From da43751d666f94fb398de01be802653b5fb4dd93 Mon Sep 17 00:00:00 2001
From: StevenWdV <stevenwdv@gmail.com>
Date: Fri, 19 Nov 2021 17:42:47 +0100
Subject: Do not parse unused keys

---
 verify.go | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'verify.go')

diff --git a/verify.go b/verify.go
index e015328..a8e670b 100644
--- a/verify.go
+++ b/verify.go
@@ -56,16 +56,12 @@ func verifyWithKeys(signatureFileContent string, signedJson []byte, expectedFile
 		return false, VerifyError{ErrInvalidSignatureAlgorithm, "BLAKE2b-prehashed EdDSA signature required", nil}
 	}
 
-	keys := make([]minisign.PublicKey, len(allowedPublicKeys))
-	for i, keyStr := range allowedPublicKeys {
+	for _, keyStr := range allowedPublicKeys {
 		key, err := minisign.NewPublicKey(keyStr)
 		if err != nil {
 			return false, VerifyError{ErrInvalidPublicKey, "internal error: could not create public key", err}
 		}
-		keys[i] = key
-	}
 
-	for _, key := range keys {
 		if sig.KeyId != key.KeyId {
 			continue
 		}
-- 
cgit v1.2.3