Merge pull request #11 from ValentinMontmirail/encryption

Put back test to ensure encryption.
ValentinMontmirail · Dec 26, 2023 · 4bd1a59 · 4bd1a59
2 parents 62f3831 + 8c8da4c
commit 4bd1a59
Show file tree

Hide file tree

Showing 4 changed files with 52,135 additions and 59,867 deletions.
diff --git a/.github/workflows/go.yaml b/.github/workflows/go.yaml
@@ -14,7 +14,7 @@ jobs:
     strategy:
       matrix:
         os: [ubuntu-latest, macos-latest]
-        go: ['1.18', '1.19', '1.20','1.21']
+        go: ['1.19', '1.20','1.21']
       fail-fast: false
     env:
       OS: ${{ matrix.os }}
@@ -60,7 +60,7 @@ jobs:
 
     strategy:
       matrix:
-        go: ['1.18', '1.19', '1.20','1.21']
+        go: ['1.19', '1.20','1.21']
       fail-fast: false
     env:
       OS: windows-latest

diff --git a/sqlcipher.go b/sqlcipher.go
@@ -0,0 +1,35 @@
+package sqlite3
+
+import (
+	"bytes"
+	"errors"
+	"os"
+)
+
+// sqlite3Header defines the header string used by SQLite 3.
+var sqlite3Header = []byte("SQLite format 3\000")
+
+// IsEncrypted returns true, if the database with the given filename is
+// encrypted, and false otherwise.
+// If the database header cannot be read properly an error is returned.
+func IsEncrypted(filename string) (bool, error) {
+	// open file
+	db, err := os.Open(filename)
+	if err != nil {
+		return false, err
+	}
+	defer db.Close()
+	// read header
+	var header [16]byte
+	n, err := db.Read(header[:])
+	if err != nil {
+		return false, err
+	}
+	if n != len(header) {
+		return false, errors.New("go-sqlcipher: could not read full header")
+	}
+	// SQLCipher encrypts also the header, the file is encrypted if the read
+	// header does not equal the header string used by SQLite 3.
+	encrypted := !bytes.Equal(header[:], sqlite3Header)
+	return encrypted, nil
+}