Merge pull request #9171 from owncloud/enc_always_use_oc_view

[encryption] always use oc view
2014-06-26 15:11:08 +02:00 · 2014-06-26 15:11:08 +02:00 · aabee3e4b0
parent 1822bba5e9 d3d1955ef4
commit aabee3e4b0
5 changed files with 95 additions and 106 deletions
--- a/apps/files_encryption/hooks/hooks.php
+++ b/apps/files_encryption/hooks/hooks.php
@ -464,61 +464,44 @@ class Hooks {
 			$newShareKeyPath = $ownerNew . '/files_encryption/share-keys/' . $pathNew;
 		}
-		// add key ext if this is not an folder
+		// create new key folders if it doesn't exists
 		if (!$view->file_exists(dirname($newShareKeyPath))) {
 				$view->mkdir(dirname($newShareKeyPath));
 		}
 		if (!$view->file_exists(dirname($newKeyfilePath))) {
 			$view->mkdir(dirname($newKeyfilePath));
 		}
 		// handle share keys
 		if (!$view->is_dir($oldKeyfilePath)) {
 			$oldKeyfilePath .= '.key';
 			$newKeyfilePath .= '.key';
 			// handle share-keys
-			$localKeyPath = $view->getLocalFile($oldShareKeyPath);
+			$matches = Helper::findShareKeys($oldShareKeyPath, $view);
 			$escapedPath = Helper::escapeGlobPattern($localKeyPath);
 			$matches = glob($escapedPath . '*.shareKey');
 			foreach ($matches as $src) {
 				$dst = \OC\Files\Filesystem::normalizePath(str_replace($pathOld, $pathNew, $src));
-
+				$view->rename($src, $dst);
 				// create destination folder if not exists
 				if (!file_exists(dirname($dst))) {
 					mkdir(dirname($dst), 0750, true);
 				}
 				rename($src, $dst);
 			}
 		} else {
 			// handle share-keys folders
 			// create destination folder if not exists
 			if (!$view->file_exists(dirname($newShareKeyPath))) {
 				mkdir($view->getLocalFile($newShareKeyPath), 0750, true);
 			}
 			$view->rename($oldShareKeyPath, $newShareKeyPath);
 		}
 		// Rename keyfile so it isn't orphaned
 		if ($view->file_exists($oldKeyfilePath)) {
 			// create destination folder if not exists
 			if (!$view->file_exists(dirname($newKeyfilePath))) {
 				mkdir(dirname($view->getLocalFile($newKeyfilePath)), 0750, true);
 			}
 			$view->rename($oldKeyfilePath, $newKeyfilePath);
 		}
-		// build the path to the file
+		// update share keys
-		$newPath = '/' . $ownerNew . '/files' . $pathNew;
+		$sharingEnabled = \OCP\Share::isEnabled();
-		if ($util->fixFileSize($newPath)) {
+		// get users
-			// get sharing app state
+		$usersSharing = $util->getSharingUsersArray($sharingEnabled, $pathNew);
 			$sharingEnabled = \OCP\Share::isEnabled();
-			// get users
+		// update sharing-keys
-			$usersSharing = $util->getSharingUsersArray($sharingEnabled, $pathNew);
+		$util->setSharedFileKeyfiles($session, $usersSharing, $pathNew);
 			// update sharing-keys
 			$util->setSharedFileKeyfiles($session, $usersSharing, $pathNew);
 		}
 		\OC_FileProxy::$enabled = $proxyStatus;
 	}
--- a/apps/files_encryption/lib/helper.php
+++ b/apps/files_encryption/lib/helper.php
@ -430,12 +430,28 @@ class Helper {
 	}
 	/**
-	 * glob uses different pattern than regular expressions, escape glob pattern only
+	 * find all share keys for a given file
-	 * @param string $path unescaped path
+	 * @param string $path to the file
-	 * @return string path
+	 * @param \OC\Files\View $view view, relative to data/
 	 * @return array list of files, path relative to data/
 	 */
-	public static function escapeGlobPattern($path) {
+	public static function findShareKeys($path, $view) {
-		return preg_replace('/(\*|\?|\[)/', '[$1]', $path);
+		$result = array();
 		$pathinfo = pathinfo($path);
 		$dirContent = $view->opendir($pathinfo['dirname']);
 		if (is_resource($dirContent)) {
 			while (($file = readdir($dirContent)) !== false) {
 				if (!\OC\Files\Filesystem::isIgnoredDir($file)) {
 					if (preg_match("/" . $pathinfo['filename'] . ".(.*).shareKey/", $file)) {
 						$result[] = $pathinfo['dirname'] . '/' . $file;
 					}
 				}
 			}
 			closedir($dirContent);
 		}
 		return $result;
 	}
 	/**
--- a/apps/files_encryption/lib/keymanager.php
+++ b/apps/files_encryption/lib/keymanager.php
@ -133,20 +133,7 @@ class Keymanager {
 			$basePath = '/' . $owner . '/files_encryption/keyfiles';
 		}
-		$targetPath = self::keySetPreparation($view, $filename, $basePath, $owner);
+		$targetPath = self::keySetPreparation($view, $filename, $basePath);
