2021-04-13 12:14:07 -06:00
|
|
|
// The general idea is that we NEVER send cleartext history to the server
|
|
|
|
// This way the odds of anything private ending up where it should not are
|
|
|
|
// very low
|
|
|
|
// The server authenticates via the usual username and password. This has
|
|
|
|
// nothing to do with the encryption, and is purely authentication! The client
|
|
|
|
// generates its own secret key, and encrypts all shell history with libsodium's
|
|
|
|
// secretbox. The data is then sent to the server, where it is stored. All
|
|
|
|
// clients must share the secret in order to be able to sync, as it is needed
|
|
|
|
// to decrypt
|
|
|
|
|
2022-04-28 11:53:59 -06:00
|
|
|
use std::{io::prelude::*, path::PathBuf};
|
2021-04-13 12:14:07 -06:00
|
|
|
|
2022-04-13 11:08:49 -06:00
|
|
|
use eyre::{eyre, Context, Result};
|
2022-04-28 11:53:59 -06:00
|
|
|
use fs_err as fs;
|
|
|
|
use serde::{Deserialize, Serialize};
|
2021-04-13 12:14:07 -06:00
|
|
|
use sodiumoxide::crypto::secretbox;
|
|
|
|
|
2022-04-28 11:53:59 -06:00
|
|
|
use crate::{history::History, settings::Settings};
|
2021-04-13 12:14:07 -06:00
|
|
|
|
|
|
|
#[derive(Debug, Serialize, Deserialize)]
|
|
|
|
pub struct EncryptedHistory {
|
|
|
|
pub ciphertext: Vec<u8>,
|
|
|
|
pub nonce: secretbox::Nonce,
|
|
|
|
}
|
|
|
|
|
2021-05-09 13:11:17 -06:00
|
|
|
pub fn new_key(settings: &Settings) -> Result<secretbox::Key> {
|
|
|
|
let path = settings.key_path.as_str();
|
|
|
|
|
|
|
|
let key = secretbox::gen_key();
|
|
|
|
let encoded = encode_key(key.clone())?;
|
|
|
|
|
2022-04-13 11:08:49 -06:00
|
|
|
let mut file = fs::File::create(path)?;
|
2021-05-09 13:11:17 -06:00
|
|
|
file.write_all(encoded.as_bytes())?;
|
|
|
|
|
|
|
|
Ok(key)
|
|
|
|
}
|
|
|
|
|
2021-04-13 12:14:07 -06:00
|
|
|
// Loads the secret key, will create + save if it doesn't exist
|
|
|
|
pub fn load_key(settings: &Settings) -> Result<secretbox::Key> {
|
2021-04-20 14:53:07 -06:00
|
|
|
let path = settings.key_path.as_str();
|
2021-04-13 12:14:07 -06:00
|
|
|
|
2021-05-09 13:11:17 -06:00
|
|
|
let key = if PathBuf::from(path).exists() {
|
2022-04-13 11:08:49 -06:00
|
|
|
let key = fs_err::read_to_string(path)?;
|
2021-05-09 13:11:17 -06:00
|
|
|
decode_key(key)?
|
2021-04-13 12:14:07 -06:00
|
|
|
} else {
|
2021-05-09 13:11:17 -06:00
|
|
|
new_key(settings)?
