keejef
/
session-ios
mirror of https://github.com/oxen-io/session-ios
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Stub out backup private key.

Browse Source
pull/1/head
Matthew Chen 7 years ago committed by Matthew Chen
parent 999321c067
commit 6cea2779d2
2 changed files with 72 additions and 46 deletions
Show Stats Download Patch File Download Diff File

43
Signal/src/util/OWSBackup.m
Unescape Escape View File

@ -5,6 +5,7 @@
#import "OWSBackup.h" #import "OWSBackup.h"
#import "NSNotificationCenter+OWS.h" #import "NSNotificationCenter+OWS.h"
#import "OWSBackupExport.h" #import "OWSBackupExport.h"
#import <Curve25519Kit/Randomness.h>
#import <SignalServiceKit/AppContext.h> #import <SignalServiceKit/AppContext.h>
#import <SignalServiceKit/NSDate+OWS.h> #import <SignalServiceKit/NSDate+OWS.h>
#import <SignalServiceKit/OWSBackupStorage.h> #import <SignalServiceKit/OWSBackupStorage.h>
@ -16,6 +17,7 @@ NSString *const NSNotificationNameBackupStateDidChange = @"NSNotificationNameBac
NSString *const OWSPrimaryStorage_OWSBackupCollection = @"OWSPrimaryStorage_OWSBackupCollection"; NSString *const OWSPrimaryStorage_OWSBackupCollection = @"OWSPrimaryStorage_OWSBackupCollection";
NSString *const OWSBackup_IsBackupEnabledKey = @"OWSBackup_IsBackupEnabledKey"; NSString *const OWSBackup_IsBackupEnabledKey = @"OWSBackup_IsBackupEnabledKey";
NSString *const OWSBackup_BackupKeyKey = @"OWSBackup_BackupKeyKey";
NSString *const OWSBackup_LastExportSuccessDateKey = @"OWSBackup_LastExportSuccessDateKey"; NSString *const OWSBackup_LastExportSuccessDateKey = @"OWSBackup_LastExportSuccessDateKey";
NSString *const OWSBackup_LastExportFailureDateKey = @"OWSBackup_LastExportFailureDateKey"; NSString *const OWSBackup_LastExportFailureDateKey = @"OWSBackup_LastExportFailureDateKey";
@ -99,14 +101,43 @@ NS_ASSUME_NONNULL_BEGIN
}); });
} }
- (void)setBackupPrivateKey:(NSData *)value
{
OWSAssert(value);
// TODO: This should eventually be the backup key stored in the Signal Service
// and retrieved with the backup PIN. It will eventually be stored in
// the keychain.
[self.dbConnection setObject:value
forKey:OWSBackup_BackupKeyKey
inCollection:OWSPrimaryStorage_OWSBackupCollection];
}
- (nullable NSData *)backupPrivateKey
{
NSData *_Nullable result =
[self.dbConnection objectForKey:OWSBackup_BackupKeyKey inCollection:OWSPrimaryStorage_OWSBackupCollection];
if (!result) {
// TODO: This is temporary measure until we have proper private key
// storage in the service.
const NSUInteger kBackupPrivateKeyLength = 32;
result = [Randomness generateRandomBytes:kBackupPrivateKeyLength];
[self setBackupPrivateKey:result];
}
OWSAssert(result);
OWSAssert([result isKindOfClass:[NSData class]]);
return result;
}
- (void)setLastExportSuccessDate:(NSDate *)value - (void)setLastExportSuccessDate:(NSDate *)value
{ {
OWSAssert(value);
[self.dbConnection setDate:value [self.dbConnection setDate:value
forKey:OWSBackup_LastExportSuccessDateKey forKey:OWSBackup_LastExportSuccessDateKey
inCollection:OWSPrimaryStorage_OWSBackupCollection]; inCollection:OWSPrimaryStorage_OWSBackupCollection];
} }
- (nullable NSDate *)lastExportSuccessDate - (nullable NSDate *)lastExportSuccessDate
{ {
return [self.dbConnection dateForKey:OWSBackup_LastExportSuccessDateKey return [self.dbConnection dateForKey:OWSBackup_LastExportSuccessDateKey
@ -115,6 +146,8 @@ NS_ASSUME_NONNULL_BEGIN
- (void)setLastExportFailureDate:(NSDate *)value - (void)setLastExportFailureDate:(NSDate *)value
{ {
OWSAssert(value);
[self.dbConnection setDate:value [self.dbConnection setDate:value
forKey:OWSBackup_LastExportFailureDateKey forKey:OWSBackup_LastExportFailureDateKey
inCollection:OWSPrimaryStorage_OWSBackupCollection]; inCollection:OWSPrimaryStorage_OWSBackupCollection];
@ -139,7 +172,6 @@ NS_ASSUME_NONNULL_BEGIN
[self.dbConnection setBool:value [self.dbConnection setBool:value
forKey:OWSBackup_IsBackupEnabledKey forKey:OWSBackup_IsBackupEnabledKey
inCollection:OWSPrimaryStorage_OWSBackupCollection]; inCollection:OWSPrimaryStorage_OWSBackupCollection];
OWSAssert(self.isBackupEnabled);
if (!value) { if (!value) {
[self.dbConnection removeObjectForKey:OWSBackup_LastExportSuccessDateKey [self.dbConnection removeObjectForKey:OWSBackup_LastExportSuccessDateKey
@ -253,13 +285,10 @@ NS_ASSUME_NONNULL_BEGIN
#pragma mark - OWSBackupExportDelegate #pragma mark - OWSBackupExportDelegate
// TODO: This should eventually be the backup key stored in the Signal Service // We use a delegate method to avoid storing this key in memory.
// and retrieved with the backup PIN.
- (nullable NSData *)backupKey - (nullable NSData *)backupKey
{ {
// We use a delegate method to avoid storing this key in memory. return self.backupPrivateKey;
// It will eventually be stored in the keychain.
return [@"test backup key" dataUsingEncoding:NSUTF8StringEncoding];
} }
- (void)backupExportDidSucceed:(OWSBackupExport *)backupExport - (void)backupExportDidSucceed:(OWSBackupExport *)backupExport

