add more error checks

There are still some cases where the input is not correctly checked, but it is moving forward.
2018-04-19 08:33:11 +02:00 · 2018-04-19 08:33:11 +02:00 · f3910624b8
parent 083e8c2ce4
commit f3910624b8
2 changed files with 8 additions and 8 deletions
--- a/load_private_key.go
+++ b/load_private_key.go
@ -27,27 +27,24 @@ func loadPrivateKey(path string) (pki.PrivateKey, error) {

 	pems, err := parseFile(file)
 	if err != nil {
-		return nil, err
+		return nil, fmt.Errorf("could not load private key: %s", err)
 	}
 	if len(pems) > 1 {
 		return nil, fmt.Errorf("more than one object in file")
 	}

-	var pk pki.PrivateKey
 	for key, parts := range pems {
 		if len(parts) > 1 {
 			return nil, fmt.Errorf("more than one object found")
 		}
 		switch key {
 		case pki.PemLabelRsa:
-			pk, err = pki.LoadPrivateKeyRsa(parts[0])
+			return pki.LoadPrivateKeyRsa(parts[0])
 		case pki.PemLabelEd25519:
-			pk, err = pki.LoadPrivateKeyEd25519(parts[0])
+			return pki.LoadPrivateKeyEd25519(parts[0])
 		case pki.PemLabelEcdsa:
-			pk, err = pki.LoadPrivateKeyEcdsa(parts[0])
-		default:
-			return nil, fmt.Errorf("unknown private key format %s", key)
+			return pki.LoadPrivateKeyEcdsa(parts[0])
 		}
 	}
-	return pk, err
+	return nil, fmt.Errorf("no private key found in file '%s'", path)
 }
--- a/pem.go
+++ b/pem.go
@ -35,6 +35,9 @@ func parseFile(file io.Reader) (pemMap, error) {
 	if err != nil {
 		return nil, err
 	}
+	if len(raw) == 0 {
+		return nil, fmt.Errorf("file is empty")
+	}
 	return parsePem(raw)
 }