zaaarf/upub
1
0
Fork 0
forked from alemi/upub
Code Pull requests Activity

fix: verify_oneshot, maybe makes a difference?

Browse source
This commit is contained in:
əlemi 2024-04-13 06:02:50 +02:00
parent 652af15771
commit 5d3c222774
Signed by: alemi
GPG key ID: A4895B84D311642C
2 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/errors.rs
View file

@ -17,6 +17,9 @@ pub enum UpubError {
#[error("fetch error: {0}")] #[error("fetch error: {0}")]
Reqwest(#[from] reqwest::Error), Reqwest(#[from] reqwest::Error),
#[error("invalid base64 string: {0}")]
Base64(#[from] base64::DecodeError),
} }
impl UpubError { impl UpubError {

6
src/server/auth.rs
View file

@ -89,9 +89,9 @@ where
fn verify_control_text(txt: &str, key: &str, control: &str) -> crate::Result<bool> { fn verify_control_text(txt: &str, key: &str, control: &str) -> crate::Result<bool> {
let pubkey = PKey::public_key_from_pem(key.as_bytes())?; let pubkey = PKey::public_key_from_pem(key.as_bytes())?;
let mut verifier = Verifier::new(MessageDigest::sha256(), &pubkey).unwrap(); let mut verifier = Verifier::new(MessageDigest::sha256(), &pubkey)?;
verifier.update(txt.as_bytes())?; let signature = base64::prelude::BASE64_URL_SAFE.decode(control)?;
Ok(verifier.verify(&base64::prelude::BASE64_URL_SAFE.decode(control).unwrap_or_default())?) Ok(verifier.verify_oneshot(&signature, txt.as_bytes())?)
} }