passforios-gopenpgp/crypto/message.go

package crypto

import (
	"bytes"
	"errors"
	"io"
	"io/ioutil"
	"time"

	armorUtils "github.com/ProtonMail/go-pm-crypto/armor"
	"github.com/ProtonMail/go-pm-crypto/internal"
	"github.com/ProtonMail/go-pm-crypto/models"
	"golang.org/x/crypto/openpgp"
	"golang.org/x/crypto/openpgp/armor"
	errors2 "golang.org/x/crypto/openpgp/errors"
	"golang.org/x/crypto/openpgp/packet"
	"math"
)

// Use: ios/android only
// DecryptMessage decrypt encrypted message use private key (string )
// encryptedText : string armored encrypted
// privateKey : armored private use to decrypt message
// passphrase : match with private key to decrypt message
func (pm *PmCrypto) DecryptMessageStringKey(encryptedText string, privateKey string, passphrase string) (string, error) {
	privKeyRaw, err := armorUtils.Unarmor(privateKey)
	if err != nil {
		return "", err
	}
	privKeyReader := bytes.NewReader(privKeyRaw)
	privKeyEntries, err := openpgp.ReadKeyRing(privKeyReader)
	if err != nil {
		return "", err
	}

	return pm.DecryptMessage(encryptedText, &KeyRing{entities: privKeyEntries}, passphrase)
}

// Use ios/android only
// DecryptMessageBinKey decrypt encrypted message use private key (bytes )
// encryptedText : string armored encrypted
// privateKey : unarmored private use to decrypt message could be mutiple keys
// passphrase : match with private key to decrypt message
func (pm *PmCrypto) DecryptMessage(encryptedText string, privateKey *KeyRing, passphrase string) (string, error) {

	md, err := decryptCore(encryptedText, nil, privateKey, passphrase, pm.getTimeGenerator())
	if err != nil {
		return "", err
	}

	decrypted := md.UnverifiedBody
	b, err := ioutil.ReadAll(decrypted)
	if err != nil {
		return "", err
	}

	println(4)
	return string(b), nil
}

func decryptCore(encryptedText string, additionalEntries openpgp.EntityList, privKey *KeyRing, passphrase string, timeFunc func() time.Time) (*openpgp.MessageDetails, error) {

	rawPwd := []byte(passphrase)
	privKey.Unlock(rawPwd)

	privKeyEntries := privKey.entities
	for _, entity := range privKey.entities {
		privKeyEntries = append(privKeyEntries, entity)
	}

	if additionalEntries != nil {
		for _, e := range additionalEntries {
			privKeyEntries = append(privKeyEntries, e)
		}
	}

	encryptedio, err := internal.Unarmor(encryptedText)
	if err != nil {
		return nil, err
	}

	config := &packet.Config{Time: timeFunc}

	md, err := openpgp.ReadMessage(encryptedio.Body, privKeyEntries, nil, config)
	return md, err
}

// Use: ios/android only
func (pm *PmCrypto) DecryptMessageVerify(encryptedText string, verifierKey *KeyRing, privateKeyRing *KeyRing, passphrase string, verifyTime int64) (*models.DecryptSignedVerify, error) {
	// DecryptMessageVerifyBinKeyPrivBinKeys decrypt message and verify the signature
	// verifierKey []byte: unarmored verifier keys
	// privateKey []byte: unarmored private key to decrypt. could be mutiple

	out := &models.DecryptSignedVerify{}
	out.Verify = failed

	var verifierEntries openpgp.EntityList
	if len(verifierKey.entities) == 0 {
		out.Verify = noVerifier
	}

	md, err := decryptCore(encryptedText, verifierEntries, privateKeyRing, passphrase, func() time.Time { return time.Unix(0, 0) }) // TODO: I doubt this time is correct

	decrypted := md.UnverifiedBody
	b, err := ioutil.ReadAll(decrypted)
	if err != nil {
		return nil, err
	}

	processSignatureExpiration(md, verifyTime)

	out.Plaintext = string(b)
	if md.IsSigned {
		if md.SignedBy != nil {
			if len(verifierKey.entities) > 0 {
				matches := verifierKey.entities.KeysById(md.SignedByKeyId)
				if len(matches) > 0 {
					if md.SignatureError == nil {
						out.Verify = ok
					} else {
						out.Message = md.SignatureError.Error()
						out.Verify = failed
					}
				}
			} else {
				out.Verify = noVerifier
			}
		} else {
			out.Verify = noVerifier
		}
	} else {
		out.Verify = notSigned
	}
	return out, nil
}

