package main import ( "errors" "flag" "io/ioutil" "dim13.org/signify/ask" "dim13.org/signify/file" "dim13.org/signify/key" ) // Usage: signify -S [-ez] [-x sigfile] -s seckey -m message func sign(args []string) error { opts := flag.NewFlagSet("sign", flag.ExitOnError) var ( embedded = opts.Bool("e", false, "Embed the message") zip = opts.Bool("z", false, "Sign gzip archive") // TODO sigFile = opts.String("x", "", "Signature file") secFile = opts.String("s", "", "Secret file (required)") msgFile = opts.String("m", "", "Message file (required)") ) opts.Parse(args) if *embedded && *zip { return errors.New("can't combine -e and -z options") } if *secFile == "" || *msgFile == "" { opts.Usage() return nil } if *sigFile == "" { *sigFile = file.SigName(*msgFile) } _ = zip // TODO secKey, err := openSec(*secFile) if err != nil { return err } msg, err := ioutil.ReadFile(*msgFile) if err != nil { return err } sig := secKey.Sign(msg) comment := file.VerifyWith(*secFile) if !*embedded { msg = nil } return file.EncodeFile(*sigFile, file.ModeSig, sig, comment, msg) } func openSec(fname string) (*key.Sec, error) { sec := new(key.Sec) if _, _, err := file.DecodeFile(fname, sec); err != nil { return nil, err } if err := sec.Crypt(ask.Passphrase{}); err != nil { return nil, err } if err := sec.Validate(); err != nil { return nil, err } return sec, nil }