nextcloud/lib/private/Encryption/DecryptAll.php

<?php

declare(strict_types=1);

/**
 * SPDX-FileCopyrightText: 2016-2024 Nextcloud GmbH and Nextcloud contributors
 * SPDX-FileCopyrightText: 2016 ownCloud, Inc.
 * SPDX-License-Identifier: AGPL-3.0-only
 */

namespace OC\Encryption;

use OC\Encryption\Exceptions\DecryptionFailedException;
use OC\Files\View;
use OCP\Encryption\IEncryptionModule;
use OCP\Encryption\IManager;
use OCP\IUserManager;
use Symfony\Component\Console\Helper\ProgressBar;
use Symfony\Component\Console\Input\InputInterface;
use Symfony\Component\Console\Output\OutputInterface;

class DecryptAll {
	/** @var array<string,list<string>> files which couldn't be decrypted */
	protected array $failed = [];

	public function __construct(
		protected IManager $encryptionManager,
		protected IUserManager $userManager,
		protected View $rootView,
	) {
	}

	/**
	 * start to decrypt all files
	 *
	 * @param string $user which users data folder should be decrypted, default = all users
	 * @throws \Exception
	 */
	public function decryptAll(InputInterface $input, OutputInterface $output, string $user = ''): bool {
		if ($user !== '' && $this->userManager->userExists($user) === false) {
			$output->writeln('User "' . $user . '" does not exist. Please check the username and try again');
			return false;
		}

		$output->writeln('prepare encryption modules...');
		if ($this->prepareEncryptionModules($input, $output, $user) === false) {
			return false;
		}
		$output->writeln(' done.');

		$this->failed = [];
		$this->decryptAllUsersFiles($output, $user);

		/** @psalm-suppress RedundantCondition $this->failed is modified by decryptAllUsersFiles, not clear why psalm fails to see it */
		if (empty($this->failed)) {
			$output->writeln('all files could be decrypted successfully!');
		} else {
			$output->writeln('Files for following users couldn\'t be decrypted, ');
			$output->writeln('maybe the user is not set up in a way that supports this operation: ');
			foreach ($this->failed as $uid => $paths) {
				$output->writeln('    ' . $uid);
				foreach ($paths as $path) {
					$output->writeln('        ' . $path);
				}
			}
			$output->writeln('');
		}

		return true;
	}

	/**
	 * prepare encryption modules to perform the decrypt all function
	 */
	protected function prepareEncryptionModules(InputInterface $input, OutputInterface $output, string $user): bool {
		// prepare all encryption modules for decrypt all
		$encryptionModules = $this->encryptionManager->getEncryptionModules();
		foreach ($encryptionModules as $moduleDesc) {
			/** @var IEncryptionModule $module */
			$module = call_user_func($moduleDesc['callback']);
			$output->writeln('');
			$output->writeln('Prepare "' . $module->getDisplayName() . '"');
			$output->writeln('');
			if ($module->prepareDecryptAll($input, $output, $user) === false) {
				$output->writeln('Module "' . $moduleDesc['displayName'] . '" does not support the functionality to decrypt all files again or the initialization of the module failed!');
				return false;
			}
		}

		return true;
	}

	/**
	 * iterate over all user and encrypt their files
	 *
	 * @param string $user which users files should be decrypted, default = all users
	 */
	protected function decryptAllUsersFiles(OutputInterface $output, string $user = ''): void {
		$output->writeln("\n");

		$userList = [];
		if ($user === '') {
			$fetchUsersProgress = new ProgressBar($output);
			$fetchUsersProgress->setFormat(" %message% \n [%bar%]");
			$fetchUsersProgress->start();
			$fetchUsersProgress->setMessage('Fetch list of users...');
			$fetchUsersProgress->advance();

			foreach ($this->userManager->getBackends() as $backend) {
				$limit = 500;
				$offset = 0;
				do {
					$users = $backend->getUsers('', $limit, $offset);
					foreach ($users as $user) {
						$userList[] = $user;
					}
					$offset += $limit;
					$fetchUsersProgress->advance();
				} while (count($users) >= $limit);
				$fetchUsersProgress->setMessage('Fetch list of users... finished');
				$fetchUsersProgress->finish();
			}
		} else {
			$userList[] = $user;
		}

		$output->writeln("\n\n");

		$progress = new ProgressBar($output);
		$progress->setFormat(" %message% \n [%bar%]");
		$progress->start();
		$progress->setMessage('starting to decrypt files...');
		$progress->advance();

