Merge pull request #21 from johnkellyoxford/dev

Dev

Author: john-h-k

.travis.yml

@@ -5,6 +5,8 @@ VisualStudioVersion = 15.0.28010.2016
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "EncryptionApp", "src\EncryptionApp.csproj", "{701B9935-7BF8-4BA2-861A-7764761C1318}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "utils", "utils\utils.csproj", "{0FA675C6-6565-4F9A-B9D0-56118C9AE1A8}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -15,6 +17,10 @@ Global
 		{701B9935-7BF8-4BA2-861A-7764761C1318}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{701B9935-7BF8-4BA2-861A-7764761C1318}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{701B9935-7BF8-4BA2-861A-7764761C1318}.Release|Any CPU.Build.0 = Release|Any CPU
+		{0FA675C6-6565-4F9A-B9D0-56118C9AE1A8}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{0FA675C6-6565-4F9A-B9D0-56118C9AE1A8}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{0FA675C6-6565-4F9A-B9D0-56118C9AE1A8}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{0FA675C6-6565-4F9A-B9D0-56118C9AE1A8}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE

EncryptionApp.sln

@@ -41,7 +41,7 @@
 
 ### <p id="HMAC">HMAC</p>
 
-The HMAC (Hash Message Authentication Code) is a hash that is used to verify the message hasn't been tampered with. The HMAC is the hashed value of the encrypted message. The receiver can re-hash the received message to verify the message hasn't been tampered with. **IMPORTANT: HMAC construction MUST be actual HMAC algorithm, not just hashing. See [this](https://en.wikipedia.org/wiki/HMAC#Implementation) for details ****
+The HMAC (Hash Message Authentication Code) is a hash that is used to verify the message hasn't been tampered with. The HMAC is the hashed value of the encrypted message. The receiver can re-hash the received message to verify the message hasn't been tampered with. **IMPORTANT: HMAC construction MUST be actual HMAC algorithm, not just hashing. See [this](https://en.wikipedia.org/wiki/HMAC#Implementation) for details ***
 
 ### <p id ="ENCRYPTMODE">ENCRYPTMODE</P>
 

docs/HeaderSpec.md

@@ -1,73 +1,78 @@
-using System;
-using System.IO;
+using System.IO;
 using System.Security.Cryptography;
 
-namespace Encryption_App
+namespace Encryption_App.Backend
 {
-    class AESCryptoManager
+    internal class AesCryptoManager
     {
-        public void EncryptBytes(string iF, string oF, byte[] passwordBytes)
+        public void EncryptBytes(string inputFile, string outFile, byte[] passwordBytes)
         {
 
-            byte[] saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };
+            var saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };
 
-            using (var AES = new AesManaged())
+            using (var aes = new AesManaged())
             {
 
-                AES.KeySize = 256;
-                AES.BlockSize = 128;
+                // AESManaged properties
+                aes.KeySize = 256;
+                aes.BlockSize = 128;
+                aes.Padding = PaddingMode.PKCS7;
+                aes.Mode = CipherMode.CBC;
+
+
+                // Derives a key using PBKDF2 from the password and a salts
                 var key = new Rfc2898DeriveBytes(passwordBytes, saltBytes, 100000);
-                AES.Key = key.GetBytes(AES.KeySize / 8);
-                AES.IV = key.GetBytes(AES.BlockSize / 8);
-                AES.Padding = PaddingMode.PKCS7;
-                AES.Mode = CipherMode.CBC;
-
-                using (var outFile = File.Create(oF))
-                using (var cs = new CryptoStream(outFile, AES.CreateEncryptor(), CryptoStreamMode.Write))
-                using (var inFile = File.OpenRead(iF))
-                using (var br = new BinaryReader(inFile))
+
+
+                // Set actual IV and key
+                aes.Key = key.GetBytes(aes.KeySize / 8);
+                aes.IV = key.GetBytes(aes.BlockSize / 8);
+
+                using (var outFileStream = new FileStream(outFile, FileMode.Create))
+                using (var cs = new CryptoStream(outFileStream, aes.CreateEncryptor(), CryptoStreamMode.Write))
+                using (var inFileStream = new FileStream(inputFile, FileMode.Create))
                 {
 
                     sbyte data;
-                    while ((data = (sbyte)inFile.ReadByte()) != -1)
+                    while ((data = (sbyte)inFileStream.ReadByte()) != -1)
                         cs.WriteByte((byte)data);
-
                 }
             }
         }
 
