mirror of
https://github.com/openpgpjs/openpgpjs.git
synced 2025-03-30 15:08:32 +00:00
b672f1936a
Remove var, for let or const if possible, clean some syntax, enforce one var per declaration and semicolons
240 lines
8.4 KiB
JavaScript
240 lines
8.4 KiB
JavaScript
// GPG4Browsers - An OpenPGP implementation in javascript
|
|
// Copyright (C) 2011 Recurity Labs GmbH
|
|
//
|
|
// This library is free software; you can redistribute it and/or
|
|
// modify it under the terms of the GNU Lesser General Public
|
|
// License as published by the Free Software Foundation; either
|
|
// version 3.0 of the License, or (at your option) any later version.
|
|
//
|
|
// This library is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
// Lesser General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU Lesser General Public
|
|
// License along with this library; if not, write to the Free Software
|
|
// Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
|
|
|
|
/**
|
|
* @requires config
|
|
* @requires encoding/armor
|
|
* @requires enums
|
|
* @requires packet
|
|
* @requires signature
|
|
* @module cleartext
|
|
*/
|
|
|
|
import config from './config';
|
|
import armor from './encoding/armor';
|
|
import enums from './enums';
|
|
import packet from './packet';
|
|
import { Signature } from './signature';
|
|
|
|
/**
|
|
* @class
|
|
* @classdesc Class that represents an OpenPGP cleartext signed message.
|
|
* See {@link https://tools.ietf.org/html/rfc4880#section-7}
|
|
* @param {String} text The cleartext of the signed message
|
|
* @param {module:signature} signature The detached signature or an empty signature if message not yet signed
|
|
*/
|
|
|
|
export function CleartextMessage(text, signature) {
|
|
if (!(this instanceof CleartextMessage)) {
|
|
return new CleartextMessage(text, signature);
|
|
}
|
|
// normalize EOL to canonical form <CR><LF>
|
|
this.text = text.replace(/\r/g, '').replace(/[\t ]+\n/g, "\n").replace(/\n/g, "\r\n");
|
|
if (signature && !(signature instanceof Signature)) {
|
|
throw new Error('Invalid signature input');
|
|
}
|
|
this.signature = signature || new Signature(new packet.List());
|
|
}
|
|
|
|
/**
|
|
* Returns the key IDs of the keys that signed the cleartext message
|
|
* @return {Array<module:type/keyid>} array of keyid objects
|
|
*/
|
|
CleartextMessage.prototype.getSigningKeyIds = function() {
|
|
const keyIds = [];
|
|
const signatureList = this.signature.packets;
|
|
signatureList.forEach(function(packet) {
|
|
keyIds.push(packet.issuerKeyId);
|
|
});
|
|
return keyIds;
|
|
};
|
|
|
|
/**
|
|
* Sign the cleartext message
|
|
* @param {Array<module:key~Key>} privateKeys private keys with decrypted secret key data for signing
|
|
* @return {module:message~CleartextMessage} new cleartext message with signed content
|
|
*/
|
|
CleartextMessage.prototype.sign = async function(privateKeys) {
|
|
return new CleartextMessage(this.text, await this.signDetached(privateKeys));
|
|
};
|
|
|
|
/**
|
|
* Sign the cleartext message
|
|
* @param {Array<module:key~Key>} privateKeys private keys with decrypted secret key data for signing
|
|
* @return {module:signature~Signature} new detached signature of message content
|
|
*/
|
|
CleartextMessage.prototype.signDetached = async function(privateKeys) {
|
|
const packetlist = new packet.List();
|
|
const literalDataPacket = new packet.Literal();
|
|
literalDataPacket.setText(this.text);
|
|
await Promise.all(privateKeys.map(async function(privateKey) {
|
|
if (privateKey.isPublic()) {
|
|
throw new Error('Need private key for signing');
|
|
}
|
|
await privateKey.verifyPrimaryUser();
|
|
const signingKeyPacket = privateKey.getSigningKeyPacket();
|
|
if (!signingKeyPacket) {
|
|
throw new Error('Could not find valid key packet for signing in key ' +
|
|
privateKey.primaryKey.getKeyId().toHex());
|
|
}
|
|
const signaturePacket = new packet.Signature();
|
|
signaturePacket.signatureType = enums.signature.text;
|
|
signaturePacket.hashAlgorithm = config.prefer_hash_algorithm;
|
|
signaturePacket.publicKeyAlgorithm = signingKeyPacket.algorithm;
|
|
if (!signingKeyPacket.isDecrypted) {
|
|
throw new Error('Private key is not decrypted.');
|
|
}
|
|
await signaturePacket.sign(signingKeyPacket, literalDataPacket);
|
|
return signaturePacket;
|
|
})).then(signatureList => {
|
|
signatureList.forEach(signaturePacket => packetlist.push(signaturePacket));
|
|
});
|
|
|
|
return new Signature(packetlist);
|
|
};
|
|
|
|
/**
|
|
* Verify signatures of cleartext signed message
|
|
