passforios/passKit/Crypto/GopenPGPInterface.swift

//
//  GopenPGPInterface.swift
//  passKit
//
//  Created by Danny Moesch on 08.09.19.
//  Copyright © 2019 Bob Sun. All rights reserved.
//

import Gopenpgp

struct GopenPGPInterface: PGPInterface {
    private static let errorMapping: [String: Error] = [
        "gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure": AppError.wrongPassphrase,
        "gopenpgp: error in reading message: openpgp: incorrect key": AppError.keyExpiredOrIncompatible,
    ]

    private var publicKeys: [String: CryptoKey] = [:]
    private var privateKeys: [String: CryptoKey] = [:]
    private var privateSubkeyToKeyIDMapping: [String: String] = [:] // value is the key in privateKeys map

    init(publicArmoredKey: String, privateArmoredKey: String) throws {
        let pubKeys = extractKeysFromArmored(str: publicArmoredKey)
        let prvKeys = extractKeysFromArmored(str: privateArmoredKey)

        for key in pubKeys {
            var error: NSError?
            guard let cryptoKey = CryptoNewKeyFromArmored(key, &error) else {
                guard error == nil else {
                    throw error!
                }
                throw AppError.keyImport
            }
            publicKeys[cryptoKey.getFingerprint().lowercased()] = cryptoKey
        }

        for key in prvKeys {
            var error: NSError?
            guard let cryptoKey = CryptoNewKeyFromArmored(key, &error) else {
                guard error == nil else {
                    throw error!
                }
                throw AppError.keyImport
            }

            let keyID = cryptoKey.getFingerprint().lowercased()
            privateKeys[keyID] = cryptoKey

            guard let subkeyIDsJSON = HelperPassGetHexSubkeyIDsJSON(cryptoKey) else {
                guard error == nil else {
                    throw error!
                }
                throw AppError.keyImport
            }
            do {
                let subkeyIDs = try JSONDecoder().decode([String].self, from: subkeyIDsJSON)
                for subkeyID in subkeyIDs {
                    privateSubkeyToKeyIDMapping[subkeyID] = keyID
                }
            } catch {
                throw AppError.keyImport
            }
        }
    }

    func extractKeysFromArmored(str: String) -> [String] {
        var keys: [String] = []
        var key = ""
        for line in str.splitByNewline() {
            if line.trimmed.uppercased().hasPrefix("-----BEGIN PGP") {
                key = ""
                key += line
            } else if line.trimmed.uppercased().hasPrefix("-----END PGP") {
                key += line
                keys.append(key)
            } else {
                key += line
            }
            key += "\n"
        }
        return keys
    }

    func containsPublicKey(with keyID: String) -> Bool {
        publicKeys.keys.contains { key in key.hasSuffix(keyID.lowercased()) }
    }

    func containsPrivateKey(with keyID: String) -> Bool {
        privateKeys.keys.contains { key in key.hasSuffix(keyID.lowercased()) }
    }

    func decrypt(encryptedData: Data, keyIDHint: String?, passPhraseForKey: @escaping (String) -> String) throws -> Data? {
        let message = createPGPMessage(from: encryptedData)
        guard let message else {
            throw AppError.decryption
        }

        guard let privateKey: CryptoKey = try findDecryptionKey(message: message, keyIDHint: keyIDHint) else {
            throw AppError.decryption
        }

        do {
            var isLocked: ObjCBool = false
            try privateKey.isLocked(&isLocked)
            var unlockedKey: CryptoKey!
            if isLocked.boolValue {
                let passphrase = passPhraseForKey(privateKey.getFingerprint())
                unlockedKey = try privateKey.unlock(passphrase.data(using: .utf8))
            } else {
                unlockedKey = privateKey
            }
            var error: NSError?

            guard let keyRing = CryptoNewKeyRing(unlockedKey, &error) else {
                guard error == nil else {
                    throw error!
                }
                throw AppError.decryption
            }

            return try keyRing.decrypt(message, verifyKey: nil, verifyTime: 0).data
        } catch {
            throw Self.errorMapping[error.localizedDescription, default: error]
        }
    }

