018,7 @@ mod test { = Key4::generate_ecc(true, Curve::Ed25519).unwrap().into(); let mut pair = key.into_keypair().unwrap(); - let mut sig = SignatureBuilder::new(SignatureType::Standalone) + let sig = SignatureBuilder::new(SignatureType::Standalone) .sign_standalone(&mut pair) .unwrap(); @@ -4036,7 +4036,7 @@ mod test { "contrib/gnupg/keys/alpha.pgp")).unwrap(); let p = Packet::from_bytes(crate::tests::file( "contrib/gnupg/timestamp-signature-by-alice.asc")).unwrap(); - if let Packet::Signature(mut sig) = p { + if let Packet::Signature(sig) = p { let mut hash = sig.hash_algo().context().unwrap(); sig.hash_standalone(&mut hash); let digest = hash.into_digest().unwrap(); @@ -4053,7 +4053,7 @@ mod test { = Key4::generate_ecc(true, Curve::Ed25519).unwrap().into(); let mut pair = key.into_keypair().unwrap(); - let mut sig = SignatureBuilder::new(SignatureType::Timestamp) + let sig = SignatureBuilder::new(SignatureType::Timestamp) .sign_timestamp(&mut pair) .unwrap(); @@ -4247,7 +4247,7 @@ mod test { } else { panic!("Expected a subkey"); }; - let mut sig = + let sig = if let Some(Packet::Signature(sig)) = pp.path_ref(&[4]) { sig.clone() } else { @@ -4377,7 +4377,7 @@ mod test { // This works because the issuer information is being // authenticated by the verification, and the merge process // prefers authenticated information. - let mut verified = sig.clone(); + let verified = sig.clone(); verified.verify_hash(pair.public(), hash.clone())?; let merged = verified.clone().merge(malicious.clone())?; diff --git a/openpgp/src/packet/signature/subpacket.rs b/openpgp/src/packet/signature/subpacket.rs index 40deadd0..36c95271 100644 --- a/openpgp/src/packet/signature/subpacket.rs +++ b/openpgp/src/packet/signature/subpacket.rs @@ -2000,11 +2000,6 @@ impl Subpacket { &self.value } - /// Returns the Subpacket's value. - pub(crate) fn value_mut(&mut self) -> &mut SubpacketValue { - &mut self.value - } - /// Returns whether the information in this subpacket has been /// authenticated. /// diff --git a/openpgp/src/policy.rs b/openpgp/src/policy.rs index 61467216..d358ea69 100644 --- a/openpgp/src/policy.rs +++ b/openpgp/src/policy.rs @@ -2715,7 +2715,7 @@ mod test { .into_keypair().unwrap(); // Create a signature. - let mut sig = + let sig = signature::SignatureBuilder::new(SignatureType::Binary) .sign_message(&mut keypair, msg).unwrap(); |