Improved error handling

Author: overheadhunter

CryptoLib/AesSiv.swift

@@ -22,7 +22,7 @@ public class AesSiv {
 
 	public static func encrypt(aesKey: [UInt8], macKey: [UInt8], plaintext: [UInt8], ad: [UInt8]...) throws -> [UInt8] {
 		if (plaintext.count > UInt32.max - 16) {
-			throw AesSivError.invalidParameter("ciphertext must be at least 16 bytes")
+			throw AesSivError.invalidParameter("plaintext must not be longer than 2^32 - 16 bytes")
 		}
 		let iv = try s2v(macKey: macKey, plaintext: plaintext, ad: ad)
 		let ciphertext = try aesCtr(aesKey: aesKey, iv: iv, plaintext: plaintext)

CryptoLib/Masterkey.swift

@@ -20,6 +20,13 @@ struct MasterkeyJson: Codable {
     let version: Int
 }
 
+enum MasterkeyError: Error, Equatable {
+	case malformedMasterkeyFile(_ reason: String)
+	case invalidPassword
+	case unwrapFailed(_ status: CCCryptorStatus)
+	case wrapFailed(_ status: CCCryptorStatus)
+}
+
 public class Masterkey {
 
 	private(set) var aesMasterKey: [UInt8]
@@ -42,85 +49,70 @@ public class Masterkey {
 	// MARK: -
 	// MARK: Masterkey Factory Methods
 
-	public static func createFromMasterkeyFile(file: URL, password: String, pepper: [UInt8] = [UInt8]()) -> Masterkey? {
-		if let jsonData = try? Data(contentsOf: file) {
-			return createFromMasterkeyFile(jsonData: jsonData, password: password)
-		} else {
-			return nil
-		}
+	public static func createFromMasterkeyFile(file: URL, password: String, pepper: [UInt8] = [UInt8]())  throws -> Masterkey {
+		let jsonData = try Data(contentsOf: file)
+		return try createFromMasterkeyFile(jsonData: jsonData, password: password)
+
 	}
 
-	public static func createFromMasterkeyFile(jsonData: Data, password: String, pepper: [UInt8] = [UInt8]()) -> Masterkey? {
+	public static func createFromMasterkeyFile(jsonData: Data, password: String, pepper: [UInt8] = [UInt8]()) throws -> Masterkey {
 		let jsonDecoder = JSONDecoder()
-		if let decoded = try? jsonDecoder.decode(MasterkeyJson.self, from: jsonData) {
-			return createFromMasterkeyFile(jsonData: decoded, password: password, pepper: pepper);
-		} else {
-			return nil
-		}
+		let decoded = try jsonDecoder.decode(MasterkeyJson.self, from: jsonData)
+		return try createFromMasterkeyFile(jsonData: decoded, password: password, pepper: pepper);
 	}
 
-	static func createFromMasterkeyFile(jsonData: MasterkeyJson, password: String, pepper: [UInt8]) -> Masterkey? {
+	static func createFromMasterkeyFile(jsonData: MasterkeyJson, password: String, pepper: [UInt8]) throws -> Masterkey {
 		let pw = [UInt8](password.precomposedStringWithCanonicalMapping.utf8)
 		let salt = [UInt8](Data(base64Encoded: jsonData.scryptSalt)!)
 		let saltAndPepper = salt + pepper
-		guard let kek = try? Scrypt(password: pw, salt: saltAndPepper, dkLen: kCCKeySizeAES256, N: jsonData.scryptCostParam, r: jsonData.scryptBlockSize, p: 1).calculate() else {
-			debugPrint("scrypt failed")
-			return nil;
-		}
-		
-		let wrappedMasterKey = [UInt8](Data(base64Encoded: jsonData.primaryMasterKey)!)
-		let unwrappedMasterKey = unwrapMasterKey(wrappedKey: wrappedMasterKey, kek: kek)
+		let kek = try Scrypt(password: pw, salt: saltAndPepper, dkLen: kCCKeySizeAES256, N: jsonData.scryptCostParam, r: jsonData.scryptBlockSize, p: 1).calculate()
 
-		let wrappedHmacKey = [UInt8](Data(base64Encoded: jsonData.hmacMasterKey)!)
-		let unwrappedHmacKey = unwrapMasterKey(wrappedKey: wrappedHmacKey, kek: kek)
+		guard let wrappedMasterKey = Data(base64Encoded: jsonData.primaryMasterKey) else {
+			throw MasterkeyError.malformedMasterkeyFile("invalid base64 data in primaryMasterKey")
+		}
+		let aesKey = try unwrapMasterKey(wrappedKey: wrappedMasterKey.bytes, kek: kek)
 