 		if (!$view->is_dir($basePath . '/' . $targetPath)) {
 			// create all parent folders
 			$info = pathinfo($basePath . '/' . $targetPath);
 			$keyfileFolderName = $view->getLocalFolder($info['dirname']);
 			if (!file_exists($keyfileFolderName)) {
 				mkdir($keyfileFolderName, 0750, true);
 			}
 		}
 		// try reusing key file if part file
 		if (Helper::isPartialFilePath($targetPath)) {
@ -281,8 +268,9 @@ class Keymanager {
 		$proxyStatus = \OC_FileProxy::$enabled;
 		\OC_FileProxy::$enabled = false;
-		if (!$view->file_exists(''))
+		if (!$view->file_exists('')) {
 			$view->mkdir('');
 		}
 		$result = $view->file_put_contents($user . '.private.key', $key);
@ -340,7 +328,7 @@ class Keymanager {
 			$basePath = '/' . $owner . '/files_encryption/share-keys';
 		}
-		$shareKeyPath = self::keySetPreparation($view, $filename, $basePath, $owner);
+		$shareKeyPath = self::keySetPreparation($view, $filename, $basePath);
 		$result = true;
@ -466,8 +454,7 @@ class Keymanager {
 		if ($view->is_dir($shareKeyPath)) {
-			$localPath = \OC\Files\Filesystem::normalizePath($view->getLocalFolder($shareKeyPath));
+			self::recursiveDelShareKeys($shareKeyPath, $userIds, $view);
 			self::recursiveDelShareKeys($localPath, $userIds);
 		} else {
@ -491,23 +478,25 @@ class Keymanager {
 	 * @param string $dir directory
 	 * @param array $userIds user ids for which the share keys should be deleted
 	 */
-	private static function recursiveDelShareKeys($dir, $userIds) {
+	private static function recursiveDelShareKeys($dir, $userIds, $view) {
-		foreach ($userIds as $userId) {
+
-			$extension = '.' . $userId . '.shareKey';
+		$dirContent = $view->opendir($dir);
-			$escapedDir = Helper::escapeGlobPattern($dir);
+
-			$escapedExtension = Helper::escapeGlobPattern($extension);
+		if (is_resource($dirContent)) {
-			$matches = glob($escapedDir . '/*' . $escapedExtension);
+			while (($file = readdir($dirContent)) !== false) {
-		}
+				if (!\OC\Files\Filesystem::isIgnoredDir($file)) {
-		/** @var $matches array */
+					if ($view->is_dir($dir . '/' . $file)) {
-		foreach ($matches as $ma) {
+						self::recursiveDelShareKeys($dir . '/' . $file, $userIds, $view);
-			if (!unlink($ma)) {
+					} else {
-				\OCP\Util::writeLog('Encryption library',
+						foreach ($userIds as $userId) {
-					'Could not delete shareKey; does not exist: "' . $ma . '"', \OCP\Util::ERROR);
+							if (preg_match("/(.*)." . $userId . ".shareKey/", $file)) {
 								$view->unlink($dir . '/' . $file);
 							}
 						}
 					}
 				}
 			}
-		}
+			closedir($dirContent);
 		$subdirs = glob($escapedDir . '/*', GLOB_ONLYDIR);
 		foreach ($subdirs as $subdir) {
 			self::recursiveDelShareKeys($subdir, $userIds);
 		}
 	}
@ -516,7 +505,7 @@ class Keymanager {
 	 * @param string|boolean $path
 	 * @param string $basePath
 	 */
-	protected static function keySetPreparation(\OC\Files\View $view, $path, $basePath, $userId) {
+	protected static function keySetPreparation(\OC\Files\View $view, $path, $basePath) {
 		$targetPath = ltrim($path, '/');
--- a/apps/files_encryption/tests/hooks.php
+++ b/apps/files_encryption/tests/hooks.php
@ -307,7 +307,7 @@ class Test_Encryption_Hooks extends \PHPUnit_Framework_TestCase {
 		$this->assertTrue($this->rootView->is_dir('/' . self::TEST_ENCRYPTION_HOOKS_USER1 . '/files/' . $this->folder . '/' . $this->folder));
-		// move the file out of the shared folder
+		// move the file to the sub-subfolder
 		$root = $this->rootView->getRoot();
 		$this->rootView->chroot('/' . self::TEST_ENCRYPTION_HOOKS_USER1 . '/files/');
 		$this->rootView->rename($this->filename, '/' . $this->folder . '/' . $this->folder . '/' . $this->filename);
--- a/apps/files_encryption/tests/keymanager.php
+++ b/apps/files_encryption/tests/keymanager.php
@ -206,55 +206,56 @@ class Test_Encryption_Keymanager extends \PHPUnit_Framework_TestCase {
 	 */
 	function testRecursiveDelShareKeys() {
 		// generate filename
 		$filename = '/tmp-' . uniqid() . '.txt';
 		// create folder structure
-		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files/folder1');
+		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1');
-		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files/folder1/subfolder');
