703dd4588c
- CLAUDE.md: update error convention from core.E() to coreerr.E() to match actual codebase usage - Standardise go-log import alias from `core` to `coreerr` across 6 files (crypt/symmetric.go, crypt/kdf.go, crypt/crypt.go, crypt/hash.go, crypt/checksum.go, crypt/openpgp/service.go) for consistency with the 11 files already using `coreerr` - Fix shortenPackageName to handle all forge.lthn.ai/core/* module prefixes instead of only cli/ and gui/, fixing TestShortenPackageName Co-Authored-By: Virgil <virgil@lethean.io>
90 lines
2.7 KiB
Go
90 lines
2.7 KiB
Go
package crypt
|
|
|
|
import (
|
|
coreerr "forge.lthn.ai/core/go-log"
|
|
)
|
|
|
|
// Encrypt encrypts data with a passphrase using ChaCha20-Poly1305.
|
|
// A random salt is generated and prepended to the output.
|
|
// Format: salt (16 bytes) + nonce (24 bytes) + ciphertext.
|
|
func Encrypt(plaintext, passphrase []byte) ([]byte, error) {
|
|
salt, err := generateSalt(argon2SaltLen)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.Encrypt", "failed to generate salt", err)
|
|
}
|
|
|
|
key := DeriveKey(passphrase, salt, argon2KeyLen)
|
|
|
|
encrypted, err := ChaCha20Encrypt(plaintext, key)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.Encrypt", "failed to encrypt", err)
|
|
}
|
|
|
|
// Prepend salt to the encrypted data (which already has nonce prepended)
|
|
result := make([]byte, 0, len(salt)+len(encrypted))
|
|
result = append(result, salt...)
|
|
result = append(result, encrypted...)
|
|
return result, nil
|
|
}
|
|
|
|
// Decrypt decrypts data encrypted with Encrypt.
|
|
// Expects format: salt (16 bytes) + nonce (24 bytes) + ciphertext.
|
|
func Decrypt(ciphertext, passphrase []byte) ([]byte, error) {
|
|
if len(ciphertext) < argon2SaltLen {
|
|
return nil, coreerr.E("crypt.Decrypt", "ciphertext too short", nil)
|
|
}
|
|
|
|
salt := ciphertext[:argon2SaltLen]
|
|
encrypted := ciphertext[argon2SaltLen:]
|
|
|
|
key := DeriveKey(passphrase, salt, argon2KeyLen)
|
|
|
|
plaintext, err := ChaCha20Decrypt(encrypted, key)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.Decrypt", "failed to decrypt", err)
|
|
}
|
|
|
|
return plaintext, nil
|
|
}
|
|
|
|
// EncryptAES encrypts data using AES-256-GCM with a passphrase.
|
|
// A random salt is generated and prepended to the output.
|
|
// Format: salt (16 bytes) + nonce (12 bytes) + ciphertext.
|
|
func EncryptAES(plaintext, passphrase []byte) ([]byte, error) {
|
|
salt, err := generateSalt(argon2SaltLen)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.EncryptAES", "failed to generate salt", err)
|
|
}
|
|
|
|
key := DeriveKey(passphrase, salt, argon2KeyLen)
|
|
|
|
encrypted, err := AESGCMEncrypt(plaintext, key)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.EncryptAES", "failed to encrypt", err)
|
|
}
|
|
|
|
result := make([]byte, 0, len(salt)+len(encrypted))
|
|
result = append(result, salt...)
|
|
result = append(result, encrypted...)
|
|
return result, nil
|
|
}
|
|
|
|
// DecryptAES decrypts data encrypted with EncryptAES.
|
|
// Expects format: salt (16 bytes) + nonce (12 bytes) + ciphertext.
|
|
func DecryptAES(ciphertext, passphrase []byte) ([]byte, error) {
|
|
if len(ciphertext) < argon2SaltLen {
|
|
return nil, coreerr.E("crypt.DecryptAES", "ciphertext too short", nil)
|
|
}
|
|
|
|
salt := ciphertext[:argon2SaltLen]
|
|
encrypted := ciphertext[argon2SaltLen:]
|
|
|
|
key := DeriveKey(passphrase, salt, argon2KeyLen)
|
|
|
|
plaintext, err := AESGCMDecrypt(encrypted, key)
|
|
if err != nil {
|
|
return nil, coreerr.E("crypt.DecryptAES", "failed to decrypt", err)
|
|
}
|
|
|
|
return plaintext, nil
|
|
}
|