tovi
/
Envelope
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
Encrypted messaging app
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
3 Branches
16 MiB
Tree: 5eb1aed5c4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5eb1aed5c4'
${ noResults }
Envelope/Backend/Database/Seeder/MessageSeeder.go

330 lines
7.2 KiB
Raw Normal View History

Start adding routes for mobile interaction Add data seeders for testing
2 years ago
WIP - Working encryption with seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
WIP - Working encryption with seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
Update the message/thread structure, and fix the db seeder
2 years ago
Start adding routes for mobile interaction Add data seeders for testing
2 years ago
 
  1. package Seeder
  2. 

  3. import (
  4. 	"bytes"
  5. 	"crypto/aes"
  6. 	"crypto/cipher"
  7. 	"crypto/rand"
  8. 	"crypto/rsa"
  9. 	"crypto/sha256"
  10. 	"encoding/pem"
  11. 	"fmt"
  12. 	"hash"
  13. 

  14. 	"git.tovijaeschke.xyz/tovi/Envelope/Backend/Database"
  15. 	"git.tovijaeschke.xyz/tovi/Envelope/Backend/Models"
  16. 	"git.tovijaeschke.xyz/tovi/Envelope/Backend/Util"
  17. 	"github.com/gofrs/uuid"
  18. )
  19. 

  20. // EncryptWithPublicKey encrypts data with public key

  21. func encryptWithPublicKey(msg []byte, pub *rsa.PublicKey) []byte {
  22. 	var (
  23. 		hash hash.Hash
  24. 	)
  25. 

  26. 	hash = sha256.New()
  27. 	ciphertext, err := rsa.EncryptOAEP(hash, rand.Reader, pub, msg, nil)
  28. 	if err != nil {
  29. 		panic(err)
  30. 	}
  31. 	return ciphertext
  32. }
  33. 

  34. func PKCS5Padding(ciphertext []byte, blockSize int, after int) []byte {
  35. 	var (
  36. 		padding int
  37. 		padtext []byte
  38. 	)
  39. 	padding = (blockSize - len(ciphertext)%blockSize)
  40. 	padtext = bytes.Repeat([]byte{byte(padding)}, padding)
  41. 	return append(ciphertext, padtext...)
  42. }
  43. 

  44. func generateAesKey() (*pem.Block, cipher.BlockMode) {
  45. 	var (
  46. 		pemBlock *pem.Block
  47. 		block    cipher.Block
  48. 

  49. 		bKey []byte
  50. 		bIV  []byte
  51. 

  52. 		err error
  53. 	)
  54. 

  55. 	bKey = make([]byte, 32)
  56. 	_, err = rand.Read(bKey)
  57. 	if err != nil {
  58. 		panic(err)
  59. 	}
  60. 	bIV = make([]byte, 16)
  61. 	_, err = rand.Read(bIV)
  62. 	if err != nil {
  63. 		panic(err)
  64. 	}
  65. 

  66. 	pemBlock = &pem.Block{
  67. 		Type:  "AES KEY",
  68. 		Bytes: bKey,
  69. 	}
  70. 

  71. 	block, err = aes.NewCipher(bKey)
  72. 	if err != nil {
  73. 		panic(err)
  74. 	}
  75. 

  76. 	return pemBlock, cipher.NewCBCEncrypter(block, bIV)
  77. }
  78. 

  79. func seedMessage(
  80. 	primaryUser Models.User,
  81. 	primaryUserThreadKey, secondaryUserThreadKey string,
  82. 	thread Models.MessageThread,
  83. 	i int,
  84. ) error {
  85. 	var (
  86. 		message     Models.Message
  87. 		messageData Models.MessageData
  88. 

  89. 		messagePemBlock *pem.Block
  90. 		messageMode     cipher.BlockMode
  91. 

  92. 		plaintext          string
  93. 		dataCiphertext     []byte
  94. 		senderIdCiphertext []byte
  95. 

  96. 		bPlaintext         []byte
  97. 		bSenderIdPlaintext []byte
  98. 

  99. 		err error
  100. 	)
  101. 

  102. 	plaintext = "Test Message"
  103. 	bPlaintext = PKCS5Padding([]byte(plaintext), aes.BlockSize, len(plaintext))
  104. 	bSenderIdPlaintext = PKCS5Padding(primaryUser.ID.Bytes(), aes.BlockSize, len(primaryUser.ID.Bytes()))
  105. 

