Adapted new cryptolib API

Author: overheadhunter

pom.xml

@@ -92,6 +92,13 @@
 			<version>2.6.1</version>
 			<scope>test</scope>
 		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcprov-jdk15on</artifactId>
+			<version>1.54</version>
+			<!-- not actually needed, but otherwise unit tests fail in Eclipe, if the "cryptolib" project is opened in the same workspace -->
+			<scope>test</scope>
+		</dependency>
 	</dependencies>
 
 	<build>

src/main/java/org/cryptomator/cryptofs/Constants.java

@@ -14,5 +14,6 @@ final class Constants {
 	public static final String BACKUPKEY_FILE_NAME = "masterkey.cryptomator.bkup";
 	public static final String DATA_DIR_NAME = "d";
 	public static final String DIR_PREFIX = "0";
+	public static final int VAULT_VERSION = 4;
 
 }

src/main/java/org/cryptomator/cryptofs/CryptoBasicFileAttributes.java

@@ -17,8 +17,7 @@
 import java.nio.file.attribute.BasicFileAttributes;
 import java.util.Collections;
 
-import org.cryptomator.cryptolib.FileHeader;
-import org.cryptomator.cryptolib.FileHeaderCryptor;
+import org.cryptomator.cryptolib.api.FileHeaderCryptor;
 
 public class CryptoBasicFileAttributes implements DelegatingBasicFileAttributes {
 
@@ -60,20 +59,20 @@ public boolean isSymbolicLink() {
 
 	@Override
 	public long size() {
-		if (isRegularFile() && getDelegate().size() >= FileHeader.SIZE && size == -1) {
+		if (isRegularFile() && getDelegate().size() >= headerCryptor.headerSize() && size == -1) {
 			size = readSizeFromHeader();
 		}
 		return size;
 	}
 
 	private long readSizeFromHeader() {
 		try {
-			ByteBuffer buf = ByteBuffer.allocate(FileHeader.SIZE);
+			ByteBuffer buf = ByteBuffer.allocate(headerCryptor.headerSize());
 			try (ReadableByteChannel r = ciphertextPath.getFileSystem().provider().newByteChannel(ciphertextPath, Collections.singleton(StandardOpenOption.READ))) {
 				r.read(buf);
 			}
 			buf.flip();
-			return headerCryptor.decryptHeader(buf).getPayload().getFilesize();
+			return headerCryptor.decryptHeader(buf).getFilesize();
 		} catch (IOException e) {
 			throw new UncheckedIOException(e);
 		}

src/main/java/org/cryptomator/cryptofs/CryptoDirectoryStream.java

@@ -19,8 +19,8 @@
 import java.util.regex.Pattern;
 
 import org.cryptomator.cryptofs.CryptoPathMapper.Directory;
-import org.cryptomator.cryptolib.AuthenticationFailedException;
-import org.cryptomator.cryptolib.FileNameCryptor;
+import org.cryptomator.cryptolib.api.AuthenticationFailedException;
+import org.cryptomator.cryptolib.api.FileNameCryptor;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
@@ -62,7 +62,7 @@ private Path decrypt(Path ciphertextPath) {
 				String cleartext = filenameCryptor.decryptFilename(ciphertext, directoryId.getBytes(StandardCharsets.UTF_8));
 				return cleartextDir.resolve(cleartext);
 			} catch (AuthenticationFailedException e) {
-				LOG.warn(ciphertextPath + " not decryptable.", e);
+				LOG.warn(ciphertextPath + " not decryptable due to an unauthentic ciphertext.");
 				return null;
 			}
 		} else {

src/main/java/org/cryptomator/cryptofs/CryptoDosFileAttributes.java

@@ -11,7 +11,7 @@
 import java.nio.file.Path;
 import java.nio.file.attribute.DosFileAttributes;
 
