Implement inline-detach for 3 different types of input

2025-12-10 22:31:09 +01:00 · 2022-06-19 16:56:32 +02:00 · 2022-06-19 16:56:32 +02:00 · 5375cd454f
commit 5375cd454f
parent 2d60650cc6
2 changed files with 180 additions and 10 deletions
--- a/pgpainless-sop/src/main/java/org/pgpainless/sop/InlineDetachImpl.java
+++ b/pgpainless-sop/src/main/java/org/pgpainless/sop/InlineDetachImpl.java
@ -10,12 +10,20 @@ import java.io.IOException;
 import java.io.InputStream;
 import java.io.OutputStream;

+import org.bouncycastle.bcpg.ArmoredInputStream;
 import org.bouncycastle.bcpg.ArmoredOutputStream;
+import org.bouncycastle.openpgp.PGPCompressedData;
+import org.bouncycastle.openpgp.PGPException;
+import org.bouncycastle.openpgp.PGPLiteralData;
+import org.bouncycastle.openpgp.PGPObjectFactory;
+import org.bouncycastle.openpgp.PGPOnePassSignatureList;
 import org.bouncycastle.openpgp.PGPSignature;
 import org.bouncycastle.openpgp.PGPSignatureList;
 import org.bouncycastle.util.io.Streams;
+import org.pgpainless.decryption_verification.OpenPgpInputStream;
 import org.pgpainless.decryption_verification.cleartext_signatures.ClearsignedMessageUtil;
 import org.pgpainless.exception.WrongConsumingMethodException;
+import org.pgpainless.implementation.ImplementationFactory;
 import org.pgpainless.util.ArmoredOutputStreamFactory;
 import sop.ReadyWithResult;
 import sop.Signatures;
@ -43,13 +51,80 @@ public class InlineDetachImpl implements InlineDetach {
            public Signatures writeTo(OutputStream messageOutputStream)
                    throws SOPGPException.NoSignature, IOException {

-                PGPSignatureList signatures;
-                try {
-                    signatures = ClearsignedMessageUtil.detachSignaturesFromInbandClearsignedMessage(messageInputStream, messageOutputStream);
-                } catch (WrongConsumingMethodException e) {
-                    throw new IOException(e);
+                PGPSignatureList signatures = null;
+                OpenPgpInputStream pgpIn = new OpenPgpInputStream(messageInputStream);
+
+                if (pgpIn.isNonOpenPgp()) {
+                    throw new SOPGPException.BadData("Data appears to be non-OpenPGP.");
                }

+                // handle ASCII armor
+                if (pgpIn.isAsciiArmored()) {
+                    ArmoredInputStream armorIn = new ArmoredInputStream(pgpIn);
+
+                    // Handle cleartext signature framework
+                    if (armorIn.isClearText()) {
+                        try {
+                            signatures = ClearsignedMessageUtil.detachSignaturesFromInbandClearsignedMessage(armorIn, messageOutputStream);
+                            if (signatures == null) {
+                                throw new SOPGPException.BadData("Data did not contain OpenPGP signatures.");
+                            }
+                        } catch (WrongConsumingMethodException e) {
+                            throw new SOPGPException.BadData(e);
+                        }
+                    }
+                    // else just dearmor
+                    pgpIn = new OpenPgpInputStream(armorIn);
+                }
+
+                // if data was not using cleartext signatures framework
+                if (signatures == null) {
+
+                    if (!pgpIn.isBinaryOpenPgp()) {
+                        throw new SOPGPException.BadData("Data was containing ASCII armored non-OpenPGP data.");
+                    }
+
+                    // handle binary OpenPGP data
+                    PGPObjectFactory objectFactory = ImplementationFactory.getInstance().getPGPObjectFactory(pgpIn);
+                    Object next;
+                    while ((next = objectFactory.nextObject()) != null) {
+
+                        if (next instanceof PGPOnePassSignatureList) {
+                            // skip over ops
+                            continue;
+                        }
+
+                        if (next instanceof PGPLiteralData) {
+                            // write out contents of literal data packet
+                            PGPLiteralData literalData = (PGPLiteralData) next;
+                            InputStream literalIn = literalData.getDataStream();
+                            Streams.pipeAll(literalIn, messageOutputStream);
+                            literalIn.close();
+                            continue;
+                        }
+
+                        if (next instanceof PGPCompressedData) {
+                            // decompress compressed data
+                            PGPCompressedData compressedData = (PGPCompressedData) next;
+                            try {
+                                objectFactory = ImplementationFactory.getInstance().getPGPObjectFactory(compressedData.getDataStream());
+                            } catch (PGPException e) {
+                                throw new SOPGPException.BadData("Cannot decompress PGPCompressedData", e);
+                            }
+                            continue;
+                        }
+
+                        if (next instanceof PGPSignatureList) {
+                            signatures = (PGPSignatureList) next;
+                        }
+                    }
+                }
+
+                if (signatures == null) {
+                    throw new SOPGPException.BadData("Data did not contain OpenPGP signatures.");
+                }
+
+                // write out signatures
                if (armor) {
                    ArmoredOutputStream armorOut = ArmoredOutputStreamFactory.get(sigOut);
                    for (PGPSignature signature : signatures) {