feat: encrypt collab update (#3215)

* feat: implement encrypt and decrypt * feat: encrypt and decrypt * feat: update user profile with encrypt * chore: store encryption sign * fix: login in setting menu * chore: show encryption account name * chore: fix test * ci: fix warnings * test: enable supabase test * chore: fix test and rename column * fix: update user profile after set the secret * fix: encryption with wrong secret * fix: don't save user data if the return value of did_sign_up is err * chore: encrypt snapshot data * chore: refactor snapshots interface * ci: add tests * chore: update collab rev
2024-08-30 18:12:39 +00:00 · 2023-08-17 23:46:39 +08:00
parent 103f56922f
commit 649b0a135a
103 changed files with 2825 additions and 905 deletions
--- a/frontend/rust-lib/flowy-encrypt/Cargo.toml
+++ b/frontend/rust-lib/flowy-encrypt/Cargo.toml
@ -0,0 +1,15 @@
+[package]
+name = "flowy-encrypt"
+version = "0.1.0"
+edition = "2021"
+
+# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
+
+[dependencies]
+aes-gcm = "0.10.2"
+rand = "0.8"
+pbkdf2 = "0.12.2"
+hmac = "0.12.1"
+sha2 = "0.10.7"
+anyhow = "1.0.72"
+base64 = "0.21.2"
--- a/frontend/rust-lib/flowy-encrypt/src/encrypt.rs
+++ b/frontend/rust-lib/flowy-encrypt/src/encrypt.rs
@ -0,0 +1,118 @@
+use aes_gcm::aead::generic_array::GenericArray;
+use aes_gcm::aead::Aead;
+use aes_gcm::{Aes256Gcm, KeyInit};
+use anyhow::Result;
+use base64::engine::general_purpose::STANDARD;
+use base64::Engine;
+use pbkdf2::hmac::Hmac;
+use pbkdf2::pbkdf2;
+use rand::distributions::Alphanumeric;
+use rand::Rng;
+use sha2::Sha256;
+
+const SALT_LENGTH: usize = 16;
+const KEY_LENGTH: usize = 32;
+const ITERATIONS: u32 = 1000;
+const NONCE_LENGTH: usize = 12;
+const CONCATENATED_DELIMITER: &str = "$";
+
+pub fn generate_encrypt_secret() -> String {
+  let passphrase = generate_passphrase();
+  let salt = generate_salt();
+  concatenate_passphrase_and_salt(&passphrase, &salt)
+}
+
+pub fn encrypt_bytes<T: AsRef<[u8]>>(data: T, combined_passphrase_salt: &str) -> Result<Vec<u8>> {
+  let (passphrase, salt) = split_passphrase_and_salt(combined_passphrase_salt)?;
+  let key = derive_key(passphrase, &salt)?;
+  let cipher = Aes256Gcm::new(GenericArray::from_slice(&key));
+  let nonce: [u8; NONCE_LENGTH] = rand::thread_rng().gen();
+  let ciphertext = cipher
+    .encrypt(GenericArray::from_slice(&nonce), data.as_ref())
+    .unwrap();
+
+  Ok(nonce.into_iter().chain(ciphertext).collect())
+}
+
+pub fn decrypt_bytes<T: AsRef<[u8]>>(data: T, combined_passphrase_salt: &str) -> Result<Vec<u8>> {
+  if data.as_ref().len() <= NONCE_LENGTH {
+    return Err(anyhow::anyhow!("Ciphertext too short to include nonce."));
+  }
+  let (passphrase, salt) = split_passphrase_and_salt(combined_passphrase_salt)?;
+  let key = derive_key(passphrase, &salt)?;
+  let cipher = Aes256Gcm::new(GenericArray::from_slice(&key));
+  let (nonce, cipher_data) = data.as_ref().split_at(NONCE_LENGTH);
+  cipher
+    .decrypt(GenericArray::from_slice(nonce), cipher_data)
+    .map_err(|e| anyhow::anyhow!("Decryption error: {:?}", e))
+}
+
+pub fn encrypt_string<T: AsRef<[u8]>>(data: T, combined_passphrase_salt: &str) -> Result<String> {
+  let encrypted = encrypt_bytes(data.as_ref(), combined_passphrase_salt)?;
+  Ok(STANDARD.encode(encrypted))
+}
+
+pub fn decrypt_string<T: AsRef<[u8]>>(data: T, combined_passphrase_salt: &str) -> Result<String> {
+  let encrypted = STANDARD.decode(data)?;
+  let decrypted = decrypt_bytes(encrypted, combined_passphrase_salt)?;
+  Ok(String::from_utf8(decrypted)?)
+}
+
+fn generate_passphrase() -> String {
+  rand::thread_rng()
+        .sample_iter(&Alphanumeric)
+        .take(30) // e.g., 30 characters
+        .map(char::from)
+        .collect()
+}
+
+fn generate_salt() -> [u8; SALT_LENGTH] {
+  let mut rng = rand::thread_rng();
+  let salt: [u8; SALT_LENGTH] = rng.gen();
+  salt
+}
+
+fn concatenate_passphrase_and_salt(passphrase: &str, salt: &[u8; SALT_LENGTH]) -> String {
+  let salt_base64 = STANDARD.encode(salt);
+  format!("{}{}{}", passphrase, CONCATENATED_DELIMITER, salt_base64)
+}
+
+fn split_passphrase_and_salt(combined: &str) -> Result<(&str, [u8; SALT_LENGTH]), anyhow::Error> {
+  let parts: Vec<&str> = combined.split(CONCATENATED_DELIMITER).collect();
+  if parts.len() != 2 {
+    return Err(anyhow::anyhow!("Invalid combined format"));
+  }
+  let passphrase = parts[0];
+  let salt = STANDARD.decode(parts[1])?;
+  if salt.len() != SALT_LENGTH {
+    return Err(anyhow::anyhow!("Incorrect salt length"));
+  }
+  let mut salt_array = [0u8; SALT_LENGTH];
+  salt_array.copy_from_slice(&salt);
+  Ok((passphrase, salt_array))
+}
+
+fn derive_key(passphrase: &str, salt: &[u8; SALT_LENGTH]) -> Result<[u8; KEY_LENGTH]> {
+  let mut key = [0u8; KEY_LENGTH];
+  pbkdf2::<Hmac<Sha256>>(passphrase.as_bytes(), salt, ITERATIONS, &mut key)?;
+  Ok(key)
+}
+
+#[cfg(test)]
+mod tests {
+  use super::*;
+
+  #[test]
+  fn test_encrypt_decrypt() {
+    let secret = generate_encrypt_secret();
+    let data = b"hello world";
+    let encrypted = encrypt_bytes(data, &secret).unwrap();
+    let decrypted = decrypt_bytes(encrypted, &secret).unwrap();
+    assert_eq!(data, decrypted.as_slice());
+
+    let s = "123".to_string();
+    let encrypted = encrypt_string(&s, &secret).unwrap();
+    let decrypted_str = decrypt_string(encrypted, &secret).unwrap();
+    assert_eq!(s, decrypted_str);
+  }
+}
--- a/frontend/rust-lib/flowy-encrypt/src/lib.rs
+++ b/frontend/rust-lib/flowy-encrypt/src/lib.rs
@ -0,0 +1,3 @@
+pub use encrypt::*;
+
+mod encrypt;