nak/encrypt_decrypt.go

package main

import (
	"context"
	"fmt"

	"github.com/fiatjaf/cli/v3"
	"github.com/nbd-wtf/go-nostr"
	"github.com/nbd-wtf/go-nostr/nip04"
)

var encrypt = &cli.Command{
	Name:                      "encrypt",
	Usage:                     "encrypts a string with nip44 (or nip04 if specified using a flag) and returns the resulting ciphertext as base64",
	ArgsUsage:                 "[plaintext string]",
	DisableSliceFlagSeparator: true,
	Flags: append(
		defaultKeyFlags,
		&cli.StringFlag{
			Name:     "recipient-pubkey",
			Aliases:  []string{"p", "tgt", "target", "pubkey"},
			Required: true,
		},
		&cli.BoolFlag{
			Name:  "nip04",
			Usage: "use nip04 encryption instead of nip44",
		},
	),
	Action: func(ctx context.Context, c *cli.Command) error {
		target := c.String("recipient-pubkey")
		if !nostr.IsValidPublicKey(target) {
			return fmt.Errorf("target %s is not a valid public key", target)
		}

		plaintext := c.Args().First()

		if c.Bool("nip04") {
			sec, bunker, err := gatherSecretKeyOrBunkerFromArguments(ctx, c)
			if err != nil {
				return err
			}

			if bunker != nil {
				ciphertext, err := bunker.NIP04Encrypt(ctx, target, plaintext)
				if err != nil {
					return err
				}
				stdout(ciphertext)
			} else {
				ss, err := nip04.ComputeSharedSecret(target, sec)
				if err != nil {
					return fmt.Errorf("failed to compute nip04 shared secret: %w", err)
				}
				ciphertext, err := nip04.Encrypt(plaintext, ss)
				if err != nil {
					return fmt.Errorf("failed to encrypt as nip04: %w", err)
				}
				stdout(ciphertext)
			}
		} else {
			kr, _, err := gatherKeyerFromArguments(ctx, c)
			if err != nil {
				return err
			}

			res, err := kr.Encrypt(ctx, plaintext, target)
			if err != nil {
				return fmt.Errorf("failed to encrypt: %w", err)
			}
			stdout(res)
		}

		return nil
	},
}

var decrypt = &cli.Command{
	Name:                      "decrypt",
	Usage:                     "decrypts a base64 nip44 ciphertext (or nip04 if specified using a flag) and returns the resulting plaintext",
	ArgsUsage:                 "[ciphertext base64]",
	DisableSliceFlagSeparator: true,
	Flags: append(
		defaultKeyFlags,
		&cli.StringFlag{
			Name:     "sender-pubkey",
			Aliases:  []string{"p", "src", "source", "pubkey"},
			Required: true,
		},
		&cli.BoolFlag{
			Name:  "nip04",
			Usage: "use nip04 encryption instead of nip44",
		},
	),
	Action: func(ctx context.Context, c *cli.Command) error {
		source := c.String("sender-pubkey")
		if !nostr.IsValidPublicKey(source) {
			return fmt.Errorf("source %s is not a valid public key", source)
		}

		ciphertext := c.Args().First()

		if c.Bool("nip04") {
			sec, bunker, err := gatherSecretKeyOrBunkerFromArguments(ctx, c)
			if err != nil {
				return err
			}

			if bunker != nil {
				plaintext, err := bunker.NIP04Decrypt(ctx, source, ciphertext)
				if err != nil {
					return err
				}
				stdout(plaintext)
			} else {
				ss, err := nip04.ComputeSharedSecret(source, sec)
				if err != nil {
					return fmt.Errorf("failed to compute nip04 shared secret: %w", err)
				}
				plaintext, err := nip04.Decrypt(ciphertext, ss)
				if err != nil {
					return fmt.Errorf("failed to encrypt as nip04: %w", err)
				}
				stdout(plaintext)
			}
		} else {
			kr, _, err := gatherKeyerFromArguments(ctx, c)
			if err != nil {
				return err
			}

			res, err := kr.Decrypt(ctx, ciphertext, source)
			if err != nil {
				return fmt.Errorf("failed to encrypt: %w", err)
			}
			stdout(res)
		}

		return nil
	},
}
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`package main`

			`import (`
			`"context"`
			`"fmt"`

			`"github.com/fiatjaf/cli/v3"`
			`"github.com/nbd-wtf/go-nostr"`
			`"github.com/nbd-wtf/go-nostr/nip04"`
			`)`