-		if (unwrappedMasterKey != nil) && (unwrappedHmacKey != nil) {
-			return createFromRaw(aesMasterKey: unwrappedMasterKey!, macMasterKey: unwrappedHmacKey!)
-		} else {
-			return nil
+		guard let wrappedHmacKey = Data(base64Encoded: jsonData.hmacMasterKey) else {
+			throw MasterkeyError.malformedMasterkeyFile("invalid base64 data in hmacMasterKey")
 		}
+		let macKey = try unwrapMasterKey(wrappedKey: wrappedHmacKey.bytes, kek: kek)
+		
+		return createFromRaw(aesMasterKey: aesKey, macMasterKey: macKey)
 	}
 
 	internal static func createFromRaw(aesMasterKey: [UInt8], macMasterKey: [UInt8]) -> Masterkey {
-		// TODO CMAC implementation doesn't support 256 bit keys yet -.-
-		// assert(aesMasterKey.count == kCCKeySizeAES256)
-		// assert(macMasterKey.count == kCCKeySizeAES256)
+		assert(aesMasterKey.count == kCCKeySizeAES256)
+		assert(macMasterKey.count == kCCKeySizeAES256)
 		return Masterkey(aesMasterKey: aesMasterKey, macMasterKey: macMasterKey)
 	}
 
 	// MARK: -
 	// MARK: RFC 3394 Key Wrapping
 
-	static func wrapMasterKey(rawKey: [UInt8], kek: [UInt8]) -> [UInt8]? {
+	static func wrapMasterKey(rawKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
 		assert(kek.count == kCCKeySizeAES256)
 		var wrapepdKeyLen = CCSymmetricWrappedSize(CCWrappingAlgorithm(kCCWRAPAES), rawKey.count)
 		var wrapepdKey = [UInt8](repeating: 0x00, count: wrapepdKeyLen);
 		let status = CCSymmetricKeyWrap(CCWrappingAlgorithm(kCCWRAPAES), CCrfc3394_iv, CCrfc3394_ivLen, kek, kek.count, rawKey, rawKey.count, &wrapepdKey, &wrapepdKeyLen)
 		if status == kCCSuccess {
 			return wrapepdKey
-		} else if status == kCCParamError {
-			// wrong password
-			return nil
 		} else {
-			debugPrint("unwrapping masterkey failed with status code ", status)
-			return nil
+			throw MasterkeyError.wrapFailed(status)
 		}
 	}
 
-	static func unwrapMasterKey(wrappedKey: [UInt8], kek: [UInt8]) -> [UInt8]? {
+	static func unwrapMasterKey(wrappedKey: [UInt8], kek: [UInt8]) throws -> [UInt8] {
 		assert(kek.count == kCCKeySizeAES256)
 		var unwrapepdKeyLen = CCSymmetricUnwrappedSize(CCWrappingAlgorithm(kCCWRAPAES), wrappedKey.count)
 		var unwrapepdKey = [UInt8](repeating: 0x00, count: unwrapepdKeyLen);
 		let status = CCSymmetricKeyUnwrap(CCWrappingAlgorithm(kCCWRAPAES), CCrfc3394_iv, CCrfc3394_ivLen, kek, kek.count, wrappedKey, wrappedKey.count, &unwrapepdKey, &unwrapepdKeyLen)
 		if status == kCCSuccess {
 			assert(unwrapepdKeyLen == kCCKeySizeAES256)
 			return unwrapepdKey
-		} else if status == kCCParamError {
-		   // wrong password
-		   return nil
+		} else if status == kCCDecodeError {
+			throw MasterkeyError.invalidPassword
 	   } else {
-		   debugPrint("unwrapping masterkey failed with status code ", status)
-		   return nil
+			throw MasterkeyError.unwrapFailed(status)
 	   }
 	}
 

CryptoLibTests/MasterkeyTests.swift

@@ -19,17 +19,17 @@ class MasterkeyTests: XCTestCase {
         // Put teardown code here. This method is called after the invocation of each test method in the class.
     }
 