-        public bool DecryptBytes(string iF, string oF, byte[] passwordBytes)
+        public bool DecryptBytes(string inputFile, string outFile, byte[] passwordBytes)
         {
 
-            byte[] saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };
+            var saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };
 
-            using (var AES = new AesManaged())
+            using (var aes = new AesManaged())
             {
 
                 // AESManaged properties
-                AES.KeySize = 256;
-                AES.BlockSize = 128;
-                AES.Padding = PaddingMode.PKCS7;
-                AES.Mode = CipherMode.CBC;
+                aes.KeySize = 256;
+                aes.BlockSize = 128;
+                aes.Padding = PaddingMode.PKCS7;
+                aes.Mode = CipherMode.CBC;
 
+
+                // Derives a key using PBKDF2 from the password and a salt
                 var key = new Rfc2898DeriveBytes(passwordBytes, saltBytes, 100000);
 
 
                 // Set actual IV and key
-                AES.Key = key.GetBytes(AES.KeySize / 8);
-                AES.IV = key.GetBytes(AES.BlockSize / 8);
+                aes.Key = key.GetBytes(aes.KeySize / 8);
+                aes.IV = key.GetBytes(aes.BlockSize / 8);
 
                 try
                 {
-                    using (var inFile = File.OpenRead(iF))
-                    using (var cs = new CryptoStream(inFile, AES.CreateDecryptor(), CryptoStreamMode.Read))
-                    using (var outFile = File.Create(oF))
+                    using (var outFileStream = new FileStream(outFile, FileMode.Create))
+                    using (var cs = new CryptoStream(outFileStream, aes.CreateEncryptor(), CryptoStreamMode.Write))
+                    using (var inFileStream = new FileStream(inputFile, FileMode.Create))
                     {
 
                         sbyte data;
-                        while ((data = (sbyte)cs.ReadByte()) != -1)
-                            outFile.WriteByte((byte)data);
-
+                        while ((data = (sbyte)inFileStream.ReadByte()) != -1)
+                            cs.WriteByte((byte)data);
                     }
                 }
                 catch (CryptographicException)

src/Backend/AESCryptoManager.cs

@@ -1,15 +1,9 @@
-using System;
-using System.Collections.Generic;
-using System.Linq;
-using System.Text;
-using System.Threading.Tasks;
-
-namespace Encryption_App.Backend
+namespace Encryption_App.Backend
 {
-    abstract class CryptoManager
+    internal abstract class CryptoManager
     {
         public abstract byte[] EncryptBytes();
-
+        
         public abstract bool DecryptBytes();
     }
 }

src/Backend/CryptoManager.cs

@@ -1,12 +1,20 @@
 using System;
-using System.IO;
 using System.Linq;
 using System.Security.Cryptography;
 
-namespace Encryption_App
+namespace Encryption_App.Backend
 {
-    class MessageAuthenticator
+    /// <summary>
+    /// Used for signing and verifying HMACs
+    /// </summary>
+    internal class MessageAuthenticator
     {
+        /// <summary>
+        /// Creates a byte[] hashcode that represents the file and key hashed with SHA384. Do not try and verify this yourself, use the VerifyHMAC() func
+        /// </summary>
+        /// <param name="data">A byte[] of the encrypted message data</param>
+        /// <param name="key">A byte[] of the key</param>
+        /// <returns>A byte[] hash that is the file and key hashed</returns>
         public byte[] CreateHMAC(byte[] data, byte[] key)
         {
             byte[] hashKey;
@@ -18,17 +26,24 @@ public byte[] CreateHMAC(byte[] data, byte[] key)
 
             return hashKey;
         }
-
-        public byte[] CreateHMAC(byte[] data, byte[] key, Type TypeOfHash)
+        
+        /// <summary>
+        /// Signs a encrypted file and key with a hash algorithm of your choosing. Do not try and verify this yourself, use the VerifyHMAC() func
+        /// </summary>
+        /// <param name="data">A byte[] of the encrypted message data</param>
+        /// <param name="key">A byte[] of the key</param>
+        /// <param name="typeOfHash">typeof() any derivative of the System.Security.Cryptography.HMAC class</param>
+        /// <returns>A byte[] hash that is the file and key hashed</returns>
+        public byte[] CreateHMAC(byte[] data, byte[] key, Type typeOfHash)
         {
             HMAC hmac;
-            if (TypeOfHash.IsSubclassOf(typeof(HMAC)))
+            if (typeOfHash.IsSubclassOf(typeof(HMAC)))
             {
-                hmac = (HMAC)Activator.CreateInstance(TypeOfHash);
+                hmac = (HMAC)Activator.CreateInstance(typeOfHash);
             }
             else
             {
-                throw new ArgumentException("TypeOfHash is not a derivative of \"System.Security.Cryptorgaphy.HMAC\"");
+                throw new ArgumentException("TypeOfHash is not a derivative of \"System.Security.Cryptography.HMAC\"");
             }
 
