handle invalid passwords

src/crypto.h

@@ -59,4 +59,4 @@ derive_key_argon2id(const std::string &password,
   return key;
 }
 
-}; // namespace Crypto
+}; // namespace Crypto

src/mainwindow.cc

@@ -1,5 +1,6 @@
 // TODO: actual fs
 #include "mainwindow.h"
+#include "crypto.h"
 #include <QDesktopServices>
 #include <QDropEvent>
 #include <QFileDialog>
@@ -41,13 +42,23 @@ MainWindow::MainWindow(QWidget *parent)
     QCoreApplication::processEvents();
 
     static Botan::AutoSeeded_RNG rng;
-    auto salt_sv = rng.random_vec(16);
+    auto salt = rng.random_array<16>();
-    std::vector<u8> salt(salt_sv.begin(), salt_sv.end());
+
+    auto key = Crypto::derive_key_argon2id(password.toStdString(), salt);
+    auto check_nonce = rng.random_array<24>();
+
+    const std::string content = "LETSGO";
+    Botan::secure_vector<u8> content_sv(content.begin(), content.end());
+    auto check_ciphertext =
+        Crypto::encrypt_xchacha20_poly1305(content_sv, key, check_nonce);
 
     std::ofstream create(path.toStdString(), std::ios::binary);
     create.write("DULL", 4);
     create.write(to_char_ptr(&VERSION), sizeof(VERSION));
     create.write(to_char_ptr(salt.data()), 16);
+
+    create.write(to_char_ptr(check_nonce.data()), 24);
+    create.write(to_char_ptr(check_ciphertext.data()), 22);
     create.close();
 
     m_vault =
@@ -71,16 +82,19 @@ MainWindow::MainWindow(QWidget *parent)
       return;
     }
 
-    // TODO: check if password valid
-
     ui->statusbar->showMessage("Opening the vault...");
     QCoreApplication::processEvents();
 
-    m_vault =
+    try {
-        std::make_unique<Vault>(path.toStdString(), password.toStdString());
+      m_vault =
-    reload_fs_tree();
+          std::make_unique<Vault>(path.toStdString(), password.toStdString());
-
+      reload_fs_tree();
-    ui->statusbar->clearMessage();
+      ui->statusbar->clearMessage();
+    } catch (const Botan::Invalid_Authentication_Tag &e) {
+      QMessageBox::critical(this, "Error", "Invalid password.");
+      ui->statusbar->clearMessage();
+      return;
+    }
   });
 
   connect(
@@ -287,4 +301,4 @@ void MainWindow::dropEvent(QDropEvent *event) {
   reload_fs_tree();
 
   event->acceptProposedAction();
-}
+}

src/vault.cc

@@ -21,6 +21,15 @@ Vault::Vault(std::string path, const std::string &password)
   ASSERT(m_file.read(to_char_ptr(salt.data()), 16));
 
   m_key = Crypto::derive_key_argon2id(password, salt);
+
+  std::array<u8, 24> check_nonce{};
+  ASSERT(m_file.read(to_char_ptr(check_nonce.data()), 24));
+
+  Botan::secure_vector<u8> check_ciphertext;
+  check_ciphertext.resize(22);
+  ASSERT(m_file.read(to_char_ptr(check_ciphertext.data()), 22));
+
+  Crypto::decrypt_xchacha20_poly1305(check_ciphertext, m_key, check_nonce);
 }
 
 std::vector<FileHeader> Vault::read_file_headers() {
@@ -193,4 +202,4 @@ std::optional<FileHeader> Vault::read_file_header() {
     return std::nullopt;
   }
   return header;
-}
+}

src/vault.h

@@ -7,7 +7,7 @@
 #include <optional>
 
 constexpr i16 VERSION = 1;
-constexpr u64 AFTER_HEADER_OFFSET = 22;
+constexpr u64 AFTER_HEADER_OFFSET = 68;
 
 // !!! REMEMBER TO UPDATE entry_total_size IN Vault::delete_file
 struct FileHeader {