		$numberOfUsers = count($userList);
		$userNo = 1;
		foreach ($userList as $uid) {
			$userCount = "$uid ($userNo of $numberOfUsers)";
			$this->decryptUsersFiles($uid, $progress, $userCount);
			$userNo++;
		}

		$progress->setMessage('starting to decrypt files... finished');
		$progress->finish();

		$output->writeln("\n\n");
	}

	/**
	 * encrypt files from the given user
	 */
	protected function decryptUsersFiles(string $uid, ProgressBar $progress, string $userCount): void {
		$this->setupUserFS($uid);
		$directories = [];
		$directories[] = '/' . $uid . '/files';

		while ($root = array_pop($directories)) {
			$content = $this->rootView->getDirectoryContent($root);
			foreach ($content as $file) {
				// only decrypt files owned by the user
				if ($file->getStorage()->instanceOfStorage('OCA\Files_Sharing\SharedStorage')) {
					continue;
				}
				$path = $root . '/' . $file['name'];
				if ($this->rootView->is_dir($path)) {
					$directories[] = $path;
					continue;
				} else {
					try {
						$progress->setMessage("decrypt files for user $userCount: $path");
						$progress->advance();
						if ($file->isEncrypted() === false) {
							$progress->setMessage("decrypt files for user $userCount: $path (already decrypted)");
							$progress->advance();
						} else {
							if ($this->decryptFile($path) === false) {
								$progress->setMessage("decrypt files for user $userCount: $path (already decrypted)");
								$progress->advance();
							}
						}
					} catch (\Exception $e) {
						if (isset($this->failed[$uid])) {
							$this->failed[$uid][] = $path;
						} else {
							$this->failed[$uid] = [$path];
						}
					}
				}
			}
		}
	}

	/**
	 * encrypt file
	 */
	protected function decryptFile(string $path): bool {
		// skip already decrypted files
		$fileInfo = $this->rootView->getFileInfo($path);
		if ($fileInfo !== false && !$fileInfo->isEncrypted()) {
			return true;
		}

		$source = $path;
		$target = $path . '.decrypted.' . $this->getTimestamp();

		try {
			$this->rootView->copy($source, $target);
			$this->rootView->touch($target, $fileInfo->getMTime());
			$this->rootView->rename($target, $source);
		} catch (DecryptionFailedException $e) {
			if ($this->rootView->file_exists($target)) {
				$this->rootView->unlink($target);
			}
			return false;
		}

		return true;
	}

	/**
	 * get current timestamp
	 */
	protected function getTimestamp(): int {
		return time();
	}

	/**
	 * setup user file system
	 */
	protected function setupUserFS(string $uid): void {
		\OC_Util::tearDownFS();
		\OC_Util::setupFS($uid);
	}
}
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`<?php`
chore: Add SPDX header Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de> 2024-05-23 03:26:56 -04:00
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`declare(strict_types=1);`

occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`/**`
chore: Add SPDX header Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de> 2024-05-23 03:26:56 -04:00			`* SPDX-FileCopyrightText: 2016-2024 Nextcloud GmbH and Nextcloud contributors`
			`* SPDX-FileCopyrightText: 2016 ownCloud, Inc.`
			`* SPDX-License-Identifier: AGPL-3.0-only`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`namespace OC\Encryption;`

			`use OC\Encryption\Exceptions\DecryptionFailedException;`
			`use OC\Files\View;`
Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2019-11-22 14:52:10 -05:00			`use OCP\Encryption\IEncryptionModule;`
chore: Fix DI for Encryption\DecryptAll command Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2024-01-30 05:48:09 -05:00			`use OCP\Encryption\IManager;`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`use OCP\IUserManager;`
			`use Symfony\Component\Console\Helper\ProgressBar;`
			`use Symfony\Component\Console\Input\InputInterface;`
			`use Symfony\Component\Console\Output\OutputInterface;`

			`class DecryptAll {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`/** @var array<string,list<string>> files which couldn't be decrypted */`
			`protected array $failed = [];`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
			`public function __construct(`
chore: Fix DI for Encryption\DecryptAll command Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2024-01-30 05:48:09 -05:00			`protected IManager $encryptionManager,`
			`protected IUserManager $userManager,`
chore(deps): Update nextcloud/coding-standard to v1.3.1 Signed-off-by: provokateurin <kate@provokateurin.de> 2024-09-19 05:10:31 -04:00			`protected View $rootView,`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`) {`
			`}`

