Extract filename cryptor and provider.

Author: ylangisc

cryptomator/src/main/java/ch/cyberduck/core/cryptomator/CryptoVault.java

@@ -342,29 +342,20 @@ protected CryptoFilename createFilenameProvider(final VaultConfig vaultConfig) {
         }
     }
 
-    protected CryptoDirectory createDirectoryProvider(final VaultConfig vaultConfig) {
+    protected CryptoDirectory createDirectoryProvider(final VaultConfig vaultConfig, final CryptoFilename filenameProvider, final CryptorCache filenameCryptor) {
         switch(vaultConfig.version) {
             case VAULT_VERSION_DEPRECATED:
-                return new CryptoDirectoryV6Provider(vault, this);
+                return new CryptoDirectoryV6Provider(vault, filenameProvider, filenameCryptor);
             default:
-                return new CryptoDirectoryV7Provider(vault, this);
+                return new CryptoDirectoryV7Provider(vault, filenameProvider, filenameCryptor);
         }
     }
 
-    // UVF: extract to v6/v7/uvf imple, VaultConfig only for v6/v7
-    // pro memoria:
-    //   create -> open
-    //   unlock -> open
-    protected void open(final VaultConfig vaultConfig, final CharSequence passphrase) throws BackgroundException {
-        this.open(vaultConfig, passphrase, this.createFilenameProvider(vaultConfig), this.createDirectoryProvider(vaultConfig));
-    }
-
     // UVF:  extract to v6/v7/uvf, at this point we know which version
-    protected void open(final VaultConfig vaultConfig, final CharSequence passphrase,
-                        final CryptoFilename filenameProvider, final CryptoDirectory directoryProvider) throws BackgroundException {
+    protected void open(final VaultConfig vaultConfig, final CharSequence passphrase) throws BackgroundException {
         try {
             final PerpetualMasterkey masterKey = this.getMasterKey(vaultConfig.getMkfile(), passphrase);
-            this.open(vaultConfig, masterKey, filenameProvider, directoryProvider);
+            this.open(vaultConfig, masterKey);
         }
         catch(IllegalArgumentException | IOException e) {
             throw new VaultException("Failure reading key file", e);
@@ -376,20 +367,14 @@ protected void open(final VaultConfig vaultConfig, final CharSequence passphrase
 
     // UVF: unused?!
     protected void open(final VaultConfig vaultConfig, final PerpetualMasterkey masterKey) throws BackgroundException {
-        this.open(vaultConfig, masterKey, this.createFilenameProvider(vaultConfig), this.createDirectoryProvider(vaultConfig));
-    }
-
-    // UVF:  extract to v6/v7 imple, can we use  the new MasterKey interface from https://github.com/cryptomator/cryptolib/pull/51/files?
-    protected void open(final VaultConfig vaultConfig, final PerpetualMasterkey masterKey,
-                        final CryptoFilename filenameProvider, final CryptoDirectory directoryProvider) throws BackgroundException {
         this.vaultVersion = vaultConfig.version;
         final CryptorProvider provider = CryptorProvider.forScheme(vaultConfig.getCipherCombo());
         log.debug("Initialized crypto provider {}", provider);
         vaultConfig.verify(masterKey.getEncoded(), VAULT_VERSION);
         this.cryptor = provider.provide(masterKey, FastSecureRandomProvider.get().provide());
         this.fileNameCryptor = new CryptorCache(cryptor.fileNameCryptor());
-        this.filenameProvider = filenameProvider;
-        this.directoryProvider = directoryProvider;
+        this.filenameProvider = this.createFilenameProvider(vaultConfig);
+        this.directoryProvider = this.createDirectoryProvider(vaultConfig, this.filenameProvider, this.fileNameCryptor);
         this.nonceSize = vaultConfig.getNonceSize();
     }
 

