2022-01-30 09:35:53 +08:00
|
|
|
import ko from 'ko';
|
|
|
|
|
2022-02-08 20:48:11 +08:00
|
|
|
import { SettingsCapa } from 'Common/Globals';
|
2022-01-30 09:35:53 +08:00
|
|
|
|
|
|
|
//import { EmailModel } from 'Model/Email';
|
|
|
|
//import { OpenPgpKeyModel } from 'Model/OpenPgpKey';
|
|
|
|
|
|
|
|
import Remote from 'Remote/User/Fetch';
|
|
|
|
|
|
|
|
import { showScreenPopup } from 'Knoin/Knoin';
|
|
|
|
import { OpenPgpKeyPopupView } from 'View/Popup/OpenPgpKey';
|
2022-02-08 00:30:41 +08:00
|
|
|
import { AskPopupView } from 'View/Popup/Ask';
|
2022-01-30 09:35:53 +08:00
|
|
|
|
|
|
|
const
|
2023-02-02 19:39:21 +08:00
|
|
|
passphrases = new Map(),
|
|
|
|
askPassphrase = async (privateKey, btnTxt = 'LABEL_SIGN') => {
|
|
|
|
const key = privateKey.id,
|
|
|
|
pass = passphrases.has(key)
|
|
|
|
? {password:passphrases.get(key), remember:false}
|
|
|
|
: await AskPopupView.password('GnuPG key<br>' + key + ' ' + privateKey.emails[0], 'OPENPGP/'+btnTxt);
|
|
|
|
pass && pass.remember && passphrases.set(key, pass.password);
|
|
|
|
return pass.password;
|
|
|
|
},
|
2022-02-08 00:30:41 +08:00
|
|
|
|
2022-11-02 02:14:08 +08:00
|
|
|
findGnuPGKey = (keys, query/*, sign*/) =>
|
2022-01-30 09:35:53 +08:00
|
|
|
keys.find(key =>
|
2022-11-02 02:14:08 +08:00
|
|
|
// key[sign ? 'can_sign' : 'can_decrypt']
|
|
|
|
(key.can_sign || key.can_decrypt)
|
2022-01-30 09:35:53 +08:00
|
|
|
&& (key.emails.includes(query) || key.subkeys.find(key => query == key.keyid || query == key.fingerprint))
|
|
|
|
);
|
|
|
|
|
|
|
|
export const GnuPGUserStore = new class {
|
|
|
|
constructor() {
|
|
|
|
/**
|
|
|
|
* PECL gnupg / PEAR Crypt_GPG
|
|
|
|
* [ {email, can_encrypt, can_sign}, ... ]
|
|
|
|
*/
|
|
|
|
this.keyring;
|
|
|
|
this.publicKeys = ko.observableArray();
|
|
|
|
this.privateKeys = ko.observableArray();
|
|
|
|
}
|
|
|
|
|
2022-02-08 20:48:11 +08:00
|
|
|
loadKeyrings() {
|
2022-01-30 09:35:53 +08:00
|
|
|
this.keyring = null;
|
|
|
|
this.publicKeys([]);
|
|
|
|
this.privateKeys([]);
|
|
|
|
Remote.request('GnupgGetKeys',
|
|
|
|
(iError, oData) => {
|
2022-09-02 17:52:07 +08:00
|
|
|
if (oData?.Result) {
|
2022-01-30 09:35:53 +08:00
|
|
|
this.keyring = oData.Result;
|
|
|
|
const initKey = (key, isPrivate) => {
|
|
|
|
const aEmails = [];
|
|
|
|
key.id = key.subkeys[0].keyid;
|
|
|
|
key.fingerprint = key.subkeys[0].fingerprint;
|
|
|
|
key.uids.forEach(uid => uid.email && aEmails.push(uid.email));
|
|
|
|
key.emails = aEmails;
|
|
|
|
key.askDelete = ko.observable(false);
|
|
|
|
key.openForDeletion = ko.observable(null).askDeleteHelper();
|
|
|
|
key.remove = () => {
|
|
|
|
if (key.askDelete()) {
|
|
|
|
Remote.request('GnupgDeleteKey',
|
|
|
|
(iError, oData) => {
|
2022-04-16 08:02:38 +08:00
|
|
|
if (oData) {
|
|
|
|
if (iError) {
|
|
|
|
alert(oData.ErrorMessage);
|
|
|
|
} else if (oData.Result) {
|
2022-10-10 19:52:56 +08:00
