Adjusted access control of several classes, enums, extensions, and methods

Author: tobihagemann

CryptoLib/AesCtr.swift

@@ -9,7 +9,7 @@
 import CommonCrypto
 import Foundation
 
-internal class AesCtr {
+class AesCtr {
 	/**
 	 High-level AES-CTR wrapper around CommonCrypto primitives. Can be used for encryption and decryption (it is the same in CTR mode).
 
@@ -18,7 +18,7 @@ internal class AesCtr {
 	 - Parameter data: data to be encrypted/decrypted
 	 - Returns: encrypted/decrypted data
 	 */
-	public static func compute(key: [UInt8], iv: [UInt8], data: [UInt8]) throws -> [UInt8] {
+	static func compute(key: [UInt8], iv: [UInt8], data: [UInt8]) throws -> [UInt8] {
 		assert(key.count == kCCKeySizeAES256 || key.count == kCCKeySizeAES128, "key expected to be 128 or 256 bit")
 		assert(iv.count == kCCBlockSizeAES128, "iv expected to be 128 bit")
 

CryptoLib/AesSiv.swift

@@ -9,7 +9,7 @@
 import CommonCrypto
 import Foundation
 
-internal class AesSiv {
+class AesSiv {
 	static let cryptoSupport = CryptoSupport()
 	static let zero = [UInt8](repeating: 0x00, count: 16)
 	static let dblConst: UInt8 = 0x87
@@ -23,7 +23,7 @@ internal class AesSiv {
 	 - Parameter ad: Associated data, which gets authenticated but not encrypted.
 	 - Returns: IV + Ciphertext as a concatenated byte array.
 	 */
-	public static func encrypt(aesKey: [UInt8], macKey: [UInt8], plaintext: [UInt8], ad: [UInt8]...) throws -> [UInt8] {
+	static func encrypt(aesKey: [UInt8], macKey: [UInt8], plaintext: [UInt8], ad: [UInt8]...) throws -> [UInt8] {
 		if plaintext.count > UInt32.max - 16 {
 			throw CryptoError.invalidParameter("plaintext must not be longer than 2^32 - 16 bytes")
 		}
@@ -41,7 +41,7 @@ internal class AesSiv {
 	 - Parameter ad: Associated data, which needs to be authenticated during decryption.
 	 - Returns: Plaintext byte array.
 	 */
-	public static func decrypt(aesKey: [UInt8], macKey: [UInt8], ciphertext: [UInt8], ad: [UInt8]...) throws -> [UInt8] {
+	static func decrypt(aesKey: [UInt8], macKey: [UInt8], ciphertext: [UInt8], ad: [UInt8]...) throws -> [UInt8] {
 		if ciphertext.count < 16 {
 			throw CryptoError.invalidParameter("ciphertext must be at least 16 bytes")
 		}
@@ -55,15 +55,17 @@ internal class AesSiv {
 		return plaintext
 	}
 
-	internal static func ctr(aesKey key: [UInt8], iv: [UInt8], plaintext: [UInt8]) throws -> [UInt8] {
+	// MARK: - Internal
+
+	static func ctr(aesKey key: [UInt8], iv: [UInt8], plaintext: [UInt8]) throws -> [UInt8] {
 		// clear out the 31st and 63rd bit (see https://tools.ietf.org/html/rfc5297#section-2.5)
 		var ctr = iv
 		ctr[8] &= 0x7F
 		ctr[12] &= 0x7F
 		return try AesCtr.compute(key: key, iv: ctr, data: plaintext)
 	}
 
-	internal static func s2v(macKey: [UInt8], plaintext: [UInt8], ad: [[UInt8]]) throws -> [UInt8] {
+	static func s2v(macKey: [UInt8], plaintext: [UInt8], ad: [[UInt8]]) throws -> [UInt8] {
 		// Maximum permitted AD length is the block size in bits - 2
 		if ad.count > 126 {
 			throw CryptoError.invalidParameter("too many ad")
@@ -89,7 +91,7 @@ internal class AesSiv {
 		return try cmac(macKey: macKey, data: t)
 	}
 
-	internal static func cmac(macKey key: [UInt8], data: [UInt8]) throws -> [UInt8] {
+	static func cmac(macKey key: [UInt8], data: [UInt8]) throws -> [UInt8] {
 		// subkey generation:
 		let l = try aes(key: key, plaintext: zero)
 		let k1 = l[0] & 0x80 == 0x00 ? shiftLeft(l) : dbl(l)

CryptoLib/CryptoSupport.swift

@@ -8,7 +8,7 @@
 
 import Foundation
 
-internal class CryptoSupport {
+class CryptoSupport {
 	/**
 	 Creates an array of cryptographically secure random bytes.
 