cryptomator/src/main/java/ch/cyberduck/core/cryptomator/UVFVault.java

@@ -0,0 +1,136 @@
+package ch.cyberduck.core.cryptomator;
+
+/*
+ * Copyright (c) 2002-2025 iterate GmbH. All rights reserved.
+ * https://cyberduck.io/
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ */
+
+import ch.cyberduck.core.PasswordCallback;
+import ch.cyberduck.core.Path;
+import ch.cyberduck.core.PathAttributes;
+import ch.cyberduck.core.Session;
+import ch.cyberduck.core.cryptomator.impl.CryptoDirectoryV7Provider;
+import ch.cyberduck.core.cryptomator.impl.CryptoFilenameV7Provider;
+import ch.cyberduck.core.cryptomator.random.FastSecureRandomProvider;
+import ch.cyberduck.core.exception.BackgroundException;
+import ch.cyberduck.core.features.Vault;
+import ch.cyberduck.core.vault.VaultCredentials;
+
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+import org.cryptomator.cryptolib.api.Cryptor;
+import org.cryptomator.cryptolib.api.CryptorProvider;
+import org.cryptomator.cryptolib.api.UVFMasterkey;
+
+import java.util.EnumSet;
+
+public class UVFVault implements Vault {
+
+    private static final Logger log = LogManager.getLogger(UVFVault.class);
+
+    /**
+     * Root of vault directory
+     */
+    private final Path home;
+    private final Path vault;
+
+    private final String decrypted;
+    private Cryptor cryptor;
+    private CryptorCache fileNameCryptor;
+    private CryptoFilename filenameProvider;
+    private CryptoDirectory directoryProvider;
+
+    public UVFVault(final Path home, final String decryptedPayload) {
+        this.home = home;
+        this.decrypted = decryptedPayload;
+        // New vault home with vault flag set for internal use
+        final EnumSet<Path.Type> type = EnumSet.copyOf(home.getType());
+        type.add(Path.Type.vault);
+        if(home.isRoot()) {
+            this.vault = new Path(home.getAbsolute(), type, new PathAttributes(home.attributes()));
+        }
+        else {
+            this.vault = new Path(home.getParent(), home.getName(), type, new PathAttributes(home.attributes()));
+        }
+    }
+
+    @Override
+    public Path create(final Session<?> session, final String region, final VaultCredentials credentials) throws BackgroundException {
+        return null;
+    }
+
+    // load -> unlock -> open
+    @Override
+    public UVFVault load(final Session<?> session, final PasswordCallback prompt) throws BackgroundException {
+        UVFMasterkey masterKey = UVFMasterkey.fromDecryptedPayload(this.decrypted);
+
+        final CryptorProvider provider = CryptorProvider.forScheme(CryptorProvider.Scheme.UVF_DRAFT);
+        log.debug("Initialized crypto provider {}", provider);
+        this.cryptor = provider.provide(masterKey, FastSecureRandomProvider.get().provide());
+        this.fileNameCryptor = new CryptorCache(cryptor.fileNameCryptor());
+        this.filenameProvider = new CryptoFilenameV7Provider(/* TODO threshold was previously defined in vault.config - default now? */);
+        this.directoryProvider = new CryptoDirectoryV7Provider(vault, filenameProvider, fileNameCryptor);
+        //TODO where? this.nonceSize = vaultConfig.getNonceSize();
+        return this;
+    }
+
+    @Override
+    public void close() {
+
+    }
+
+    @Override
+    public boolean contains(final Path file) {
+        return false;
+    }
+
+    @Override
+    public Path encrypt(final Session<?> session, final Path file) throws BackgroundException {
+        return null;
+    }
+
+    @Override
+    public Path encrypt(final Session<?> session, final Path file, final boolean metadata) throws BackgroundException {
+        return null;
+    }
+
+    @Override
+    public Path decrypt(final Session<?> session, final Path file) throws BackgroundException {
+        return null;
+    }
+
+    @Override
+    public long toCiphertextSize(final long cleartextFileOffset, final long cleartextFileSize) {
+        return 0;
+    }
+
+    @Override
+    public long toCleartextSize(final long cleartextFileOffset, final long ciphertextFileSize) throws BackgroundException {
+        return 0;
+    }
+
+    @Override
+    public <T> T getFeature(final Session<?> session, final Class<T> type, final T delegate) {
+        return null;
+    }
+
+    @Override
+    public State getState() {
+        return null;
+    }
+
+    @Override
+    public Path getHome() {
+        return null;
+    }
+}

cryptomator/src/main/java/ch/cyberduck/core/cryptomator/impl/CryptoDirectoryV6Provider.java

@@ -25,6 +25,7 @@
 import ch.cyberduck.core.cache.LRUCache;
 import ch.cyberduck.core.cryptomator.ContentReader;
 import ch.cyberduck.core.cryptomator.CryptoDirectory;
+import ch.cyberduck.core.cryptomator.CryptoFilename;
 import ch.cyberduck.core.cryptomator.CryptoVault;
 import ch.cyberduck.core.cryptomator.CryptorCache;
 import ch.cyberduck.core.exception.BackgroundException;
@@ -48,28 +49,30 @@ public class CryptoDirectoryV6Provider implements CryptoDirectory {
 
     private final Path dataRoot;
     private final Path home;
-    private final CryptoVault cryptomator;
+    private final CryptoFilename filenameProvider;
+    private final CryptorCache filenameCryptor;
 
     private final RandomStringService random
-        = new UUIDRandomStringService();
+            = new UUIDRandomStringService();
 
     private final Lock lock = new ReentrantLock();
 
     private final LRUCache<CacheReference<Path>, String> cache = LRUCache.build(
-        PreferencesFactory.get().getInteger("cryptomator.cache.size"));
+            PreferencesFactory.get().getInteger("cryptomator.cache.size"));
 