  106. 	dataCiphertext = make([]byte, len(bPlaintext))
  107. 	senderIdCiphertext = make([]byte, len(bSenderIdPlaintext))
  108. 

  109. 	messagePemBlock, messageMode = generateAesKey()
  110. 

  111. 	messageMode.CryptBlocks(dataCiphertext, bPlaintext)
  112. 	messageMode.CryptBlocks(senderIdCiphertext, bSenderIdPlaintext)
  113. 

  114. 	messageData = Models.MessageData{
  115. 		Data:     dataCiphertext,
  116. 		SenderID: senderIdCiphertext,
  117. 	}
  118. 

  119. 	message = Models.Message{
  120. 		MessageData:      messageData,
  121. 		SymmetricKey:     encryptWithPublicKey(pem.EncodeToMemory(messagePemBlock), decodedPublicKey),
  122. 		MessageThreadKey: primaryUserThreadKey,
  123. 	}
  124. 

  125. 	err = Database.CreateMessage(&message)
  126. 	if err != nil {
  127. 		return err
  128. 	}
  129. 

  130. 	// The symmetric key would be encrypted with secondary users public key in production

  131. 	// But due to using the same pub/priv key pair for all users, we will just duplicate it

  132. 	message = Models.Message{
  133. 		MessageDataID:    message.MessageDataID,
  134. 		SymmetricKey:     encryptWithPublicKey(pem.EncodeToMemory(messagePemBlock), decodedPublicKey),
  135. 		MessageThreadKey: secondaryUserThreadKey,
  136. 	}
  137. 

  138. 	err = Database.CreateMessage(&message)
  139. 	if err != nil {
  140. 		return err
  141. 	}
  142. 

  143. 	return err
  144. }
  145. 

  146. func seedMessageThread(threadPemBlock *pem.Block, threadMode cipher.BlockMode) (Models.MessageThread, error) {
  147. 	var (
  148. 		messageThread Models.MessageThread
  149. 

  150. 		name           string
  151. 		bNamePlaintext []byte
  152. 		nameCiphertext []byte
  153. 

  154. 		err error
  155. 	)
  156. 

  157. 	name = "Test Conversation"
  158. 

  159. 	bNamePlaintext = PKCS5Padding([]byte(name), aes.BlockSize, len(name))
  160. 	nameCiphertext = make([]byte, len(bNamePlaintext))
  161. 

  162. 	threadMode.CryptBlocks(nameCiphertext, bNamePlaintext)
  163. 

  164. 	messageThread = Models.MessageThread{
  165. 		Name: nameCiphertext,
  166. 	}
  167. 

  168. 	err = Database.CreateMessageThread(&messageThread)
  169. 	return messageThread, err
  170. }
  171. 

  172. func seedUpdateMessageThreadUsers(
  173. 	userJson string,
  174. 	threadPemBlock *pem.Block,
  175. 	threadMode cipher.BlockMode,
  176. 	messageThread Models.MessageThread,
  177. ) (Models.MessageThread, error) {
  178. 	var (
  179. 		bUsersPlaintext []byte
  180. 		usersCiphertext []byte
  181. 		err             error
  182. 	)
  183. 

  184. 	bUsersPlaintext = PKCS5Padding([]byte(userJson), aes.BlockSize, len(userJson))
  185. 	usersCiphertext = make([]byte, len(bUsersPlaintext))
  186. 

  187. 	threadMode.CryptBlocks(usersCiphertext, bUsersPlaintext)
  188. 

  189. 	messageThread.Users = usersCiphertext
  190. 	err = Database.UpdateMessageThread(&messageThread)
  191. 	return messageThread, err
  192. }
  193. 

  194. func seedMessageThreadUser(
  195. 	user Models.User,
  196. 	threadID uuid.UUID,
  197. 	messageThreadKey string,
  198. 	threadPemBlock *pem.Block,
  199. 	threadMode cipher.BlockMode,
  200. ) (Models.MessageThreadUser, error) {
  201. 	var (
  202. 		messageThreadUser Models.MessageThreadUser
  203. 

  204. 		bThreadIdPlaintext []byte
  205. 		threadIdCiphertext []byte
  206. 

  207. 		bKeyPlaintext []byte
  208. 		keyCiphertext []byte
  209. 

  210. 		bAdminPlaintext []byte
  211. 		adminCiphertext []byte
  212. 

  213. 		err error
  214. 	)
  215. 