-import org.cryptomator.cryptolib.FileHeaderCryptor;
+import org.cryptomator.cryptolib.api.FileHeaderCryptor;
 
 public class CryptoDosFileAttributes extends CryptoBasicFileAttributes implements DelegatingDosFileAttributes {
 

src/main/java/org/cryptomator/cryptofs/CryptoFileAttributeProvider.java

@@ -16,7 +16,7 @@
 import java.util.HashMap;
 import java.util.Map;
 
-import org.cryptomator.cryptolib.FileHeaderCryptor;
+import org.cryptomator.cryptolib.api.FileHeaderCryptor;
 
 class CryptoFileAttributeProvider {
 

src/main/java/org/cryptomator/cryptofs/CryptoFileChannel.java

@@ -8,9 +8,6 @@
  *******************************************************************************/
 package org.cryptomator.cryptofs;
 
-import static org.cryptomator.cryptolib.Constants.CHUNK_SIZE;
-import static org.cryptomator.cryptolib.Constants.PAYLOAD_SIZE;
-
 import java.io.IOException;
 import java.nio.ByteBuffer;
 import java.nio.MappedByteBuffer;
@@ -26,9 +23,9 @@
 import java.util.Set;
 import java.util.concurrent.ExecutionException;
 
-import org.cryptomator.cryptolib.AuthenticationFailedException;
-import org.cryptomator.cryptolib.Cryptor;
-import org.cryptomator.cryptolib.FileHeader;
+import org.cryptomator.cryptolib.api.AuthenticationFailedException;
+import org.cryptomator.cryptolib.api.Cryptor;
+import org.cryptomator.cryptolib.api.FileHeader;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
@@ -63,7 +60,7 @@ public CryptoFileChannel(Cryptor cryptor, Path ciphertextPath, Set<? extends Ope
 		if (adjustedOptions.contains(StandardOpenOption.CREATE_NEW) || adjustedOptions.contains(StandardOpenOption.CREATE) && ch.size() == 0) {
 			header = cryptor.fileHeaderCryptor().create();
 		} else {
-			ByteBuffer existingHeaderBuf = ByteBuffer.allocate(FileHeader.SIZE);
+			ByteBuffer existingHeaderBuf = ByteBuffer.allocate(cryptor.fileHeaderCryptor().headerSize());
 			ch.position(0);
 			ch.read(existingHeaderBuf);
 			existingHeaderBuf.flip();
@@ -77,11 +74,12 @@ public int read(ByteBuffer dst, long position) throws IOException {
 		int origLimit = dst.limit();
 		dst.limit((int) Math.min(origLimit, size() - position));
 		int read = 0;
+		int payloadSize = cryptor.fileContentCryptor().cleartextChunkSize();
 		while (dst.hasRemaining()) {
 			long pos = position + read;
-			long chunkIndex = pos / PAYLOAD_SIZE;
-			int offset = (int) pos % PAYLOAD_SIZE;
-			int len = Math.min(dst.remaining(), PAYLOAD_SIZE - offset);
+			long chunkIndex = pos / payloadSize;
+			int offset = (int) pos % payloadSize;
+			int len = Math.min(dst.remaining(), payloadSize - offset);
 			final ByteBuffer chunkBuf = loadCleartextChunk(chunkIndex);
 			chunkBuf.position(offset).limit(Math.min(chunkBuf.limit(), len));
 			dst.put(chunkBuf);
@@ -94,18 +92,19 @@ public int read(ByteBuffer dst, long position) throws IOException {
 	@Override
 	public int write(ByteBuffer src, long position) throws IOException {
 		int written = 0;
+		int payloadSize = cryptor.fileContentCryptor().cleartextChunkSize();
 		while (src.hasRemaining()) {
 			long pos = position + written;
-			long chunkIndex = pos / PAYLOAD_SIZE;
-			int offset = (int) pos % PAYLOAD_SIZE;
-			int len = Math.min(src.remaining(), PAYLOAD_SIZE - offset);
+			long chunkIndex = pos / payloadSize;
+			int offset = (int) pos % payloadSize;
+			int len = Math.min(src.remaining(), payloadSize - offset);
 			if (pos + len > size()) {
 				// append
 				setSize(pos + len);
 			}
-			if (len == PAYLOAD_SIZE) {
+			if (len == payloadSize) {
 				// complete chunk, no need to load and decrypt from file:
-				cleartextChunks.put(chunkIndex, ByteBuffer.allocate(PAYLOAD_SIZE));
+				cleartextChunks.put(chunkIndex, ByteBuffer.allocate(payloadSize));
 			}
 			final ByteBuffer chunkBuf = loadCleartextChunk(chunkIndex);
 			chunkBuf.position(offset).limit(Math.max(chunkBuf.limit(), len));
@@ -120,16 +119,16 @@ public int write(ByteBuffer src, long position) throws IOException {
 