    @available(*, deprecated, message: "Use encrypt(plainData:keyIDs:) instead.")
    func encrypt(plainData: Data, keyID: String?) throws -> Data {
        guard let keyID = keyID ?? publicKeys.keys.first else {
            // this is invalid, but we want the new function to throw the error for us
            return try encrypt(plainData: plainData, keyIDs: [])
        }
        return try encrypt(plainData: plainData, keyIDs: [keyID])
    }

    func encryptWithAllKeys(plainData: Data) throws -> Data {
        let keyIDs = publicKeys.keys.filter { key in privateKeys.keys.contains(key) }
        return try encrypt(plainData: plainData, keyIDs: keyIDs)
    }

    func encrypt(plainData: Data, keyIDs: [String]) throws -> Data {
        let keys: [CryptoKey] = try keyIDs.map { keyID in
            guard let key = publicKeys.first(where: { key, _ in key.hasSuffix(keyID.lowercased()) })?.value else {
                throw AppError.pgpPublicKeyNotFound(keyID: keyID)
            }
            return key
        }
        guard let firstKey = keys.first else {
            throw AppError.encryption
        }
        let otherKeys = keys.dropFirst()

        var error: NSError?
        guard let keyRing = CryptoNewKeyRing(firstKey, &error) else {
            guard error == nil else {
                throw error!
            }
            throw AppError.encryption
        }
        do {
            try otherKeys.forEach { key in
                try keyRing.add(key)
            }
        } catch {
            throw AppError.encryption
        }

        let encryptedData = try keyRing.encrypt(CryptoNewPlainMessage(plainData.mutable as Data), privateKey: nil)
        if Defaults.encryptInArmored {
            var error: NSError?
            let armor = encryptedData.getArmored(&error)
            guard error == nil else {
                throw error!
            }
            return armor.data(using: .ascii)!
        }
        return encryptedData.getBinary()!
    }

    var keyID: [String] {
        publicKeys.keys.map { $0.uppercased() }
    }

    var shortKeyID: [String] {
        publicKeys.keys.map { $0.suffix(8).uppercased() }
    }

    private func findDecryptionKey(message: CryptoPGPMessage, keyIDHint: String?) throws -> CryptoKey? {
        var keyIDCandidates: any Collection<String> = privateKeys.keys
        do {
            if let encryptionKeysJSON = message.getHexEncryptionKeyIDsJson() {
                // these are the subkeys (encryption keys), not the primaries keys (whose fingerprints we have in the privateKeys map),
                // so we need to map them back to the primary keyIDs using privateSubkeyToKeyIDMapping
                let validSubkeys = try JSONDecoder().decode([String].self, from: encryptionKeysJSON)
                let validKeyIDs = validSubkeys.compactMap { privateSubkeyToKeyIDMapping[$0] }
                if #available(iOSApplicationExtension 16.0, *) {
                    assert(validKeyIDs.isEmpty || !Set(keyIDCandidates).isDisjoint(with: validKeyIDs))
                }
                keyIDCandidates = validKeyIDs
            }
        } catch {
            // fall back to legacy approach of trying first in privateKeys (or preferring hint)
        }

        if let keyIDHint {
            keyIDCandidates = keyIDCandidates.filter { key in key.hasSuffix(keyIDHint.lowercased()) }
        }
        guard let selectedKeyID = keyIDCandidates.first else {
            throw keyIDHint != nil ? AppError.keyExpiredOrIncompatible : AppError.decryption
        }

        return privateKeys[selectedKeyID]
    }
}

public func createPGPMessage(from encryptedData: Data) -> CryptoPGPMessage? {
    // Important note:
    // Even if Defaults.encryptInArmored is true now, it could be different during the encryption.
    var error: NSError?
    let message = CryptoNewPGPMessageFromArmored(String(data: encryptedData, encoding: .ascii), &error)
    if error == nil {
        return message
    }
    return CryptoNewPGPMessage(encryptedData.mutable as Data)
}
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`//`
Name classes/structs consistently 2020-04-19 15:41:30 +02:00			`// GopenPGPInterface.swift`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`// passKit`
			`//`
			`// Created by Danny Moesch on 08.09.19.`
			`// Copyright © 2019 Bob Sun. All rights reserved.`
			`//`

Use ProtonMail's GopenPGP library This allows for a simpler setup and the usage of a recent version of Go. The library provides a build script which creates an XCFramework containing binaries for multiple target architectures. The gnu-dummy.patch is taken from mssun/gopenpgp. The forks are not needed anymore. 2021-06-20 00:33:48 +02:00			`import Gopenpgp`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00
Name classes/structs consistently 2020-04-19 15:41:30 +02:00			`struct GopenPGPInterface: PGPInterface {`
Wrap GopenPGP errors into more understandable app errors 2019-10-20 12:14:51 +02:00			`private static let errorMapping: [String: Error] = [`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`"gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure": AppError.wrongPassphrase,`
Use ProtonMail's GopenPGP library This allows for a simpler setup and the usage of a recent version of Go. The library provides a build script which creates an XCFramework containing binaries for multiple target architectures. The gnu-dummy.patch is taken from mssun/gopenpgp. The forks are not needed anymore. 2021-06-20 00:33:48 +02:00			`"gopenpgp: error in reading message: openpgp: incorrect key": AppError.keyExpiredOrIncompatible,`
Wrap GopenPGP errors into more understandable app errors 2019-10-20 12:14:51 +02:00			`]`

Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`private var publicKeys: [String: CryptoKey] = [:]`
			`private var privateKeys: [String: CryptoKey] = [:]`
decryption: GopenPGPInterface tries to identify decryption key from message metadata So the system can have multiple private keys, and the caller doesn't need to specify a specific one regardless. Ideally: If there are several matches we could also take into account which keys have already been unlocked (or passthrases saved in keychain). Right now it only grabs the first match. 2026-03-10 22:16:42 +01:00			`private var privateSubkeyToKeyIDMapping: [String: String] = [:] // value is the key in privateKeys map`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00
			`init(publicArmoredKey: String, privateArmoredKey: String) throws {`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`let pubKeys = extractKeysFromArmored(str: publicArmoredKey)`
			`let prvKeys = extractKeysFromArmored(str: privateArmoredKey)`

			`for key in pubKeys {`
			`var error: NSError?`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`guard let cryptoKey = CryptoNewKeyFromArmored(key, &error) else {`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`guard error == nil else {`
			`throw error!`
			`}`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.keyImport`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`}`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`publicKeys[cryptoKey.getFingerprint().lowercased()] = cryptoKey`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`}`

			`for key in prvKeys {`
			`var error: NSError?`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`guard let cryptoKey = CryptoNewKeyFromArmored(key, &error) else {`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`guard error == nil else {`
			`throw error!`
			`}`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.keyImport`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`}`
decryption: GopenPGPInterface tries to identify decryption key from message metadata So the system can have multiple private keys, and the caller doesn't need to specify a specific one regardless. Ideally: If there are several matches we could also take into account which keys have already been unlocked (or passthrases saved in keychain). Right now it only grabs the first match. 2026-03-10 22:16:42 +01:00
			`let keyID = cryptoKey.getFingerprint().lowercased()`
			`privateKeys[keyID] = cryptoKey`

			`guard let subkeyIDsJSON = HelperPassGetHexSubkeyIDsJSON(cryptoKey) else {`
			`guard error == nil else {`
			`throw error!`
			`}`
			`throw AppError.keyImport`
			`}`
			`do {`
			`let subkeyIDs = try JSONDecoder().decode([String].self, from: subkeyIDsJSON)`
			`for subkeyID in subkeyIDs {`
			`privateSubkeyToKeyIDMapping[subkeyID] = keyID`
			`}`
			`} catch {`
			`throw AppError.keyImport`
			`}`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`}`
			`}`

Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`func extractKeysFromArmored(str: String) -> [String] {`
Format code with SwiftFormat automatically in every build 2020-06-28 21:25:40 +02:00			`var keys: [String] = []`
Use SwiftFormat version 0.49.x and enable some new rules (#527) 2021-12-28 02:57:11 +01:00			`var key = ""`
Format code with SwiftFormat automatically in every build 2020-06-28 21:25:40 +02:00			`for line in str.splitByNewline() {`
			`if line.trimmed.uppercased().hasPrefix("-----BEGIN PGP") {`
			`key = ""`
			`key += line`
			`} else if line.trimmed.uppercased().hasPrefix("-----END PGP") {`
			`key += line`
			`keys.append(key)`
			`} else {`
			`key += line`
			`}`
Change logic of passphrass for multikeys 2020-04-13 19:15:52 -07:00			`key += "\n"`
Format code with SwiftFormat automatically in every build 2020-06-28 21:25:40 +02:00			`}`
			`return keys`
			`}`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00
Check existence of PGP keys before encrypt/decrypt 2020-04-14 20:20:16 -07:00			`func containsPublicKey(with keyID: String) -> Bool {`
Enable SwiftLint rule 'trailing_closure' and fix all violations 2020-07-05 23:15:29 +02:00			`publicKeys.keys.contains { key in key.hasSuffix(keyID.lowercased()) }`
Check existence of PGP keys before encrypt/decrypt 2020-04-14 20:20:16 -07:00			`}`