			`/**`
			`* start to decrypt all files`
			`*`
			`* @param string $user which users data folder should be decrypted, default = all users`
			`* @throws \Exception`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`public function decryptAll(InputInterface $input, OutputInterface $output, string $user = ''): bool {`
Allow to decrypt user '0' files only 2016-06-07 03:13:11 -04:00			`if ($user !== '' && $this->userManager->userExists($user) === false) {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('User "' . $user . '" does not exist. Please check the username and try again');`
improved error message if user doesn't exists 2015-09-21 07:13:38 -04:00			`return false;`
			`}`

chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('prepare encryption modules...');`
			`if ($this->prepareEncryptionModules($input, $output, $user) === false) {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`return false;`
			`}`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln(' done.');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$this->failed = [];`
			`$this->decryptAllUsersFiles($output, $user);`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`/** @psalm-suppress RedundantCondition $this->failed is modified by decryptAllUsersFiles, not clear why psalm fails to see it */`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`if (empty($this->failed)) {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('all files could be decrypted successfully!');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`} else {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('Files for following users couldn\'t be decrypted, ');`
			`$output->writeln('maybe the user is not set up in a way that supports this operation: ');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`foreach ($this->failed as $uid => $paths) {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln(' ' . $uid);`
list files which could not be decrypted Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2018-12-14 06:00:49 -05:00			`foreach ($paths as $path) {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln(' ' . $path);`
list files which could not be decrypted Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2018-12-14 06:00:49 -05:00			`}`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`}`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`}`

			`return true;`
			`}`

			`/**`
			`* prepare encryption modules to perform the decrypt all function`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function prepareEncryptionModules(InputInterface $input, OutputInterface $output, string $user): bool {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`// prepare all encryption modules for decrypt all`
			`$encryptionModules = $this->encryptionManager->getEncryptionModules();`
			`foreach ($encryptionModules as $moduleDesc) {`
			`/** @var IEncryptionModule $module */`
			`$module = call_user_func($moduleDesc['callback']);`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln('');`
			`$output->writeln('Prepare "' . $module->getDisplayName() . '"');`
			`$output->writeln('');`
			`if ($module->prepareDecryptAll($input, $output, $user) === false) {`
			`$output->writeln('Module "' . $moduleDesc['displayName'] . '" does not support the functionality to decrypt all files again or the initialization of the module failed!');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`return false;`
			`}`
			`}`

			`return true;`
			`}`

			`/**`
			`* iterate over all user and encrypt their files`
Check if file needs to decrypted or not for speed up large oc setups. 2016-03-08 10:24:27 -05:00			`*`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`* @param string $user which users files should be decrypted, default = all users`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function decryptAllUsersFiles(OutputInterface $output, string $user = ''): void {`
			`$output->writeln("\n");`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
			`$userList = [];`
Allow to decrypt user '0' files only 2016-06-07 03:13:11 -04:00			`if ($user === '') {`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$fetchUsersProgress = new ProgressBar($output);`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$fetchUsersProgress->setFormat(" %message% \n [%bar%]");`
			`$fetchUsersProgress->start();`
style: update codestyle for coding-standard 1.2.3 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de> 2024-08-23 09:10:27 -04:00			`$fetchUsersProgress->setMessage('Fetch list of users...');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$fetchUsersProgress->advance();`

			`foreach ($this->userManager->getBackends() as $backend) {`
			`$limit = 500;`
			`$offset = 0;`
			`do {`
			`$users = $backend->getUsers('', $limit, $offset);`
			`foreach ($users as $user) {`
			`$userList[] = $user;`
			`}`
			`$offset += $limit;`
			`$fetchUsersProgress->advance();`
			`} while (count($users) >= $limit);`
style: update codestyle for coding-standard 1.2.3 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de> 2024-08-23 09:10:27 -04:00			`$fetchUsersProgress->setMessage('Fetch list of users... finished');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$fetchUsersProgress->finish();`
			`}`
			`} else {`
			`$userList[] = $user;`
			`}`

chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln("\n\n");`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$progress = new ProgressBar($output);`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$progress->setFormat(" %message% \n [%bar%]");`
			`$progress->start();`
style: update codestyle for coding-standard 1.2.3 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de> 2024-08-23 09:10:27 -04:00			`$progress->setMessage('starting to decrypt files...');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$progress->advance();`

