aerc/lib/crypto/gpg/gpgbin/verify.go

package gpgbin

import (
	"bytes"
	"io"
	"io/ioutil"
	"os"

	"git.sr.ht/~rjarry/aerc/models"
)

// Verify runs gpg --verify. If s is not nil, then gpg interprets the
// arguments as a detached signature
func Verify(m io.Reader, s io.Reader) (*models.MessageDetails, error) {
	args := []string{"--verify"}
	if s != nil {
		// Detached sig, save the sig to a tmp file and send msg over stdin
		sig, err := ioutil.TempFile("", "sig")
		if err != nil {
			return nil, err
		}
		io.Copy(sig, s)
		sig.Close()
		defer os.Remove(sig.Name())
		args = append(args, sig.Name(), "-")
	}
	orig, err := ioutil.ReadAll(m)
	if err != nil {
		return nil, err
	}
	g := newGpg(bytes.NewReader(orig), args)
	g.cmd.Run()

	out := bytes.NewReader(g.stdout.Bytes())
	md := new(models.MessageDetails)
	parse(out, md)

	md.Body = bytes.NewReader(orig)

	return md, nil
}