use std::io::{self, Write};
extern crate sequoia_openpgp as openpgp;
use openpgp::serialize::stream::*;
use openpgp::parse::stream::*;
use openpgp::packet::key::SecretKey;
const MESSAGE: &'static str = "дружба";
fn main() {
let key = generate().unwrap();
let mut ciphertext = Vec::new();
encrypt(&mut ciphertext, MESSAGE, &key).unwrap();
let mut plaintext = Vec::new();
decrypt(&mut plaintext, &ciphertext, &key).unwrap();
assert_eq!(MESSAGE.as_bytes(), &plaintext[..]);
}
fn generate() -> openpgp::Result<openpgp::TPK> {
let (tpk, _revocation) = openpgp::tpk::TPKBuilder::default()
.add_userid("someone@example.org")
.add_encryption_subkey()
.generate()?;
Ok(tpk)
}
fn encrypt(sink: &mut Write, plaintext: &str, recipient: &openpgp::TPK)
-> openpgp::Result<()> {
let message = Message::new(sink);
let encryptor = Encryptor::new(message,
&[], &[recipient],
EncryptionMode::ForTransport)?;
let mut literal_writer = LiteralWriter::new(
encryptor, openpgp::constants::DataFormat::Binary, None, None)?;
literal_writer.write_all(plaintext.as_bytes())?;
literal_writer.finalize()?;
Ok(())
}
fn decrypt(sink: &mut Write, ciphertext: &[u8], recipient: &openpgp::TPK)
-> openpgp::Result<()> {
let helper = Helper {
secret: recipient,
};
let mut decryptor = Decryptor::from_bytes(ciphertext, helper)?;
io::copy(&mut decryptor, sink)?;
Ok(())
}
struct Helper<'a> {
secret: &'a openpgp::TPK,
}
impl<'a> VerificationHelper for Helper<'a> {
fn get_public_keys(&mut self, _ids: &[openpgp::KeyID])
-> openpgp::Result<Vec<openpgp::TPK>> {
Ok(Vec::new())
}
fn check(&mut self, _sigs: Vec<Vec<VerificationResult>>)
-> openpgp::Result<()> {
Ok(())
}
}
impl<'a> DecryptionHelper for Helper<'a> {
fn get_secret(&mut self,
_pkesks: &[&openpgp::packet::PKESK],
_skesks: &[&openpgp::packet::SKESK])
-> openpgp::Result<Option<Secret>>
{
let key = self.secret.subkeys().nth(0)
.map(|binding| binding.subkey().clone())
.unwrap();
let secret =
if let Some(SecretKey::Unencrypted {
ref mpis,
}) = key.secret() {
mpis.clone()
} else {
unreachable!()
};
Ok(Some(Secret::Asymmetric {
identity: self.secret.fingerprint(),
key: key,
secret: secret,
}))
}
}