passforios-gopenpgp/crypto/attachment.go

package crypto

import (
	"bytes"
	"fmt"
	"io"
	"io/ioutil"
	"runtime"
	"sync"

	armorUtils "github.com/ProtonMail/gopenpgp/armor"
	"github.com/ProtonMail/gopenpgp/constants"
	"github.com/ProtonMail/gopenpgp/models"
	"golang.org/x/crypto/openpgp"
	"golang.org/x/crypto/openpgp/packet"
)

// AttachmentProcessor keeps track of the progress of encrypting an attachment
// (optimized for encrypting large files).
type AttachmentProcessor struct {
	w                *io.WriteCloser
	pipe             *io.PipeWriter
	done             sync.WaitGroup
	split            *models.EncryptedSplit
	garbageCollector int
	err              error
}

// Process writes attachment data to be encrypted
func (ap *AttachmentProcessor) Process(plainData []byte) {
	if _, err := (*ap.w).Write(plainData); err != nil {
		panic(err)
	}
}

// Finish closes the attachment and returns the encrypted data
func (ap *AttachmentProcessor) Finish() (*models.EncryptedSplit, error) {
	if ap.err != nil {
		return nil, ap.err
	}
	(*ap.w).Close()
	(*ap.pipe).Close()
	ap.done.Wait()
	if ap.garbageCollector > 0 {
		runtime.GC()
	}
	return ap.split, nil
}

// encryptAttachment creates an AttachmentProcessor which can be used to encrypt
// a file. It takes an estimatedSize and fileName as hints about the file.
func (pgp *GopenPGP) encryptAttachment(
	estimatedSize int, fileName string, publicKey *KeyRing, garbageCollector int,
) (*AttachmentProcessor, error) {
	attachmentProc := &AttachmentProcessor{}
	// You could also add these one at a time if needed.
	attachmentProc.done.Add(1)
	attachmentProc.garbageCollector = garbageCollector

	hints := &openpgp.FileHints{
		FileName: fileName,
	}

	config := &packet.Config{
		DefaultCipher: packet.CipherAES256,
		Time:          pgp.getTimeGenerator(),
	}

	reader, writer := io.Pipe()

	go func() {
		defer attachmentProc.done.Done()
		split, splitError := SeparateKeyAndData(nil, reader, estimatedSize, garbageCollector)
		if attachmentProc.err != nil {
			attachmentProc.err = splitError
		}
		split.Algo = constants.AES256
		attachmentProc.split = split
	}()

	var ew io.WriteCloser
	var encryptErr error
	ew, encryptErr = openpgp.Encrypt(writer, publicKey.entities, nil, hints, config)
	if encryptErr != nil {
		return nil, encryptErr
	}
	attachmentProc.w = &ew
	attachmentProc.pipe = writer

	return attachmentProc, nil
}

// EncryptAttachment encrypts a file. fileName
func (pgp *GopenPGP) EncryptAttachment(
	plainData []byte, fileName string, publicKey *KeyRing,
) (*models.EncryptedSplit, error) {
	ap, err := pgp.encryptAttachment(len(plainData), fileName, publicKey, -1)
	if err != nil {
		return nil, err
	}
	ap.Process(plainData)
	split, err := ap.Finish()
	if err != nil {
		return nil, err
	}
	return split, nil
}

// EncryptAttachmentLowMemory creates an AttachmentProcessor which can be used
// to encrypt a file. It takes an estimatedSize and fileName as hints about the
// file. It is optimized for low-memory environments and collects garbage every
// megabyte.
func (pgp *GopenPGP) EncryptAttachmentLowMemory(
	estimatedSize int, fileName string, publicKey *KeyRing,
) (*AttachmentProcessor, error) {
	return pgp.encryptAttachment(estimatedSize, fileName, publicKey, 1<<20)
}