// Handle signature time verification manually, so we can add a margin to the creationTime check.
func processSignatureExpiration(md *openpgp.MessageDetails, verifyTime int64) {
	if md.SignatureError == errors2.ErrSignatureExpired {
		if verifyTime > 0 {
			created := md.Signature.CreationTime.Unix()
			expires := int64(math.MaxInt64)
			if md.Signature.KeyLifetimeSecs != nil {
				expires = int64(*md.Signature.KeyLifetimeSecs) + created
			}
			if created-internal.CreationTimeOffset <= verifyTime && verifyTime <= expires {
				md.SignatureError = nil
			}
		} else {
			// verifyTime = 0: time check disabled, everything is okay
			md.SignatureError = nil
		}
	}
}

// Use: ios/android only
//EncryptMessageWithPassword encrypt a plain text to pgp message with a password
//plainText string: clear text
//output string: armored pgp message
func (pm *PmCrypto) EncryptMessageWithPassword(plainText string, password string) (string, error) {

	var outBuf bytes.Buffer
	w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)
	if err != nil {
		return "", err
	}

	config := &packet.Config{Time: pm.getTimeGenerator()}
	plaintext, err := openpgp.SymmetricallyEncrypt(w, []byte(password), nil, config)
	if err != nil {
		return "", err
	}
	message := []byte(plainText)
	_, err = plaintext.Write(message)
	if err != nil {
		return "", err
	}
	err = plaintext.Close()
	if err != nil {
		return "", err
	}
	w.Close()

	return outBuf.String(), nil
}

// Use ios/android only
// EncryptMessageBinKey encrypt message with unarmored public key, if pass private key and passphrase will also sign the message
// publicKey : bytes unarmored public key
// plainText : the input
// privateKey : optional required when you want to sign
// passphrase : optional required when you pass the private key and this passphrase must could decrypt the private key
func (pm *PmCrypto) EncryptMessage(plainText string, publicKey *KeyRing, privateKey *KeyRing, passphrase string, trim bool) (string, error) {

	if trim {
		plainText = internal.TrimNewlines(plainText)
	}
	var outBuf bytes.Buffer
	w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)
	if err != nil {
		return "", err
	}

	var signEntity *openpgp.Entity

	if len(passphrase) > 0 && len(privateKey.entities) > 0 {

		signEntity := privateKey.GetSigningEntity(passphrase)

		if signEntity == nil {
			return "", errors.New("cannot sign message, signer key is not unlocked")
		}
	}

	ew, err := EncryptCore(w, publicKey.entities, signEntity, "", false, pm.getTimeGenerator())

	_, _ = ew.Write([]byte(plainText))
	ew.Close()
	w.Close()
	return outBuf.String(), nil
}

// Use: ios/android only
//DecryptMessageWithPassword decrypt a pgp message with a password
//encrypted string : armored pgp message
//output string : clear text
func (pm *PmCrypto) DecryptMessageWithPassword(encrypted string, password string) (string, error) {
	encryptedio, err := internal.Unarmor(encrypted)
	if err != nil {
		return "", err
	}

	var prompt = func(keys []openpgp.Key, symmetric bool) ([]byte, error) {
		return []byte(password), nil
	}

	config := &packet.Config{Time: pm.getTimeGenerator()}
	md, err := openpgp.ReadMessage(encryptedio.Body, nil, prompt, config)
	if err != nil {
		return "", err
	}

	messageBuf := bytes.NewBuffer(nil)
	_, err = io.Copy(messageBuf, md.UnverifiedBody)
	if err != nil {
		return "", err
	}

	return messageBuf.String(), nil
}
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`package crypto`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`import (`
			`"bytes"`
			`"errors"`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`"io"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`"io/ioutil"`
			`"time"`

Minor build fixes 2018-11-01 17:03:43 +01:00			`armorUtils "github.com/ProtonMail/go-pm-crypto/armor"`
			`"github.com/ProtonMail/go-pm-crypto/internal"`
			`"github.com/ProtonMail/go-pm-crypto/models"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`"golang.org/x/crypto/openpgp"`
			`"golang.org/x/crypto/openpgp/armor"`
Add a 2 day offset for signature creation time checking 2018-07-31 01:00:45 +02:00			`errors2 "golang.org/x/crypto/openpgp/errors"`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`"golang.org/x/crypto/openpgp/packet"`
Add a 2 day offset for signature creation time checking 2018-07-31 01:00:45 +02:00			`"math"`
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`)`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use: ios/android only`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`// DecryptMessage decrypt encrypted message use private key (string )`
			`// encryptedText : string armored encrypted`
			`// privateKey : armored private use to decrypt message`
			`// passphrase : match with private key to decrypt message`
Android stable version 2018-11-09 02:03:19 +01:00			`func (pm *PmCrypto) DecryptMessageStringKey(encryptedText string, privateKey string, passphrase string) (string, error) {`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`privKeyRaw, err := armorUtils.Unarmor(privateKey)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return "", err`
			`}`
Android stable version 2018-11-09 02:03:19 +01:00			`privKeyReader := bytes.NewReader(privKeyRaw)`
			`privKeyEntries, err := openpgp.ReadKeyRing(privKeyReader)`
			`if err != nil {`
			`return "", err`
			`}`

