aherman
/
terraform
mirror of https://github.com/hashicorp/terraform
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3d1e07dcf3'
${ noResults }
terraform/internal/releaseauth/matching_sums.go

53 lines
1.5 KiB
Raw Blame History

package releaseauth
import "fmt"
// ErrChecksumMismatch is the error returned when a reported checksum does not match
// what is stored in a SHA256SUMS file
type ErrChecksumMismatch struct {
Inner error
}
func (e ErrChecksumMismatch) Error() string {
return fmt.Sprintf("failed to authenticate that release checksum matches checksum provided by the manifest: %v", e.Inner)
}
func (e ErrChecksumMismatch) Unwrap() error {
return e.Inner
}
// MatchingChecksumsAuthentication is an archive Authenticator that checks if a reported checksum
// matches the checksum that was stored in a SHA256SUMS file
type MatchingChecksumsAuthentication struct {
Authenticator
expected SHA256Hash
sums SHA256Checksums
baseName string
}
var _ Authenticator = MatchingChecksumsAuthentication{}
// NewMatchingChecksumsAuthentication creates the Authenticator given an expected hash,
// the parsed SHA256SUMS data, and a filename.
func NewMatchingChecksumsAuthentication(expected SHA256Hash, baseName string, sums SHA256Checksums) *MatchingChecksumsAuthentication {
return &MatchingChecksumsAuthentication{
expected: expected,
sums: sums,
baseName: baseName,
}
}
// Authenticate ensures that the given hash matches what is found in the SHA256SUMS file
// for the corresponding filename
func (a MatchingChecksumsAuthentication) Authenticate() error {
err := a.sums.Validate(a.baseName, a.expected)
if err != nil {
return ErrChecksumMismatch{
Inner: err,
}
}
return nil
}
Reference in new issue View Git Blame Copy Permalink