54f45d0471
* Change keyring unlock functionalities * Add keyring#Lock, keyring#CheckIntegrity, tests * Update helpers, fix bugs * Update go.mod with ProtonMail/crypto commit * Change key management system * Clear keys from memory + tests * Create SessionKey with direct encryption for datapackets. Move symmetrickey to password. * Fix upstream dependencies * Update module to V2, documentation * Add linter * Add v2 folder to .gitignore * Minor changes to KeyID getters * Remove old changelog * Improve docs, remove compilation script
35 lines
1.1 KiB
Go
35 lines
1.1 KiB
Go
// Package subtle contains subtly insecure methods not recommended for casual
|
|
// use.
|
|
package subtle
|
|
|
|
import (
|
|
"crypto/aes"
|
|
"crypto/cipher"
|
|
|
|
"golang.org/x/crypto/scrypt"
|
|
)
|
|
|
|
// EncryptWithoutIntegrity encrypts data with AES-CTR. Note: this encryption
|
|
// mode is not secure when stored/sent on an untrusted medium.
|
|
func EncryptWithoutIntegrity(key, input, iv []byte) (output []byte, err error) {
|
|
var block cipher.Block
|
|
if block, err = aes.NewCipher(key); err != nil {
|
|
return
|
|
}
|
|
output = make([]byte, len(input))
|
|
stream := cipher.NewCTR(block, iv)
|
|
stream.XORKeyStream(output, input)
|
|
return
|
|
}
|
|
|
|
// DecryptWithoutIntegrity decrypts data encrypted with AES-CTR.
|
|
func DecryptWithoutIntegrity(key, input, iv []byte) ([]byte, error) {
|
|
// AES-CTR decryption is identical to encryption.
|
|
return EncryptWithoutIntegrity(key, input, iv)
|
|
}
|
|
|
|
// DeriveKey derives a key from a password using scrypt. n should be set to the
|
|
// highest power of 2 you can derive within 100 milliseconds.
|
|
func DeriveKey(password string, salt []byte, n int) ([]byte, error) {
|
|
return scrypt.Key([]byte(password), salt, n, 8, 1, 32)
|
|
}
|