|
|
|
isPrivate
|
|
|
|
? this.privateKeys.remove(key)
|
|
|
|
: this.publicKeys.remove(key);
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}, {
|
2023-01-25 01:58:25 +08:00
|
|
|
keyId: key.id,
|
2022-01-30 09:35:53 +08:00
|
|
|
isPrivate: isPrivate
|
|
|
|
}
|
|
|
|
);
|
|
|
|
}
|
|
|
|
};
|
|
|
|
key.view = () => {
|
2022-02-08 18:34:04 +08:00
|
|
|
const fetch = pass => Remote.request('GnupgExportKey',
|
2022-01-30 09:35:53 +08:00
|
|
|
(iError, oData) => {
|
2022-09-02 17:52:07 +08:00
|
|
|
if (oData?.Result) {
|
2022-01-30 09:35:53 +08:00
|
|
|
key.armor = oData.Result;
|
|
|
|
showScreenPopup(OpenPgpKeyPopupView, [key]);
|
2023-02-02 21:50:46 +08:00
|
|
|
} else {
|
|
|
|
passphrases.delete(key.id);
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
}, {
|
2023-01-25 01:58:25 +08:00
|
|
|
keyId: key.id,
|
2022-01-30 09:35:53 +08:00
|
|
|
isPrivate: isPrivate,
|
2023-01-26 17:41:55 +08:00
|
|
|
passphrase: pass
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
);
|
2022-02-08 18:34:04 +08:00
|
|
|
if (isPrivate) {
|
|
|
|
askPassphrase(key, 'POPUP_VIEW_TITLE').then(passphrase => {
|
|
|
|
(null !== passphrase) && fetch(passphrase);
|
|
|
|
});
|
|
|
|
} else {
|
|
|
|
fetch('');
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
};
|
|
|
|
return key;
|
|
|
|
};
|
|
|
|
this.publicKeys(oData.Result.public.map(key => initKey(key, 0)));
|
|
|
|
this.privateKeys(oData.Result.private.map(key => initKey(key, 1)));
|
|
|
|
console.log('gnupg ready');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @returns {boolean}
|
|
|
|
*/
|
|
|
|
isSupported() {
|
2022-03-06 05:25:32 +08:00
|
|
|
return SettingsCapa('GnuPG');
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
importKey(key, callback) {
|
|
|
|
Remote.request('GnupgImportKey',
|
|
|
|
(iError, oData) => {
|
2022-09-02 17:52:07 +08:00
|
|
|
if (oData?.Result/* && (oData.Result.imported || oData.Result.secretimported)*/) {
|
2022-04-16 08:02:38 +08:00
|
|
|
this.loadKeyrings();
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
2022-09-02 17:52:07 +08:00
|
|
|
callback?.(iError, oData);
|
2022-01-30 09:35:53 +08:00
|
|
|
}, {
|
2023-01-26 17:41:55 +08:00
|
|
|
key: key
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
keyPair.privateKey
|
|
|
|
keyPair.publicKey
|
|
|
|
keyPair.revocationCertificate
|
|
|
|
keyPair.onServer
|
|
|
|
keyPair.inGnuPG
|
|
|
|
*/
|
|
|
|
storeKeyPair(keyPair, callback) {
|
|
|
|
Remote.request('PgpStoreKeyPair',
|
|
|
|
(iError, oData) => {
|
2022-09-02 17:52:07 +08:00
|
|
|
if (oData?.Result) {
|
2022-01-30 09:35:53 +08:00
|
|
|
// this.gnupgKeyring = oData.Result;
|
|
|
|
}
|
2022-09-02 17:52:07 +08:00
|
|
|
callback?.(iError, oData);
|
2022-01-30 09:35:53 +08:00
|
|
|
}, keyPair
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Checks if verifying/encrypting a message is possible with given email addresses.
