passforios-gopenpgp/helper/mobile.go

package helper

import (
	"encoding/json"
	goerrors "errors"
	"runtime/debug"

	"github.com/ProtonMail/gopenpgp/v2/crypto"
	"github.com/pkg/errors"
)

type ExplicitVerifyMessage struct {
	Message                    *crypto.PlainMessage
	SignatureVerificationError *crypto.SignatureVerificationError
}

// DecryptExplicitVerify decrypts an armored PGP message given a private key
// and its passphrase and verifies the embedded signature. Returns the plain
// data or an error on signature verification failure.
func DecryptExplicitVerify(
	pgpMessage *crypto.PGPMessage,
	privateKeyRing, publicKeyRing *crypto.KeyRing,
	verifyTime int64,
) (*ExplicitVerifyMessage, error) {
	var explicitVerify *ExplicitVerifyMessage

	message, err := privateKeyRing.Decrypt(pgpMessage, publicKeyRing, verifyTime)

	if err != nil {
		castedErr := &crypto.SignatureVerificationError{}
		isType := goerrors.As(err, castedErr)
		if !isType {
			return nil, errors.Wrap(err, "gopenpgp: unable to decrypt message")
		}

		explicitVerify = &ExplicitVerifyMessage{
			Message:                    message,
			SignatureVerificationError: castedErr,
		}
	} else {
		explicitVerify = &ExplicitVerifyMessage{
			Message:                    message,
			SignatureVerificationError: nil,
		}
	}

	return explicitVerify, nil
}

// DecryptAttachment takes a keypacket and datpacket
// and returns a decrypted PlainMessage
// Specifically designed for attachments rather than text messages.
func DecryptAttachment(keyPacket []byte, dataPacket []byte, keyRing *crypto.KeyRing) (*crypto.PlainMessage, error) {
	splitMessage := crypto.NewPGPSplitMessage(keyPacket, dataPacket)

	decrypted, err := keyRing.DecryptAttachment(splitMessage)
	if err != nil {
		return nil, errors.Wrap(err, "gopenpgp: unable to decrypt attachment")
	}
	return decrypted, nil
}

// EncryptAttachment encrypts a file given a plainData and a fileName.
// Returns a PGPSplitMessage containing a session key packet and symmetrically
// encrypted data. Specifically designed for attachments rather than text
// messages.
func EncryptAttachment(plainData []byte, filename string, keyRing *crypto.KeyRing) (*crypto.PGPSplitMessage, error) {
	plainMessage := crypto.NewPlainMessageFromFile(plainData, filename, uint32(crypto.GetUnixTime()))
	decrypted, err := keyRing.EncryptAttachment(plainMessage, "")
	if err != nil {
		return nil, errors.Wrap(err, "gopenpgp: unable to encrypt attachment")
	}
	return decrypted, nil
}

// GetJsonSHA256Fingerprints returns the SHA256 fingeprints of key and subkeys,
// encoded in JSON, since gomobile can not handle arrays.
func GetJsonSHA256Fingerprints(publicKey string) ([]byte, error) {
	key, err := crypto.NewKeyFromArmored(publicKey)
	if err != nil {
		return nil, errors.Wrap(err, "gopenpgp: unable to parse key")
	}

	return json.Marshal(key.GetSHA256Fingerprints())
}

type EncryptSignArmoredDetachedMobileResult struct {
	CiphertextArmored, EncryptedSignatureArmored string
}

// EncryptSignArmoredDetachedMobile wraps the encryptSignArmoredDetached method
// to have only one return argument for mobile.
func EncryptSignArmoredDetachedMobile(
	publicKey, privateKey string,
	passphrase, plainData []byte,
) (wrappedTuple *EncryptSignArmoredDetachedMobileResult, err error) {
	ciphertext, encryptedSignature, err := encryptSignArmoredDetached(publicKey, privateKey, passphrase, plainData)
	if err != nil {
		return nil, err
	}

	return &EncryptSignArmoredDetachedMobileResult{
		CiphertextArmored:         ciphertext,
		EncryptedSignatureArmored: encryptedSignature,
	}, nil
}

type EncryptSignBinaryDetachedMobileResult struct {
	EncryptedData             []byte
	EncryptedSignatureArmored string
}

