[−][src]Struct sequoia_openpgp::parse::stream::Verifier
Verifies a signed OpenPGP message.
Signature verification requires processing the whole message
first. Therefore, OpenPGP implementations supporting streaming
operations necessarily must output unverified data. This has been
a source of problems in the past. To alleviate this, we buffer
the message first (up to 25 megabytes of net message data by
default, see DEFAULT_BUFFER_SIZE
), and verify the signatures
if the message fits into our buffer. Nevertheless it is important
to treat the data as unverified and untrustworthy until you have
seen a positive verification.
For a signature to be considered valid: The signature must have a
Signature Creation Time
subpacket. The signature must be alive
at the signature verification time (the time passed to
Verifier::from_reader
). The key used to verify the signature
must be alive at the signature creation time, not have been soft
revoked at the signature creation time, not have ever been hard
revoked, and be signing capable at the signature creation time.
Examples
use std::io::Read; use sequoia_openpgp as openpgp; use openpgp::{KeyHandle, Cert, Result}; use openpgp::parse::stream::*; use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); // This fetches keys and computes the validity of the verification. struct Helper {}; impl VerificationHelper for Helper { fn get_certs(&mut self, ids: &[KeyHandle]) -> Result<Vec<Cert>> { let mut certs = Vec::new(); for id in ids { certs.push(lookup_cert_by_handle(id)?); } Ok(certs) } fn check(&mut self, structure: MessageStructure) -> Result<()> { for (i, layer) in structure.into_iter().enumerate() { match layer { MessageLayer::Encryption { .. } if i == 0 => (), MessageLayer::Compression { .. } if i == 1 => (), MessageLayer::SignatureGroup { ref results } => { if ! results.iter().any(|r| r.is_ok()) { return Err(anyhow::anyhow!( "No valid signature")); } } _ => return Err(anyhow::anyhow!( "Unexpected message structure")), } } Ok(()) } } let message = b"-----BEGIN PGP MESSAGE----- xA0DAAoW+zdR8Vh9rvEByxJiAAAAAABIZWxsbyBXb3JsZCHCdQQAFgoABgWCXrLl AQAhCRD7N1HxWH2u8RYhBDnRAKtn1b2MBAECBfs3UfFYfa7xRUsBAJaxkU/RCstf UD7TM30IorO1Mb9cDa/hPRxyzipulT55AQDN1m9LMqi9yJDjHNHwYYVwxDcg+pLY YmAFv/UfO0vYBw== =+l94 -----END PGP MESSAGE----- "; let h = Helper {}; let mut v = VerifierBuilder::from_bytes(&message[..])? .with_policy(p, None, h)?; let mut content = Vec::new(); v.read_to_end(&mut content)?; assert_eq!(content, b"Hello World!");
Implementations
impl<'a, H: VerificationHelper> Verifier<'a, H>
[src]
pub fn helper_ref(&self) -> &H
[src]
Returns a reference to the helper.
pub fn helper_mut(&mut self) -> &mut H
[src]
Returns a mutable reference to the helper.
pub fn into_helper(self) -> H
[src]
Recovers the helper.
pub fn message_processed(&self) -> bool
[src]
Returns true if the whole message has been processed and the verification result is ready.
If the function returns false the message did not fit into the
internal buffer and unverified data must be read()
from
the instance until EOF.
Trait Implementations
impl<'a, H: VerificationHelper> Read for Verifier<'a, H>
[src]
fn read(&mut self, buf: &mut [u8]) -> Result<usize>
[src]
fn read_vectored(&mut self, bufs: &mut [IoSliceMut]) -> Result<usize, Error>
1.36.0[src]
fn is_read_vectored(&self) -> bool
[src]
unsafe fn initializer(&self) -> Initializer
[src]
fn read_to_end(&mut self, buf: &mut Vec<u8>) -> Result<usize, Error>
1.0.0[src]
fn read_to_string(&mut self, buf: &mut String) -> Result<usize, Error>
1.0.0[src]
fn read_exact(&mut self, buf: &mut [u8]) -> Result<(), Error>
1.6.0[src]
fn by_ref(&mut self) -> &mut Self
1.0.0[src]
fn bytes(self) -> Bytes<Self>
1.0.0[src]
fn chain<R>(self, next: R) -> Chain<Self, R> where
R: Read,
1.0.0[src]
R: Read,
fn take(self, limit: u64) -> Take<Self>
1.0.0[src]
Auto Trait Implementations
impl<'a, H> !RefUnwindSafe for Verifier<'a, H>
impl<'a, H> !Send for Verifier<'a, H>
impl<'a, H> !Sync for Verifier<'a, H>
impl<'a, H> Unpin for Verifier<'a, H> where
H: Unpin,
H: Unpin,
impl<'a, H> !UnwindSafe for Verifier<'a, H>
Blanket Implementations
impl<T> Any for T where
T: 'static + ?Sized,
[src]
T: 'static + ?Sized,
impl<T> Borrow<T> for T where
T: ?Sized,
[src]
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
[src]
T: ?Sized,
fn borrow_mut(&mut self) -> &mut T
[src]
impl<T> From<T> for T
[src]
impl<T, U> Into<U> for T where
U: From<T>,
[src]
U: From<T>,
impl<T, U> TryFrom<U> for T where
U: Into<T>,
[src]
U: Into<T>,
type Error = Infallible
The type returned in the event of a conversion error.
fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>
[src]
impl<T, U> TryInto<U> for T where
U: TryFrom<T>,
[src]
U: TryFrom<T>,