diff --git a/openpgp.d.ts b/openpgp.d.ts index f6d5aaace..44f1f0b30 100644 --- a/openpgp.d.ts +++ b/openpgp.d.ts @@ -711,6 +711,7 @@ interface SubkeyOptions { keyExpirationTime?: number; date?: Date; sign?: boolean; + forwarding?: boolean; config?: PartialConfig; } diff --git a/src/key/factory.js b/src/key/factory.js index 0c9b6cb6c..0246eaadc 100644 --- a/src/key/factory.js +++ b/src/key/factory.js @@ -139,7 +139,8 @@ export async function reformat(options, config) { helper.getLatestValidSignature(subkey.bindingSignatures, secretKeyPacket, enums.signature.subkeyBinding, dataToVerify, null, config) ).catch(() => ({})); return { - sign: bindingSignature.keyFlags && (bindingSignature.keyFlags[0] & enums.keyFlags.signData) + sign: bindingSignature.keyFlags && (bindingSignature.keyFlags[0] & enums.keyFlags.signData), + forwarding: bindingSignature.keyFlags && (bindingSignature.keyFlags[0] & enums.keyFlags.forwardedCommunication) }; })); } diff --git a/src/key/helper.js b/src/key/helper.js index 32bd0512f..9c185d3b0 100644 --- a/src/key/helper.js +++ b/src/key/helper.js @@ -92,7 +92,9 @@ export async function createBindingSignature(subkey, primaryKey, options, config signatureType: enums.signature.keyBinding }, options.date, undefined, undefined, undefined, config); } else { - signatureProperties.keyFlags = [enums.keyFlags.encryptCommunication | enums.keyFlags.encryptStorage]; + signatureProperties.keyFlags = options.forwarding ? + [enums.keyFlags.forwardedCommunication] : + [enums.keyFlags.encryptCommunication | enums.keyFlags.encryptStorage]; } if (options.keyExpirationTime > 0) { signatureProperties.keyExpirationTime = options.keyExpirationTime; @@ -326,6 +328,10 @@ export function sanitizeKeyOptions(options, subkeyDefaults = {}) { options.date = options.date || subkeyDefaults.date; options.sign = options.sign || false; + options.forwarding = options.forwarding || false; + if (options.sign && options.forwarding) { + throw new Error('Incompatible options: "sign" and "forwarding" cannot be set together'); + } switch (options.type) { case 'ecc': // NB: this case also handles legacy eddsa and x25519 keys, based on `options.curve` diff --git a/test/general/forwarding.js b/test/general/forwarding.js index b39fb90b8..ad9ec71b0 100644 --- a/test/general/forwarding.js +++ b/test/general/forwarding.js @@ -52,4 +52,50 @@ export default () => describe('Forwarding', function() { const { data: expectedSerializedKey } = await openpgp.unarmor(charlieKeyArmored); expect(serializedKey).to.deep.equal(expectedSerializedKey); }); + + it('generates subkey with forwarding flag (0x40)', async function() { + const { privateKey: armoredKey } = await openpgp.generateKey({ userIDs: { email: 'test@forwarding.it' }, subkeys: [{ forwarding: true }, {}] }); + const privateKey = await openpgp.readKey({ armoredKey }); + + expect(privateKey.subkeys[0].bindingSignatures[0].keyFlags[0]).to.equal(openpgp.enums.keyFlags.forwardedCommunication); + expect(privateKey.subkeys[1].bindingSignatures[0].keyFlags[0]).to.equal(openpgp.enums.keyFlags.encryptCommunication | openpgp.enums.keyFlags.encryptStorage); + }); + + it('reformatting a key preserves its forwarding flags (0x40)', async function() { + // two subkeys, the first with forwarding flag, the second with standard encryption ones + const privateKey = await openpgp.readKey({ armoredKey: `-----BEGIN PGP PRIVATE KEY BLOCK----- + +xVgEZPhkahYJKwYBBAHaRw8BAQdARUPOBft22XPObTCYNRD2VB8ESYHOZsII +XrpUHn2AstUAAQCl30ZHts8cyRRXw7B2595L8RIovkwxhnCRTqe+V92+2BFK +zRQ8dGVzdEBmb3J3YXJkaW5nLml0PsKMBBAWCgA+BYJk+GRqBAsJBwgJkLvy +KUWO/JamAxUICgQWAAIBAhkBApsDAh4BFiEEM00dF5bOjezdbhYlu/IpRY78 +lqYAAP6uAQDt7Xxoh+VUB/xkOX1cj7at7U7zrKAxq7Xh1YbGM+RHKgEAgRoz +UGXKsQigC2KyXGW0nObT8RfUcQIUyrkVdImWiAjHXQRk+GRqEgorBgEEAZdV +AQUBAQdA1E/PrQHG7g8UW7v7fKwgc0x+jTHp8cOa3SGAqd3Pc3gDAQgHAAD/ +TY0mClFVWkDM/W6CnN7pOO36baJ0o1LJAVHucDTbxOgSMMJ4BBgWCAAqBYJk ++GRqCZC78ilFjvyWpgKbQBYhBDNNHReWzo3s3W4WJbvyKUWO/JamAABzegEA +mP3WSG1pceOppv5ncSoZJ9GZoaiXxnkk2TyLvmBQi7kA/1MoAjQDjF3XbX8y +ScSjs3juhSAQ/MnFj8RsDaI7XdIBx10EZPhkahIKKwYBBAGXVQEFAQEHQEyC +E9n5Jo23u9OfoVcUwEfQj4yAMhNBII3j5ePRDaYXAwEIBwAA/2M7YfJN9jV4 +LuiY7ldrWsd875xA5s6I6/8aOtUHuJcYEmPCeAQYFggAKgWCZPhkagmQu/Ip +RY78lqYCmwwWIQQzTR0Xls6N7N1uFiW78ilFjvyWpgAA5KEBAKaoHbyi3wpr +jt2m75fdx10rDOxJDR9H6ilI5ygLWeLsAPoCozX/3KhXLx8WbTe7MFcGl47J +YdgLdgXl0dn/xdXjCQ== +=eC8z +-----END PGP PRIVATE KEY BLOCK-----` }); + + const { privateKey: reformattedKey } = await openpgp.reformatKey({ privateKey, userIDs: { email: 'test@forwarding.it' }, format: 'object' }); + + expect(reformattedKey.subkeys[0].bindingSignatures[0].keyFlags[0]).to.equal(openpgp.enums.keyFlags.forwardedCommunication); + expect(reformattedKey.subkeys[1].bindingSignatures[0].keyFlags[0]).to.equal(openpgp.enums.keyFlags.encryptCommunication | openpgp.enums.keyFlags.encryptStorage); + }); + + it('refuses to encrypt using encryption key with forwarding flag (0x40)', async function() { + const charlieKey = await openpgp.readKey({ armoredKey: charlieKeyArmored }); + + await expect(openpgp.encrypt({ + message: await openpgp.createMessage({ text: 'abc' }), + encryptionKeys: charlieKey + })).to.be.rejectedWith(/Could not find valid encryption key packet/); + }); });