// SplitArmor is a helper method which splits an armored message into its
// session key packet and symmetrically encrypted data packet.
func SplitArmor(encrypted string) (*models.EncryptedSplit, error) {
	var err error

	encryptedRaw, err := armorUtils.Unarmor(encrypted)
	if err != nil {
		return nil, err
	}

	encryptedReader := bytes.NewReader(encryptedRaw)

	return SeparateKeyAndData(nil, encryptedReader, len(encrypted), -1)
}

// DecryptAttachment takes a session key packet and symmetrically encrypted data
// packet. privateKeys is a KeyRing that can contain multiple keys. The
// passphrase is used to unlock keys in privateKeys.
func (pgp *GopenPGP) DecryptAttachment(
	keyPacket, dataPacket []byte,
	kr *KeyRing, passphrase string,
) ([]byte, error) {
	privKeyEntries := kr.entities

	if err := kr.Unlock([]byte(passphrase)); err != nil {
		err = fmt.Errorf("gopenpgp: cannot decrypt attachment: %v", err)
		return nil, err
	}

	keyReader := bytes.NewReader(keyPacket)
	dataReader := bytes.NewReader(dataPacket)

	encryptedReader := io.MultiReader(keyReader, dataReader)

	config := &packet.Config{Time: pgp.getTimeGenerator()}

	md, err := openpgp.ReadMessage(encryptedReader, privKeyEntries, nil, config)
	if err != nil {
		return nil, err
	}

	decrypted := md.UnverifiedBody
	b, err := ioutil.ReadAll(decrypted)
	if err != nil {
		return nil, err
	}

	return b, nil
}
Add decryptMime and refactor package structure 2018-09-11 11:09:28 +02:00			`package crypto`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`import (`
			`"bytes"`
Remove unused code + handle errors 2019-05-13 12:42:29 +00:00			`"fmt"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`"io"`
			`"io/ioutil"`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`"runtime"`
			`"sync"`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Rename package to gopenpgp 2019-05-13 14:07:18 +02:00			`armorUtils "github.com/ProtonMail/gopenpgp/armor"`
			`"github.com/ProtonMail/gopenpgp/constants"`
			`"github.com/ProtonMail/gopenpgp/models"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`"golang.org/x/crypto/openpgp"`
Minor: spelling and typos 2018-09-19 11:52:14 +02:00			`"golang.org/x/crypto/openpgp/packet"`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`)`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// AttachmentProcessor keeps track of the progress of encrypting an attachment`
			`// (optimized for encrypting large files).`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`type AttachmentProcessor struct {`
			`w *io.WriteCloser`
			`pipe *io.PipeWriter`
			`done sync.WaitGroup`
			`split *models.EncryptedSplit`
			`garbageCollector int`
			`err error`
			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// Process writes attachment data to be encrypted`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`func (ap *AttachmentProcessor) Process(plainData []byte) {`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`if _, err := (*ap.w).Write(plainData); err != nil {`
			`panic(err)`
			`}`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// Finish closes the attachment and returns the encrypted data`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`func (ap AttachmentProcessor) Finish() (models.EncryptedSplit, error) {`
			`if ap.err != nil {`
			`return nil, ap.err`
			`}`
			`(*ap.w).Close()`
			`(*ap.pipe).Close()`
			`ap.done.Wait()`
			`if ap.garbageCollector > 0 {`
			`runtime.GC()`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`return ap.split, nil`
			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// encryptAttachment creates an AttachmentProcessor which can be used to encrypt`
			`// a file. It takes an estimatedSize and fileName as hints about the file.`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`func (pgp *GopenPGP) encryptAttachment(`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`estimatedSize int, fileName string, publicKey *KeyRing, garbageCollector int,`
			`) (*AttachmentProcessor, error) {`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`attachmentProc := &AttachmentProcessor{}`
Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// You could also add these one at a time if needed.`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`attachmentProc.done.Add(1)`
			`attachmentProc.garbageCollector = garbageCollector`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`hints := &openpgp.FileHints{`
			`FileName: fileName,`
			`}`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00
			`config := &packet.Config{`
			`DefaultCipher: packet.CipherAES256,`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`Time: pgp.getTimeGenerator(),`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`reader, writer := io.Pipe()`

			`go func() {`
			`defer attachmentProc.done.Done()`
			`split, splitError := SeparateKeyAndData(nil, reader, estimatedSize, garbageCollector)`
			`if attachmentProc.err != nil {`
			`attachmentProc.err = splitError`
			`}`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`split.Algo = constants.AES256`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`attachmentProc.split = split`
			`}()`

			`var ew io.WriteCloser`
			`var encryptErr error`
			`ew, encryptErr = openpgp.Encrypt(writer, publicKey.entities, nil, hints, config)`
Handle encrypt error in EncryptAttachment 2019-04-27 07:31:29 +02:00			`if encryptErr != nil {`
			`return nil, encryptErr`
			`}`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`attachmentProc.w = &ew`
			`attachmentProc.pipe = writer`

