git-crypt 0.1.4

A Rust implementation of git-crypt for transparent encryption of files in a git repository
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156

use std::io::{Cursor, Read, Write};

use crate::crypto::CryptoKey;
use crate::error::{GitCryptError, Result};

use age::secrecy::SecretString;
use age::{
    ssh::{Identity as SshIdentity, Recipient as SshRecipient},
    Callbacks, DecryptError, Decryptor, EncryptError, Encryptor,
};
use rpassword::prompt_password;

pub struct RageManager;

impl RageManager {
    /// Encrypt the repo's symmetric key for an SSH recipient using age/rage tooling.
    pub fn encrypt_key_for_ssh_recipient(key: &CryptoKey, recipient: &str) -> Result<Vec<u8>> {
        let recipient: SshRecipient = recipient
            .trim()
            .parse()
            .map_err(|e| GitCryptError::Age(format!("Invalid SSH recipient: {e:?}")))?;

        let encryptor = Encryptor::with_recipients(std::iter::once(&recipient as _))
            .map_err(map_encrypt_err)?;

        let mut ciphertext = Vec::new();
        let mut writer = encryptor
            .wrap_output(&mut ciphertext)
            .map_err(GitCryptError::from)?;
        writer
            .write_all(key.as_bytes())
            .map_err(|e| GitCryptError::Io(e))?;
        writer.finish().map_err(GitCryptError::from)?;

        Ok(ciphertext)
    }

    /// Decrypt an age-encrypted key blob using an SSH identity.
    pub fn decrypt_key_with_ssh_identity(
        encrypted: &[u8],
        identity_content: &str,
        identity_label: &str,
    ) -> Result<CryptoKey> {
        let cursor = Cursor::new(identity_content.as_bytes());
        let identity = SshIdentity::from_buffer(cursor, Some(identity_label.to_string()))
            .map_err(|e| GitCryptError::Age(format!("Invalid SSH identity: {e}")))?;

        let decryptor = Decryptor::new_buffered(Cursor::new(encrypted)).map_err(map_decrypt_err)?;
        let identity = identity.with_callbacks(PromptCallbacks::new(identity_label));

        let mut reader = decryptor
            .decrypt(std::iter::once(&identity as &dyn age::Identity))
            .map_err(map_decrypt_err)?;
        let mut plaintext = Vec::new();
        reader
            .read_to_end(&mut plaintext)
            .map_err(|e| GitCryptError::Io(e))?;

        CryptoKey::from_bytes(&plaintext)
    }
}

fn map_encrypt_err(err: EncryptError) -> GitCryptError {
    GitCryptError::Age(format!("age encryption failed: {err}"))
}

fn map_decrypt_err(err: DecryptError) -> GitCryptError {
    GitCryptError::Age(format!("age decryption failed: {err}"))
}

#[derive(Clone)]
struct PromptCallbacks {
    identity_label: String,
}

impl PromptCallbacks {
    fn new(identity_label: &str) -> Self {
        Self {
            identity_label: identity_label.to_string(),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::crypto::{CryptoKey, KEY_SIZE};

    const TEST_SSH_ED25519_PUB: &str =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHsKLqeplhpW+uObz5dvMgjz1OxfM/XXUB+VHtZ6isGN alice@rust";
    const TEST_SSH_ED25519_SK: &str = r#"-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACB7Ci6nqZYaVvrjm8+XbzII89TsXzP111AflR7WeorBjQAAAJCfEwtqnxML
agAAAAtzc2gtZWQyNTUxOQAAACB7Ci6nqZYaVvrjm8+XbzII89TsXzP111AflR7WeorBjQ
AAAEADBJvjZT8X6JRJI8xVq/1aU8nMVgOtVnmdwqWwrSlXG3sKLqeplhpW+uObz5dvMgjz
1OxfM/XXUB+VHtZ6isGNAAAADHN0cjRkQGNhcmJvbgE=
-----END OPENSSH PRIVATE KEY-----"#;

    fn deterministic_key(byte: u8) -> CryptoKey {
        let bytes = vec![byte; KEY_SIZE];
        CryptoKey::from_bytes(&bytes).unwrap()
    }

    #[test]
    fn encrypt_decrypt_round_trip() {
        let key = deterministic_key(0xAA);
        let ciphertext =
            RageManager::encrypt_key_for_ssh_recipient(&key, TEST_SSH_ED25519_PUB).unwrap();
        let decrypted =
            RageManager::decrypt_key_with_ssh_identity(&ciphertext, TEST_SSH_ED25519_SK, "test")
                .unwrap();
        assert_eq!(decrypted.as_bytes(), key.as_bytes());
    }

    #[test]
    fn invalid_recipient_is_rejected() {
        let key = deterministic_key(0x11);
        let err = RageManager::encrypt_key_for_ssh_recipient(&key, "not-a-key").unwrap_err();
        match err {
            GitCryptError::Age(message) => {
                assert!(message.contains("Invalid SSH recipient"));
            }
            other => panic!("expected age error, got {other:?}"),
        }
    }
}

impl Callbacks for PromptCallbacks {
    fn display_message(&self, message: &str) {
        eprintln!("{message}");
    }

    fn confirm(&self, _: &str, _: &str, _: Option<&str>) -> Option<bool> {
        None
    }

    fn request_public_string(&self, _: &str) -> Option<String> {
        None
    }

    fn request_passphrase(&self, description: &str) -> Option<SecretString> {
        let prompt = if description.is_empty() {
            format!("Passphrase for {}", self.identity_label)
        } else {
            description.to_string()
        };

        match prompt_password(format!("{prompt}: ")) {
            Ok(passphrase) => Some(SecretString::new(passphrase.into())),
            Err(err) => {
                eprintln!("Failed to read passphrase: {err}");
                None
            }
        }
    }
}