public bool SaveEncryptedFile(FilePartCache cache, string outFile)
{
if (string.IsNullOrEmpty(cache.Container))
{
throw new Exception("The container must be set");
}
var tenant = GetTenant(cache.TenantID);
try
{
using (var q = new WriterLock(cache.TenantID, cache.Container + "|" + cache.FileName))
{
//Create engine
var tenantKey = tenant.Key.Decrypt(MasterKey, IV);
using (var engine = new FileEngine(MasterKey, tenantKey, cache.TenantID, IV))
{
using (var context = new gFileSystemEntities(ConfigHelper.ConnectionString))
{
this.RemoveFile(tenant.UniqueKey, cache.Container, cache.FileName);
var containerItem = GetContainer(tenant, cache.Container);
var fiCipher = new FileInfo(outFile);
var stash = new FileStash
{
Path = cache.FileName,
TenantID = tenant.TenantID,
Size = cache.Size,
StorageSize = fiCipher.Length,
ContainerId = containerItem.ContainerId,
CrcPlain = cache.CRC,
IsCompressed = false,
FileCreatedTime = cache.CreatedTime,
FileModifiedTime = cache.ModifiedTime,
UniqueKey = cache.ID,
};
context.AddItem(stash);
context.SaveChanges();
//Move the cipher file to storage
var destFile = GetFilePath(tenant.UniqueKey, containerItem.UniqueKey, stash);
File.Move(outFile, destFile);
}
}
return(true);
}
}
catch (Exception ex)
{
Logger.LogError(ex);
throw;
}
}
/// <summary>
/// Given a valid tenant, this will change the tenant key and ensure all files
/// associated to that tenant are been re-keyed. This routine can be used if the
/// tenant key has been compromised.
/// </summary>
public int RekeyTenant(Guid tenantID)
{
var tenant = GetTenant(tenantID);
try
{
using (var q = new WriterLock(tenantID, ""))
{
var count = 0;
//Create engine
var tenantKey = tenant.Key.Decrypt(MasterKey, IV);
var newKey = FileUtilities.GenerateKey();
using (var engine = new FileEngine(MasterKey, tenantKey, tenantID, IV))
{
engine.WorkingFolder = ConfigHelper.WorkFolder;
using (var context = new gFileSystemEntities(ConfigHelper.ConnectionString))
{
var all = context.FileStash
.Include(x => x.Container)
.Where(x => x.TenantID == tenant.TenantID)
.ToList();
//Loop through all files for this tenant and re-encrypt the data key for each file
//There is nothing to change in the database
foreach (var stash in all)
{
var existingFile = GetFilePath(tenant.UniqueKey, stash.Container.UniqueKey, stash);
if (File.Exists(existingFile))
{
if (engine.RekeyFile(existingFile, newKey))
{
count++;
}
}
}
//Save the new tenant key
tenant = context.Tenant.FirstOrDefault(x => x.UniqueKey == tenantID);
tenant.Key = newKey.Encrypt(MasterKey, IV);
context.SaveChanges();
}
}
return(count);
}
}
catch (Exception ex)
{
Logger.LogError(ex);
throw;
}
}
/// <summary>
/// Retrieves a file from storage for a tenant in the specified container
/// using the filenme as the lookup key
/// </summary>
/// <param name="tenantID"></param>
/// <param name="container"></param>
/// <param name="fileName"></param>
/// <returns></returns>
public System.IO.Stream GetFile(Guid tenantID, string container, string fileName)
{
if (string.IsNullOrEmpty(container))
{
throw new Exception("The container must be set");
}
var tenant = GetTenant(tenantID);
try
{
using (var q = new ReaderLock(tenantID, container + "|" + fileName))
{
FileStash stash = null;
using (var context = new gFileSystemEntities(ConfigHelper.ConnectionString))
{
stash = context.FileStash
.Include(x => x.Container)
.FirstOrDefault(x =>
x.TenantID == tenant.TenantID &&
x.Path == fileName &&
x.Container.Name == container);
//There is no file so return null
if (stash == null)
{
return(null);
}
}
//Create engine
var tenantKey = tenant.Key.Decrypt(MasterKey, IV);
string cipherFile = null;
using (var engine = new FileEngine(MasterKey, tenantKey, tenantID, IV))
{
engine.WorkingFolder = ConfigHelper.WorkFolder;
cipherFile = GetFilePath(tenant.UniqueKey, stash.Container.UniqueKey, stash);
return(engine.GetFileStream(cipherFile));
}
//if (stash.IsCompressed)
//{
// var unzipFile = plainText + ".uz";
// if (FileUtilities.UnzipFile(plainText, unzipFile))
// {
// FileUtilities.WipeFile(plainText);
// File.Move(unzipFile, plainText);
// }
//}
//var crc = FileUtilities.FileCRC(plainText);
////Verify that the file is the same as when it was saved
//if (crc != stash.CrcPlain)
// throw new Exception("The file is corrupted!");
//return plainText;
}
}
catch (Exception ex)
{
Logger.LogError(ex);
throw;
}
}
