passforios-gopenpgp/crypto/mime.go

package crypto

import (
	"bytes"
	"io/ioutil"
	"net/mail"
	"net/textproto"
	"strings"

	gomime "github.com/ProtonMail/go-mime"

	"golang.org/x/crypto/openpgp"
	"golang.org/x/crypto/openpgp/packet"
)

// MIMECallbacks defines callback methods to process a MIME message.
type MIMECallbacks interface {
	OnBody(body string, mimetype string)
	OnAttachment(headers string, data []byte)
	// Encrypted headers can be in an attachment and thus be placed at the end of the mime structure.
	OnEncryptedHeaders(headers string)
	OnVerified(verified int)
	OnError(err error)
}

// DecryptMIMEMessage decrypts a MIME message.
func (keyRing *KeyRing) DecryptMIMEMessage(
	message *PGPMessage, verifyKey *KeyRing, callbacks MIMECallbacks, verifyTime int64,
) {
	decryptedMessage, err := keyRing.Decrypt(message, verifyKey, verifyTime)
	if err != nil {
		callbacks.OnError(err)
		return
	}

	body, attachments, attachmentHeaders, err := parseMIME(decryptedMessage.GetString(), verifyKey)
	if err != nil {
		callbacks.OnError(err)
		return
	}
	bodyContent, bodyMimeType := body.GetBody()
	callbacks.OnBody(bodyContent, bodyMimeType)
	for i := 0; i < len(attachments); i++ {
		callbacks.OnAttachment(attachmentHeaders[i], []byte(attachments[i]))
	}
	callbacks.OnEncryptedHeaders("")
}

// ----- INTERNAL FUNCTIONS -----

func parseMIME(
	mimeBody string, verifierKey *KeyRing,
) (*gomime.BodyCollector, []string, []string, error) {
	mm, err := mail.ReadMessage(strings.NewReader(mimeBody))
	if err != nil {
		return nil, nil, nil, err
	}
	config := &packet.Config{DefaultCipher: packet.CipherAES256, Time: getTimeGenerator()}

	h := textproto.MIMEHeader(mm.Header)
	mmBodyData, err := ioutil.ReadAll(mm.Body)
	if err != nil {
		return nil, nil, nil, err
	}

	printAccepter := gomime.NewMIMEPrinter()
	bodyCollector := gomime.NewBodyCollector(printAccepter)
	attachmentsCollector := gomime.NewAttachmentsCollector(bodyCollector)
	mimeVisitor := gomime.NewMimeVisitor(attachmentsCollector)

	var pgpKering openpgp.KeyRing
	if verifierKey != nil {
		pgpKering = verifierKey.entities
	}

	signatureCollector := newSignatureCollector(mimeVisitor, pgpKering, config)

	err = gomime.VisitAll(bytes.NewReader(mmBodyData), h, signatureCollector)
	if err == nil && verifierKey != nil {
		err = signatureCollector.verified
	}

	return bodyCollector,
		attachmentsCollector.GetAttachments(),
		attachmentsCollector.GetAttHeaders(),
		err
}
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`package crypto`
WIP: parse mime 2018-09-02 15:02:26 +02:00
			`import (`
			`"bytes"`
Refactor: Moved relevant parts of Key and KeyRing objs from go-pmapi 2018-09-20 15:20:45 +02:00			`"io/ioutil"`
			`"net/mail"`
			`"net/textproto"`
			`"strings"`
fix crash on missing keyring 2019-03-07 17:39:34 +01:00
Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`gomime "github.com/ProtonMail/go-mime"`
fix crash on missing keyring 2019-03-07 17:39:34 +01:00
			`"golang.org/x/crypto/openpgp"`
			`"golang.org/x/crypto/openpgp/packet"`
WIP: parse mime 2018-09-02 15:02:26 +02:00			`)`

Refactor api (#6) * Refactor library, remove duplicates * Rebuild structure to use Messages and Signature models * Use PGPSplitMessage * Remove signature model * Various fixes * Add helpers with tests * Fixes, add some docs, add tests * Add attachment helpers * Add helpers Symmetric encryption * Edit docs + examples * Rename kr to keyRing * Various fixes for documentation * Edit JSON handling functions, add decrypt keyring via token * Add proposal changes doc * Fix CI * Drop Message functions, join CleartextMessage and BinaryMessage Change canonicalization and trimming only to text signatures * Add cleartextsignature, detach signature from message model, move helpers * Documentation, remove optional parameters * Move verification to separate model * Don't return message in VerifyDetached * Update table of contents in readme * Appease golint * Run go fmt * Rename Encrypt/DecryptMessageWithPassword to ..WithToken These functions shouldn't be used with user-provided passwords, as they don't do any key-stretching. * Change key generation usernames 2019-06-03 17:00:01 +02:00			`// MIMECallbacks defines callback methods to process a MIME message.`
			`type MIMECallbacks interface {`
			`OnBody(body string, mimetype string)`
			`OnAttachment(headers string, data []byte)`
			`// Encrypted headers can be in an attachment and thus be placed at the end of the mime structure.`
			`OnEncryptedHeaders(headers string)`
			`OnVerified(verified int)`
			`OnError(err error)`
			`}`

