package nametransform import ( "crypto/sha256" "io/ioutil" "os" "path/filepath" "strings" "syscall" "github.com/rfjakob/gocryptfs/internal/syscallcompat" "github.com/rfjakob/gocryptfs/internal/tlog" ) const ( // LongNameSuffix is the suffix used for files with long names. // Files with long names are stored in two files: // gocryptfs.longname.[sha256] <--- File content, prefix = gocryptfs.longname. // gocryptfs.longname.[sha256].name <--- File name, suffix = .name LongNameSuffix = ".name" longNamePrefix = "gocryptfs.longname." ) // HashLongName - take the hash of a long string "name" and return // "gocryptfs.longname.[sha256]" func (n *NameTransform) HashLongName(name string) string { hashBin := sha256.Sum256([]byte(name)) hashBase64 := n.b64.EncodeToString(hashBin[:]) return longNamePrefix + hashBase64 } // Values returned by IsLongName const ( // LongNameContent is the file that stores the file content. // Example: gocryptfs.longname.URrM8kgxTKYMgCk4hKk7RO9Lcfr30XQof4L_5bD9Iro= LongNameContent = iota // LongNameFilename is the file that stores the full encrypted filename. // Example: gocryptfs.longname.URrM8kgxTKYMgCk4hKk7RO9Lcfr30XQof4L_5bD9Iro=.name LongNameFilename = iota // LongNameNone is used when the file does not have a long name. // Example: i1bpTaVLZq7sRNA9mL_2Ig== LongNameNone = iota ) // NameType - detect if cName is // gocryptfs.longname.[sha256] ........ LongNameContent (content of a long name file) // gocryptfs.longname.[sha256].name .... LongNameFilename (full file name of a long name file) // else ................................ LongNameNone (normal file) func NameType(cName string) int { if !strings.HasPrefix(cName, longNamePrefix) { return LongNameNone } if strings.HasSuffix(cName, LongNameSuffix) { return LongNameFilename } return LongNameContent } // IsLongContent returns true if "cName" is the content store of a long name // file (looks like "gocryptfs.longname.[sha256]"). func IsLongContent(cName string) bool { return NameType(cName) == LongNameContent } // ReadLongName - read path.name func ReadLongName(path string) (string, error) { content, err := ioutil.ReadFile(path + LongNameSuffix) if err != nil { tlog.Warn.Printf("ReadLongName: %v", err) } return string(content), err } // DeleteLongName deletes "hashName.name". func DeleteLongName(dirfd *os.File, hashName string) error { err := syscallcompat.Unlinkat(int(dirfd.Fd()), hashName+LongNameSuffix) if err != nil { tlog.Warn.Printf("DeleteLongName: %v", err) } return err } // WriteLongName encrypts plainName and writes it into "hashName.name". // For the convenience of the caller, plainName may also be a path and will be // converted internally. func (n *NameTransform) WriteLongName(dirfd *os.File, hashName string, plainName string) (err error) { plainName = filepath.Base(plainName) // Encrypt the basename dirIV, err := ReadDirIVAt(dirfd) if err != nil { return err } cName := n.EncryptName(plainName, dirIV) // Write the encrypted name into hashName.name fdRaw, err := syscallcompat.Openat(int(dirfd.Fd()), hashName+LongNameSuffix, syscall.O_WRONLY|syscall.O_CREAT|syscall.O_EXCL, 0600) if err != nil { tlog.Warn.Printf("WriteLongName: Openat: %v", err) return err } fd := os.NewFile(uintptr(fdRaw), hashName+LongNameSuffix) defer fd.Close() _, err = fd.Write([]byte(cName)) if err != nil { tlog.Warn.Printf("WriteLongName: Write: %v", err) } return err }