passforios-gopenpgp/crypto/attachment.go

package crypto

import (
	"bytes"
	"io"
	"io/ioutil"

	armorUtils "github.com/ProtonMail/go-pm-crypto/armor"
	"github.com/ProtonMail/go-pm-crypto/internal"
	"github.com/ProtonMail/go-pm-crypto/models"
	"golang.org/x/crypto/openpgp"
	"golang.org/x/crypto/openpgp/armor"
	"golang.org/x/crypto/openpgp/packet"
)

// Encrypt attachment. Takes input data and key data in binary form
func (pm *PmCrypto) EncryptAttachment(plainData []byte, fileName string, publicKey *KeyRing) (*models.EncryptedSplit, error) {
	var outBuf bytes.Buffer
	w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)
	if err != nil {
		return nil, err
	}

	hints := &openpgp.FileHints{
		FileName: fileName,
	}

	config := &packet.Config{
		DefaultCipher: packet.CipherAES256,
		Time:          pm.getTimeGenerator(),
	}

	ew, err := openpgp.Encrypt(w, publicKey.entities, nil, hints, config)

	_, _ = ew.Write(plainData)
	ew.Close()
	w.Close()

	split, err := SplitArmor(outBuf.String())
	if err != nil {
		return nil, err
	}
	split.Algo = "aes256"
	return split, nil
}

// Helper method. Splits armored pgp session into key and packet data
func SplitArmor(encrypted string) (*models.EncryptedSplit, error) {

	var err error

	encryptedRaw, err := armorUtils.Unarmor(encrypted)
	if err != nil {
		return nil, err
	}

	encryptedReader := bytes.NewReader(encryptedRaw)

	return SeparateKeyAndData(nil, encryptedReader)

}

// Decrypt attachment. Takes input data and key data in binary form. privateKeys can contains more keys. passphrase is used to unlock keys
func (pm *PmCrypto) DecryptAttachment(keyPacket []byte, dataPacket []byte, kr *KeyRing, passphrase string) ([]byte, error) {

	privKeyEntries := kr.entities

	kr.Unlock([]byte(passphrase))

	keyReader := bytes.NewReader(keyPacket)
	dataReader := bytes.NewReader(dataPacket)

	encryptedReader := io.MultiReader(keyReader, dataReader)

	config := &packet.Config{Time: pm.getTimeGenerator()}

	md, err := openpgp.ReadMessage(encryptedReader, privKeyEntries, nil, config)
	if err != nil {
		return nil, err
	}

	decrypted := md.UnverifiedBody
	b, err := ioutil.ReadAll(decrypted)
	if err != nil {
		return nil, err
	}

	return b, nil
}
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`package crypto`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`import (`
			`"bytes"`
			`"io"`
			`"io/ioutil"`

Minor build fixes 2018-11-01 17:03:43 +01:00			`armorUtils "github.com/ProtonMail/go-pm-crypto/armor"`
			`"github.com/ProtonMail/go-pm-crypto/internal"`
			`"github.com/ProtonMail/go-pm-crypto/models"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`"golang.org/x/crypto/openpgp"`
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`"golang.org/x/crypto/openpgp/armor"`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`"golang.org/x/crypto/openpgp/packet"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`)`

Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`// Encrypt attachment. Takes input data and key data in binary form`
Android stable version 2018-11-09 02:03:19 +01:00			`func (pm PmCrypto) EncryptAttachment(plainData []byte, fileName string, publicKey KeyRing) (*models.EncryptedSplit, error) {`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`var outBuf bytes.Buffer`
Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`w, err := armor.Encode(&outBuf, armorUtils.PGP_MESSAGE_HEADER, internal.ArmorHeaders)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return nil, err`
			`}`

			`hints := &openpgp.FileHints{`
			`FileName: fileName,`
			`}`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00
			`config := &packet.Config{`
			`DefaultCipher: packet.CipherAES256,`
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`Time: pm.getTimeGenerator(),`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Android stable version 2018-11-09 02:03:19 +01:00			`ew, err := openpgp.Encrypt(w, publicKey.entities, nil, hints, config)`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`_, _ = ew.Write(plainData)`
			`ew.Close()`
			`w.Close()`

Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`split, err := SplitArmor(outBuf.String())`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return nil, err`
			`}`
more cleanup, fixes 2018-06-04 17:50:26 -07:00			`split.Algo = "aes256"`
			`return split, nil`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`

Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`// Helper method. Splits armored pgp session into key and packet data`
			`func SplitArmor(encrypted string) (*models.EncryptedSplit, error) {`

			`var err error`

			`encryptedRaw, err := armorUtils.Unarmor(encrypted)`
			`if err != nil {`
			`return nil, err`
			`}`

			`encryptedReader := bytes.NewReader(encryptedRaw)`

			`return SeparateKeyAndData(nil, encryptedReader)`

			`}`

			`// Decrypt attachment. Takes input data and key data in binary form. privateKeys can contains more keys. passphrase is used to unlock keys`
Android stable version 2018-11-09 02:03:19 +01:00			`func (pm PmCrypto) DecryptAttachment(keyPacket []byte, dataPacket []byte, kr KeyRing, passphrase string) ([]byte, error) {`

			`privKeyEntries := kr.entities`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Signing/unlocking entities simplification 2018-11-21 21:11:30 +01:00			`kr.Unlock([]byte(passphrase))`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`keyReader := bytes.NewReader(keyPacket)`
			`dataReader := bytes.NewReader(dataPacket)`

			`encryptedReader := io.MultiReader(keyReader, dataReader)`

Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`config := &packet.Config{Time: pm.getTimeGenerator()}`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00
			`md, err := openpgp.ReadMessage(encryptedReader, privKeyEntries, nil, config)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return nil, err`
			`}`

			`decrypted := md.UnverifiedBody`
			`b, err := ioutil.ReadAll(decrypted)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return b, nil`
			`}`