|
|
|
|
};
|
2021-04-13 12:14:07 -06:00
|
|
|
|
2021-05-09 13:11:17 -06:00
|
|
|
Ok(key)
|
2021-04-13 12:14:07 -06:00
|
|
|
}
|
|
|
|
|
2021-04-21 11:13:51 -06:00
|
|
|
pub fn load_encoded_key(settings: &Settings) -> Result<String> {
|
|
|
|
let path = settings.key_path.as_str();
|
|
|
|
|
|
|
|
if PathBuf::from(path).exists() {
|
2022-04-13 11:08:49 -06:00
|
|
|
let key = fs::read_to_string(path)?;
|
2021-04-21 11:13:51 -06:00
|
|
|
Ok(key)
|
|
|
|
} else {
|
|
|
|
let key = secretbox::gen_key();
|
|
|
|
let encoded = encode_key(key)?;
|
|
|
|
|
2022-04-13 11:08:49 -06:00
|
|
|
let mut file = fs::File::create(path)?;
|
2021-04-21 11:13:51 -06:00
|
|
|
file.write_all(encoded.as_bytes())?;
|
|
|
|
|
|
|
|
Ok(encoded)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn encode_key(key: secretbox::Key) -> Result<String> {
|
2022-04-13 11:08:49 -06:00
|
|
|
let buf = rmp_serde::to_vec(&key).wrap_err("could not encode key to message pack")?;
|
2021-04-21 11:13:51 -06:00
|
|
|
let buf = base64::encode(buf);
|
|
|
|
|
|
|
|
Ok(buf)
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn decode_key(key: String) -> Result<secretbox::Key> {
|
2022-08-11 05:27:04 -06:00
|
|
|
let buf =
|
|
|
|
base64::decode(key.trim_end()).wrap_err("encryption key is not a valid base64 encoding")?;
|
2022-04-22 14:14:23 -06:00
|
|
|
let buf: secretbox::Key = rmp_serde::from_slice(&buf)
|
2022-04-13 11:08:49 -06:00
|
|
|
.wrap_err("encryption key is not a valid message pack encoding")?;
|
2021-04-21 11:13:51 -06:00
|
|
|
|
|
|
|
Ok(buf)
|
|
|
|
}
|
|
|
|
|
2021-04-13 12:14:07 -06:00
|
|
|
pub fn encrypt(history: &History, key: &secretbox::Key) -> Result<EncryptedHistory> {
|
|
|
|
// serialize with msgpack
|
|
|
|
let buf = rmp_serde::to_vec(history)?;
|
|
|
|
|
|
|
|
let nonce = secretbox::gen_nonce();
|
|
|
|
|
|
|
|
let ciphertext = secretbox::seal(&buf, &nonce, key);
|
|
|
|
|
|
|
|
Ok(EncryptedHistory { ciphertext, nonce })
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn decrypt(encrypted_history: &EncryptedHistory, key: &secretbox::Key) -> Result<History> {
|
|
|
|
let plaintext = secretbox::open(&encrypted_history.ciphertext, &encrypted_history.nonce, key)
|
|
|
|
.map_err(|_| eyre!("failed to open secretbox - invalid key?"))?;
|
|
|
|
|
2022-04-22 14:14:23 -06:00
|
|
|
let history = rmp_serde::from_slice(&plaintext)?;
|
2021-04-13 12:14:07 -06:00
|
|
|
|
|
|
|
Ok(history)
|
|
|
|
}
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
mod test {
|
|
|
|
use sodiumoxide::crypto::secretbox;
|
|
|
|
|
2021-04-25 11:21:52 -06:00
|
|
|
use crate::history::History;
|
2021-04-13 12:14:07 -06:00
|
|
|
|
|
|
|
use super::{decrypt, encrypt};
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn test_encrypt_decrypt() {
|
|
|
|
let key1 = secretbox::gen_key();
|
|
|
|
let key2 = secretbox::gen_key();
|
|
|
|
|
|
|
|
let history = History::new(
|
|
|
|
chrono::Utc::now(),
|
|
|
|
"ls".to_string(),
|
|
|
|
"/home/ellie".to_string(),
|
|
|
|
0,
|
|
|
|
1,
|
|
|
|
Some("beep boop".to_string()),
|
|
|
|
Some("booop".to_string()),
|
|
|
|
);
|
|
|
|
|
|
|
|
let e1 = encrypt(&history, &key1).unwrap();
|
|
|
|
let e2 = encrypt(&history, &key2).unwrap();
|
|
|
|
|
|
|
|
assert_ne!(e1.ciphertext, e2.ciphertext);
|
|
|
|
assert_ne!(e1.nonce, e2.nonce);
|
|
|
|
|
|
|
|
// test decryption works
|
|
|
|
// this should pass
|
|
|
|
match decrypt(&e1, &key1) {
|
2021-11-13 15:40:24 -07:00
|
|
|
Err(e) => panic!("failed to decrypt, got {}", e),
|
2021-04-13 12:14:07 -06:00
|
|
|
Ok(h) => assert_eq!(h, history),
|
|
|
|
};
|
|
|
|
|
|
|
|
// this should err
|
2022-04-21 01:05:57 -06:00
|
|
|
let _ = decrypt(&e2, &key1).expect_err("expected an error decrypting with invalid key");
|
2021-04-13 12:14:07 -06:00
|
|
|
}
|
|
|
|
}
|