			`return attachmentProc, nil`
			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// EncryptAttachment encrypts a file. fileName`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`func (pgp *GopenPGP) EncryptAttachment(`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`plainData []byte, fileName string, publicKey *KeyRing,`
			`) (*models.EncryptedSplit, error) {`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`ap, err := pgp.encryptAttachment(len(plainData), fileName, publicKey, -1)`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`if err != nil {`
			`return nil, err`
			`}`
			`ap.Process(plainData)`
			`split, err := ap.Finish()`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return nil, err`
			`}`
more cleanup, fixes 2018-06-04 17:50:26 -07:00			`return split, nil`
Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// EncryptAttachmentLowMemory creates an AttachmentProcessor which can be used`
			`// to encrypt a file. It takes an estimatedSize and fileName as hints about the`
			`// file. It is optimized for low-memory environments and collects garbage every`
			`// megabyte.`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`func (pgp *GopenPGP) EncryptAttachmentLowMemory(`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`estimatedSize int, fileName string, publicKey *KeyRing,`
			`) (*AttachmentProcessor, error) {`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`return pgp.encryptAttachment(estimatedSize, fileName, publicKey, 1<<20)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// SplitArmor is a helper method which splits an armored message into its`
			`// session key packet and symmetrically encrypted data packet.`
Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`func SplitArmor(encrypted string) (*models.EncryptedSplit, error) {`
			`var err error`

			`encryptedRaw, err := armorUtils.Unarmor(encrypted)`
			`if err != nil {`
			`return nil, err`
			`}`

			`encryptedReader := bytes.NewReader(encryptedRaw)`

Low-memory garbage collector 2018-11-22 10:53:14 +01:00			`return SeparateKeyAndData(nil, encryptedReader, len(encrypted), -1)`
Issue #3: mobile client fallback version 2018-11-05 22:55:45 +01:00			`}`

Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`// DecryptAttachment takes a session key packet and symmetrically encrypted data`
			`// packet. privateKeys is a KeyRing that can contain multiple keys. The`
			`// passphrase is used to unlock keys in privateKeys.`
Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`func (pgp *GopenPGP) DecryptAttachment(`
go vet and lint * Naming * If this is not some OpenPGP standard I follow rule that `DES` should be upper case as it is abreviation and `Triple` should be camel-case as it is normal word hence `TripleDES` * rename `errors2` -> `errorsPGP` * long lines * https://github.com/golang/go/wiki/CodeReviewComments#line-length * I bit improved long lines based on my folding * reuse type in definition if possible i.e. `a string, b string, c string` -> `a,b,c string` * `if long_statetent(); err!=nil {` -> `long_statement;↵ if err!=nil {` * spaces around operators (e.g. `a + b` -> `a+b`) * removing empty lines on start and end of scope * comments * on all exported functions * start with function name * import: * order in alphabet * separate native, golang.org/x/ and our libs 2019-05-14 14:42:38 +00:00			`keyPacket, dataPacket []byte,`
			`kr *KeyRing, passphrase string,`
			`) ([]byte, error) {`
Android stable version 2018-11-09 02:03:19 +01:00			`privKeyEntries := kr.entities`
wrapper for mobile 2018-06-04 16:05:14 -07:00
Remove unused code + handle errors 2019-05-13 12:42:29 +00:00			`if err := kr.Unlock([]byte(passphrase)); err != nil {`
Improve documentation and naming - Rename pmmime to gomime - Rename pmKeyObject to pgpKeyObject 2019-05-15 13:40:19 +02:00			`err = fmt.Errorf("gopenpgp: cannot decrypt attachment: %v", err)`
Remove unused code + handle errors 2019-05-13 12:42:29 +00:00			`return nil, err`
			`}`
wrapper for mobile 2018-06-04 16:05:14 -07:00
			`keyReader := bytes.NewReader(keyPacket)`
			`dataReader := bytes.NewReader(dataPacket)`

			`encryptedReader := io.MultiReader(keyReader, dataReader)`

Rename PmCrypto to GopenPGP 2019-05-14 18:05:01 +02:00			`config := &packet.Config{Time: pgp.getTimeGenerator()}`
Use server time as a default everywhere 2018-06-22 16:04:20 +02:00
			`md, err := openpgp.ReadMessage(encryptedReader, privKeyEntries, nil, config)`
wrapper for mobile 2018-06-04 16:05:14 -07:00			`if err != nil {`
			`return nil, err`
			`}`

			`decrypted := md.UnverifiedBody`
			`b, err := ioutil.ReadAll(decrypted)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return b, nil`
			`}`