joplin/packages/app-mobile/services/e2ee/RSA.react-native.ts

import { RSA } from '@joplin/lib/services/e2ee/types';
import shim from '@joplin/lib/shim';
import Logger from '@joplin/utils/Logger';
const RnRSA = require('react-native-rsa-native').RSA;

interface RSAKeyPair {
	public: string;
	private: string;
	keySizeBits: number;
}

const logger = Logger.create('RSA');

const rsa: RSA = {

	generateKeyPair: async (keySize: number): Promise<RSAKeyPair> => {
		if (shim.mobilePlatform() === 'web') {
			// TODO: Try to implement with SubtleCrypto. May require migrating the RSA algorithm used on
			// desktop and mobile (which is not supported on web). See commit 12adcd9dbc3f723bac36ff4447701573084c4694.
			logger.warn('RSA on web is not yet supported.');
			return null;
		}

		const keys: RSAKeyPair = await RnRSA.generateKeys(keySize);

		// Sanity check
		if (!keys.private) throw new Error('No private key was generated');
		if (!keys.public) throw new Error('No public key was generated');

		return rsa.loadKeys(keys.public, keys.private, keySize);
	},

	loadKeys: async (publicKey: string, privateKey: string, keySizeBits: number): Promise<RSAKeyPair> => {
		return { public: publicKey, private: privateKey, keySizeBits };
	},

	encrypt: async (plaintextUtf8: string, rsaKeyPair: RSAKeyPair): Promise<string> => {
		// TODO: Support long-data encryption in a way compatible with node-rsa.
		return RnRSA.encrypt(plaintextUtf8, rsaKeyPair.public);
	},

	decrypt: async (ciphertextBase64: string, rsaKeyPair: RSAKeyPair): Promise<string> => {
		const ciphertextBuffer = Buffer.from(ciphertextBase64, 'base64');
		const maximumEncryptedSize = Math.floor(rsaKeyPair.keySizeBits / 8); // Usually 256

		// On iOS, .decrypt fails without throwing or rejecting.
		// This function throws for consistency with Android.
		const handleError = (plainText: string|undefined) => {
			if (plainText === undefined) {
				throw new Error(`
					RN RSA: Decryption failed.
						cipherTextLength=${ciphertextBuffer.length},
						maxEncryptedSize=${maximumEncryptedSize}
				`.trim());
			}
		};

		// Master keys are encrypted with RSA and are longer than the default modulus size of 256 bytes.
		// node-rsa supports encrypting larger amounts of data using RSA.
		// See their implementation for details: https://github.com/rzcoder/node-rsa/blob/e7e7f7d2942a3bac1d2e132a881e5a3aceda10a1/src/libs/rsa.js#L252
		if (ciphertextBuffer.length > maximumEncryptedSize) {
			// Use a numBlocks and blockSize that match node-rsa:
			const numBlocks = Math.ceil(ciphertextBuffer.length / maximumEncryptedSize);
			const blockSize = maximumEncryptedSize;

			const result: string[] = [];
			for (let i = 0; i < numBlocks; i++) {
				const ciphertextBlock = ciphertextBuffer.slice(
					i * blockSize, Math.min(ciphertextBuffer.length, (i + 1) * blockSize),
				);
				const plainText = await RnRSA.decrypt(ciphertextBlock.toString('base64'), rsaKeyPair.private);

				handleError(plainText);
				result.push(plainText);
			}
			return result.join('');
		} else {
			const plainText = await RnRSA.decrypt(ciphertextBase64, rsaKeyPair.private);
			handleError(plainText);
			return plainText;
		}
	},

	publicKey: (rsaKeyPair: RSAKeyPair): string => {
		return rsaKeyPair.public;
	},

	privateKey: (rsaKeyPair: RSAKeyPair): string => {
		return rsaKeyPair.private;
	},

};

export default rsa;
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`import { RSA } from '@joplin/lib/services/e2ee/types';`
Mobile: Support building for web (#10650) 2024-08-02 15:51:49 +02:00			`import shim from '@joplin/lib/shim';`
			`import Logger from '@joplin/utils/Logger';`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`const RnRSA = require('react-native-rsa-native').RSA;`

			`interface RSAKeyPair {`
			`public: string;`
			`private: string;`
Mobile: Fixes #10409: Fix accepting encrypted shared notebooks (#10429) 2024-05-16 10:54:24 +02:00			`keySizeBits: number;`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`}`

Mobile: Support building for web (#10650) 2024-08-02 15:51:49 +02:00			`const logger = Logger.create('RSA');`