			`return pm.DecryptMessage(encryptedText, &KeyRing{entities: privKeyEntries}, passphrase)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`

Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use ios/android only`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`// DecryptMessageBinKey decrypt encrypted message use private key (bytes )`
			`// encryptedText : string armored encrypted`
check if signedkey match with input verifiers 2018-06-05 14:50:54 -07:00			`// privateKey : unarmored private use to decrypt message could be mutiple keys`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`// passphrase : match with private key to decrypt message`
Android stable version 2018-11-09 02:08:39 +01:00			`func (pm PmCrypto) DecryptMessage(encryptedText string, privateKey KeyRing, passphrase string) (string, error) {`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`md, err := decryptCore(encryptedText, nil, privateKey, passphrase, pm.getTimeGenerator())`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return "", err`
			`}`

			`decrypted := md.UnverifiedBody`
			`b, err := ioutil.ReadAll(decrypted)`
			`if err != nil {`
			`return "", err`
			`}`

			`println(4)`
			`return string(b), nil`
			`}`

Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`func decryptCore(encryptedText string, additionalEntries openpgp.EntityList, privKey KeyRing, passphrase string, timeFunc func() time.Time) (openpgp.MessageDetails, error) {`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`rawPwd := []byte(passphrase)`
Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`privKey.Unlock(rawPwd)`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`privKeyEntries := privKey.entities`
			`for _, entity := range privKey.entities {`
			`privKeyEntries = append(privKeyEntries, entity)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`

Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`if additionalEntries != nil {`
			`for _, e := range additionalEntries {`
			`privKeyEntries = append(privKeyEntries, e)`
			`}`
			`}`

			`encryptedio, err := internal.Unarmor(encryptedText)`
			`if err != nil {`
			`return nil, err`
			`}`

			`config := &packet.Config{Time: timeFunc}`

			`md, err := openpgp.ReadMessage(encryptedio.Body, privKeyEntries, nil, config)`
			`return md, err`
			`}`

Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use: ios/android only`
Android-side KeyRing reuse refactoring support 2018-11-09 13:03:46 +01:00			`func (pm PmCrypto) DecryptMessageVerify(encryptedText string, verifierKey KeyRing, privateKeyRing KeyRing, passphrase string, verifyTime int64) (models.DecryptSignedVerify, error) {`
			`// DecryptMessageVerifyBinKeyPrivBinKeys decrypt message and verify the signature`
			`// verifierKey []byte: unarmored verifier keys`
			`// privateKey []byte: unarmored private key to decrypt. could be mutiple`
Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`out := &models.DecryptSignedVerify{}`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`out.Verify = failed`

check if signedkey match with input verifiers 2018-06-05 14:50:54 -07:00			`var verifierEntries openpgp.EntityList`
Android-side KeyRing reuse refactoring support 2018-11-09 13:03:46 +01:00			`if len(verifierKey.entities) == 0 {`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`out.Verify = noVerifier`
			`}`

Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`md, err := decryptCore(encryptedText, verifierEntries, privateKeyRing, passphrase, func() time.Time { return time.Unix(0, 0) }) // TODO: I doubt this time is correct`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`decrypted := md.UnverifiedBody`
			`b, err := ioutil.ReadAll(decrypted)`
			`if err != nil {`
			`return nil, err`
			`}`

Add a 2 day offset for signature creation time checking 2018-07-31 01:00:45 +02:00			`processSignatureExpiration(md, verifyTime)`

wrapper for mobile 2018-06-04 16:05:14 -07:00			`out.Plaintext = string(b)`
			`if md.IsSigned {`
			`if md.SignedBy != nil {`
Android-side KeyRing reuse refactoring support 2018-11-09 13:03:46 +01:00			`if len(verifierKey.entities) > 0 {`
			`matches := verifierKey.entities.KeysById(md.SignedByKeyId)`
check if signedkey match with input verifiers 2018-06-05 14:50:54 -07:00			`if len(matches) > 0 {`
			`if md.SignatureError == nil {`
			`out.Verify = ok`
			`} else {`
			`out.Message = md.SignatureError.Error()`
			`out.Verify = failed`
			`}`
			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`} else {`
check if signedkey match with input verifiers 2018-06-05 14:50:54 -07:00			`out.Verify = noVerifier`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`
			`} else {`
			`out.Verify = noVerifier`
			`}`
			`} else {`
			`out.Verify = notSigned`
			`}`
			`return out, nil`
			`}`

