61 lines
1.9 KiB
Java
61 lines
1.9 KiB
Java
// SPDX-FileCopyrightText: 2021 Paul Schaub <vanitasvitae@fsfe.org>
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package org.pgpainless.decryption_verification;
|
|
|
|
import java.io.IOException;
|
|
import java.io.InputStream;
|
|
import javax.annotation.Nonnull;
|
|
|
|
import org.bouncycastle.openpgp.PGPEncryptedData;
|
|
import org.bouncycastle.openpgp.PGPException;
|
|
import org.pgpainless.exception.ModificationDetectionException;
|
|
import org.slf4j.Logger;
|
|
import org.slf4j.LoggerFactory;
|
|
|
|
public class IntegrityProtectedInputStream extends InputStream {
|
|
|
|
private static final Logger LOGGER = LoggerFactory.getLogger(IntegrityProtectedInputStream.class);
|
|
|
|
private final InputStream inputStream;
|
|
private final PGPEncryptedData encryptedData;
|
|
private final ConsumerOptions options;
|
|
private boolean closed = false;
|
|
|
|
public IntegrityProtectedInputStream(InputStream inputStream, PGPEncryptedData encryptedData, ConsumerOptions options) {
|
|
this.inputStream = inputStream;
|
|
this.encryptedData = encryptedData;
|
|
this.options = options;
|
|
}
|
|
|
|
@Override
|
|
public int read() throws IOException {
|
|
return inputStream.read();
|
|
}
|
|
|
|
@Override
|
|
public int read(@Nonnull byte[] b, int offset, int length) throws IOException {
|
|
return inputStream.read(b, offset, length);
|
|
}
|
|
|
|
@Override
|
|
public void close() throws IOException {
|
|
if (closed) {
|
|
return;
|
|
}
|
|
closed = true;
|
|
|
|
if (encryptedData.isIntegrityProtected() && !options.isIgnoreMDCErrors()) {
|
|
try {
|
|
if (!encryptedData.verify()) {
|
|
throw new ModificationDetectionException();
|
|
}
|
|
LOGGER.debug("Integrity Protection check passed");
|
|
} catch (PGPException e) {
|
|
throw new IOException("Data appears to not be integrity protected.", e);
|
|
}
|
|
}
|
|
}
|
|
}
|