|
|
|
|
*/
|
2022-02-04 23:21:29 +08:00
|
|
|
hasPublicKeyForEmails(recipients) {
|
2022-01-30 09:35:53 +08:00
|
|
|
const count = recipients.length,
|
|
|
|
length = count ? recipients.filter(email =>
|
|
|
|
// (key.can_verify || key.can_encrypt) &&
|
|
|
|
this.publicKeys.find(key => key.emails.includes(email))
|
|
|
|
).length : 0;
|
2022-02-04 23:21:29 +08:00
|
|
|
return length && length === count;
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
|
2022-02-09 17:53:55 +08:00
|
|
|
getPublicKeyFingerprints(recipients) {
|
|
|
|
const fingerprints = [];
|
|
|
|
recipients.forEach(email => {
|
|
|
|
fingerprints.push(this.publicKeys.find(key => key.emails.includes(email)).fingerprint);
|
|
|
|
});
|
|
|
|
return fingerprints;
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
|
|
|
|
2022-02-09 17:53:55 +08:00
|
|
|
getPrivateKeyFor(query, sign) {
|
|
|
|
return findGnuPGKey(this.privateKeys, query, sign);
|
2022-01-30 09:35:53 +08:00
|
|
|
}
|
2022-02-01 18:45:20 +08:00
|
|
|
|
|
|
|
async decrypt(message) {
|
|
|
|
const
|
|
|
|
pgpInfo = message.pgpEncrypted();
|
|
|
|
if (pgpInfo) {
|
2023-01-25 01:58:25 +08:00
|
|
|
let ids = [message.to[0].email].concat(pgpInfo.keyIds),
|
2022-02-01 18:45:20 +08:00
|
|
|
i = ids.length, key;
|
|
|
|
while (i--) {
|
|
|
|
key = findGnuPGKey(this.privateKeys, ids[i]);
|
|
|
|
if (key) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if (key) {
|
|
|
|
// Also check message.from[0].email
|
|
|
|
let params = {
|
2023-01-25 01:58:25 +08:00
|
|
|
folder: message.folder,
|
|
|
|
uid: message.uid,
|
|
|
|
partId: pgpInfo.PartId,
|
|
|
|
keyId: key.id,
|
2023-01-26 17:41:55 +08:00
|
|
|
passphrase: await askPassphrase(key, 'BUTTON_DECRYPT'),
|
|
|
|
data: '' // message.plain() optional
|
2022-02-01 18:45:20 +08:00
|
|
|
}
|
2023-01-26 17:41:55 +08:00
|
|
|
if (null !== params.passphrase) {
|
2022-02-01 18:45:20 +08:00
|
|
|
const result = await Remote.post('GnupgDecrypt', null, params);
|
2022-11-17 00:05:53 +08:00
|
|
|
if (result?.Result && false !== result.Result.data) {
|
2022-02-01 18:45:20 +08:00
|
|
|
return result.Result;
|
|
|
|
}
|
2023-02-02 21:50:46 +08:00
|
|
|
passphrases.delete(key.id);
|
2022-02-01 18:45:20 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-02-02 21:36:49 +08:00
|
|
|
async verify(message) {
|
2023-01-25 01:58:25 +08:00
|
|
|
let data = message.pgpSigned(); // { bodyPartId: "1", sigPartId: "2", micAlg: "pgp-sha256" }
|
2022-02-02 21:36:49 +08:00
|
|
|
if (data) {
|
2022-02-11 18:01:07 +08:00
|
|
|
data = { ...data }; // clone
|
2022-02-02 21:36:49 +08:00
|
|
|
// const sender = message.from[0].email;
|
|
|
|
// let mode = await this.hasPublicKeyForEmails([sender]);
|
2023-01-25 01:58:25 +08:00
|
|
|
data.folder = message.folder;
|
|
|
|
data.uid = message.uid;
|
2023-01-26 17:41:55 +08:00
|
|
|
if (data.bodyPart) {
|
|
|
|
data.bodyPart = data.bodyPart.raw;
|
|
|
|
data.sigPart = data.sigPart.body;
|
2022-02-11 18:01:07 +08:00
|
|
|
}
|
2022-02-02 21:36:49 +08:00
|
|
|
let response = await Remote.post('MessagePgpVerify', null, data);
|
2022-09-02 17:52:07 +08:00
|
|
|
if (response?.Result) {
|
2022-02-02 21:36:49 +08:00
|
|
|
return {
|
|
|
|
fingerprint: response.Result.fingerprint,
|
|
|
|
success: 0 == response.Result.status // GOODSIG
|
|
|
|
};
|
|
|
|
}
|
|
|
|
}
|
2022-02-01 18:45:20 +08:00
|
|
|
}
|
|
|
|
|
2022-02-09 17:53:55 +08:00
|
|
|
async sign(privateKey) {
|
|
|
|
return await askPassphrase(privateKey);
|
2022-02-08 00:30:41 +08:00
|
|
|
}
|
|
|
|
|
2022-01-30 09:35:53 +08:00
|
|
|
};
|