diff options
Diffstat (limited to 'internal/stupidgcm')
| -rw-r--r-- | internal/stupidgcm/locking.go | 2 | ||||
| -rw-r--r-- | internal/stupidgcm/stupidgcm.go | 5 | ||||
| -rw-r--r-- | internal/stupidgcm/without_openssl.go | 48 | 
3 files changed, 55 insertions, 0 deletions
| diff --git a/internal/stupidgcm/locking.go b/internal/stupidgcm/locking.go index 88f0900..952d669 100644 --- a/internal/stupidgcm/locking.go +++ b/internal/stupidgcm/locking.go @@ -1,3 +1,5 @@ +// +build !without_openssl +  package stupidgcm  // In general, OpenSSL is only threadsafe if you provide a locking function diff --git a/internal/stupidgcm/stupidgcm.go b/internal/stupidgcm/stupidgcm.go index 0f4e25d..db9e6ef 100644 --- a/internal/stupidgcm/stupidgcm.go +++ b/internal/stupidgcm/stupidgcm.go @@ -1,3 +1,5 @@ +// +build !without_openssl +  // Package stupidgcm is a thin wrapper for OpenSSL's GCM encryption and  // decryption functions. It only support 32-byte keys and 16-bit IVs.  package stupidgcm @@ -13,6 +15,9 @@ import (  )  const ( +	// Has openssl been disabled at compile-time? +	BuiltWithoutOpenssl = false +  	keyLen = 32  	ivLen  = 16  	tagLen = 16 diff --git a/internal/stupidgcm/without_openssl.go b/internal/stupidgcm/without_openssl.go new file mode 100644 index 0000000..0b3cf90 --- /dev/null +++ b/internal/stupidgcm/without_openssl.go @@ -0,0 +1,48 @@ +// +build without_openssl + +package stupidgcm + +import ( +	"os" + +	"github.com/rfjakob/gocryptfs/internal/tlog" +) + +type stupidGCM struct{} + +const ( +	// Has openssl been disabled at compile-time? +	BuiltWithoutOpenssl = true +) + +func errExit() { +	tlog.Fatal.Println("gocryptfs has been compiled without openssl support but you are still trying to use openssl") +	os.Exit(2) +} + +func New(_ []byte) stupidGCM { +	errExit() +	// This panic is never reached, but having it here stops the Go compiler +	// from complaining about the missing return code. +	panic("") +} + +func (g stupidGCM) NonceSize() int { +	errExit() +	panic("") +} + +func (g stupidGCM) Overhead() int { +	errExit() +	panic("") +} + +func (g stupidGCM) Seal(_, _, _, _ []byte) []byte { +	errExit() +	panic("") +} + +func (g stupidGCM) Open(_, _, _, _ []byte) ([]byte, error) { +	errExit() +	panic("") +} | 
