From 2c28b4209be2ced9a18c20347e1819a24a45cb66 Mon Sep 17 00:00:00 2001
From: Rasmus Dahlberg <rasmus@mullvad.net>
Date: Fri, 22 Apr 2022 01:36:28 +0200
Subject: add cosign command

---
 cmd/sigsum-debug/cosign/cosign.go | 41 +++++++++++++++++++++++++++++++++++++++
 cmd/sigsum-debug/main.go          |  7 ++++---
 2 files changed, 45 insertions(+), 3 deletions(-)
 create mode 100644 cmd/sigsum-debug/cosign/cosign.go

diff --git a/cmd/sigsum-debug/cosign/cosign.go b/cmd/sigsum-debug/cosign/cosign.go
new file mode 100644
index 0000000..8597cc6
--- /dev/null
+++ b/cmd/sigsum-debug/cosign/cosign.go
@@ -0,0 +1,41 @@
+package cosign
+
+import (
+	"bytes"
+	"fmt"
+
+	"git.sigsum.org/sigsum-go/pkg/hex"
+	"git.sigsum.org/sigsum-go/pkg/types"
+	"git.sigsum.org/sigsum-tools-go/internal/util"
+)
+
+func Main(_ []string, optPriv, optPub string) error {
+	priv, err := util.SignerFromHex(optPriv)
+	if err != nil {
+		return fmt.Errorf("cosign: %v", err)
+	}
+	b, err := hex.Deserialize(optPub)
+	if err != nil {
+		return fmt.Errorf("cosign: %v", err)
+	}
+	if len(b) != types.PublicKeySize {
+		return fmt.Errorf("cosign: invalid public key length %d", len(b))
+	}
+	var pub types.PublicKey
+	copy(pub[:], b)
+	data, err := util.BytesFromStdin()
+	if err != nil {
+		return fmt.Errorf("cosign: %v", err)
+	}
+	var sth types.SignedTreeHead
+	if err := sth.FromASCII(bytes.NewBuffer(data)); err != nil {
+		return fmt.Errorf("cosign: %v", err)
+	}
+	witSTH, err := sth.TreeHead.Sign(priv, types.HashFn(pub[:]))
+	if err != nil {
+		return fmt.Errorf("cosign: %v", err)
+	}
+
+	fmt.Printf("%s\n", hex.Serialize(witSTH.Signature[:]))
+	return nil
+}
diff --git a/cmd/sigsum-debug/main.go b/cmd/sigsum-debug/main.go
index 2bc05de..fe13cfd 100644
--- a/cmd/sigsum-debug/main.go
+++ b/cmd/sigsum-debug/main.go
@@ -17,6 +17,7 @@ import (
 	"log"
 	"os"
 
+	"git.sigsum.org/sigsum-tools-go/cmd/sigsum-debug/cosign"
 	"git.sigsum.org/sigsum-tools-go/cmd/sigsum-debug/genkey"
 	"git.sigsum.org/sigsum-tools-go/cmd/sigsum-debug/hashkey"
 	"git.sigsum.org/sigsum-tools-go/cmd/sigsum-debug/hashleaf"
@@ -83,7 +84,7 @@ func main() {
 	case "sign":
 		err = sign.Main(cmd.Args(), optPriv, optShardHint)
 	case "cosign":
-		err = fmt.Errorf("TODO")
+		err = cosign.Main(cmd.Args(), optPriv, optPub)
 	default:
 		err = fmt.Errorf("invalid command %q, try %q", cmd.Name(), "sigsum help")
 	}
@@ -107,7 +108,7 @@ func setOptions(fs *flag.FlagSet) {
 		options.AddString(fs, &optPriv, "k", "key", "")
 		options.AddUint64(fs, &optShardHint, "s", "shard-hint", 0)
 	case "cosign":
-		options.AddString(fs, &optPriv, "w", "--witness-priv", "")
-		options.AddString(fs, &optPub, "l", "--log-pub", "")
+		options.AddString(fs, &optPriv, "w", "witness-priv", "")
+		options.AddString(fs, &optPub, "l", "log-pub", "")
 	}
 }
-- 
cgit v1.2.3