added encryption/decryption strategy

2025-10-05 08:47:35 +08:00 · 2022-01-28 15:33:30 -05:00
parent 749e6f464d
commit 0015d6fdf8
14 changed files with 318 additions and 111 deletions
--- a/netclient/ncutils/netclientutils.go
+++ b/netclient/ncutils/netclientutils.go
@@ -1,6 +1,9 @@
 package ncutils

 import (
+	crand "crypto/rand"
+	"crypto/rsa"
+	"crypto/sha512"
 	"crypto/tls"
 	"errors"
 	"fmt"
@@ -51,6 +54,9 @@ const NETCLIENT_DEFAULT_PORT = 51821
 // DEFAULT_GC_PERCENT - garbage collection percent
 const DEFAULT_GC_PERCENT = 10

+// KEY_SIZE = ideal length for keys
+const KEY_SIZE = 64
+
 // Log - logs a message
 func Log(message string) {
 	log.SetFlags(log.Flags() &^ (log.Llongfile | log.Lshortfile))
@@ -543,3 +549,27 @@ func ServerAddrSliceContains(slice []models.ServerAddr, item models.ServerAddr)
 	}
 	return false
 }
+
+// EncryptWithPublicKey encrypts data with public key
+func EncryptWithPublicKey(msg []byte, pub *rsa.PublicKey) ([]byte, error) {
+	if pub == nil {
+		return nil, errors.New("invalid public key when decrypting")
+	}
+	log.Printf("pub key size: %d \n", pub.Size())
+	hash := sha512.New()
+	ciphertext, err := rsa.EncryptOAEP(hash, crand.Reader, pub, msg, nil)
+	if err != nil {
+		return nil, err
+	}
+	return ciphertext, nil
+}
+
+// DecryptWithPrivateKey decrypts data with private key
+func DecryptWithPrivateKey(ciphertext []byte, priv *rsa.PrivateKey) []byte {
+	hash := sha512.New()
+	plaintext, err := rsa.DecryptOAEP(hash, crand.Reader, priv, ciphertext, nil)
+	if err != nil {
+		return nil
+	}
+	return plaintext
+}