Sebastian Stenzel
97a72ecbf7
make some better use of mocks during unit tests
2015-12-07 14:59:12 +01:00
Sebastian Stenzel
a7c19624ce
randomizing masterkeys is now a explicit task, so random numbers are not needed when loading a masterkey file from disk. trying to use an uninitialized cryptor results in runtime exceptions
2015-11-23 15:09:39 +01:00
Sebastian Stenzel
289ac55ccd
Deleted IORuntimeException in favour of UncheckedIOException
2015-10-29 11:26:28 +01:00
Sebastian Stenzel
b5160cddb9
improved recursive directory deletion
2015-10-29 10:24:11 +01:00
Sebastian Stenzel
1a81b3a781
several refactorings, especially concerning LOCK operations on windows
2015-10-28 22:44:59 +01:00
Sebastian Stenzel
c1f32105d8
last byte in request range inclusive (!!)
2015-10-03 14:07:41 +02:00
Sebastian Stenzel
09b4130c3e
- fixed size obfuscation padding
...
- fixed behaviour when serving invalid content ranges, thus improving random access performance (thats why we created the 0.8.2 workaround)
- reduced loglevels of some frequent messages
2015-10-03 13:10:28 +02:00
Sebastian Stenzel
e65c84ca1d
Merge tag '0.8.2'
...
Conflicts:
main/core/pom.xml
main/crypto-aes/pom.xml
main/crypto-api/pom.xml
main/installer-debian/pom.xml
main/installer-osx/pom.xml
main/installer-win-portable/pom.xml
main/installer-win/pom.xml
main/pom.xml
main/uber-jar/pom.xml
main/ui/pom.xml
2015-10-02 17:38:40 +02:00
Sebastian Stenzel
095f60ec03
Update 0.8.2
...
Fixes slow range requests on OS X, as WebDAVFS sometimes processes responses only after closing the connection, even though "keep-alive" is requested.
2015-10-02 17:36:04 +02:00
Sebastian Stenzel
6b073c1499
small I/O tweaks
2015-08-25 10:55:46 +02:00
Sebastian Stenzel
3f946d1c82
Creating directories lazily now. This fixes an issue, where a "ui" folder appeared inside the vault, just because Windows Explorer queries the existence of "ui/SwDRM.dll".
2015-08-03 12:33:11 +02:00
Sebastian Stenzel
ed7dc60f5e
slow start, increasing number of blocks worked on per thread, reusing ciphers for multiple consecutive blocks
2015-08-02 00:37:26 +02:00
Sebastian Stenzel
6bbfacd794
small changes for easier debugging
2015-08-01 21:34:47 +02:00
Sebastian Stenzel
aac9ead633
- mutlithreaded encryption
...
- moved to bytebuffer (experimental)
2015-07-27 22:25:24 +02:00
Sebastian Stenzel
cdcc1626ce
multithreaded decryption using producer/consumer pattern
2015-07-26 22:22:50 +02:00
Sebastian Stenzel
738d2dfc34
first multithreaded decryption test (PoC quality)
2015-07-25 17:28:00 +02:00
Tobias Hagemann
7349ef754e
Unsatisfiable content range in partial file requests
2015-07-25 01:56:06 +02:00
Sebastian Stenzel
e8e80f306b
WebDAV range request refinements
2015-07-25 01:52:37 +02:00
Sebastian Stenzel
93a87c86a4
sensitive header data is now encrypted using a single enc_cbc(concat(fileSize, fileKey)) instead of encrypting both data separately
2015-07-13 17:37:06 +02:00
Sebastian Stenzel
685e347524
New MAC authentication warning, preventing CCAs, but allowing to force-decrypt unauthentic files.
2015-07-09 17:16:43 +02:00
Sebastian Stenzel
9d2d847727
fixed build
2015-07-05 20:57:15 +02:00
Sebastian Stenzel
a00086ff2d
- simplified range request handling
...
- correct handling of HTTP 416 responses
- moved unit test to apache httpclient (old version 3.1 due to jackrabbit's dependency)
2015-07-04 20:47:23 +02:00
Sebastian Stenzel
d76154c8d1
- reduced size of chunks, a MAC is calculated for (not final yet)
...
- faster range requests due to reduced chunk size, thus faster video playback start
- fixed range requests
- making file locks optional (if not supported by file system)
2015-07-03 19:30:49 +02:00
Sebastian Stenzel
0d3a5b4e70
- increased vault version
...
