KurlesHS/restic
1
0
Fork 0
forked from TrueCloudLab/restic
Code Pull requests Activity

crypto: Use bytes.Reader for crypto reader

Browse source
This commit is contained in:
Alexander Neumann 2015-04-25 00:00:32 +02:00
parent 9c43688d1a
commit 1eb6172c40
1 changed files with 41 additions and 51 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

92
crypto/reader.go
View file

@ -1,65 +1,67 @@
package crypto package crypto
import ( import (
"bytes"
"errors"
"io" "io"
"io/ioutil"
) )
type decryptReader struct { type decryptReader struct {
buf []byte buf []byte
pos int rd *bytes.Reader
} }
func (d *decryptReader) Read(dst []byte) (int, error) { func (d *decryptReader) Read(dst []byte) (n int, err error) {
if d.buf == nil { if d.buf == nil {
return 0, io.EOF return 0, io.EOF
} }
if len(dst) == 0 { n, err = d.rd.Read(dst)
return 0, nil if err == io.EOF {
d.free()
} }
remaining := len(d.buf) - d.pos
if len(dst) >= remaining {
n := copy(dst, d.buf[d.pos:])
d.Close()
return n, io.EOF
}
n := copy(dst, d.buf[d.pos:d.pos+len(dst)])
d.pos += n
return n, nil
}
func (d *decryptReader) ReadByte() (c byte, err error) {
if d.buf == nil {
return 0, io.EOF
}
remaining := len(d.buf) - d.pos
if remaining == 1 {
c = d.buf[d.pos]
d.Close()
return c, io.EOF
}
c = d.buf[d.pos]
d.pos++
return return
} }
func (d *decryptReader) free() {
freeBuffer(d.buf)
d.buf = nil
}
func (d *decryptReader) Close() error { func (d *decryptReader) Close() error {
if d.buf == nil { if d.buf == nil {
return nil return nil
} }
freeBuffer(d.buf) d.free()
d.buf = nil
return nil return nil
} }
func (d *decryptReader) ReadByte() (c byte, err error) {
if d.buf == nil {
return 0, io.EOF
}
c, err = d.rd.ReadByte()
if err == io.EOF {
d.free()
}
return
}
func (d *decryptReader) WriteTo(w io.Writer) (n int64, err error) {
if d.buf == nil {
return 0, errors.New("WriteTo() called on drained reader")
}
n, err = d.rd.WriteTo(w)
d.free()
return
}
// DecryptFrom verifies and decrypts the ciphertext read from rd with ks and // DecryptFrom verifies and decrypts the ciphertext read from rd with ks and
// makes it available on the returned Reader. Ciphertext must be in the form IV // makes it available on the returned Reader. Ciphertext must be in the form IV
// || Ciphertext || MAC. In order to correctly verify the ciphertext, rd is // || Ciphertext || MAC. In order to correctly verify the ciphertext, rd is
@ -67,25 +69,13 @@ func (d *decryptReader) Close() error {
// afterwards. If a MAC verification failure is observed, it is returned // afterwards. If a MAC verification failure is observed, it is returned
// immediately. // immediately.
func DecryptFrom(ks *Key, rd io.Reader) (io.ReadCloser, error) { func DecryptFrom(ks *Key, rd io.Reader) (io.ReadCloser, error) {
ciphertext := getBuffer() buf := bytes.NewBuffer(getBuffer()[:0])
_, err := buf.ReadFrom(rd)
ciphertext = ciphertext[0:cap(ciphertext)]
n, err := io.ReadFull(rd, ciphertext)
if err != io.ErrUnexpectedEOF {
// read remaining data
buf, e := ioutil.ReadAll(rd)
ciphertext = append(ciphertext, buf...)
n += len(buf)
err = e
} else {
err = nil
}
if err != nil { if err != nil {
return nil, err return nil, err
} }
ciphertext = ciphertext[:n] ciphertext := buf.Bytes()
// decrypt // decrypt
ciphertext, err = Decrypt(ks, ciphertext, ciphertext) ciphertext, err = Decrypt(ks, ciphertext, ciphertext)
@ -93,5 +83,5 @@ func DecryptFrom(ks *Key, rd io.Reader) (io.ReadCloser, error) {
return nil, err return nil, err
} }
return &decryptReader{buf: ciphertext}, nil return &decryptReader{buf: ciphertext, rd: bytes.NewReader(ciphertext)}, nil
} }