// EncryptSignBinaryDetachedMobile wraps the encryptSignBinaryDetached method
// to have only one return argument for mobile.
func EncryptSignBinaryDetachedMobile(
	publicKey, privateKey string,
	passphrase, plainData []byte,
) (wrappedTuple *EncryptSignBinaryDetachedMobileResult, err error) {
	ciphertext, encryptedSignature, err := encryptSignBinaryDetached(publicKey, privateKey, passphrase, plainData)
	if err != nil {
		return nil, err
	}
	return &EncryptSignBinaryDetachedMobileResult{
		EncryptedData:             ciphertext,
		EncryptedSignatureArmored: encryptedSignature,
	}, nil
}

// FreeOSMemory can be used to explicitly
// call the garbage collector and
// return the unused memory to the OS.
func FreeOSMemory() {
	debug.FreeOSMemory()
}
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`package helper`

			`import (`
Add SHA256 fingerprint utils and helpers (#41) 2020-04-07 14:59:25 +02:00			`"encoding/json"`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`goerrors "errors"`
Improve attachment memory allocation (#105) * Improve attachment memory allocation * added explicit garbage collection * redundant GC * added GCs in attachment processor and a FreeOSMemory helper * added changelog * linting * Remove commented call to debug.FreeOSMemory Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> Co-authored-by: marinthiercelin <marin.thiercelin@epfl.ch> 2020-12-08 17:52:50 +01:00			`"runtime/debug"`
Add SHA256 fingerprint utils and helpers (#41) 2020-04-07 14:59:25 +02:00
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`"github.com/ProtonMail/gopenpgp/v2/crypto"`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`"github.com/pkg/errors"`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`)`

			`type ExplicitVerifyMessage struct {`
			`Message *crypto.PlainMessage`
			`SignatureVerificationError *crypto.SignatureVerificationError`
			`}`

Update lint (#44) * Reduce complexity of SignatureCollector.Accept * Add stylecheck linter, and lint accordingly * Rephrase some comments * godot - Top level comments should end with a dot. * nestif - Reduce nested complexity of code * Review changes Co-authored-by: Aron Wussler <aron@wussler.it> 2020-04-28 13:55:36 +02:00			`// DecryptExplicitVerify decrypts an armored PGP message given a private key`
			`// and its passphrase and verifies the embedded signature. Returns the plain`
			`// data or an error on signature verification failure.`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`func DecryptExplicitVerify(`
			`pgpMessage *crypto.PGPMessage,`
			`privateKeyRing, publicKeyRing *crypto.KeyRing,`
			`verifyTime int64,`
			`) (*ExplicitVerifyMessage, error) {`
			`var explicitVerify *ExplicitVerifyMessage`

			`message, err := privateKeyRing.Decrypt(pgpMessage, publicKeyRing, verifyTime)`

			`if err != nil {`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`castedErr := &crypto.SignatureVerificationError{}`
			`isType := goerrors.As(err, castedErr)`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`if !isType {`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`return nil, errors.Wrap(err, "gopenpgp: unable to decrypt message")`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`}`

			`explicitVerify = &ExplicitVerifyMessage{`
			`Message: message,`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`SignatureVerificationError: castedErr,`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`}`
			`} else {`
			`explicitVerify = &ExplicitVerifyMessage{`
			`Message: message,`
			`SignatureVerificationError: nil,`
			`}`
			`}`

			`return explicitVerify, nil`
			`}`

			`// DecryptAttachment takes a keypacket and datpacket`
			`// and returns a decrypted PlainMessage`
			`// Specifically designed for attachments rather than text messages.`
			`func DecryptAttachment(keyPacket []byte, dataPacket []byte, keyRing crypto.KeyRing) (crypto.PlainMessage, error) {`
			`splitMessage := crypto.NewPGPSplitMessage(keyPacket, dataPacket)`

