fleet/server/mdm/mdm.go

package mdm

import (
	"crypto"
	"crypto/x509"
	"encoding/base64"

	"go.mozilla.org/pkcs7"
)

// DecryptBase64CMS decrypts a base64 encoded pkcs7-encrypted value using the
// provided certificate and private key.
func DecryptBase64CMS(p7Base64 string, cert *x509.Certificate, key crypto.PrivateKey) ([]byte, error) {
	p7Bytes, err := base64.StdEncoding.DecodeString(p7Base64)
	if err != nil {
		return nil, err
	}

	p7, err := pkcs7.Parse(p7Bytes)
	if err != nil {
		return nil, err
	}

	return p7.Decrypt(cert, key)
}
Merging Bitlocker feature branch (#14350) This relates to #12577 --------- Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com> 2023-10-06 22:04:33 +00:00			`package mdm`

			`import (`
			`"crypto"`
			`"crypto/x509"`
			`"encoding/base64"`

			`"go.mozilla.org/pkcs7"`
			`)`

			`// DecryptBase64CMS decrypts a base64 encoded pkcs7-encrypted value using the`
			`// provided certificate and private key.`
			`func DecryptBase64CMS(p7Base64 string, cert *x509.Certificate, key crypto.PrivateKey) ([]byte, error) {`
			`p7Bytes, err := base64.StdEncoding.DecodeString(p7Base64)`
			`if err != nil {`
			`return nil, err`
			`}`

			`p7, err := pkcs7.Parse(p7Bytes)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return p7.Decrypt(cert, key)`
			`}`