constellation/s3proxy/internal/crypto/crypto.go

/*
Copyright (c) Edgeless Systems GmbH

SPDX-License-Identifier: AGPL-3.0-only
*/

/*
Package crypto provides encryption and decryption functions for the s3proxy.
It uses AES-256-GCM to encrypt and decrypt data.
*/
package crypto

import (
	"fmt"

	aeadsubtle "github.com/tink-crypto/tink-go/v2/aead/subtle"
	kwpsubtle "github.com/tink-crypto/tink-go/v2/kwp/subtle"
	"github.com/tink-crypto/tink-go/v2/subtle/random"
)

// Encrypt generates a random key to encrypt a plaintext using AES-256-GCM.
// The generated key is encrypted using the supplied key encryption key (KEK).
// The ciphertext and encrypted data encryption key (DEK) are returned.
func Encrypt(plaintext []byte, kek [32]byte) (ciphertext []byte, encryptedDEK []byte, err error) {
	dek := random.GetRandomBytes(32)
	aesgcm, err := aeadsubtle.NewAESGCMSIV(dek)
	if err != nil {
		return nil, nil, fmt.Errorf("getting aesgcm: %w", err)
	}

	ciphertext, err = aesgcm.Encrypt(plaintext, []byte(""))
	if err != nil {
		return nil, nil, fmt.Errorf("encrypting plaintext: %w", err)
	}

	keywrapper, err := kwpsubtle.NewKWP(kek[:])
	if err != nil {
		return nil, nil, fmt.Errorf("getting kwp: %w", err)
	}

	encryptedDEK, err = keywrapper.Wrap(dek)
	if err != nil {
		return nil, nil, fmt.Errorf("wrapping dek: %w", err)
	}

	return ciphertext, encryptedDEK, nil
}

// Decrypt decrypts a ciphertext using AES-256-GCM.
// The encrypted DEK is decrypted using the supplied KEK.
func Decrypt(ciphertext, encryptedDEK []byte, kek [32]byte) ([]byte, error) {
	keywrapper, err := kwpsubtle.NewKWP(kek[:])
	if err != nil {
		return nil, fmt.Errorf("getting kwp: %w", err)
	}

	dek, err := keywrapper.Unwrap(encryptedDEK)
	if err != nil {
		return nil, fmt.Errorf("unwrapping dek: %w", err)
	}

	aesgcm, err := aeadsubtle.NewAESGCMSIV(dek)
	if err != nil {
		return nil, fmt.Errorf("getting aesgcm: %w", err)
	}

	plaintext, err := aesgcm.Decrypt(ciphertext, []byte(""))
	if err != nil {
		return nil, fmt.Errorf("decrypting ciphertext: %w", err)
	}

	return plaintext, nil
}
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`/*`
			`Copyright (c) Edgeless Systems GmbH`

			`SPDX-License-Identifier: AGPL-3.0-only`
			`*/`

			`/*`
			`Package crypto provides encryption and decryption functions for the s3proxy.`
			`It uses AES-256-GCM to encrypt and decrypt data.`
			`*/`
			`package crypto`

			`import (`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`"fmt"`

			`aeadsubtle "github.com/tink-crypto/tink-go/v2/aead/subtle"`
			`kwpsubtle "github.com/tink-crypto/tink-go/v2/kwp/subtle"`
			`"github.com/tink-crypto/tink-go/v2/subtle/random"`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`)`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`// Encrypt generates a random key to encrypt a plaintext using AES-256-GCM.`
			`// The generated key is encrypted using the supplied key encryption key (KEK).`
			`// The ciphertext and encrypted data encryption key (DEK) are returned.`
			`func Encrypt(plaintext []byte, kek [32]byte) (ciphertext []byte, encryptedDEK []byte, err error) {`
			`dek := random.GetRandomBytes(32)`
			`aesgcm, err := aeadsubtle.NewAESGCMSIV(dek)`
			`if err != nil {`
			`return nil, nil, fmt.Errorf("getting aesgcm: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`ciphertext, err = aesgcm.Encrypt(plaintext, []byte(""))`
			`if err != nil {`
			`return nil, nil, fmt.Errorf("encrypting plaintext: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`keywrapper, err := kwpsubtle.NewKWP(kek[:])`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`if err != nil {`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return nil, nil, fmt.Errorf("getting kwp: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00
			`encryptedDEK, err = keywrapper.Wrap(dek)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`if err != nil {`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return nil, nil, fmt.Errorf("wrapping dek: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return ciphertext, encryptedDEK, nil`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`// Decrypt decrypts a ciphertext using AES-256-GCM.`
			`// The encrypted DEK is decrypted using the supplied KEK.`
			`func Decrypt(ciphertext, encryptedDEK []byte, kek [32]byte) ([]byte, error) {`
			`keywrapper, err := kwpsubtle.NewKWP(kek[:])`
			`if err != nil {`
			`return nil, fmt.Errorf("getting kwp: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`dek, err := keywrapper.Unwrap(encryptedDEK)`
			`if err != nil {`
			`return nil, fmt.Errorf("unwrapping dek: %w", err)`
			`}`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`aesgcm, err := aeadsubtle.NewAESGCMSIV(dek)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`if err != nil {`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return nil, fmt.Errorf("getting aesgcm: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00
			`plaintext, err := aesgcm.Decrypt(ciphertext, []byte(""))`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`if err != nil {`
s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return nil, fmt.Errorf("decrypting ciphertext: %w", err)`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`

s3proxy: add keyservice integration Encrypt each object with a random DEK and attach the encrypted DEK as object metadata. Encrpt the DEK with a key from the keyservice. All objects use the same KEK until a keyrotation takes place. 2023-10-02 03:00:38 -04:00			`return plaintext, nil`
s3proxy: add intial implementation INSECURE! The proxy intercepts GetObject and PutObject. A manual deployment guide is included. The decryption only relies on a hardcoded, static key. Do not use with sensitive data; testing only. * Ticket to track ranged GetObject: AB#3466. 2023-09-27 05:40:32 -04:00			`}`