			`decrypted, err := keyRing.DecryptAttachment(splitMessage)`
			`if err != nil {`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`return nil, errors.Wrap(err, "gopenpgp: unable to decrypt attachment")`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`}`
			`return decrypted, nil`
			`}`

			`// EncryptAttachment encrypts a file given a plainData and a fileName.`
Update lint (#44) * Reduce complexity of SignatureCollector.Accept * Add stylecheck linter, and lint accordingly * Rephrase some comments * godot - Top level comments should end with a dot. * nestif - Reduce nested complexity of code * Review changes Co-authored-by: Aron Wussler <aron@wussler.it> 2020-04-28 13:55:36 +02:00			`// Returns a PGPSplitMessage containing a session key packet and symmetrically`
			`// encrypted data. Specifically designed for attachments rather than text`
			`// messages.`
Add filename and time properties to message (#85) * Add filename and time properties to message * Message time defaults to current time 2020-10-12 18:45:57 +02:00			`func EncryptAttachment(plainData []byte, filename string, keyRing crypto.KeyRing) (crypto.PGPSplitMessage, error) {`
			`plainMessage := crypto.NewPlainMessageFromFile(plainData, filename, uint32(crypto.GetUnixTime()))`
			`decrypted, err := keyRing.EncryptAttachment(plainMessage, "")`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`if err != nil {`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`return nil, errors.Wrap(err, "gopenpgp: unable to encrypt attachment")`
Add build script and fix helper for mobile (#32) * update build and fix helper for mobile * Update readme, changelog and script cleanup Co-authored-by: wussler <aron@wussler.it> 2020-01-06 04:21:44 -08:00			`}`
			`return decrypted, nil`
			`}`
Add SHA256 fingerprint utils and helpers (#41) 2020-04-07 14:59:25 +02:00
Update lint (#44) * Reduce complexity of SignatureCollector.Accept * Add stylecheck linter, and lint accordingly * Rephrase some comments * godot - Top level comments should end with a dot. * nestif - Reduce nested complexity of code * Review changes Co-authored-by: Aron Wussler <aron@wussler.it> 2020-04-28 13:55:36 +02:00			`// GetJsonSHA256Fingerprints returns the SHA256 fingeprints of key and subkeys,`
			`// encoded in JSON, since gomobile can not handle arrays.`
Add SHA256 fingerprint utils and helpers (#41) 2020-04-07 14:59:25 +02:00			`func GetJsonSHA256Fingerprints(publicKey string) ([]byte, error) {`
			`key, err := crypto.NewKeyFromArmored(publicKey)`
			`if err != nil {`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`return nil, errors.Wrap(err, "gopenpgp: unable to parse key")`
Add SHA256 fingerprint utils and helpers (#41) 2020-04-07 14:59:25 +02:00			`}`

			`return json.Marshal(key.GetSHA256Fingerprints())`
			`}`
new helpers for drive decryption (#73) * new helpers for drive decryption * modular helper functions and reciprocals * removed duplicates helper functions * added mobile wrapper * unit tests for new helpers Co-authored-by: wussler <aron@wussler.it> 2020-08-27 17:34:46 +02:00
			`type EncryptSignArmoredDetachedMobileResult struct {`
Added helpers with encrypted signatures and unarmored binary ciphertexts (#83) * added signcryption for binary ciphertexts * fixing merge issues * removed newlines before error handling Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> 2020-10-29 06:20:39 -07:00			`CiphertextArmored, EncryptedSignatureArmored string`
new helpers for drive decryption (#73) * new helpers for drive decryption * modular helper functions and reciprocals * removed duplicates helper functions * added mobile wrapper * unit tests for new helpers Co-authored-by: wussler <aron@wussler.it> 2020-08-27 17:34:46 +02:00			`}`

