beenull/ente
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
ente/lib/core/configuration.dart
Vishnu Mohandas a4323ad280 Reduce the memlimit for pwhash
2020-09-29 00:34:22 +05:30

196 lines
5.9 KiB
Dart
Raw Blame History

import 'dart:convert';
import 'dart:io' as io;
import 'dart:typed_data';
import 'package:flutter_secure_storage/flutter_secure_storage.dart';
import 'package:flutter_sodium/flutter_sodium.dart';
import 'package:path_provider/path_provider.dart';
import 'package:photos/models/key_attributes.dart';
import 'package:shared_preferences/shared_preferences.dart';
import 'package:photos/utils/crypto_util.dart';
class Configuration {
Configuration._privateConstructor();
static final Configuration instance = Configuration._privateConstructor();
static const endpointKey = "endpoint";
static const userIDKey = "user_id";
static const emailKey = "email";
static const tokenKey = "token";
static const hasOptedForE2EKey = "has_opted_for_e2e_encryption";
static const foldersToBackUpKey = "folders_to_back_up";
static const keyKey = "key";
static const encryptedKeyKey = "encrypted_key";
static const keyAttributesKey = "key_attributes";
SharedPreferences _preferences;
FlutterSecureStorage _secureStorage;
String _key;
String _documentsDirectory;
String _tempDirectory;
String _thumbnailsDirectory;
Future<void> init() async {
_preferences = await SharedPreferences.getInstance();
_secureStorage = FlutterSecureStorage();
_documentsDirectory = (await getApplicationDocumentsDirectory()).path;
_tempDirectory = _documentsDirectory + "/temp/";
_thumbnailsDirectory = _documentsDirectory + "/thumbnails/";
new io.Directory(_tempDirectory).createSync(recursive: true);
new io.Directory(_thumbnailsDirectory).createSync(recursive: true);
_key = await _secureStorage.read(key: keyKey);
}
Future<KeyAttributes> generateAndSaveKey(String passphrase) async {
// Create a master key
final key = CryptoUtil.generateMasterKey();
// Derive a key from the passphrase that will be used to encrypt and
// decrypt the master key
final kekSalt = CryptoUtil.getSaltToDeriveKey();
final kek = CryptoUtil.deriveKey(utf8.encode(passphrase), kekSalt);
// Encrypt the key with this derived key
final encryptedKeyData = await CryptoUtil.encrypt(key, key: kek);
// Hash the passphrase so that its correctness can be compared later
final passphraseHash = CryptoUtil.hash(utf8.encode(passphrase));
final attributes = KeyAttributes(
passphraseHash: passphraseHash,
kekSalt: Sodium.bin2base64(kekSalt),
encryptedKey: encryptedKeyData.encryptedData.base64,
keyDecryptionNonce: encryptedKeyData.nonce.base64,
);
await setKey(Sodium.bin2base64(key));
await setEncryptedKey(encryptedKeyData.encryptedData.base64);
await setKeyAttributes(attributes);
return attributes;
}
Future<void> decryptAndSaveKey(
String passphrase, KeyAttributes attributes) async {
final passphraseBytes = utf8.encode(passphrase);
bool correctPassphrase =
CryptoUtil.verifyHash(passphraseBytes, attributes.passphraseHash);
if (!correctPassphrase) {
throw Exception("Incorrect passphrase");
}
final kek = CryptoUtil.deriveKey(
passphraseBytes, Sodium.base642bin(attributes.kekSalt));
final key = await CryptoUtil.decrypt(
Sodium.base642bin(attributes.encryptedKey),
kek,
Sodium.base642bin(attributes.keyDecryptionNonce));
await setKey(Sodium.bin2base64(key));
}
String getHttpEndpoint() {
return "https://api.staging.ente.io";
}
Future<void> setEndpoint(String endpoint) async {
await _preferences.setString(endpointKey, endpoint);
}
String getToken() {
return _preferences.getString(tokenKey);
}
Future<void> setToken(String token) async {
await _preferences.setString(tokenKey, token);
}
String getEmail() {
return _preferences.getString(emailKey);
}
Future<void> setEmail(String email) async {
await _preferences.setString(emailKey, email);
}
int getUserID() {
return _preferences.getInt(userIDKey);
}
Future<void> setUserID(int userID) async {
await _preferences.setInt(userIDKey, userID);
}
Future<void> setOptInForE2E(bool hasOptedForE2E) async {
await _preferences.setBool(hasOptedForE2EKey, hasOptedForE2E);
}
bool hasOptedForE2E() {
return true;
// return _preferences.getBool(hasOptedForE2EKey);
}
Set<String> getFoldersToBackUp() {
if (_preferences.containsKey(foldersToBackUpKey)) {
return _preferences.getStringList(foldersToBackUpKey).toSet();
} else {
final foldersToBackUp = Set<String>();
foldersToBackUp.add("Camera");
foldersToBackUp.add("Recents");
foldersToBackUp.add("DCIM");
foldersToBackUp.add("Download");
foldersToBackUp.add("Screenshot");
return foldersToBackUp;
}
}
Future<void> setFoldersToBackUp(Set<String> folders) async {
await _preferences.setStringList(foldersToBackUpKey, folders.toList());
}
Future<void> setKeyAttributes(KeyAttributes attributes) async {
await _preferences.setString(
keyAttributesKey, attributes == null ? null : attributes.toJson());
}
KeyAttributes getKeyAttributes() {
if (_preferences.getString(keyAttributesKey) == null) {
return null;
}
return KeyAttributes.fromJson(_preferences.getString(keyAttributesKey));
}
Future<void> setEncryptedKey(String encryptedKey) async {
await _preferences.setString(encryptedKeyKey, encryptedKey);
}
String getEncryptedKey() {
return _preferences.getString(encryptedKeyKey);
}
Future<void> setKey(String key) async {
await _secureStorage.write(key: keyKey, value: key);
_key = key;
}
Uint8List getKey() {
return Sodium.base642bin(_key);
}
String getBase64EncodedKey() {
return _key;
}
String getDocumentsDirectory() {
return _documentsDirectory;
}
String getThumbnailsDirectory() {
return _thumbnailsDirectory;
}
String getTempDirectory() {
return _tempDirectory;
}
bool hasConfiguredAccount() {
return getToken() != null && getBase64EncodedKey() != null;
}
}
Reference in a new issue View git blame Copy permalink