From c210c80e80231143f6eaa0f39e8e1d3303983791 Mon Sep 17 00:00:00 2001
From: Rasmus Dahlberg <rasmus.dahlberg@kau.se>
Date: Mon, 2 Nov 2020 23:28:58 +0100
Subject: added start on stfe client

ChecksumV1 entries can be submitted using client-side ed25519
signatures.  The resulting SignedDebugInfoV1 is then verified using the
log's announced signature scheme and public key (currently only ed25519).
---
 x509.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'x509.go')

diff --git a/x509.go b/x509.go
index be7d150..46728f2 100644
--- a/x509.go
+++ b/x509.go
@@ -156,12 +156,12 @@ func buildChainFromB64List(lp *LogParameters, b64chain []string) ([]*x509.Certif
 
 // verifySignature checks if signature is valid for some serialized data.  The
 // only supported signature scheme is ecdsa_secp256r1_sha256(0x0403), see §4.3.2
-// in RFC 8446.  TODO: replace ECDSA with ed25519(0x0807)
+// in RFC 8446.
 func verifySignature(_ *LogParameters, certificate *x509.Certificate, scheme tls.SignatureScheme, serialized, signature []byte) error {
-	if scheme != tls.ECDSAWithP256AndSHA256 {
+	if scheme != tls.Ed25519 {
 		return fmt.Errorf("unsupported signature scheme: %v", scheme)
 	}
-	if err := certificate.CheckSignature(x509.ECDSAWithSHA256, serialized, signature); err != nil {
+	if err := certificate.CheckSignature(x509.PureEd25519, serialized, signature); err != nil {
 		return fmt.Errorf("invalid signature: %v", err)
 	}
 	return nil
-- 
cgit v1.2.3