-	func testWrapAndUnwrapKey() {
+	func testWrapAndUnwrapKey() throws {
 		let rawKey = [UInt8](repeating: 0x77, count: 32)
 		let kek = [UInt8](repeating: 0x55, count: 32)
-		let wrapped = Masterkey.wrapMasterKey(rawKey: rawKey, kek: kek)
+		let wrapped = try Masterkey.wrapMasterKey(rawKey: rawKey, kek: kek)
 		XCTAssertNotNil(wrapped)
-		let unwrapped = Masterkey.unwrapMasterKey(wrappedKey: wrapped!, kek: kek)
+		let unwrapped = try Masterkey.unwrapMasterKey(wrappedKey: wrapped, kek: kek)
 		XCTAssertNotNil(unwrapped)
 		XCTAssertEqual(rawKey, unwrapped)
 	}
 
-    func testCreateFromMasterkeyFile() {
+    func testCreateFromMasterkeyFile() throws {
 		let expectedKeys = [UInt8](repeating: 0x00, count: 32)
 		let jsonData = """
 		{
@@ -43,11 +43,65 @@ class MasterkeyTests: XCTestCase {
 		}
 		""".data(using: .utf8)!
 
-		let masterKey = Masterkey.createFromMasterkeyFile(jsonData: jsonData, password: "asd")
+		let masterKey = try Masterkey.createFromMasterkeyFile(jsonData: jsonData, password: "asd")
 
 		XCTAssertNotNil(masterKey)
-		XCTAssertEqual(expectedKeys, masterKey?.aesMasterKey)
-		XCTAssertEqual(expectedKeys, masterKey?.macMasterKey)
+		XCTAssertEqual(expectedKeys, masterKey.aesMasterKey)
+		XCTAssertEqual(expectedKeys, masterKey.macMasterKey)
+    }
+	
+	func testCreateFromMasterkeyFileWithWrongPassword() throws {
+		let jsonData = """
+		{
+			"version": 3,
+			"scryptSalt": "AAAAAAAAAAA=",
+			"scryptCostParam": 2,
+			"scryptBlockSize": 8,
+			"primaryMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q==",
+			"hmacMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q==",
+			"versionMac": "iUmRRHITuyJsJbVNqGNw+82YQ4A3Rma7j/y1v0DCVLA="
+		}
+		""".data(using: .utf8)!
+
+		XCTAssertThrowsError(try Masterkey.createFromMasterkeyFile(jsonData: jsonData, password: "qwe"), "invalid password", { error in
+			XCTAssertEqual(error as! MasterkeyError, MasterkeyError.invalidPassword)
+		})
+    }
+	
+	func testCreateFromMasterkeyFileWithMalformedJson1() throws {
+		let jsonData = """
+		{
+			"version": 3,
+			"scryptSalt": "AAAAAAAAAAA=",
+			"scryptCostParam": 2,
+			"scryptBlockSize": 8,
+			"primaryMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q!!",
+			"hmacMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q==",
+			"versionMac": "iUmRRHITuyJsJbVNqGNw+82YQ4A3Rma7j/y1v0DCVLA="
+		}
+		""".data(using: .utf8)!
+
+		XCTAssertThrowsError(try Masterkey.createFromMasterkeyFile(jsonData: jsonData, password: "asd"), "invalid password", { error in
+			XCTAssertEqual(error as! MasterkeyError, MasterkeyError.malformedMasterkeyFile("invalid base64 data in primaryMasterKey"))
+		})
+    }
+	
+	func testCreateFromMasterkeyFileWithMalformedJson2() throws {
+		let jsonData = """
+		{
+			"version": 3,
+			"scryptSalt": "AAAAAAAAAAA=",
+			"scryptCostParam": 2,
+			"scryptBlockSize": 8,
+			"primaryMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q==",
+			"hmacMasterKey": "mM+qoQ+o0qvPTiDAZYt+flaC3WbpNAx1sTXaUzxwpy0M9Ctj6Tih/Q!!",
+			"versionMac": "iUmRRHITuyJsJbVNqGNw+82YQ4A3Rma7j/y1v0DCVLA="
+		}
+		""".data(using: .utf8)!
+
+		XCTAssertThrowsError(try Masterkey.createFromMasterkeyFile(jsonData: jsonData, password: "asd"), "invalid password", { error in
+			XCTAssertEqual(error as! MasterkeyError, MasterkeyError.malformedMasterkeyFile("invalid base64 data in hmacMasterKey"))
+		})
     }
 
 }