Added helpers with encrypted signatures and unarmored binary ciphertexts (#83) * added signcryption for binary ciphertexts * fixing merge issues * removed newlines before error handling Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> 2020-10-29 06:20:39 -07:00			`// EncryptSignArmoredDetachedMobile wraps the encryptSignArmoredDetached method`
Additional helpers for iOS drive (#78) * add tests Co-authored-by: wussler <aron@wussler.it> Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> 2020-09-11 15:35:22 +02:00			`// to have only one return argument for mobile.`
new helpers for drive decryption (#73) * new helpers for drive decryption * modular helper functions and reciprocals * removed duplicates helper functions * added mobile wrapper * unit tests for new helpers Co-authored-by: wussler <aron@wussler.it> 2020-08-27 17:34:46 +02:00			`func EncryptSignArmoredDetachedMobile(`
			`publicKey, privateKey string,`
			`passphrase, plainData []byte,`
			`) (wrappedTuple *EncryptSignArmoredDetachedMobileResult, err error) {`
Signcryption (#82) * added signcryption in the helpers * changed the name of encrypted signature * changed the name of an encrypted signature Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> 2020-10-07 15:26:36 +02:00			`ciphertext, encryptedSignature, err := encryptSignArmoredDetached(publicKey, privateKey, passphrase, plainData)`
new helpers for drive decryption (#73) * new helpers for drive decryption * modular helper functions and reciprocals * removed duplicates helper functions * added mobile wrapper * unit tests for new helpers Co-authored-by: wussler <aron@wussler.it> 2020-08-27 17:34:46 +02:00			`if err != nil {`
			`return nil, err`
			`}`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00
			`return &EncryptSignArmoredDetachedMobileResult{`
Added helpers with encrypted signatures and unarmored binary ciphertexts (#83) * added signcryption for binary ciphertexts * fixing merge issues * removed newlines before error handling Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> 2020-10-29 06:20:39 -07:00			`CiphertextArmored: ciphertext,`
			`EncryptedSignatureArmored: encryptedSignature,`
			`}, nil`
			`}`

			`type EncryptSignBinaryDetachedMobileResult struct {`
			`EncryptedData []byte`
			`EncryptedSignatureArmored string`
			`}`

			`// EncryptSignBinaryDetachedMobile wraps the encryptSignBinaryDetached method`
			`// to have only one return argument for mobile.`
			`func EncryptSignBinaryDetachedMobile(`
			`publicKey, privateKey string,`
			`passphrase, plainData []byte,`
			`) (wrappedTuple *EncryptSignBinaryDetachedMobileResult, err error) {`
			`ciphertext, encryptedSignature, err := encryptSignBinaryDetached(publicKey, privateKey, passphrase, plainData)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return &EncryptSignBinaryDetachedMobileResult{`
			`EncryptedData: ciphertext,`
			`EncryptedSignatureArmored: encryptedSignature,`
Improve error handling, fix linter (#92) * Improve error handling, fix linter 2020-10-29 12:42:32 +01:00			`}, nil`
new helpers for drive decryption (#73) * new helpers for drive decryption * modular helper functions and reciprocals * removed duplicates helper functions * added mobile wrapper * unit tests for new helpers Co-authored-by: wussler <aron@wussler.it> 2020-08-27 17:34:46 +02:00			`}`
Improve attachment memory allocation (#105) * Improve attachment memory allocation * added explicit garbage collection * redundant GC * added GCs in attachment processor and a FreeOSMemory helper * added changelog * linting * Remove commented call to debug.FreeOSMemory Co-authored-by: marin thiercelin <marin.thiercelin@pm.me> Co-authored-by: marinthiercelin <marin.thiercelin@epfl.ch> 2020-12-08 17:52:50 +01:00
			`// FreeOSMemory can be used to explicitly`
			`// call the garbage collector and`
			`// return the unused memory to the OS.`
			`func FreeOSMemory() {`
			`debug.FreeOSMemory()`
			`}`