			`var encrypt = &cli.Command{`
			`Name: "encrypt",`
			`Usage: "encrypts a string with nip44 (or nip04 if specified using a flag) and returns the resulting ciphertext as base64",`
			`ArgsUsage: "[plaintext string]",`
			`DisableSliceFlagSeparator: true,`
			`Flags: append(`
			`defaultKeyFlags,`
			`&cli.StringFlag{`
			`Name: "recipient-pubkey",`
			`Aliases: []string{"p", "tgt", "target", "pubkey"},`
			`Required: true,`
			`},`
			`&cli.BoolFlag{`
			`Name: "nip04",`
			`Usage: "use nip04 encryption instead of nip44",`
			`},`
			`),`
			`Action: func(ctx context.Context, c *cli.Command) error {`
			`target := c.String("recipient-pubkey")`
			`if !nostr.IsValidPublicKey(target) {`
			`return fmt.Errorf("target %s is not a valid public key", target)`
			`}`

			`plaintext := c.Args().First()`

			`if c.Bool("nip04") {`
			`sec, bunker, err := gatherSecretKeyOrBunkerFromArguments(ctx, c)`
			`if err != nil {`
			`return err`
			`}`

			`if bunker != nil {`
			`ciphertext, err := bunker.NIP04Encrypt(ctx, target, plaintext)`
			`if err != nil {`
			`return err`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(ciphertext)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`} else {`
			`ss, err := nip04.ComputeSharedSecret(target, sec)`
			`if err != nil {`
			`return fmt.Errorf("failed to compute nip04 shared secret: %w", err)`
			`}`
			`ciphertext, err := nip04.Encrypt(plaintext, ss)`
			`if err != nil {`
			`return fmt.Errorf("failed to encrypt as nip04: %w", err)`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(ciphertext)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`}`
			`} else {`
remove duplicated password decryption prompts by returning the bare key together with the Keyer when it is given. 2024-10-29 20:11:15 -04:00			`kr, _, err := gatherKeyerFromArguments(ctx, c)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`if err != nil {`
			`return err`
			`}`

			`res, err := kr.Encrypt(ctx, plaintext, target)`
			`if err != nil {`
			`return fmt.Errorf("failed to encrypt: %w", err)`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(res)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`}`

			`return nil`
			`},`
			`}`

			`var decrypt = &cli.Command{`
			`Name: "decrypt",`
			`Usage: "decrypts a base64 nip44 ciphertext (or nip04 if specified using a flag) and returns the resulting plaintext",`
			`ArgsUsage: "[ciphertext base64]",`
			`DisableSliceFlagSeparator: true,`
			`Flags: append(`
			`defaultKeyFlags,`
			`&cli.StringFlag{`
			`Name: "sender-pubkey",`
			`Aliases: []string{"p", "src", "source", "pubkey"},`
			`Required: true,`
			`},`
			`&cli.BoolFlag{`
			`Name: "nip04",`
			`Usage: "use nip04 encryption instead of nip44",`
			`},`
			`),`
			`Action: func(ctx context.Context, c *cli.Command) error {`
			`source := c.String("sender-pubkey")`
			`if !nostr.IsValidPublicKey(source) {`
			`return fmt.Errorf("source %s is not a valid public key", source)`
			`}`

			`ciphertext := c.Args().First()`

			`if c.Bool("nip04") {`
			`sec, bunker, err := gatherSecretKeyOrBunkerFromArguments(ctx, c)`
			`if err != nil {`
			`return err`
			`}`

			`if bunker != nil {`
			`plaintext, err := bunker.NIP04Decrypt(ctx, source, ciphertext)`
			`if err != nil {`
			`return err`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(plaintext)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`} else {`
			`ss, err := nip04.ComputeSharedSecret(source, sec)`
			`if err != nil {`
			`return fmt.Errorf("failed to compute nip04 shared secret: %w", err)`
			`}`
			`plaintext, err := nip04.Decrypt(ciphertext, ss)`
			`if err != nil {`
			`return fmt.Errorf("failed to encrypt as nip04: %w", err)`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(plaintext)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`}`
			`} else {`
remove duplicated password decryption prompts by returning the bare key together with the Keyer when it is given. 2024-10-29 20:11:15 -04:00			`kr, _, err := gatherKeyerFromArguments(ctx, c)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`if err != nil {`
			`return err`
			`}`

			`res, err := kr.Decrypt(ctx, ciphertext, source)`
			`if err != nil {`
			`return fmt.Errorf("failed to encrypt: %w", err)`
			`}`
use stdout() function instead of fmt.Println() in some places. 2024-09-21 11:02:09 -04:00			`stdout(res)`
nak encrypt and nak decrypt: nip44 with option to do nip04. closes https://github.com/fiatjaf/nak/issues/36 2024-09-17 10:28:26 -04:00			`}`

			`return nil`
			`},`
			`}`