 	@Override
 	public long size() {
-		return header.getPayload().getFilesize();
+		return header.getFilesize();
 	}
 
 	private void setSize(long size) {
-		header.getPayload().setFilesize(size);
+		header.setFilesize(size);
 	}
 
 	@Override
 	public FileChannel truncate(long size) throws IOException {
-		ch.truncate(FileHeader.SIZE);
+		ch.truncate(cryptor.fileHeaderCryptor().headerSize());
 		setSize(Math.min(size, size()));
 		// TODO Auto-generated method stub
 		return null;
@@ -195,12 +194,14 @@ private class CleartextChunkLoader extends CacheLoader<Long, ByteBuffer> {
 		@Override
 		public ByteBuffer load(Long chunkIndex) throws Exception {
 			LOG.debug("load chunk" + chunkIndex);
-			long ciphertextPos = chunkIndex * CHUNK_SIZE + FileHeader.SIZE;
-			ByteBuffer ciphertextBuf = ByteBuffer.allocate(CHUNK_SIZE);
+			int payloadSize = cryptor.fileContentCryptor().cleartextChunkSize();
+			int chunkSize = cryptor.fileContentCryptor().ciphertextChunkSize();
+			long ciphertextPos = chunkIndex * chunkSize + cryptor.fileHeaderCryptor().headerSize();
+			ByteBuffer ciphertextBuf = ByteBuffer.allocate(chunkSize);
 			int read = ch.read(ciphertextBuf, ciphertextPos);
 			if (read == -1) {
 				// append
-				return ByteBuffer.allocate(PAYLOAD_SIZE);
+				return ByteBuffer.allocate(payloadSize);
 			} else {
 				ciphertextBuf.flip();
 				return cryptor.fileContentCryptor().decryptChunk(ciphertextBuf, chunkIndex, header, true);
@@ -214,9 +215,9 @@ private class CleartextChunkSaver implements RemovalListener<Long, ByteBuffer> {
 		@Override
 		public void onRemoval(RemovalNotification<Long, ByteBuffer> notification) {
 			long chunkIndex = notification.getKey();
-			if (openOptions.contains(StandardOpenOption.WRITE) && chunkIndex * PAYLOAD_SIZE < size()) {
+			if (openOptions.contains(StandardOpenOption.WRITE) && chunkIndex * cryptor.fileContentCryptor().cleartextChunkSize() < size()) {
 				LOG.debug("save chunk" + chunkIndex);
-				long ciphertextPos = chunkIndex * CHUNK_SIZE + FileHeader.SIZE;
+				long ciphertextPos = chunkIndex * cryptor.fileContentCryptor().ciphertextChunkSize() + cryptor.fileHeaderCryptor().headerSize();
 				ByteBuffer cleartextBuf = notification.getValue().asReadOnlyBuffer();
 				cleartextBuf.flip();
 				ByteBuffer ciphertextBuf = cryptor.fileContentCryptor().encryptChunk(cleartextBuf, chunkIndex, header);

src/main/java/org/cryptomator/cryptofs/CryptoFileSystem.java

@@ -19,10 +19,11 @@
 import java.nio.file.spi.FileSystemProvider;
 import java.util.Set;
 
