bollwerkadmin/bollwerk
1
0
Fork 0
Code Issues 8 Pull requests Projects Releases Packages Wiki Activity Actions

fix(server): use direct Tink primitive for admin message encryption

Browse source
This commit is contained in:
Jens Reinemann 2026-05-18 16:17:50 +02:00
parent cd8290098c
commit e0026b6eff
1 changed files with 1 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
server/src/main/kotlin/de/bollwerk/server/service/AdminMessageService.kt
View file

@ -27,11 +27,7 @@ internal class AdminMessageService(
Charsets.UTF_8 Charsets.UTF_8
) )
val publicHandle = JsonKeysetReader.withString(publicKeysetJson).read() val publicHandle = JsonKeysetReader.withString(publicKeysetJson).read()
val hybridEncrypt = publicHandle.getPrimitive(HybridEncrypt::class.java)
// Use reflection to call getPrimitive since it may not be directly accessible
val getPrimitiveMethod = publicHandle::class.java.getMethod("getPrimitive", Class::class.java)
@Suppress("UNCHECKED_CAST")
val hybridEncrypt = getPrimitiveMethod.invoke(publicHandle, HybridEncrypt::class.java) as HybridEncrypt
val ciphertext = hybridEncrypt.encrypt(plaintext.toByteArray(Charsets.UTF_8), null) val ciphertext = hybridEncrypt.encrypt(plaintext.toByteArray(Charsets.UTF_8), null)
return Base64.getEncoder().encodeToString(ciphertext) return Base64.getEncoder().encodeToString(ciphertext)