2023-03-23 11:44:15 +00:00
|
|
|
package pairing
|
|
|
|
|
|
|
|
import (
|
|
|
|
"crypto/rand"
|
|
|
|
|
|
|
|
"github.com/status-im/status-go/protocol/common"
|
|
|
|
)
|
|
|
|
|
|
|
|
// EncryptionPayload represents the plain text and encrypted text of payload data
|
|
|
|
type EncryptionPayload struct {
|
|
|
|
plain []byte
|
|
|
|
encrypted []byte
|
|
|
|
locked bool
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ep *EncryptionPayload) lock() {
|
|
|
|
ep.locked = true
|
|
|
|
}
|
|
|
|
|
|
|
|
// PayloadEncryptor is responsible for encrypting and decrypting payload data
|
|
|
|
type PayloadEncryptor struct {
|
|
|
|
aesKey []byte
|
|
|
|
payload *EncryptionPayload
|
|
|
|
}
|
|
|
|
|
|
|
|
func NewPayloadEncryptor(aesKey []byte) *PayloadEncryptor {
|
|
|
|
return &PayloadEncryptor{
|
|
|
|
aesKey,
|
|
|
|
new(EncryptionPayload),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Renew regenerates the whole PayloadEncryptor and returns the new instance, only the aesKey is preserved
|
|
|
|
func (pem *PayloadEncryptor) Renew() *PayloadEncryptor {
|
|
|
|
return &PayloadEncryptor{
|
|
|
|
aesKey: pem.aesKey,
|
|
|
|
payload: new(EncryptionPayload),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// encryptPlain encrypts any given plain text using the internal AES key and returns the encrypted value
|
|
|
|
// This function is different to Encrypt as the internal EncryptionPayload.encrypted value is not set
|
|
|
|
func (pem *PayloadEncryptor) encryptPlain(plaintext []byte) ([]byte, error) {
|
|
|
|
return common.Encrypt(plaintext, pem.aesKey, rand.Reader)
|
|
|
|
}
|
|
|
|
|
|
|
|
// decryptPlain decrypts any given plain text using the internal AES key and returns the encrypted value
|
|
|
|
// This function is different to Decrypt as the internal EncryptionPayload.plain value is not set
|
|
|
|
func (pem *PayloadEncryptor) decryptPlain(plaintext []byte) ([]byte, error) {
|
|
|
|
return common.Decrypt(plaintext, pem.aesKey)
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pem *PayloadEncryptor) encrypt(data []byte) error {
|
|
|
|
ep, err := common.Encrypt(data, pem.aesKey, rand.Reader)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
pem.payload.plain = data
|
|
|
|
pem.payload.encrypted = ep
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pem *PayloadEncryptor) decrypt(data []byte) error {
|
|
|
|
pd, err := common.Decrypt(data, pem.aesKey)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
pem.payload.encrypted = data
|
|
|
|
pem.payload.plain = pd
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pem *PayloadEncryptor) getEncrypted() []byte {
|
|
|
|
if pem.payload.locked {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
return pem.payload.encrypted
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pem *PayloadEncryptor) getDecrypted() []byte {
|
|
|
|
if pem.payload.locked {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
return pem.payload.plain
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pem *PayloadEncryptor) lockPayload() {
|
|
|
|
pem.payload.lock()
|
|
|
|
}
|
2023-03-21 16:07:41 +00:00
|
|
|
|
2023-04-03 00:08:29 +01:00
|
|
|
// PayloadLockPayload Embeds a *PayloadEncryptor to give all embedding structs EncryptionPayload Locking
|
2023-03-21 16:07:41 +00:00
|
|
|
type PayloadLockPayload struct {
|
|
|
|
*PayloadEncryptor
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pl *PayloadLockPayload) LockPayload() {
|
|
|
|
pl.lockPayload()
|
|
|
|
}
|
|
|
|
|
2023-04-03 00:08:29 +01:00
|
|
|
// PayloadToSend Embeds a *PayloadEncryptor to give all embedding structs EncryptionPayload ToSend() functionality
|
|
|
|
// Useful to securely implement the PayloadMounter interface
|
2023-03-21 16:07:41 +00:00
|
|
|
type PayloadToSend struct {
|
|
|
|
*PayloadEncryptor
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pts *PayloadToSend) ToSend() []byte {
|
|
|
|
return pts.getEncrypted()
|
|
|
|
}
|
|
|
|
|
2023-04-03 00:08:29 +01:00
|
|
|
// PayloadReceived Embeds a *PayloadEncryptor to give all embedding structs EncryptionPayload Received() functionality
|
|
|
|
// Useful to securely implement the PayloadReceiver interface
|
2023-03-21 16:07:41 +00:00
|
|
|
type PayloadReceived struct {
|
|
|
|
*PayloadEncryptor
|
|
|
|
}
|
|
|
|
|
|
|
|
func (pr *PayloadReceived) Received() []byte {
|
|
|
|
return pr.getDecrypted()
|
|
|
|
}
|