75
Signal/src/util/OWSBackupExport.m
Unescape Escape View File

@ -26,10 +26,19 @@ NS_ASSUME_NONNULL_BEGIN
typedef void (^OWSBackupExportBoolCompletion)(BOOL success); typedef void (^OWSBackupExportBoolCompletion)(BOOL success);
typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error); typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
@interface OWSBackupExport (Private)
+ (nullable NSString *)encryptAsTempFile:(NSString *)srcFilePath
exportDirPath:(NSString *)exportDirPath
delegate:(id<OWSBackupExportDelegate>)delegate;
@end
#pragma mark - #pragma mark -
@interface OWSAttachmentExport : NSObject @interface OWSAttachmentExport : NSObject
@property (nonatomic, weak) id<OWSBackupExportDelegate> delegate;
@property (nonatomic) NSString *exportDirPath; @property (nonatomic) NSString *exportDirPath;
@property (nonatomic) NSString *attachmentId; @property (nonatomic) NSString *attachmentId;
@property (nonatomic) NSString *attachmentFilePath; @property (nonatomic) NSString *attachmentFilePath;
@ -73,7 +82,9 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
} }
self.relativeFilePath = relativeFilePath; self.relativeFilePath = relativeFilePath;
NSString *_Nullable tempFilePath = [self encryptAsTempFile:self.attachmentFilePath]; NSString *_Nullable tempFilePath = [OWSBackupExport encryptAsTempFile:self.attachmentFilePath
exportDirPath:self.exportDirPath
delegate:self.delegate];
if (!tempFilePath) { if (!tempFilePath) {
DDLogError(@"%@ attachment could not be encrypted.", self.logTag); DDLogError(@"%@ attachment could not be encrypted.", self.logTag);
OWSFail(@"%@ attachment could not be encrypted: %@", self.logTag, self.attachmentFilePath); OWSFail(@"%@ attachment could not be encrypted: %@", self.logTag, self.attachmentFilePath);
@ -82,23 +93,6 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
self.tempFilePath = tempFilePath; self.tempFilePath = tempFilePath;
} }
- (nullable NSString *)encryptAsTempFile:(NSString *)srcFilePath
{
OWSAssert(self.exportDirPath.length > 0);
// TODO: Encrypt the file using self.delegate.backupKey;
NSString *dstFilePath = [self.exportDirPath stringByAppendingPathComponent:[NSUUID UUID].UUIDString];
NSFileManager *fileManager = [NSFileManager defaultManager];
NSError *error;
BOOL success = [fileManager copyItemAtPath:srcFilePath toPath:dstFilePath error:&error];
if (!success || error) {
OWSProdLogAndFail(@"%@ error writing encrypted file: %@", self.logTag, error);
return nil;
}
return dstFilePath;
}
@end @end
#pragma mark - #pragma mark -
@ -252,10 +246,6 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
} }
__weak OWSBackupExport *weakSelf = self; __weak OWSBackupExport *weakSelf = self;
BackupStorageKeySpecBlock keySpecBlock = ^{ BackupStorageKeySpecBlock keySpecBlock = ^{