Add a 2 day offset for signature creation time checking 2018-07-31 01:00:45 +02:00			`// Handle signature time verification manually, so we can add a margin to the creationTime check.`
			`func processSignatureExpiration(md *openpgp.MessageDetails, verifyTime int64) {`
			`if md.SignatureError == errors2.ErrSignatureExpired {`
			`if verifyTime > 0 {`
			`created := md.Signature.CreationTime.Unix()`
			`expires := int64(math.MaxInt64)`
			`if md.Signature.KeyLifetimeSecs != nil {`
			`expires = int64(*md.Signature.KeyLifetimeSecs) + created`
			`}`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`if created-internal.CreationTimeOffset <= verifyTime && verifyTime <= expires {`
Add a 2 day offset for signature creation time checking 2018-07-31 01:00:45 +02:00			`md.SignatureError = nil`
			`}`
			`} else {`
			`// verifyTime = 0: time check disabled, everything is okay`
			`md.SignatureError = nil`
			`}`
			`}`
			`}`

Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use: ios/android only`
Android stable version 2018-11-09 02:03:19 +01:00			`//EncryptMessageWithPassword encrypt a plain text to pgp message with a password`
			`//plainText string: clear text`
			`//output string: armored pgp message`
			`func (pm *PmCrypto) EncryptMessageWithPassword(plainText string, password string) (string, error) {`

			`var outBuf bytes.Buffer`
			`w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)`
			`if err != nil {`
			`return "", err`
			`}`

			`config := &packet.Config{Time: pm.getTimeGenerator()}`
			`plaintext, err := openpgp.SymmetricallyEncrypt(w, []byte(password), nil, config)`
			`if err != nil {`
			`return "", err`
			`}`
			`message := []byte(plainText)`
			`_, err = plaintext.Write(message)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return "", err`
			`}`
Android stable version 2018-11-09 02:03:19 +01:00			`err = plaintext.Close()`
			`if err != nil {`
			`return "", err`
			`}`
			`w.Close()`

			`return outBuf.String(), nil`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`

Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use ios/android only`
check if signedkey match with input verifiers 2018-06-05 14:50:54 -07:00			`// EncryptMessageBinKey encrypt message with unarmored public key, if pass private key and passphrase will also sign the message`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`// publicKey : bytes unarmored public key`
			`// plainText : the input`
			`// privateKey : optional required when you want to sign`
			`// passphrase : optional required when you pass the private key and this passphrase must could decrypt the private key`
Android stable version 2018-11-09 02:03:19 +01:00			`func (pm PmCrypto) EncryptMessage(plainText string, publicKey KeyRing, privateKey *KeyRing, passphrase string, trim bool) (string, error) {`
wrapper for mobile 2018-06-04 16:05:14 -07:00
add trim leading function 2018-06-05 15:26:55 -07:00			`if trim {`
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`plainText = internal.TrimNewlines(plainText)`
add trim leading function 2018-06-05 15:26:55 -07:00			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`var outBuf bytes.Buffer`
Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return "", err`
			`}`

			`var signEntity *openpgp.Entity`

Android stable version 2018-11-09 02:03:19 +01:00			`if len(passphrase) > 0 && len(privateKey.entities) > 0 {`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`signEntity := privateKey.GetSigningEntity(passphrase)`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`if signEntity == nil {`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`return "", errors.New("cannot sign message, signer key is not unlocked")`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`
			`}`

Android stable version 2018-11-09 02:03:19 +01:00			`ew, err := EncryptCore(w, publicKey.entities, signEntity, "", false, pm.getTimeGenerator())`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`_, _ = ew.Write([]byte(plainText))`
			`ew.Close()`
			`w.Close()`
			`return outBuf.String(), nil`
			`}`
Readded deleted sym.encryption methods 2018-11-21 23:44:33 +01:00
Methods use + unit tests update 2019-01-11 00:23:00 +01:00			`// Use: ios/android only`
Readded deleted sym.encryption methods 2018-11-21 23:44:33 +01:00			`//DecryptMessageWithPassword decrypt a pgp message with a password`
			`//encrypted string : armored pgp message`
			`//output string : clear text`
			`func (pm *PmCrypto) DecryptMessageWithPassword(encrypted string, password string) (string, error) {`
			`encryptedio, err := internal.Unarmor(encrypted)`
			`if err != nil {`
			`return "", err`
			`}`

			`var prompt = func(keys []openpgp.Key, symmetric bool) ([]byte, error) {`
			`return []byte(password), nil`
			`}`

			`config := &packet.Config{Time: pm.getTimeGenerator()}`
			`md, err := openpgp.ReadMessage(encryptedio.Body, nil, prompt, config)`
			`if err != nil {`
			`return "", err`
			`}`

			`messageBuf := bytes.NewBuffer(nil)`
			`_, err = io.Copy(messageBuf, md.UnverifiedBody)`
			`if err != nil {`
			`return "", err`
			`}`

			`return messageBuf.String(), nil`
			`}`