CryptoLib/Cryptor.swift

@@ -11,35 +11,42 @@ import CryptoSwift
 import Foundation
 import SwiftBase32
 
-extension Data {
-	public init?(base64UrlEncoded base64String: String, options: Data.Base64DecodingOptions = []) {
+public extension Data {
+	init?(base64UrlEncoded base64String: String, options: Data.Base64DecodingOptions = []) {
 		self.init(base64Encoded: base64String.replacingOccurrences(of: "-", with: "+").replacingOccurrences(of: "_", with: "/"), options: options)
 	}
 
-	public func base64UrlEncodedString(options: Data.Base64EncodingOptions = []) -> String {
+	func base64UrlEncodedString(options: Data.Base64EncodingOptions = []) -> String {
 		return base64EncodedString(options: options).replacingOccurrences(of: "+", with: "-").replacingOccurrences(of: "/", with: "_")
 	}
 }
 
-extension FixedWidthInteger {
-	public func byteArray() -> [UInt8] {
+public extension FixedWidthInteger {
+	func byteArray() -> [UInt8] {
 		return withUnsafeBytes(of: self, { [UInt8]($0) })
 	}
 }
 
-extension InputStream {
-	public func read(maxLength: Int) throws -> [UInt8]? {
+public enum InputStreamError: Error {
+	case readOperationFailed
+}
+
+public extension InputStream {
+	func read(maxLength: Int) throws -> [UInt8]? {
 		var buffer = [UInt8](repeating: 0x00, count: maxLength)
 		let length = read(&buffer, maxLength: maxLength)
-		if length == 0 {
+		switch length {
+		case _ where length > 0:
+			assert(length <= buffer.count)
+			buffer.removeSubrange(length...)
+			return buffer
+		case 0:
 			return nil
+		case _ where length < 0:
+			throw streamError ?? InputStreamError.readOperationFailed
+		default:
+			fatalError()
 		}
-		guard length > 0 else {
-			throw streamError ?? CryptoError.ioError
-		}
-		assert(length <= buffer.count)
-		buffer.removeSubrange(length...)
-		return buffer
 	}
 }
 
@@ -137,13 +144,13 @@ public class Cryptor {
 
 	// MARK: - File Header Encryption and Decryption
 
-	internal func createHeader() throws -> FileHeader {
+	func createHeader() throws -> FileHeader {
 		let nonce = try cryptoSupport.createRandomBytes(size: kCCBlockSizeAES128)
 		let contentKey = try cryptoSupport.createRandomBytes(size: kCCKeySizeAES256)
 		return FileHeader(nonce: nonce, contentKey: contentKey)
 	}
 
-	internal func encryptHeader(_ header: FileHeader) throws -> [UInt8] {
+	func encryptHeader(_ header: FileHeader) throws -> [UInt8] {
 		let cleartext = [UInt8](repeating: 0xFF, count: Cryptor.fileHeaderLegacyPayloadSize) + header.contentKey
 		let ciphertext = try AesCtr.compute(key: masterkey.aesMasterKey, iv: header.nonce, data: cleartext)
 		let toBeAuthenticated = header.nonce + ciphertext
@@ -152,7 +159,7 @@ public class Cryptor {
 		return header.nonce + ciphertext + mac
 	}
 
-	internal func decryptHeader(_ header: [UInt8]) throws -> FileHeader {
+	func decryptHeader(_ header: [UInt8]) throws -> FileHeader {
 		// decompose header:
 		let beginOfMAC = header.count - Int(CC_SHA256_DIGEST_LENGTH)
 		let nonce = [UInt8](header[0 ..< kCCBlockSizeAES128])
@@ -208,7 +215,7 @@ public class Cryptor {
 		try encryptContent(from: cleartextStream, to: ciphertextStream, cleartextSize: cleartextSize)
 	}
 
-	internal func encryptContent(from cleartextStream: InputStream, to ciphertextStream: OutputStream, cleartextSize: Int?) throws {
+	func encryptContent(from cleartextStream: InputStream, to ciphertextStream: OutputStream, cleartextSize: Int?) throws {
 		// create progress:
 		let progress: Progress
 		if let cleartextSize = cleartextSize {
@@ -269,7 +276,7 @@ public class Cryptor {
 		try decryptContent(from: ciphertextStream, to: cleartextStream, ciphertextSize: ciphertextSize)
 	}
 
-	internal func decryptContent(from ciphertextStream: InputStream, to cleartextStream: OutputStream, ciphertextSize: Int?) throws {
+	func decryptContent(from ciphertextStream: InputStream, to cleartextStream: OutputStream, ciphertextSize: Int?) throws {
 		// create progress:
 		let progress: Progress
 		if let ciphertextSize = ciphertextSize, let cleartextSize = try? calculateCleartextSize(ciphertextSize - Cryptor.fileHeaderSize) {
@@ -297,7 +304,7 @@ public class Cryptor {
 		}
 	}
 
