Documentation
¶
Overview ¶
Package cryptocore wraps OpenSSL and Go GCM crypto and provides a nonce generator.
Index ¶
Constants ¶
const ( // KeyLen is the cipher key length in bytes. 32 for AES-256. KeyLen = 32 // AuthTagLen is the length of a GCM auth tag in bytes. AuthTagLen = 16 )
Variables ¶
This section is empty.
Functions ¶
Types ¶
type AEADTypeEnum ¶
type AEADTypeEnum int
AEADTypeEnum indicates the type of AEAD backend in use.
const ( // BackendOpenSSL specifies the OpenSSL backend. BackendOpenSSL AEADTypeEnum = 3 // BackendGoGCM specifies the Go based GCM backend. BackendGoGCM AEADTypeEnum = 4 // BackendAESSIV specifies an AESSIV backend. BackendAESSIV AEADTypeEnum = 5 )
type CryptoCore ¶
type CryptoCore struct {
// EME is used for filename encryption.
EMECipher *eme.EMECipher
// GCM or AES-SIV. This is used for content encryption.
AEADCipher cipher.AEAD
// Which backend is behind AEADCipher?
AEADBackend AEADTypeEnum
// GCM needs unique IVs (nonces)
IVGenerator *nonceGenerator
IVLen int
}
CryptoCore is the low level crypto implementation.
func New ¶
func New(key []byte, aeadType AEADTypeEnum, IVBitLen int, useHKDF bool, forceDecode bool) *CryptoCore
New returns a new CryptoCore object or panics.
Even though the "GCMIV128" feature flag is now mandatory, we must still support 96-bit IVs here because they were used for encrypting the master key in gocryptfs.conf up to gocryptfs v1.2. v1.3 switched to 128 bits.
Note: "key" is either the scrypt hash of the password (when decrypting a config file) or the masterkey (when finally mounting the filesystem).
func (*CryptoCore) Wipe ¶
func (c *CryptoCore) Wipe()
Wipe tries to wipe secret keys from memory by overwriting them with zeros and/or setting references to nil.
This is not bulletproof due to possible GC copies, but still raises to bar for extracting the key.
Source Files