* @param {Array<module:key~Key>} keys array of keys to verify signatures
|
|
* @return {Array<{keyid: module:type/keyid, valid: Boolean}>} list of signer's keyid and validity of signature
|
|
*/
|
|
CleartextMessage.prototype.verify = function(keys) {
|
|
return this.verifyDetached(this.signature, keys);
|
|
};
|
|
|
|
/**
|
|
* Verify signatures of cleartext signed message
|
|
* @param {Array<module:key~Key>} keys array of keys to verify signatures
|
|
* @return {Array<{keyid: module:type/keyid, valid: Boolean}>} list of signer's keyid and validity of signature
|
|
*/
|
|
CleartextMessage.prototype.verifyDetached = function(signature, keys) {
|
|
const signatureList = signature.packets;
|
|
const literalDataPacket = new packet.Literal();
|
|
// we assume that cleartext signature is generated based on UTF8 cleartext
|
|
literalDataPacket.setText(this.text);
|
|
return Promise.all(signatureList.map(async function(signature) {
|
|
let keyPacket = null;
|
|
await Promise.all(keys.map(async function(key) {
|
|
await key.verifyPrimaryUser();
|
|
// Look for the unique key packet that matches issuerKeyId of signature
|
|
const result = key.getSigningKeyPacket(signature.issuerKeyId, config.verify_expired_keys);
|
|
if (result) {
|
|
keyPacket = result;
|
|
}
|
|
}));
|
|
|
|
const verifiedSig = {
|
|
keyid: signature.issuerKeyId,
|
|
valid: keyPacket ? await signature.verify(keyPacket, literalDataPacket) : null
|
|
};
|
|
|
|
const packetlist = new packet.List();
|
|
packetlist.push(signature);
|
|
verifiedSig.signature = new Signature(packetlist);
|
|
|
|
return verifiedSig;
|
|
}));
|
|
};
|
|
|
|
/**
|
|
* Get cleartext
|
|
* @return {String} cleartext of message
|
|
*/
|
|
CleartextMessage.prototype.getText = function() {
|
|
// normalize end of line to \n
|
|
return this.text.replace(/\r\n/g, "\n");
|
|
};
|
|
|
|
/**
|
|
* Returns ASCII armored text of cleartext signed message
|
|
* @return {String} ASCII armor
|
|
*/
|
|
CleartextMessage.prototype.armor = function() {
|
|
const body = {
|
|
hash: enums.read(enums.hash, config.prefer_hash_algorithm).toUpperCase(),
|
|
text: this.text,
|
|
data: this.signature.packets.write()
|
|
};
|
|
return armor.encode(enums.armor.signed, body);
|
|
};
|
|
|
|
|
|
/**
|
|
* reads an OpenPGP cleartext signed message and returns a CleartextMessage object
|
|
* @param {String} armoredText text to be parsed
|
|
* @return {module:cleartext~CleartextMessage} new cleartext message object
|
|
* @static
|
|
*/
|
|
export function readArmored(armoredText) {
|
|
const input = armor.decode(armoredText);
|
|
if (input.type !== enums.armor.signed) {
|
|
throw new Error('No cleartext signed message.');
|
|
}
|
|
const packetlist = new packet.List();
|
|
packetlist.read(input.data);
|
|
verifyHeaders(input.headers, packetlist);
|
|
const signature = new Signature(packetlist);
|
|
const newMessage = new CleartextMessage(input.text, signature);
|
|
return newMessage;
|
|
}
|
|
|
|
/**
|
|
* Compare hash algorithm specified in the armor header with signatures
|
|
* @private
|
|
* @param {Array<String>} headers Armor headers
|
|
* @param {module:packet/packetlist} packetlist The packetlist with signature packets
|
|
*/
|
|
function verifyHeaders(headers, packetlist) {
|
|
const checkHashAlgos = function(hashAlgos) {
|
|
const check = packet => algo => packet.hashAlgorithm === algo;
|
|
|
|
for (let i = 0; i < packetlist.length; i++) {
|
|
if (packetlist[i].tag === enums.packet.signature && !hashAlgos.some(check(packetlist[i]))) {
|
|
return false;
|
|
}
|
|
}
|
|
return true;
|
|
};
|
|
|
|
let oneHeader = null;
|
|
let hashAlgos = [];
|
|
headers.forEach(function(header) {
|
|
oneHeader = header.match(/Hash: (.+)/); // get header value
|
|
if (oneHeader) {
|
|
oneHeader = oneHeader[1].replace(/\s/g, ''); // remove whitespace
|
|
oneHeader = oneHeader.split(',');
|
|
oneHeader = oneHeader.map(function(hash) {
|
|
hash = hash.toLowerCase();
|
|
try {
|
|
return enums.write(enums.hash, hash);
|
|
} catch (e) {
|
|
throw new Error('Unknown hash algorithm in armor header: ' + hash);
|
|
}
|
|
});
|
|
hashAlgos = hashAlgos.concat(oneHeader);
|
|
} else {
|
|
throw new Error('Only "Hash" header allowed in cleartext signed message');
|
|
}
|
|
});
|
|
|
|
if (!hashAlgos.length && !checkHashAlgos([enums.hash.md5])) {
|
|
throw new Error('If no "Hash" header in cleartext signed message, then only MD5 signatures allowed');
|
|
} else if (!checkHashAlgos(hashAlgos)) {
|
|
throw new Error('Hash algorithm mismatch in armor header and signature');
|
|
}
|
|
}
|