  216. 	bThreadIdPlaintext = PKCS5Padding(threadID.Bytes(), aes.BlockSize, len(threadID.String()))
  217. 	threadIdCiphertext = make([]byte, len(bThreadIdPlaintext))
  218. 

  219. 	bKeyPlaintext = PKCS5Padding([]byte(messageThreadKey), aes.BlockSize, len(messageThreadKey))
  220. 	keyCiphertext = make([]byte, len(bKeyPlaintext))
  221. 

  222. 	bAdminPlaintext = PKCS5Padding([]byte("true"), aes.BlockSize, len("true"))
  223. 	adminCiphertext = make([]byte, len(bAdminPlaintext))
  224. 

  225. 	threadMode.CryptBlocks(threadIdCiphertext, bThreadIdPlaintext)
  226. 	threadMode.CryptBlocks(keyCiphertext, bKeyPlaintext)
  227. 	threadMode.CryptBlocks(adminCiphertext, bAdminPlaintext)
  228. 

  229. 	messageThreadUser = Models.MessageThreadUser{
  230. 		UserID:           user.ID,
  231. 		MessageThreadID:  threadIdCiphertext,
  232. 		MessageThreadKey: keyCiphertext,
  233. 		Admin:            adminCiphertext,
  234. 		SymmetricKey:     encryptWithPublicKey(pem.EncodeToMemory(threadPemBlock), decodedPublicKey),
  235. 	}
  236. 

  237. 	err = Database.CreateMessageThreadUser(&messageThreadUser)
  238. 	return messageThreadUser, err
  239. }
  240. 

  241. func SeedMessages() {
  242. 	var (
  243. 		messageThread  Models.MessageThread
  244. 		threadPemBlock *pem.Block
  245. 		threadMode     cipher.BlockMode
  246. 

  247. 		primaryUser            Models.User
  248. 		primaryUserThreadKey   string
  249. 		secondaryUser          Models.User
  250. 		secondaryUserThreadKey string
  251. 

  252. 		userJson string
  253. 

  254. 		thread Models.MessageThread
  255. 		i      int
  256. 		err    error
  257. 	)
  258. 

  259. 	threadPemBlock, threadMode = generateAesKey()
  260. 	messageThread, err = seedMessageThread(threadPemBlock, threadMode)
  261. 	primaryUserThreadKey = Util.RandomString(32)
  262. 	secondaryUserThreadKey = Util.RandomString(32)
  263. 

  264. 	primaryUser, err = Database.GetUserByUsername("testUser")
  265. 	if err != nil {
  266. 		panic(err)
  267. 	}
  268. 

  269. 	_, err = seedMessageThreadUser(
  270. 		primaryUser,
  271. 		messageThread.ID,
  272. 		primaryUserThreadKey,
  273. 		threadPemBlock,
  274. 		threadMode,
  275. 	)
  276. 

  277. 	secondaryUser, err = Database.GetUserByUsername("testUser2")
  278. 	if err != nil {
  279. 		panic(err)
  280. 	}
  281. 

  282. 	_, err = seedMessageThreadUser(
  283. 		secondaryUser,
  284. 		messageThread.ID,
  285. 		secondaryUserThreadKey,
  286. 		threadPemBlock,
  287. 		threadMode,
  288. 	)
  289. 

  290. 	userJson = fmt.Sprintf(
  291. 		`
  292. [
  293. 	{
  294. 		"id": "%s",
  295. 		"username": "%s",
  296. 		"admin": "true"
  297. 	},
  298. 	{
  299. 		"id": "%s",
  300. 		"username": "%s",
  301. 		"admin": "true"
  302. 	}
  303. ]
  304. 		`,
  305. 		primaryUser.ID.String(),
  306. 		primaryUser.Username,
  307. 		secondaryUser.ID.String(),
  308. 		secondaryUser.Username,
  309. 	)
  310. 

  311. 	messageThread, err = seedUpdateMessageThreadUsers(
  312. 		userJson,
  313. 		threadPemBlock,
  314. 		threadMode,
  315. 		messageThread,
  316. 	)
  317. 

  318. 	for i = 0; i <= 20; i++ {
  319. 		err = seedMessage(
  320. 			primaryUser,
  321. 			primaryUserThreadKey,
  322. 			secondaryUserThreadKey,
  323. 			thread,
  324. 			i,
  325. 		)
  326. 		if err != nil {
  327. 			panic(err)
  328. 		}
  329. 	}
  330. }