			`// DecryptMIMEMessage decrypts a MIME message.`
			`func (keyRing *KeyRing) DecryptMIMEMessage(`
			`message PGPMessage, verifyKey KeyRing, callbacks MIMECallbacks, verifyTime int64,`
			`) {`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`decryptedMessage, err := keyRing.Decrypt(message, verifyKey, verifyTime)`
Refactor api (#6) * Refactor library, remove duplicates * Rebuild structure to use Messages and Signature models * Use PGPSplitMessage * Remove signature model * Various fixes * Add helpers with tests * Fixes, add some docs, add tests * Add attachment helpers * Add helpers Symmetric encryption * Edit docs + examples * Rename kr to keyRing * Various fixes for documentation * Edit JSON handling functions, add decrypt keyring via token * Add proposal changes doc * Fix CI * Drop Message functions, join CleartextMessage and BinaryMessage Change canonicalization and trimming only to text signatures * Add cleartextsignature, detach signature from message model, move helpers * Documentation, remove optional parameters * Move verification to separate model * Don't return message in VerifyDetached * Update table of contents in readme * Appease golint * Run go fmt * Rename Encrypt/DecryptMessageWithPassword to ..WithToken These functions shouldn't be used with user-provided passwords, as they don't do any key-stretching. * Change key generation usernames 2019-06-03 17:00:01 +02:00			`if err != nil {`
			`callbacks.OnError(err)`
			`return`
			`}`

Change time global handling (#29) * Reverse time * Change time handling global * Remove debug functions * Remove *pgp methods 2019-10-22 18:44:45 +02:00			`body, attachments, attachmentHeaders, err := parseMIME(decryptedMessage.GetString(), verifyKey)`
Refactor api (#6) * Refactor library, remove duplicates * Rebuild structure to use Messages and Signature models * Use PGPSplitMessage * Remove signature model * Various fixes * Add helpers with tests * Fixes, add some docs, add tests * Add attachment helpers * Add helpers Symmetric encryption * Edit docs + examples * Rename kr to keyRing * Various fixes for documentation * Edit JSON handling functions, add decrypt keyring via token * Add proposal changes doc * Fix CI * Drop Message functions, join CleartextMessage and BinaryMessage Change canonicalization and trimming only to text signatures * Add cleartextsignature, detach signature from message model, move helpers * Documentation, remove optional parameters * Move verification to separate model * Don't return message in VerifyDetached * Update table of contents in readme * Appease golint * Run go fmt * Rename Encrypt/DecryptMessageWithPassword to ..WithToken These functions shouldn't be used with user-provided passwords, as they don't do any key-stretching. * Change key generation usernames 2019-06-03 17:00:01 +02:00			`if err != nil {`
			`callbacks.OnError(err)`
			`return`
			`}`
			`bodyContent, bodyMimeType := body.GetBody()`
			`callbacks.OnBody(bodyContent, bodyMimeType)`
			`for i := 0; i < len(attachments); i++ {`
			`callbacks.OnAttachment(attachmentHeaders[i], []byte(attachments[i]))`
			`}`
			`callbacks.OnEncryptedHeaders("")`
			`}`

			`// ----- INTERNAL FUNCTIONS -----`

Change time global handling (#29) * Reverse time * Change time handling global * Remove debug functions * Remove *pgp methods 2019-10-22 18:44:45 +02:00			`func parseMIME(`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`mimeBody string, verifierKey *KeyRing,`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`) (*gomime.BodyCollector, []string, []string, error) {`
WIP: parse mime 2018-09-02 15:02:26 +02:00			`mm, err := mail.ReadMessage(strings.NewReader(mimeBody))`
			`if err != nil {`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`return nil, nil, nil, err`
WIP: parse mime 2018-09-02 15:02:26 +02:00			`}`
Change time global handling (#29) * Reverse time * Change time handling global * Remove debug functions * Remove *pgp methods 2019-10-22 18:44:45 +02:00			`config := &packet.Config{DefaultCipher: packet.CipherAES256, Time: getTimeGenerator()}`
WIP: parse mime 2018-09-02 15:02:26 +02:00
			`h := textproto.MIMEHeader(mm.Header)`
			`mmBodyData, err := ioutil.ReadAll(mm.Body)`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`if err != nil {`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`return nil, nil, nil, err`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`}`
WIP: parse mime 2018-09-02 15:02:26 +02:00
Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`printAccepter := gomime.NewMIMEPrinter()`
			`bodyCollector := gomime.NewBodyCollector(printAccepter)`
			`attachmentsCollector := gomime.NewAttachmentsCollector(bodyCollector)`
			`mimeVisitor := gomime.NewMimeVisitor(attachmentsCollector)`
Refactor: Moved relevant parts of Key and KeyRing objs from go-pmapi 2018-09-20 15:20:45 +02:00
fix crash on missing keyring 2019-03-07 17:39:34 +01:00			`var pgpKering openpgp.KeyRing`
			`if verifierKey != nil {`
			`pgpKering = verifierKey.entities`
			`}`

			`signatureCollector := newSignatureCollector(mimeVisitor, pgpKering, config)`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`err = gomime.VisitAll(bytes.NewReader(mmBodyData), h, signatureCollector)`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`if err == nil && verifierKey != nil {`
Openpgp security update (V2) (#31) * Change keyring unlock functionalities * Add keyring#Lock, keyring#CheckIntegrity, tests * Update helpers, fix bugs * Update go.mod with ProtonMail/crypto commit * Change key management system * Clear keys from memory + tests * Create SessionKey with direct encryption for datapackets. Move symmetrickey to password. * Fix upstream dependencies * Update module to V2, documentation * Add linter * Add v2 folder to .gitignore * Minor changes to KeyID getters * Remove old changelog * Improve docs, remove compilation script 2019-12-27 19:35:43 +01:00			`err = signatureCollector.verified`
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`}`
WIP: parse mime 2018-09-02 15:02:26 +02:00
Fix compilation for gomobile iOS (#17) * Move signature verification to errors * Move cleartext messages to ClearTextMessage struct * Fix documentation 2019-07-02 07:36:02 -07:00			`return bodyCollector,`
			`attachmentsCollector.GetAttachments(),`
			`attachmentsCollector.GetAttHeaders(),`
			`err`
WIP extract mime body and check signature 2018-09-04 23:40:35 +02:00			`}`