-	internal func encryptSingleChunk(_ chunk: [UInt8], chunkNumber: UInt64, headerNonce: [UInt8], fileKey: [UInt8]) throws -> [UInt8] {
+	func encryptSingleChunk(_ chunk: [UInt8], chunkNumber: UInt64, headerNonce: [UInt8], fileKey: [UInt8]) throws -> [UInt8] {
 		let chunkNonce = try cryptoSupport.createRandomBytes(size: kCCBlockSizeAES128)
 		let ciphertext = try AesCtr.compute(key: fileKey, iv: chunkNonce, data: chunk)
 		let toBeAuthenticated = headerNonce + chunkNumber.bigEndian.byteArray() + chunkNonce + ciphertext
@@ -306,7 +313,7 @@ public class Cryptor {
 		return chunkNonce + ciphertext + mac
 	}
 
-	internal func decryptSingleChunk(_ chunk: [UInt8], chunkNumber: UInt64, headerNonce: [UInt8], fileKey: [UInt8]) throws -> [UInt8] {
+	func decryptSingleChunk(_ chunk: [UInt8], chunkNumber: UInt64, headerNonce: [UInt8], fileKey: [UInt8]) throws -> [UInt8] {
 		assert(chunk.count >= kCCBlockSizeAES128 + Int(CC_SHA256_DIGEST_LENGTH), "ciphertext chunk must at least contain nonce + mac")
 
 		// decompose chunk:

CryptoLib/Masterkey.swift

@@ -20,7 +20,7 @@ struct MasterkeyJson: Codable {
 	let version: Int
 }
 
-enum MasterkeyError: Error, Equatable {
+public enum MasterkeyError: Error, Equatable {
 	case malformedMasterkeyFile(_ reason: String)
 	case invalidPassword
 	case unwrapFailed(_ status: CCCryptorStatus)
@@ -92,7 +92,7 @@ public class Masterkey {
 		return try createFromMasterkeyFile(jsonData: decoded, password: password, pepper: pepper)
 	}
 
-	internal static func createFromMasterkeyFile(jsonData: MasterkeyJson, password: String, pepper: [UInt8]) throws -> Masterkey {
+	private static func createFromMasterkeyFile(jsonData: MasterkeyJson, password: String, pepper: [UInt8]) throws -> Masterkey {
 		let pw = [UInt8](password.precomposedStringWithCanonicalMapping.utf8)
 		let salt = [UInt8](Data(base64Encoded: jsonData.scryptSalt)!)
 		let saltAndPepper = salt + pepper
@@ -126,15 +126,15 @@ public class Masterkey {
 		return createFromRaw(aesMasterKey: aesKey, macMasterKey: macKey, version: jsonData.version)
 	}
 
-	internal static func createFromRaw(aesMasterKey: [UInt8], macMasterKey: [UInt8], version: Int) -> Masterkey {
+	static func createFromRaw(aesMasterKey: [UInt8], macMasterKey: [UInt8], version: Int) -> Masterkey {
 		assert(aesMasterKey.count == kCCKeySizeAES256)
 		assert(macMasterKey.count == kCCKeySizeAES256)
 		return Masterkey(aesMasterKey: aesMasterKey, macMasterKey: macMasterKey, version: version)
 	}
 
 	// MARK: - RFC 3394 Key Wrapping
 
-	internal static func wrapMasterKey(rawKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
+	static func wrapMasterKey(rawKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
 		assert(kek.count == kCCKeySizeAES256)
 		var wrappedKeyLen = CCSymmetricWrappedSize(CCWrappingAlgorithm(kCCWRAPAES), rawKey.count)
 		var wrappedKey = [UInt8](repeating: 0x00, count: wrappedKeyLen)
@@ -146,7 +146,7 @@ public class Masterkey {
 		}
 	}
 
-	internal static func unwrapMasterKey(wrappedKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
+	static func unwrapMasterKey(wrappedKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
 		assert(kek.count == kCCKeySizeAES256)
 		var unwrappedKeyLen = CCSymmetricUnwrappedSize(CCWrappingAlgorithm(kCCWRAPAES), wrappedKey.count)
 		var unwrappedKey = [UInt8](repeating: 0x00, count: unwrappedKeyLen)
@@ -175,7 +175,7 @@ public class Masterkey {
 		return try JSONEncoder().encode(masterkeyJson)
 	}
 
-	internal func exportEncrypted(password: String, pepper: [UInt8], scryptCostParam: Int = Masterkey.defaultScryptCostParam, cryptoSupport: CryptoSupport = CryptoSupport()) throws -> MasterkeyJson {
+	func exportEncrypted(password: String, pepper: [UInt8], scryptCostParam: Int = Masterkey.defaultScryptCostParam, cryptoSupport: CryptoSupport = CryptoSupport()) throws -> MasterkeyJson {
 		let pw = [UInt8](password.precomposedStringWithCanonicalMapping.utf8)
 		let salt = try cryptoSupport.createRandomBytes(size: Masterkey.defaultScryptSaltSize)
 		let saltAndPepper = salt + pepper