             byte[] hashKey;
@@ -41,6 +56,13 @@ public byte[] CreateHMAC(byte[] data, byte[] key, Type TypeOfHash)
             return hashKey;
         }
 
+        /// <summary>
+        /// A function that verifies a HMAC file with SHA384
+        /// </summary>
+        /// <param name="data">A byte[] of encrypted message data</param>
+        /// <param name="key">A byte[] of the key</param>
+        /// <param name="hash">The hash in the header file/the hash provided, that's been hashed with SHA384</param>
+        /// <returns>True if they match, otherwise false</returns>
         public bool VerifyHMAC(byte[] data, byte[] key, byte[] hash)
         {
             byte[] hashKey;
@@ -50,24 +72,28 @@ public bool VerifyHMAC(byte[] data, byte[] key, byte[] hash)
                 hashKey = hmac.ComputeHash(data);
             }
 
-            if (data.SequenceEqual(hash))
-            {
-                return true;
-            }
-
-            return false;
+            return hashKey.SequenceEqual(hash);
         }
 
-        public bool VerifyHMAC(byte[] data, byte[] key, byte[] hash, Type TypeOfHash)
+
+        /// <summary>
+        /// A function that verifies a HMAC file with a hash algorithm of your choice
+        /// </summary>
+        /// <param name="data">A byte[] of encrypted message data</param>
+        /// <param name="key">A byte[] of the key</param>
+        /// <param name="hash">The hash in the header file/the hash provided, that's been hashed with typeOfHash</param>
+        /// <param name="typeOfHash">typeof() the hash algorithm you used to create this, derived from System.Security.Cryptography.HMAC</param>
+        /// <returns>True if they match, otherwise false</returns>
+        public bool VerifyHMAC(byte[] data, byte[] key, byte[] hash, Type typeOfHash)
         {
             HMAC hmac;
-            if (TypeOfHash.IsSubclassOf(typeof(HMAC)))
+            if (typeOfHash.IsSubclassOf(typeof(HMAC)))
             {
-                hmac = (HMAC)Activator.CreateInstance(TypeOfHash);
+                hmac = (HMAC)Activator.CreateInstance(typeOfHash, key);
             }
             else
             {
-                throw new ArgumentException("TypeOfHash is not a derivative of \"System.Security.Cryptorgaphy.HMAC\"");
+                throw new ArgumentException("TypeOfHash is not a derivative of \"System.Security.Cryptography.HMAC\"");
             }
 
             byte[] hashKey;
@@ -77,12 +103,7 @@ public bool VerifyHMAC(byte[] data, byte[] key, byte[] hash, Type TypeOfHash)
                 hashKey = hmac.ComputeHash(data);
             }
 
-            if (data.SequenceEqual(hash))
-            {
-                return true;
-            }
-
-            return false;
+            return data.SequenceEqual(hashKey);  // returns true if they match
         }
     }
-}
+}

src/Backend/MessageAuthenticator.cs

@@ -59,7 +59,7 @@
       <Generator>MSBuild:Compile</Generator>
       <SubType>Designer</SubType>
     </Page>
-    <Compile Include="Backend\AESCryptoManager.cs" />
+    <Compile Include="Backend\AesCryptoManager.cs" />
     <Compile Include="Backend\CryptoManager.cs" />
     <Compile Include="Backend\MessageAuthenticator.cs" />
     <Compile Include="UI\App.xaml.cs">

src/EncryptionApp.csproj

@@ -1,6 +1,4 @@
 using System.Reflection;
-using System.Resources;
-using System.Runtime.CompilerServices;
 using System.Runtime.InteropServices;
 using System.Windows;
 

src/Properties/AssemblyInfo.cs

@@ -1,10 +1,4 @@
-using System;
-using System.Collections.Generic;
-using System.Configuration;
-using System.Data;
-using System.Linq;
-using System.Threading.Tasks;
-using System.Windows;
+using System.Windows;
 
 namespace Encryption_App
 {