diff options
author | Thomas Müller <thomas.mueller@tmit.eu> | 2016-01-13 10:34:48 +0100 |
---|---|---|
committer | Thomas Müller <thomas.mueller@tmit.eu> | 2016-01-13 10:34:48 +0100 |
commit | e0aa6e01ab14191f42b2e79d32a9e0cc0203f975 (patch) | |
tree | b04551d57ab6589d12063e14238b61fe032a4a86 /apps/encryption | |
parent | a5e46226eff081ca869ac2a0a7b80086c863a384 (diff) | |
parent | 46f6c289cac2ad20f9b57e1aff2894a38221a917 (diff) | |
download | nextcloud-server-e0aa6e01ab14191f42b2e79d32a9e0cc0203f975.tar.gz nextcloud-server-e0aa6e01ab14191f42b2e79d32a9e0cc0203f975.zip |
Merge pull request #21612 from owncloud/fix_21598
fix public link sharing if the master key is enabled
Diffstat (limited to 'apps/encryption')
-rw-r--r-- | apps/encryption/lib/keymanager.php | 9 | ||||
-rw-r--r-- | apps/encryption/tests/lib/KeyManagerTest.php | 76 |
2 files changed, 69 insertions, 16 deletions
diff --git a/apps/encryption/lib/keymanager.php b/apps/encryption/lib/keymanager.php index eede8b969d6..b6365cf2cce 100644 --- a/apps/encryption/lib/keymanager.php +++ b/apps/encryption/lib/keymanager.php @@ -388,16 +388,17 @@ class KeyManager { public function getFileKey($path, $uid) { $encryptedFileKey = $this->keyStorage->getFileKey($path, $this->fileKeyId, Encryption::ID); - if ($this->util->isMasterKeyEnabled()) { - $uid = $this->getMasterKeyId(); - } - if (is_null($uid)) { $uid = $this->getPublicShareKeyId(); $shareKey = $this->getShareKey($path, $uid); $privateKey = $this->keyStorage->getSystemUserKey($this->publicShareKeyId . '.privateKey', Encryption::ID); $privateKey = $this->crypt->decryptPrivateKey($privateKey); } else { + + if ($this->util->isMasterKeyEnabled()) { + $uid = $this->getMasterKeyId(); + } + $shareKey = $this->getShareKey($path, $uid); $privateKey = $this->session->getPrivateKey(); } diff --git a/apps/encryption/tests/lib/KeyManagerTest.php b/apps/encryption/tests/lib/KeyManagerTest.php index bf109685b8b..c69610fb541 100644 --- a/apps/encryption/tests/lib/KeyManagerTest.php +++ b/apps/encryption/tests/lib/KeyManagerTest.php @@ -342,25 +342,77 @@ class KeyManagerTest extends TestCase { $this->assertTrue($this->instance->getEncryptedFileKey('/')); } - public function testGetFileKey() { - $this->keyStorageMock->expects($this->exactly(4)) + /** + * @dataProvider dataTestGetFileKey + * + * @param $uid + * @param $isMasterKeyEnabled + * @param $privateKey + * @param $expected + */ + public function testGetFileKey($uid, $isMasterKeyEnabled, $privateKey, $expected) { + + $path = '/foo.txt'; + + if ($isMasterKeyEnabled) { + $expectedUid = 'masterKeyId'; + } else { + $expectedUid = $uid; + } + + $this->invokePrivate($this->instance, 'masterKeyId', ['masterKeyId']); + + $this->keyStorageMock->expects($this->at(0)) ->method('getFileKey') + ->with($path, 'fileKey', 'OC_DEFAULT_MODULE') ->willReturn(true); - $this->keyStorageMock->expects($this->once()) - ->method('getSystemUserKey') + $this->keyStorageMock->expects($this->at(1)) + ->method('getFileKey') + ->with($path, $expectedUid . '.shareKey', 'OC_DEFAULT_MODULE') ->willReturn(true); - $this->cryptMock->expects($this->once()) - ->method('decryptPrivateKey') - ->willReturn(true); + if (is_null($uid)) { + $this->keyStorageMock->expects($this->once()) + ->method('getSystemUserKey') + ->willReturn(true); + $this->cryptMock->expects($this->once()) + ->method('decryptPrivateKey') + ->willReturn($privateKey); + } else { + $this->keyStorageMock->expects($this->never()) + ->method('getSystemUserKey'); + $this->utilMock->expects($this->once())->method('isMasterKeyEnabled') + ->willReturn($isMasterKeyEnabled); + $this->sessionMock->expects($this->once())->method('getPrivateKey')->willReturn($privateKey); + } - $this->cryptMock->expects($this->once()) - ->method('multiKeyDecrypt') - ->willReturn(true); + if($privateKey) { + $this->cryptMock->expects($this->once()) + ->method('multiKeyDecrypt') + ->willReturn(true); + } else { + $this->cryptMock->expects($this->never()) + ->method('multiKeyDecrypt'); + } - $this->assertTrue($this->instance->getFileKey('/', null)); - $this->assertEmpty($this->instance->getFileKey('/', $this->userId)); + $this->assertSame($expected, + $this->instance->getFileKey($path, $uid) + ); + + } + + public function dataTestGetFileKey() { + return [ + ['user1', false, 'privateKey', true], + ['user1', false, false, ''], + ['user1', true, 'privateKey', true], + ['user1', true, false, ''], + ['', false, 'privateKey', true], + ['', false, false, ''], + ['', true, 'privateKey', true], + ['', true, false, ''] + ]; } public function testDeletePrivateKey() { |