@@ -90,10 +90,10 @@ encrypt() {
9090 (echo -n " ${header}${header: +$' \n\n ' " ; $cmd " $arg "
9191 | 3<<< " $(writekey)" > " ${file} "
9292
93- # Get rid of the temp file once server supports HTTP/1.1 chunked uploads
94- # correctly.
93+ et=" \" $( etag < " ${file} " ) \" "
9594 (curl -sS -o /dev/fd/3 -H " X-Server-Key: ${serverkey} "
9695 -H " Content-type: text/vnd.paste.sh-${VERSION} "
96+ -H " ETag: $et "
9797 -T " ${file} " " ${HOST} /${id} " " $pasteauth " ' %{http_code}'
9898 | grep -q 200) 3>&1 || exit $?
9999
@@ -116,6 +116,15 @@ decrypt() {
116116 -D " ${headfile} " " ${url} .txt" || exit $?
117117 serverkey=$( head -n1 " ${tmpfile} " )
118118 ct=" $( grep -i ' ^content-type:' ${headfile} | cut -d' :' ) "
119+
120+ et=" $( grep -i ' ^etag:' ${headfile} | cut -d' :' | tr -d ' \015 ' ) "
121+ if [[ -n " $et " ; then
122+ expected_et=" \" $( etag < " ${tmpfile} " ) \" "
123+ if [[ " $et " != " $expected_et " ; then
124+ die " Decryption failed (Invalid decryption key or damaged data)"
125+ fi
126+ fi
127+
119128 remove=cat
120129 ITERS=" -iter 1"
121130 if [[ $ct = * text/plain* ]]; then
@@ -145,6 +154,20 @@ fsize() {
145154 fi
146155}
147156
157+ etag () {
158+ # "61757468206b6579" is "auth key"
159+ openssl base64 -d | hmac " $( writekey | hmac " 61757468206b6579" ) " " -binary" | openssl base64 -A | sed ' s/==$//'
160+ }
161+
162+ # Implement HMAC on top of OpenSSL's digest command, as openssl's CLI support
163+ # for generating a HMAC needs the key on the command line.
164+ hmac () {
165+ local key=" $1 "
166+ local opts=" $2 "
167+ key=" $key " ' print join("", map { chr hex } $ENV{key} =~ /(..)/g)^"\x36"x128; print join "", <>' | openssl sha512 -binary | \
168+ key=" $key " ' print join("", map { chr hex } $ENV{key} =~ /(..)/g)^"\x5c"x128; print join "", <>' | openssl sha512 $opts
169+ }
170+
148171# Try to use memory if we can (Linux, probably) and the user hasn't set TMPDIR
149172if [ -z " $TMPDIR " -a -w /dev/shm ]; then
150173 export TMPDIR=/dev/shm
0 commit comments