-    public CryptoDirectoryV6Provider(final Path vault, final CryptoVault cryptomator) {
+    public CryptoDirectoryV6Provider(final Path vault, final CryptoFilename filenameProvider, final CryptorCache filenameCryptor) {
         this.home = vault;
         this.dataRoot = new Path(vault, DATA_DIR_NAME, vault.getType());
-        this.cryptomator = cryptomator;
+        this.filenameProvider = filenameProvider;
+        this.filenameCryptor = filenameCryptor;
     }
 
     @Override
     public String toEncrypted(final Session<?> session, final String directoryId, final String filename, final EnumSet<Path.Type> type) throws BackgroundException {
         final String prefix = type.contains(Path.Type.directory) ? CryptoVault.DIR_PREFIX : "";
-        final String ciphertextName = prefix + cryptomator.getFileNameCryptor().encryptFilename(CryptorCache.BASE32, filename, directoryId.getBytes(StandardCharsets.UTF_8));
+        final String ciphertextName = prefix + filenameCryptor.encryptFilename(CryptorCache.BASE32, filename, directoryId.getBytes(StandardCharsets.UTF_8));
         log.debug("Encrypted filename {} to {}", filename, ciphertextName);
-        return cryptomator.getFilenameProvider().deflate(session, ciphertextName);
+        return filenameProvider.deflate(session, ciphertextName);
     }
 
     @Override
@@ -87,7 +90,7 @@ public Path toEncrypted(final Session<?> session, final String directoryId, fina
             log.debug("Use directory ID '{}' for folder {}", id, directory);
             attributes.setDirectoryId(id);
             attributes.setDecrypted(directory);
-            final String directoryIdHash = cryptomator.getFileNameCryptor().hashDirectoryId(id);
+            final String directoryIdHash = filenameCryptor.hashDirectoryId(id);
             // Intermediate directory
             final Path intermediate = new Path(dataRoot, directoryIdHash.substring(0, 2), dataRoot.getType());
             // Add encrypted type

cryptomator/src/main/java/ch/cyberduck/core/cryptomator/impl/CryptoDirectoryV7Provider.java

@@ -20,7 +20,8 @@
 import ch.cyberduck.core.Session;
 import ch.cyberduck.core.UUIDRandomStringService;
 import ch.cyberduck.core.cryptomator.ContentReader;
-import ch.cyberduck.core.cryptomator.CryptoVault;
+import ch.cyberduck.core.cryptomator.CryptoFilename;
+import ch.cyberduck.core.cryptomator.CryptorCache;
 import ch.cyberduck.core.exception.BackgroundException;
 import ch.cyberduck.core.exception.NotfoundException;
 
@@ -41,22 +42,24 @@ public class CryptoDirectoryV7Provider extends CryptoDirectoryV6Provider {
     public static final String BACKUP_FILENAME_DIRECTORYID = "dirid";
     public static final String BACKUP_DIRECTORY_METADATAFILE = String.format("%s%s", BACKUP_FILENAME_DIRECTORYID, EXTENSION_REGULAR);
 
-    private final CryptoVault cryptomator;
+    private final CryptoFilename filenameProvider;
+    private final CryptorCache filenameCryptor;
 
     private final RandomStringService random
-        = new UUIDRandomStringService();
+            = new UUIDRandomStringService();
 
-    public CryptoDirectoryV7Provider(final Path vault, final CryptoVault cryptomator) {
-        super(vault, cryptomator);
-        this.cryptomator = cryptomator;
+    public CryptoDirectoryV7Provider(final Path vault, final CryptoFilename filenameProvider, final CryptorCache filenameCryptor) {
+        super(vault, filenameProvider, filenameCryptor);
+        this.filenameProvider = filenameProvider;
+        this.filenameCryptor = filenameCryptor;
     }
 
     @Override
     public String toEncrypted(final Session<?> session, final String directoryId, final String filename, final EnumSet<Path.Type> type) throws BackgroundException {
-        final String ciphertextName = cryptomator.getFileNameCryptor().encryptFilename(BaseEncoding.base64Url(),
-            filename, directoryId.getBytes(StandardCharsets.UTF_8)) + EXTENSION_REGULAR;
+        final String ciphertextName = filenameCryptor.encryptFilename(BaseEncoding.base64Url(),
+                filename, directoryId.getBytes(StandardCharsets.UTF_8)) + EXTENSION_REGULAR;
         log.debug("Encrypted filename {} to {}", filename, ciphertextName);
-        return cryptomator.getFilenameProvider().deflate(session, ciphertextName);
+        return filenameProvider.deflate(session, ciphertextName);
     }
 
     protected String load(final Session<?> session, final Path directory) throws BackgroundException {