NewSigner returns a Signer to add digital signature(s) to f, according to opts.

NewVerifier returns a Verifier to examine and/or verify digital signatures(s) in f according to opts.

OptSignDeterministic sets SIF header/descriptor fields to values that support deterministic modification of images.

OptSignGroup specifies that a signature be applied to cover all objects in the group with the specified groupID.

OptSignObjects specifies that one or more signature(s) be applied to cover objects with the specified ids.

OptSignWithContext specifies that the given context should be used in RPC to external services.

OptSignWithEntity specifies e as the entity to use to generate signature(s).

OptSignWithoutPGPSignatureSalt disables the addition of a salt notation for v4 and v5 PGP keys.

OptSignWithSigner specifies signer(s) to use to generate signature(s).

OptSignWithTime specifies fn as the func to obtain signature timestamp(s).

OptVerifyCallback registers cb as the verification callback, which is called after each signature is verified.

OptVerifyGroup adds a verification task for the group with the specified groupID.

OptVerifyLegacy enables verification of legacy signatures.

OptVerifyLegacyAll enables verification of legacy signatures, and adds verification tasks for all non-signature objects that are part of a group.

OptVerifyObject adds a verification task for the object with the specified id.

OptVerifyWithContext specifies that the given context should be used in RPC to external services.

OptVerifyWithKeyRing sets the keyring to use for verification to kr.

OptVerifyWithVerifier appends verifier(s) to the sources of key material used for verification.

ErrHeaderIntegrity is the error returned when the integrity of the SIF global header is compromised.

ErrNoKeyMaterial is the error returned when no key material was provided.

DescriptorIntegrityError records an error in cryptographic verification of a data object descriptor.

ObjectIntegrityError records an error in cryptographic verification of a data object.

SignatureNotFoundError records an error attempting to locate one or more signatures for a data object or data object group.

SignatureNotValidError records an error when an invalid signature is encountered.

Signer describes a SIF image signer.

Verifier describes a SIF image verifier.

VerifyResult describes the results of an individual signature validation.

SignerOpt are used to configure so.

VerifierOpt are used to configure vo.

VerifyCallback is called immediately after a signature is verified.