Create cryptographic signatures for files and verify them.
Rust Shell Batchfile
Latest commit 29aec71 Nov 19, 2016 @not-a-robot not-a-robot committed on GitHub Auto merge of #17 - badboy:embed-signature, r=badboy
Generate embedded signature and verify it
Permalink
Failed to load latest commit information.
mk
src
tests
.gitignore
.travis.yml
CHANGELOG.md Release v0.3.0 Sep 27, 2016
Cargo.lock
Cargo.toml
LICENSE chore: Add travis, tests and metadata Jun 14, 2016
README.md
appveyor.yml

README.md

Signify - Ed25519 signature tool

crates.io Build Status

Create cryptographic signatures for files and verify them. This is based on signify, the OpenBSD tool to sign and verify signatures on files. It is based on the Ed25519 public-key signature system by Bernstein et al.

signify-rs verifies signatures generated by BSD signify and signs data in a format that BSD signify can verify.
You can read more about the ideas and concepts behind signify in Securing OpenBSD From Us To You.

Installation

cargo install signify

Usage

Create a key pair:

signify -G -p pubkey -s seckey

Sign a file using the secret key:

signify -S -s seckey -m README.md

Verify the signature:

signify -V -p pubkey -m README.md

Testing

Currently, there are no unit tests. 😞
But we ensure that a full cycle of generating a keypair, then signing & verifying works. To do so:

./tests/full-cycle.sh

For correctness, we compare interoperability with the OpenBSD signify:

./tests/compare.sh

Limitations

  • No embedded signatures
  • No password-protection for secret keys

Both things will be implemented eventually. I also accept PRs.

License

MIT. See LICENSE.