NSData *_Nullable backupKey = [weakSelf.delegate backupKey];
if (!backupKey) {
return (NSData *)nil;
}
return weakSelf.databaseKeySpec; return weakSelf.databaseKeySpec;
}; };
self.backupStorage = self.backupStorage =
@ -449,6 +439,7 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
// OWSAttachmentExport is used to lazily write an encrypted copy of the // OWSAttachmentExport is used to lazily write an encrypted copy of the
// attachment to disk. // attachment to disk.
OWSAttachmentExport *attachmentExport = [OWSAttachmentExport new]; OWSAttachmentExport *attachmentExport = [OWSAttachmentExport new];
attachmentExport.delegate = self.delegate;
attachmentExport.exportDirPath = self.exportDirPath; attachmentExport.exportDirPath = self.exportDirPath;
attachmentExport.attachmentId = attachmentId; attachmentExport.attachmentId = attachmentId;
attachmentExport.attachmentFilePath = attachmentFilePath; attachmentExport.attachmentFilePath = attachmentFilePath;
@ -519,23 +510,6 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
completion(nil); completion(nil);
} }
- (nullable NSString *)encryptAsTempFile:(NSString *)srcFilePath
{
OWSAssert(self.exportDirPath.length > 0);
// TODO: Encrypt the file using self.delegate.backupKey;
NSString *dstFilePath = [self.exportDirPath stringByAppendingPathComponent:[NSUUID UUID].UUIDString];
NSFileManager *fileManager = [NSFileManager defaultManager];
NSError *error;
BOOL success = [fileManager copyItemAtPath:srcFilePath toPath:dstFilePath error:&error];
if (!success || error) {
OWSProdLogAndFail(@"%@ error writing encrypted file: %@", self.logTag, error);
return nil;
}
return dstFilePath;
}
- (BOOL)writeManifestFile - (BOOL)writeManifestFile
{ {
OWSAssert(self.databaseRecordMap.count > 0); OWSAssert(self.databaseRecordMap.count > 0);
@ -688,6 +662,29 @@ typedef void (^OWSBackupExportCompletion)(NSError *_Nullable error);
}); });
} }
+ (nullable NSString *)encryptAsTempFile:(NSString *)srcFilePath
exportDirPath:(NSString *)exportDirPath
delegate:(id<OWSBackupExportDelegate>)delegate
{
OWSAssert(srcFilePath.length > 0);
OWSAssert(exportDirPath.length > 0);
OWSAssert(delegate);
// TODO: Encrypt the file using self.delegate.backupKey;
NSData *_Nullable backupKey = [delegate backupKey];
OWSAssert(backupKey);
NSString *dstFilePath = [exportDirPath stringByAppendingPathComponent:[NSUUID UUID].UUIDString];
NSFileManager *fileManager = [NSFileManager defaultManager];
NSError *error;
BOOL success = [fileManager copyItemAtPath:srcFilePath toPath:dstFilePath error:&error];
if (!success || error) {
OWSProdLogAndFail(@"%@ error writing encrypted file: %@", self.logTag, error);
return nil;
}
return dstFilePath;
}
@end @end
NS_ASSUME_NONNULL_END NS_ASSUME_NONNULL_END

Write Preview
Loading…
Cancel
Save