			`$numberOfUsers = count($userList);`
			`$userNo = 1;`
			`foreach ($userList as $uid) {`
			`$userCount = "$uid ($userNo of $numberOfUsers)";`
			`$this->decryptUsersFiles($uid, $progress, $userCount);`
			`$userNo++;`
			`}`

style: update codestyle for coding-standard 1.2.3 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de> 2024-08-23 09:10:27 -04:00			`$progress->setMessage('starting to decrypt files... finished');`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$progress->finish();`

chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`$output->writeln("\n\n");`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`}`

			`/**`
			`* encrypt files from the given user`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function decryptUsersFiles(string $uid, ProgressBar $progress, string $userCount): void {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$this->setupUserFS($uid);`
Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2020-03-26 04:30:18 -04:00			`$directories = [];`
Check if file needs to decrypted or not for speed up large oc setups. 2016-03-08 10:24:27 -05:00			`$directories[] = '/' . $uid . '/files';`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00
Check if file needs to decrypted or not for speed up large oc setups. 2016-03-08 10:24:27 -05:00			`while ($root = array_pop($directories)) {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$content = $this->rootView->getDirectoryContent($root);`
			`foreach ($content as $file) {`
skip shared files, if files get decrypted only for a specific user we shouldn't touch files owned by a different user. 2016-07-27 09:11:48 -04:00			`// only decrypt files owned by the user`
Format control structures, classes, methods and function To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2020-04-10 08:19:56 -04:00			`if ($file->getStorage()->instanceOfStorage('OCA\Files_Sharing\SharedStorage')) {`
skip shared files, if files get decrypted only for a specific user we shouldn't touch files owned by a different user. 2016-07-27 09:11:48 -04:00			`continue;`
			`}`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$path = $root . '/' . $file['name'];`
			`if ($this->rootView->is_dir($path)) {`
			`$directories[] = $path;`
			`continue;`
			`} else {`
			`try {`
			`$progress->setMessage("decrypt files for user $userCount: $path");`
			`$progress->advance();`
Use isEncrpyted() instead 2016-05-24 04:24:21 -04:00			`if ($file->isEncrypted() === false) {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$progress->setMessage("decrypt files for user $userCount: $path (already decrypted)");`
			`$progress->advance();`
Check if file needs to decrypted or not for speed up large oc setups. 2016-03-08 10:24:27 -05:00			`} else {`
			`if ($this->decryptFile($path) === false) {`
			`$progress->setMessage("decrypt files for user $userCount: $path (already decrypted)");`
			`$progress->advance();`
			`}`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`}`
			`} catch (\Exception $e) {`
			`if (isset($this->failed[$uid])) {`
			`$this->failed[$uid][] = $path;`
			`} else {`
			`$this->failed[$uid] = [$path];`
			`}`
			`}`
			`}`
			`}`
			`}`
			`}`

			`/**`
			`* encrypt file`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function decryptFile(string $path): bool {`
skip already decrypted files on decrypt all command Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2018-10-24 10:49:39 -04:00			`// skip already decrypted files`
			`$fileInfo = $this->rootView->getFileInfo($path);`
			`if ($fileInfo !== false && !$fileInfo->isEncrypted()) {`
			`return true;`
			`}`

occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$source = $path;`
			`$target = $path . '.decrypted.' . $this->getTimestamp();`

			`try {`
			`$this->rootView->copy($source, $target);`
Keep the modification time during decryptFile 2020-02-01 00:20:33 -05:00			`$this->rootView->touch($target, $fileInfo->getMTime());`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`$this->rootView->rename($target, $source);`
			`} catch (DecryptionFailedException $e) {`
			`if ($this->rootView->file_exists($target)) {`
			`$this->rootView->unlink($target);`
			`}`
			`return false;`
			`}`

			`return true;`
			`}`

			`/**`
			`* get current timestamp`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function getTimestamp(): int {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`return time();`
			`}`

			`/**`
			`* setup user file system`
			`*/`
chore(encryption): Cleanup typing in EncryptAll/DecryptAll Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> 2025-08-25 09:58:51 -04:00			`protected function setupUserFS(string $uid): void {`
occ script to disable encryption and to decrypt all files again 2015-08-24 06:03:53 -04:00			`\OC_Util::tearDownFS();`
			`\OC_Util::setupFS($uid);`
			`}`
			`}`