Add C++ functions for .narinfo processing / signing

This is currently only used by the Hydra queue runner rework, but like eff5021eaa6dc69f65ea1a8abe8f3ab11ef5eb0a it presumably will be useful for the C++ rewrite of nix-push and download-from-binary-cache. (@shlevy)
author: Eelco Dolstra <eelco.dolstra@logicblox.com> 2016-02-16T15·38+0100
committer: Eelco Dolstra <eelco.dolstra@logicblox.com> 2016-02-16T15·38+0100
commit: c4d22997f364a7fc2e5a8150c0a4a55590a92df5 (patch)
tree: 8167aef94ba86e0650a423fe21180fff42ccb118 /src/libstore/crypto.hh
parent: 5ac27053e9bc4722dde5bd3243488d8e9a0b4623 (diff)
1 files changed, 40 insertions, 0 deletions
diff --git a/src/libstore/crypto.hh b/src/libstore/crypto.hh
new file mode 100644
index 0000000000..a1489e7536
--- /dev/null
+++ b/src/libstore/crypto.hh
@@ -0,0 +1,40 @@
+#pragma once
+
+#include "types.hh"
+
+#include <map>
+
+namespace nix {
+
+struct Key
+{
+    std::string name;
+    std::string key;
+
+    /* Construct Key from a string in the format
+       ‘<name>:<key-in-base64>’. */
+    Key(const std::string & s);
+
+};
+
+struct SecretKey : Key
+{
+    SecretKey(const std::string & s);
+
+    /* Return a detached signature of the given string. */
+    std::string signDetached(const std::string & s) const;
+};
+
+struct PublicKey : Key
+{
+    PublicKey(const std::string & data);
+};
+
+typedef std::map<std::string, PublicKey> PublicKeys;
+
+/* Return true iff ‘sig’ is a correct signature over ‘data’ using one
+   of the given public keys. */
+bool verifyDetached(const std::string & data, const std::string & sig,
+    const PublicKeys & publicKeys);
+
+}
author	Eelco Dolstra <eelco.dolstra@logicblox.com>	2016-02-16T15·38+0100
committer	Eelco Dolstra <eelco.dolstra@logicblox.com>	2016-02-16T15·38+0100
commit	c4d22997f364a7fc2e5a8150c0a4a55590a92df5 (patch)
tree	8167aef94ba86e0650a423fe21180fff42ccb118 /src/libstore/crypto.hh
parent	5ac27053e9bc4722dde5bd3243488d8e9a0b4623 (diff)