diff options
Diffstat (limited to 'internal')
| -rw-r--r-- | internal/contentenc/content.go | 33 | ||||
| -rw-r--r-- | internal/contentenc/content_api.go | 35 | ||||
| -rw-r--r-- | internal/nametransform/diriv.go (renamed from internal/nametransform/names_diriv.go) | 0 | ||||
| -rw-r--r-- | internal/nametransform/name_api.go | 18 | ||||
| -rw-r--r-- | internal/nametransform/names.go (renamed from internal/nametransform/names_core.go) | 27 | ||||
| -rw-r--r-- | internal/nametransform/noiv.go (renamed from internal/nametransform/names_noiv.go) | 0 | 
6 files changed, 56 insertions, 57 deletions
| diff --git a/internal/contentenc/content.go b/internal/contentenc/content.go index 5bac2a2..2298c5e 100644 --- a/internal/contentenc/content.go +++ b/internal/contentenc/content.go @@ -8,9 +8,42 @@ import (  	"encoding/hex"  	"errors" +	"github.com/rfjakob/gocryptfs/internal/cryptocore"  	"github.com/rfjakob/gocryptfs/internal/tlog"  ) +const ( +	// Default plaintext block size +	DefaultBS = 4096 +) + +type ContentEnc struct { +	// Cryptographic primitives +	cryptoCore *cryptocore.CryptoCore +	// Plaintext block size +	plainBS uint64 +	// Ciphertext block size +	cipherBS uint64 +	// All-zero block of size cipherBS, for fast compares +	allZeroBlock []byte +} + +func New(cc *cryptocore.CryptoCore, plainBS uint64) *ContentEnc { + +	cipherBS := plainBS + uint64(cc.IVLen) + cryptocore.AuthTagLen + +	return &ContentEnc{ +		cryptoCore:   cc, +		plainBS:      plainBS, +		cipherBS:     cipherBS, +		allZeroBlock: make([]byte, cipherBS), +	} +} + +func (be *ContentEnc) PlainBS() uint64 { +	return be.plainBS +} +  // DecryptBlocks - Decrypt a number of blocks  func (be *ContentEnc) DecryptBlocks(ciphertext []byte, firstBlockNo uint64, fileId []byte) ([]byte, error) {  	cBuf := bytes.NewBuffer(ciphertext) diff --git a/internal/contentenc/content_api.go b/internal/contentenc/content_api.go deleted file mode 100644 index cf482b6..0000000 --- a/internal/contentenc/content_api.go +++ /dev/null @@ -1,35 +0,0 @@ -package contentenc - -import "github.com/rfjakob/gocryptfs/internal/cryptocore" - -const ( -	// Default plaintext block size -	DefaultBS = 4096 -) - -type ContentEnc struct { -	// Cryptographic primitives -	cryptoCore *cryptocore.CryptoCore -	// Plaintext block size -	plainBS uint64 -	// Ciphertext block size -	cipherBS uint64 -	// All-zero block of size cipherBS, for fast compares -	allZeroBlock []byte -} - -func New(cc *cryptocore.CryptoCore, plainBS uint64) *ContentEnc { - -	cipherBS := plainBS + uint64(cc.IVLen) + cryptocore.AuthTagLen - -	return &ContentEnc{ -		cryptoCore:   cc, -		plainBS:      plainBS, -		cipherBS:     cipherBS, -		allZeroBlock: make([]byte, cipherBS), -	} -} - -func (be *ContentEnc) PlainBS() uint64 { -	return be.plainBS -} diff --git a/internal/nametransform/names_diriv.go b/internal/nametransform/diriv.go index b9473aa..b9473aa 100644 --- a/internal/nametransform/names_diriv.go +++ b/internal/nametransform/diriv.go diff --git a/internal/nametransform/name_api.go b/internal/nametransform/name_api.go deleted file mode 100644 index 7ac7d26..0000000 --- a/internal/nametransform/name_api.go +++ /dev/null @@ -1,18 +0,0 @@ -package nametransform - -import "github.com/rfjakob/gocryptfs/internal/cryptocore" - -type NameTransform struct { -	cryptoCore *cryptocore.CryptoCore -	useEME     bool -	longNames  bool -	DirIVCache dirIVCache -} - -func New(c *cryptocore.CryptoCore, useEME bool, longNames bool) *NameTransform { -	return &NameTransform{ -		cryptoCore: c, -		longNames:  longNames, -		useEME:     useEME, -	} -} diff --git a/internal/nametransform/names_core.go b/internal/nametransform/names.go index 779b885..8a7e260 100644 --- a/internal/nametransform/names_core.go +++ b/internal/nametransform/names.go @@ -9,10 +9,28 @@ import (  	"fmt"  	"github.com/rfjakob/eme" + +	"github.com/rfjakob/gocryptfs/internal/cryptocore"  ) +type NameTransform struct { +	cryptoCore *cryptocore.CryptoCore +	useEME     bool +	longNames  bool +	DirIVCache dirIVCache +} + +func New(c *cryptocore.CryptoCore, useEME bool, longNames bool) *NameTransform { +	return &NameTransform{ +		cryptoCore: c, +		longNames:  longNames, +		useEME:     useEME, +	} +} +  // DecryptName - decrypt base64-encoded encrypted filename "cipherName" -// The used encryption is either CBC or EME, depending on "useEME". +// Used by DecryptPathDirIV(). +// The encryption is either CBC or EME, depending on "useEME".  //  // This function is exported because it allows for a very efficient readdir  // implementation (read IV once, decrypt all names using this function). @@ -43,11 +61,12 @@ func (n *NameTransform) DecryptName(cipherName string, iv []byte) (string, error  	return plain, err  } -// encryptName - encrypt "plainName", return base64-encoded "cipherName64" -// The used encryption is either CBC or EME, depending on "useEME". +// encryptName - encrypt "plainName", return base64-encoded "cipherName64". +// Used internally by EncryptPathDirIV(). +// The encryption is either CBC or EME, depending on "useEME".  //  // This function is exported because fusefrontend needs access to the full (not hashed) -// name if longname is used +// name if longname is used. Otherwise you should use EncryptPathDirIV()  func (n *NameTransform) EncryptName(plainName string, iv []byte) (cipherName64 string) {  	bin := []byte(plainName) diff --git a/internal/nametransform/names_noiv.go b/internal/nametransform/noiv.go index f1009e4..f1009e4 100644 --- a/internal/nametransform/names_noiv.go +++ b/internal/nametransform/noiv.go | 
