1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
use aes_gcm_siv::{
aead::{Aead, NewAead},
Aes256GcmSiv, Key, Nonce,
};
use anyhow::anyhow;
use chrono::Utc;
use hkdf::Hkdf;
use rand::{thread_rng, RngCore};
use sea_orm::entity::*;
use sha3::{Digest, Sha3_256, Sha3_512};
use moonramp_core::{aes_gcm_siv, anyhow, chrono, hkdf, rand, sea_orm, sha3, Hash};
use moonramp_entity::{cipher::Cipher, key_encryption_key};
use crate::KeyCustodian;
pub struct MasterKeyEncryptionKeyCustodian {
master_key_encryption_key: Vec<u8>,
master_key_encryption_key_hash: Hash,
cipher: Cipher,
}
impl MasterKeyEncryptionKeyCustodian {
pub fn new(mut master_key_encryption_key: Vec<u8>) -> anyhow::Result<Self> {
let master_key_encryption_key =
MasterKeyEncryptionKeyCustodian::expand_key(&mut master_key_encryption_key)?;
let mut hasher = Sha3_256::new();
hasher.update(&master_key_encryption_key);
let master_key_encryption_key_hash = Hash::try_from(hasher.finalize().to_vec())?;
Ok(MasterKeyEncryptionKeyCustodian {
master_key_encryption_key,
master_key_encryption_key_hash,
cipher: Cipher::Aes256GcmSiv,
})
}
pub fn hash(&self) -> Hash {
self.master_key_encryption_key_hash.clone()
}
fn expand_key(ikm: &mut [u8]) -> anyhow::Result<Vec<u8>> {
let hk = Hkdf::<Sha3_512>::new(None, ikm);
let mut okm = [0u8; 32];
for _ in 0..1000 {
hk.expand(b"MoonRamp", &mut okm)?;
}
ikm.iter_mut().for_each(|b| *b = 0x00);
Ok(okm.to_vec())
}
}
impl KeyCustodian for MasterKeyEncryptionKeyCustodian {
type Secret = [u8; 32];
type LockedKey = key_encryption_key::Model;
type ActiveLockedKey = key_encryption_key::ActiveModel;
fn gen_secret(&self) -> anyhow::Result<[u8; 32]> {
let mut secret = [0u8; 32];
thread_rng().fill_bytes(&mut secret);
Ok(secret)
}
fn lock(&self, secret: Self::Secret) -> anyhow::Result<Self::ActiveLockedKey> {
let key = Key::from_slice(&self.master_key_encryption_key);
let cipher = Aes256GcmSiv::new(key);
let mut n_raw = vec![0u8; 12];
thread_rng().fill_bytes(&mut n_raw);
let nonce = Nonce::from_slice(&n_raw);
let mut hasher = Sha3_256::new();
hasher.update(&secret);
let hash = Hash::try_from(hasher.finalize().to_vec())?;
let encrypted_key_encryption_key = cipher
.encrypt(nonce, secret.as_ref())
.map_err(|err| anyhow!("{}", err))?;
Ok(key_encryption_key::ActiveModel {
hash: Set(hash),
master_key_encryption_key_hash: Set(self.master_key_encryption_key_hash.clone()),
cipher: Set(self.cipher.clone()),
key: Set(encrypted_key_encryption_key),
nonce: Set(n_raw),
created_at: Set(Utc::now()),
})
}
fn unlock(&self, locked_key: Self::LockedKey) -> anyhow::Result<Self::Secret> {
let key = Key::from_slice(&self.master_key_encryption_key);
let cipher = Aes256GcmSiv::new(key);
let nonce = Nonce::from_slice(&locked_key.nonce);
Ok(cipher
.decrypt(nonce, locked_key.key.as_ref())
.map_err(|err| anyhow!("{}", err))?
.try_into()
.map_err(|_| anyhow!("Invalid KeyEncryptionKey"))?)
}
}
#[cfg(test)]
mod tests {
use super::*;
#[test]
fn test_master_key_encryption_key_custodian() {
let secret = b"an example very very secret key.";
let mkek = MasterKeyEncryptionKeyCustodian::new(secret.to_vec())
.expect("Invalid MasterKeyEncryptionKeyCustodian");
assert_eq!(
mkek.hash().to_string(),
"GAhZnN7JYromuDoKgqspizg7bqgMZJs6g7GCkVLerxPC".to_string()
);
let secret = b"BTH a very very very secret key.";
let kek = mkek.lock(*secret);
assert!(kek.is_ok());
let kek = kek.expect("Invalid KeyEncryptionKey");
let kek = key_encryption_key::Model {
hash: kek.hash.unwrap(),
master_key_encryption_key_hash: kek.master_key_encryption_key_hash.unwrap(),
cipher: kek.cipher.unwrap(),
key: kek.key.unwrap(),
nonce: kek.nonce.unwrap(),
created_at: kek.created_at.unwrap(),
};
let unlocked_secret = mkek.unlock(kek);
assert_eq!(unlocked_secret.ok(), Some(*secret,));
}
}