-import org.cryptomator.cryptolib.Cryptor;
-import org.cryptomator.cryptolib.CryptorProvider;
-import org.cryptomator.cryptolib.InvalidPassphraseException;
-import org.cryptomator.cryptolib.UnsupportedVaultFormatException;
+import org.cryptomator.cryptolib.api.Cryptor;
+import org.cryptomator.cryptolib.api.InvalidPassphraseException;
+import org.cryptomator.cryptolib.api.KeyFile;
+import org.cryptomator.cryptolib.api.UnsupportedVaultFormatException;
+import org.cryptomator.cryptolib.v1.CryptorProviderImpl;
 
 class CryptoFileSystem extends BasicFileSystem {
 
@@ -34,7 +35,7 @@ class CryptoFileSystem extends BasicFileSystem {
 	private final CryptoPathMapper cryptoPathMapper;
 	private final CryptoFileAttributeProvider fileAttributeProvider;
 
-	public CryptoFileSystem(CryptoFileSystemProvider provider, CryptorProvider cryptorProvider, Path pathToVault, CharSequence passphrase)
+	public CryptoFileSystem(CryptoFileSystemProvider provider, CryptorProviderImpl cryptorProvider, Path pathToVault, CharSequence passphrase)
 			throws UnsupportedVaultFormatException, InvalidPassphraseException, UncheckedIOException {
 		this.provider = provider;
 		this.pathToVault = pathToVault;
@@ -45,11 +46,11 @@ public CryptoFileSystem(CryptoFileSystemProvider provider, CryptorProvider crypt
 			Path backupKeyPath = pathToVault.resolve(Constants.BACKUPKEY_FILE_NAME);
 			if (Files.isRegularFile(masterKeyPath)) {
 				byte[] keyFileContents = Files.readAllBytes(masterKeyPath);
-				this.cryptor = cryptorProvider.createFromKeyFile(keyFileContents, passphrase);
+				this.cryptor = cryptorProvider.createFromKeyFile(KeyFile.parse(keyFileContents), passphrase, Constants.VAULT_VERSION);
 				Files.copy(masterKeyPath, backupKeyPath, StandardCopyOption.REPLACE_EXISTING);
 			} else {
 				this.cryptor = cryptorProvider.createNew();
-				byte[] keyFileContents = cryptor.writeKeysToMasterkeyFile(passphrase);
+				byte[] keyFileContents = cryptor.writeKeysToMasterkeyFile(passphrase, Constants.VAULT_VERSION).serialize();
 				Files.write(masterKeyPath, keyFileContents);
 			}
 		} catch (IOException e) {

src/main/java/org/cryptomator/cryptofs/CryptoFileSystemProvider.java

@@ -40,8 +40,8 @@
 import java.util.concurrent.ExecutorService;
 
 import org.cryptomator.cryptofs.CryptoPathMapper.Directory;
-import org.cryptomator.cryptolib.CryptorProvider;
-import org.cryptomator.cryptolib.ReseedingSecureRandom;
+import org.cryptomator.cryptolib.common.ReseedingSecureRandom;
+import org.cryptomator.cryptolib.v1.CryptorProviderImpl;
 
 public class CryptoFileSystemProvider extends FileSystemProvider {
 
@@ -52,11 +52,11 @@ public class CryptoFileSystemProvider extends FileSystemProvider {
 
 	public static final String FS_ENV_PW = "passphrase";
 
-	private final CryptorProvider cryptorProvider;
+	private final CryptorProviderImpl cryptorProvider;
 	private final ConcurrentHashMap<Path, CryptoFileSystem> fileSystems = new ConcurrentHashMap<>();
 
 	public CryptoFileSystemProvider(SecureRandom csprng) {
-		this.cryptorProvider = new CryptorProvider(csprng);
+		this.cryptorProvider = new CryptorProviderImpl(csprng);
 	}
 
 	public CryptoFileSystemProvider() {

src/main/java/org/cryptomator/cryptofs/CryptoPathMapper.java

@@ -12,7 +12,7 @@
 import java.nio.charset.StandardCharsets;
 import java.nio.file.Path;
 
-import org.cryptomator.cryptolib.Cryptor;
+import org.cryptomator.cryptolib.api.Cryptor;
 
 class CryptoPathMapper {