			`func containsPrivateKey(with keyID: String) -> Bool {`
Enable SwiftLint rule 'trailing_closure' and fix all violations 2020-07-05 23:15:29 +02:00			`privateKeys.keys.contains { key in key.hasSuffix(keyID.lowercased()) }`
Check existence of PGP keys before encrypt/decrypt 2020-04-14 20:20:16 -07:00			`}`

decryption: GopenPGPInterface tries to identify decryption key from message metadata So the system can have multiple private keys, and the caller doesn't need to specify a specific one regardless. Ideally: If there are several matches we could also take into account which keys have already been unlocked (or passthrases saved in keychain). Right now it only grabs the first match. 2026-03-10 22:16:42 +01:00			`func decrypt(encryptedData: Data, keyIDHint: String?, passPhraseForKey: @escaping (String) -> String) throws -> Data? {`
			`let message = createPGPMessage(from: encryptedData)`
			`guard let message else {`
			`throw AppError.decryption`
			`}`
Add ignore .gpg-id switch default ON 2021-01-07 21:58:38 -08:00
decryption: GopenPGPInterface tries to identify decryption key from message metadata So the system can have multiple private keys, and the caller doesn't need to specify a specific one regardless. Ideally: If there are several matches we could also take into account which keys have already been unlocked (or passthrases saved in keychain). Right now it only grabs the first match. 2026-03-10 22:16:42 +01:00			`guard let privateKey: CryptoKey = try findDecryptionKey(message: message, keyIDHint: keyIDHint) else {`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.decryption`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`}`

Wrap GopenPGP errors into more understandable app errors 2019-10-20 12:14:51 +02:00			`do {`
Fix decryption issue when key without passphrase set 2021-01-10 15:01:21 -08:00			`var isLocked: ObjCBool = false`
			`try privateKey.isLocked(&isLocked)`
			`var unlockedKey: CryptoKey!`
			`if isLocked.boolValue {`
decryption: always request key passphrase based on key ID 2026-03-10 17:14:11 +01:00			`let passphrase = passPhraseForKey(privateKey.getFingerprint())`
Fix decryption issue when key without passphrase set 2021-01-10 15:01:21 -08:00			`unlockedKey = try privateKey.unlock(passphrase.data(using: .utf8))`
			`} else {`
			`unlockedKey = privateKey`
			`}`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`var error: NSError?`

			`guard let keyRing = CryptoNewKeyRing(unlockedKey, &error) else {`
			`guard error == nil else {`
			`throw error!`
			`}`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.decryption`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`}`

			`return try keyRing.decrypt(message, verifyKey: nil, verifyTime: 0).data`
Wrap GopenPGP errors into more understandable app errors 2019-10-20 12:14:51 +02:00			`} catch {`
			`throw Self.errorMapping[error.localizedDescription, default: error]`
			`}`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`}`

PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`@available(*, deprecated, message: "Use encrypt(plainData:keyIDs:) instead.")`
Add ignore .gpg-id switch default ON 2021-01-07 21:58:38 -08:00			`func encrypt(plainData: Data, keyID: String?) throws -> Data {`
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`guard let keyID = keyID ?? publicKeys.keys.first else {`
			`// this is invalid, but we want the new function to throw the error for us`
			`return try encrypt(plainData: plainData, keyIDs: [])`
			`}`
			`return try encrypt(plainData: plainData, keyIDs: [keyID])`
			`}`
Add ignore .gpg-id switch default ON 2021-01-07 21:58:38 -08:00
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`func encryptWithAllKeys(plainData: Data) throws -> Data {`
			`let keyIDs = publicKeys.keys.filter { key in privateKeys.keys.contains(key) }`
			`return try encrypt(plainData: plainData, keyIDs: keyIDs)`
			`}`

