135 lines
4.7 KiB
Swift
135 lines
4.7 KiB
Swift
//
|
|
// PGPAgent.swift
|
|
// passKit
|
|
//
|
|
// Created by Yishi Lin on 2019/7/17.
|
|
// Copyright © 2019 Bob Sun. All rights reserved.
|
|
//
|
|
|
|
public class PGPAgent {
|
|
public static let shared = PGPAgent()
|
|
|
|
private let keyStore: KeyStore
|
|
private var pgpInterface: PGPInterface?
|
|
private var latestDecryptStatus = true
|
|
|
|
public init(keyStore: KeyStore = AppKeychain.shared) {
|
|
self.keyStore = keyStore
|
|
}
|
|
|
|
init(keyStore: KeyStore, pgpInterface: PGPInterface) {
|
|
self.keyStore = keyStore
|
|
self.pgpInterface = pgpInterface
|
|
}
|
|
|
|
public func initKeys() throws {
|
|
guard let publicKey: String = keyStore.get(for: PGPKey.PUBLIC.getKeychainKey()),
|
|
let privateKey: String = keyStore.get(for: PGPKey.PRIVATE.getKeychainKey()) else {
|
|
pgpInterface = nil
|
|
throw AppError.keyImport
|
|
}
|
|
do {
|
|
pgpInterface = try GopenPGPInterface(publicArmoredKey: publicKey, privateArmoredKey: privateKey)
|
|
} catch {
|
|
pgpInterface = try ObjectivePGPInterface(publicArmoredKey: publicKey, privateArmoredKey: privateKey)
|
|
}
|
|
}
|
|
|
|
public func uninitKeys() {
|
|
pgpInterface = nil
|
|
}
|
|
|
|
public func isInitialized() -> Bool {
|
|
pgpInterface != nil
|
|
}
|
|
|
|
public func getKeyIDs(type: PGPKey) throws -> [String] {
|
|
try checkAndInit()
|
|
return pgpInterface?.getKeyIDs(type: type).sorted() ?? []
|
|
}
|
|
|
|
public func getShortKeyIDs(type: PGPKey) throws -> [String] {
|
|
try checkAndInit()
|
|
return pgpInterface?.getShortKeyIDs(type: type).sorted() ?? []
|
|
}
|
|
|
|
public func decrypt(encryptedData: Data, keyID: String, requestPGPKeyPassphrase: @escaping (String) -> String) throws -> Data? {
|
|
// Init keys.
|
|
try checkAndInit()
|
|
guard let pgpInterface else {
|
|
throw AppError.decryption
|
|
}
|
|
|
|
if !pgpInterface.containsPrivateKey(with: keyID) {
|
|
throw AppError.pgpPrivateKeyNotFound(keyID: keyID)
|
|
}
|
|
|
|
// Remember the previous status and set the current status
|
|
let previousDecryptStatus = latestDecryptStatus
|
|
latestDecryptStatus = false
|
|
|
|
// Get the PGP key passphrase.
|
|
let providePassPhraseForKey = { (selectedKeyID: String) -> String in
|
|
if previousDecryptStatus == false {
|
|
return requestPGPKeyPassphrase(selectedKeyID)
|
|
}
|
|
return self.keyStore.get(for: AppKeychain.getPGPKeyPassphraseKey(keyID: selectedKeyID)) ?? requestPGPKeyPassphrase(selectedKeyID)
|
|
}
|
|
// Decrypt.
|
|
guard let result = try pgpInterface.decrypt(encryptedData: encryptedData, keyIDHint: keyID, passPhraseForKey: providePassPhraseForKey) else {
|
|
return nil
|
|
}
|
|
// The decryption step has succeed.
|
|
latestDecryptStatus = true
|
|
return result
|
|
}
|
|
|
|
public func encrypt(plainData: Data, keyIDs: [String]) throws -> Data {
|
|
try checkAndInit()
|
|
guard let pgpInterface else {
|
|
throw AppError.encryption
|
|
}
|
|
return try pgpInterface.encrypt(plainData: plainData, keyIDs: keyIDs)
|
|
}
|
|
|
|
public func encryptWithAllKeys(plainData: Data) throws -> Data {
|
|
try checkAndInit()
|
|
guard let pgpInterface else {
|
|
throw AppError.encryption
|
|
}
|
|
return try pgpInterface.encryptWithAllKeys(plainData: plainData)
|
|
}
|
|
|
|
public func decrypt(encryptedData: Data, requestPGPKeyPassphrase: @escaping (String) -> String) throws -> Data? {
|
|
// Remember the previous status and set the current status
|
|
let previousDecryptStatus = latestDecryptStatus
|
|
latestDecryptStatus = false
|
|
// Init keys.
|
|
try checkAndInit()
|
|
// Get the PGP key passphrase.
|
|
let providePassPhraseForKey = { (selectedKeyID: String) -> String in
|
|
if previousDecryptStatus == false {
|
|
return requestPGPKeyPassphrase(selectedKeyID)
|
|
}
|
|
return self.keyStore.get(for: AppKeychain.getPGPKeyPassphraseKey(keyID: selectedKeyID)) ?? requestPGPKeyPassphrase(selectedKeyID)
|
|
}
|
|
// Decrypt.
|
|
guard let result = try pgpInterface!.decrypt(encryptedData: encryptedData, keyIDHint: nil, passPhraseForKey: providePassPhraseForKey) else {
|
|
return nil
|
|
}
|
|
// The decryption step has succeed.
|
|
latestDecryptStatus = true
|
|
return result
|
|
}
|
|
|
|
public var isPrepared: Bool {
|
|
keyStore.contains(key: PGPKey.PUBLIC.getKeychainKey())
|
|
&& keyStore.contains(key: PGPKey.PRIVATE.getKeychainKey())
|
|
}
|
|
|
|
private func checkAndInit() throws {
|
|
if pgpInterface == nil || !keyStore.contains(key: Globals.pgpKeyPassphrase) {
|
|
try initKeys()
|
|
}
|
|
}
|
|
}
|