fix: backups are not being encrypted with bucket if needed

internxt · Dec 19, 2024 · 25ba1bd · 25ba1bd
1 parent f6dbe3f
commit 25ba1bd
Show file tree

Hide file tree

Showing 2 changed files with 38 additions and 8 deletions.
diff --git a/src/app/services/backups.js b/src/app/services/backups.js
@@ -96,8 +96,8 @@ module.exports = (Model, App) => {
       where: {
         bucket: { [Op.eq]: backupsBucket },
         name: { [Op.eq]: encryptedFolderName },
-        deleted: { [Op.eq]: false},
-        removed: { [Op.eq]: false}
+        deleted: { [Op.eq]: false },
+        removed: { [Op.eq]: false },
       },
     });
 
@@ -163,13 +163,30 @@ module.exports = (Model, App) => {
 
     const folders = await Model.folder.findAll({ where: { bucket: backupsBucket } });
 
-    return Promise.all(
-      folders.map(async (folder) => ({
-        ...folder.get({ plain: true }),
-        hasBackups: !(await isDeviceAsFolderEmpty(folder)),
-        lastBackupAt: folder.updatedAt,
-      })),
+    const newFolders = await Promise.all(
+      folders.map(async (folder) => {
+        const decryptedWithBucket = App.services.Crypt.decryptName(folder.name, folder.bucket);
+
+        const shouldUpdateName = !decryptedWithBucket && folder.bucket;
+
+        const backupName = shouldUpdateName
+          ? App.services.Crypt.encryptName(App.services.Crypt.decryptNameWithNullFolderId(folder.name), folder.bucket)
+          : folder.name;
+
+        if (shouldUpdateName) {
+          await folder.update({ name: backupName }, { silent: true });
+        }
+
+        return {
+          ...folder.get({ plain: true }),
+          name: backupName,
+          hasBackups: !(await isDeviceAsFolderEmpty(folder)),
+          lastBackupAt: folder.updatedAt,
+        };
+      }),
     );
+
+    return newFolders;
   };
 
   const create = async ({ userId, path, deviceId, encryptVersion, interval, enabled }) => {

diff --git a/src/app/services/crypt.js b/src/app/services/crypt.js
@@ -20,6 +20,18 @@ module.exports = (Model, App) => {
     }
   }
 
+  function decryptNameWithNullFolderId(content) {
+    try {
+      const decryptedText = AesUtil.decrypt(content, null);
+
+      return decryptedText;
+    } catch (error) {
+      log.error(`(decryptNameWithNullFolderId): ${error}`);
+
+      return null;
+    }
+  }
+
   function probabilisticDecryption(cipherText) {
     try {
       const reb64 = CryptoJS.enc.Hex.parse(cipherText);
@@ -168,5 +180,6 @@ module.exports = (Model, App) => {
     hashSha256,
     encryptTextWithKey,
     RandomPassword,
+    decryptNameWithNullFolderId,
   };
 };