			`func encrypt(plainData: Data, keyIDs: [String]) throws -> Data {`
PGPAgent can encrypt with multiple keys 2026-03-11 00:48:21 +01:00			`let keys: [CryptoKey] = try keyIDs.map { keyID in`
			`guard let key = publicKeys.first(where: { key, _ in key.hasSuffix(keyID.lowercased()) })?.value else {`
			`throw AppError.pgpPublicKeyNotFound(keyID: keyID)`
			`}`
			`return key`
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`}`
			`guard let firstKey = keys.first else {`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.encryption`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00			`}`
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`let otherKeys = keys.dropFirst()`
Partially implement multikeys support (decryption) 2020-04-13 01:30:00 -07:00
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`var error: NSError?`
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`guard let keyRing = CryptoNewKeyRing(firstKey, &error) else {`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`guard error == nil else {`
			`throw error!`
			`}`
Enable SwiftLint rule 'identifier_name' and handle all violations 2020-09-20 15:07:18 +02:00			`throw AppError.encryption`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`}`
PGPInterface can encrypt with multiple keys, PGPAgent can encrypt with all keys 2026-03-11 00:21:30 +01:00			`do {`
			`try otherKeys.forEach { key in`
			`try keyRing.add(key)`
			`}`
			`} catch {`
			`throw AppError.encryption`
			`}`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00
			`let encryptedData = try keyRing.encrypt(CryptoNewPlainMessage(plainData.mutable as Data), privateKey: nil)`
Update SwiftyUserDefaults to current version 5.0.0 2020-01-02 00:48:00 +01:00			`if Defaults.encryptInArmored {`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`var error: NSError?`
			`let armor = encryptedData.getArmored(&error)`
			`guard error == nil else {`
			`throw error!`
			`}`
			`return armor.data(using: .ascii)!`
			`}`
			`return encryptedData.getBinary()!`
			`}`

Change logic of passphrass for multikeys 2020-04-13 19:15:52 -07:00			`var keyID: [String] {`
Format code with SwiftFormat automatically in every build 2020-06-28 21:25:40 +02:00			`publicKeys.keys.map { $0.uppercased() }`
Update to gopengpg v2.0.0 2020-04-11 23:23:38 -07:00			`}`

Change logic of passphrass for multikeys 2020-04-13 19:15:52 -07:00			`var shortKeyID: [String] {`
Format code with SwiftFormat automatically in every build 2020-06-28 21:25:40 +02:00			`publicKeys.keys.map { $0.suffix(8).uppercased() }`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`}`
decryption: GopenPGPInterface tries to identify decryption key from message metadata So the system can have multiple private keys, and the caller doesn't need to specify a specific one regardless. Ideally: If there are several matches we could also take into account which keys have already been unlocked (or passthrases saved in keychain). Right now it only grabs the first match. 2026-03-10 22:16:42 +01:00
			`private func findDecryptionKey(message: CryptoPGPMessage, keyIDHint: String?) throws -> CryptoKey? {`
			`var keyIDCandidates: any Collection<String> = privateKeys.keys`
			`do {`
			`if let encryptionKeysJSON = message.getHexEncryptionKeyIDsJson() {`
			`// these are the subkeys (encryption keys), not the primaries keys (whose fingerprints we have in the privateKeys map),`
			`// so we need to map them back to the primary keyIDs using privateSubkeyToKeyIDMapping`
			`let validSubkeys = try JSONDecoder().decode([String].self, from: encryptionKeysJSON)`
			`let validKeyIDs = validSubkeys.compactMap { privateSubkeyToKeyIDMapping[$0] }`
			`if #available(iOSApplicationExtension 16.0, *) {`
			`assert(validKeyIDs.isEmpty \|\| !Set(keyIDCandidates).isDisjoint(with: validKeyIDs))`
			`}`
			`keyIDCandidates = validKeyIDs`
			`}`
			`} catch {`
			`// fall back to legacy approach of trying first in privateKeys (or preferring hint)`
			`}`

			`if let keyIDHint {`
			`keyIDCandidates = keyIDCandidates.filter { key in key.hasSuffix(keyIDHint.lowercased()) }`
			`}`
			`guard let selectedKeyID = keyIDCandidates.first else {`
			`throw keyIDHint != nil ? AppError.keyExpiredOrIncompatible : AppError.decryption`
			`}`

			`return privateKeys[selectedKeyID]`
			`}`
Use createPGPMessage instead of CryptoNewPGPMessage to support ASCII-armored password with YubiKey (#658) 2024-11-30 11:29:27 -08:00			`}`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00
Use createPGPMessage instead of CryptoNewPGPMessage to support ASCII-armored password with YubiKey (#658) 2024-11-30 11:29:27 -08:00			`public func createPGPMessage(from encryptedData: Data) -> CryptoPGPMessage? {`
			`// Important note:`
			`// Even if Defaults.encryptInArmored is true now, it could be different during the encryption.`
			`var error: NSError?`
			`let message = CryptoNewPGPMessageFromArmored(String(data: encryptedData, encoding: .ascii), &error)`
			`if error == nil {`
			`return message`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`}`
Use createPGPMessage instead of CryptoNewPGPMessage to support ASCII-armored password with YubiKey (#658) 2024-11-30 11:29:27 -08:00			`return CryptoNewPGPMessage(encryptedData.mutable as Data)`
Separate encryption/decryption logic for different frameworks used 2019-09-08 23:00:46 +02:00			`}`