- Showing "per vault" MAC authentication failure dialogs
2015-06-26 23:35:24 +02:00
Sebastian Stenzel
48f544ef91
- support for http range requests in new schema
2015-06-21 22:11:15 +02:00
Sebastian Stenzel
45cf87d089
new, more secure encryption scheme
...
- fixed flaw reported by Stan Drapkin (SecurityDriven.NET) reducing effective key size to 96 bit
- multiple file content MACs for 1MB blocks, preventing chosen ciphertext attacks, as authentication now happens before decryption
- allowing files bigger than 64GiB
2015-06-21 18:51:39 +02:00
Sebastian Stenzel
c5b241a68a
cleanup
2015-05-30 20:40:08 +02:00
Sebastian Stenzel
03cdf1fdc9
added metadata caching
2015-05-29 11:18:23 +02:00
Sebastian Stenzel
49646aae41
improved directory name caching (>95% hitrate now)
2015-05-29 10:47:50 +02:00
Sebastian Stenzel
744f9db958
fixes #52
2015-05-25 16:22:52 +02:00
Sebastian Stenzel
0e3513e86d
- locking file header during creation,
...
- suggesting range request for files > 32MiB only
2015-05-22 22:26:39 +02:00
Sebastian Stenzel
8845efb983
fixed infinite number of authentication jobs resulting in heavy cpu load
2015-05-22 22:04:32 +02:00
Sebastian Stenzel
ea9c8eee83
yet another refactoring session (functionality restored now)
2015-05-15 23:17:24 +02:00
Sebastian Stenzel
0d969432c2
some more flat hierarchy fixes
2015-05-15 18:13:34 +02:00
Sebastian Stenzel
be369b480b
some more destruction...
2015-05-14 21:48:02 +02:00
Sebastian Stenzel
4cf872f916
directory moving
2015-05-14 07:37:56 +02:00
Sebastian Stenzel
bbeeb79812
reduced max file name size, locking metadata files before read/write.
2015-05-05 06:50:16 +02:00
Sebastian Stenzel
040f260bf0
authenticated file header
2015-05-04 21:31:41 +02:00
Sebastian Stenzel
cdf9c28a38
refactored directory structure, so windows (and OneDrive) can handle vaults better
2015-04-28 18:19:05 +02:00
Sebastian Stenzel
f22142a876
Improved unmounting (failing, if encrypted drive is still busy)
2015-03-14 21:58:52 +01:00
Sebastian Stenzel
652c4cbafb
Using 96 bit of random data and a 32 bit counter (as specified in https://tools.ietf.org/html/rfc3686#section-4 ). Thus maximum file size supported by Cryptomator is 64GiB, but decreasing risk of IV collisions to 1 : 2^48
2015-03-14 21:58:06 +01:00
Sebastian Stenzel
c1dd902a10
Async MAC authentication for HTTP range requests. Fixes #38
2015-03-09 16:32:59 +01:00
Sebastian Stenzel
0994e7bb39
Show warning dialog, if MAC check failed.
2015-03-09 09:56:25 +01:00
Sebastian Stenzel
2849e39e85
on-the-fly MAC calculation for better performance (addresses issue #38 )
...
we still need to add some kind of warning on the UI and create an async MAC checker for ranged requests
2015-03-01 22:23:42 +01:00
Sebastian Stenzel
9433c22d7f
minor I/O improvements
2015-03-01 20:55:32 +01:00
Sebastian Stenzel
507e21f8a3
- fixes folder creation and automounting on Linux
...
- using IPv6 address for mounting on Windows only (hostnames on OS X and Linux)
2015-02-22 21:04:46 +01:00
Sebastian Stenzel
b68cf71494
- always check HMAC before decryption
...
- separating AES and CMAC key during SIV mode
2015-02-20 19:47:45 +01:00
Sebastian Stenzel
3187520797
- fixed special chars in folder names
...
- fixed IndexOutOfBoundsException
- removal of no longer existing vault directories (at runtime)
2015-02-15 00:48:03 +01:00
Sebastian Stenzel
9fdd2f339c
- changed file name encryption to SIV mode
...
- vastly improved exception handling, if decryption of a path name fails
2015-02-14 18:55:33 +01:00
Tillmann Gaida
def70c5891
Removed static resources in WebDavServer, FXThreads and Settings with
...
dependency injection. Replaced static references to MainApplication in
the context of closing resources with an injected DeferredCloser. Using
controller factory for dependency injection into FX controllers.
2015-02-14 14:11:55 +01:00