All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`const rsa: RSA = {`

			`generateKeyPair: async (keySize: number): Promise<RSAKeyPair> => {`
Mobile: Support building for web (#10650) 2024-08-02 15:51:49 +02:00			`if (shim.mobilePlatform() === 'web') {`
			`// TODO: Try to implement with SubtleCrypto. May require migrating the RSA algorithm used on`
			`// desktop and mobile (which is not supported on web). See commit 12adcd9dbc3f723bac36ff4447701573084c4694.`
			`logger.warn('RSA on web is not yet supported.');`
			`return null;`
			`}`

All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`const keys: RSAKeyPair = await RnRSA.generateKeys(keySize);`

			`// Sanity check`
			`if (!keys.private) throw new Error('No private key was generated');`
			`if (!keys.public) throw new Error('No public key was generated');`

Mobile: Fixes #10409: Fix accepting encrypted shared notebooks (#10429) 2024-05-16 10:54:24 +02:00			`return rsa.loadKeys(keys.public, keys.private, keySize);`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`},`

Mobile: Fixes #10409: Fix accepting encrypted shared notebooks (#10429) 2024-05-16 10:54:24 +02:00			`loadKeys: async (publicKey: string, privateKey: string, keySizeBits: number): Promise<RSAKeyPair> => {`
			`return { public: publicKey, private: privateKey, keySizeBits };`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`},`

			`encrypt: async (plaintextUtf8: string, rsaKeyPair: RSAKeyPair): Promise<string> => {`
Mobile: Fixes #10409: Fix accepting encrypted shared notebooks (#10429) 2024-05-16 10:54:24 +02:00			`// TODO: Support long-data encryption in a way compatible with node-rsa.`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`return RnRSA.encrypt(plaintextUtf8, rsaKeyPair.public);`
			`},`

			`decrypt: async (ciphertextBase64: string, rsaKeyPair: RSAKeyPair): Promise<string> => {`
Mobile: Fixes #10409: Fix accepting encrypted shared notebooks (#10429) 2024-05-16 10:54:24 +02:00			`const ciphertextBuffer = Buffer.from(ciphertextBase64, 'base64');`
			`const maximumEncryptedSize = Math.floor(rsaKeyPair.keySizeBits / 8); // Usually 256`

			`// On iOS, .decrypt fails without throwing or rejecting.`
			`// This function throws for consistency with Android.`
			`const handleError = (plainText: string\|undefined) => {`
			`if (plainText === undefined) {`
			throw new Error(`
			`RN RSA: Decryption failed.`
			`cipherTextLength=${ciphertextBuffer.length},`
			`maxEncryptedSize=${maximumEncryptedSize}`
			`.trim());
			`}`
			`};`

			`// Master keys are encrypted with RSA and are longer than the default modulus size of 256 bytes.`
			`// node-rsa supports encrypting larger amounts of data using RSA.`
			`// See their implementation for details: https://github.com/rzcoder/node-rsa/blob/e7e7f7d2942a3bac1d2e132a881e5a3aceda10a1/src/libs/rsa.js#L252`
			`if (ciphertextBuffer.length > maximumEncryptedSize) {`
			`// Use a numBlocks and blockSize that match node-rsa:`
			`const numBlocks = Math.ceil(ciphertextBuffer.length / maximumEncryptedSize);`
			`const blockSize = maximumEncryptedSize;`

			`const result: string[] = [];`
			`for (let i = 0; i < numBlocks; i++) {`
			`const ciphertextBlock = ciphertextBuffer.slice(`
			`i * blockSize, Math.min(ciphertextBuffer.length, (i + 1) * blockSize),`
			`);`
			`const plainText = await RnRSA.decrypt(ciphertextBlock.toString('base64'), rsaKeyPair.private);`

			`handleError(plainText);`
			`result.push(plainText);`
			`}`
			`return result.join('');`
			`} else {`
			`const plainText = await RnRSA.decrypt(ciphertextBase64, rsaKeyPair.private);`
			`handleError(plainText);`
			`return plainText;`
			`}`
All: Add support for public-private key pairs and improved master password support (#5438) Also improved SCSS support, which was needed for the master password dialog. 2021-10-03 17:00:49 +02:00			`},`

			`publicKey: (rsaKeyPair: RSAKeyPair): string => {`
			`return rsaKeyPair.public;`
			`},`

			`privateKey: (rsaKeyPair: RSAKeyPair): string => {`
			`return rsaKeyPair.private;`
			`},`

			`};`

			`export default rsa;`