+		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder');
-		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files/folder1/subfolder/subsubfolder');
+		$this->view->mkdir('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder');
-		// enable encryption proxy
+		// create some dummy share keys
-		$proxyStatus = \OC_FileProxy::$enabled;
+		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file1.user1.shareKey', 'data');
-		\OC_FileProxy::$enabled = true;
+		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file2.user2.shareKey', 'data');
 		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file2.user3.shareKey', 'data');
 		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/file2.user3.shareKey', 'data');
 		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file1.user1.shareKey', 'data');
 		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file2.user2.shareKey', 'data');
 		$this->view->file_put_contents('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file2.user3.shareKey', 'data');
-		// save file with content
+		// recursive delete share keys from user1 and user2
-		$cryptedFile = file_put_contents('crypt:///'.Test_Encryption_Keymanager::TEST_USER.'/files/folder1/subfolder/subsubfolder' . $filename, $this->dataShort);
+		Encryption\Keymanager::delShareKey($this->view, array('user1', 'user2'), '/folder1/');
-		// test that data was successfully written
+		// check if share keys from user1 and user2 are deleted
 		$this->assertTrue(is_int($cryptedFile));
 		// change encryption proxy to previous state
 		\OC_FileProxy::$enabled = $proxyStatus;
 		// recursive delete keys
 		Encryption\Keymanager::delShareKey($this->view, array('admin'), '/folder1/');
 		// check if share key not exists
 		$this->assertFalse($this->view->file_exists(
-			'/admin/files_encryption/share-keys/folder1/subfolder/subsubfolder/' . $filename . '.admin.shareKey'));
+			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file1.user1.shareKey'));
 		$this->assertFalse($this->view->file_exists(
 			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file2.user2.shareKey'));
 		$this->assertFalse($this->view->file_exists(
 			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file1.user1.shareKey'));
 		$this->assertFalse($this->view->file_exists(
 			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file2.user2.shareKey'));
-		// enable encryption proxy
+		// check if share keys from user3 still exists
-		$proxyStatus = \OC_FileProxy::$enabled;
+		$this->assertTrue($this->view->file_exists(
-		\OC_FileProxy::$enabled = true;
+			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/file2.user3.shareKey'));
 		$this->assertTrue($this->view->file_exists(
 			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/subsubfolder/file2.user3.shareKey'));
 		$this->assertTrue($this->view->file_exists(
 			'/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys/folder1/subfolder/file2.user3.shareKey'));
 		// cleanup
-		$this->view->deleteAll('/admin/files/folder1');
+		$this->view->deleteAll('/'.Test_Encryption_Keymanager::TEST_USER.'/files_encryption/share-keys');
 		// change encryption proxy to previous state
 		\OC_FileProxy::$enabled = $proxyStatus;
 	}
 	function testKeySetPreperation() {
 		$basePath = '/'.Test_Encryption_Keymanager::TEST_USER.'/files';
-		$path = '/folder1/subfolder/subsubfolder';
+		$path = '/folder1/subfolder/subsubfolder/file.txt';
 		$this->assertFalse($this->view->is_dir($basePath . '/testKeySetPreperation'));
 		$result = TestProtectedKeymanagerMethods::testKeySetPreperation($this->view, $path, $basePath);
 		// return path without leading slash
-		$this->assertSame('folder1/subfolder/subsubfolder', $result);
+		$this->assertSame('folder1/subfolder/subsubfolder/file.txt', $result);
 		// check if directory structure was created
 		$this->assertTrue($this->view->is_dir($basePath . '/folder1/subfolder/subsubfolder'));
@ -283,6 +284,6 @@ class TestProtectedKeymanagerMethods extends \OCA\Encryption\Keymanager {
 	 * @param string $basePath
 	 */
 	public static function testKeySetPreperation($view, $path, $basePath) {
-		return self::keySetPreparation($view, $path, $basePath, '');
+		return self::keySetPreparation($view, $path, $basePath);
 	}
 }