eelke/IdentityShroud
1
0
Fork 0
Code Issues 4 Pull requests Projects Releases Packages Wiki Activity Actions
IdentityShroud/IdentityShroud.Core/Services/EncryptionService.cs

93 lines
3.5 KiB
C#
Raw Normal View History

Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
using System.Security.Cryptography;
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
using IdentityShroud.Core.Contracts;
using IdentityShroud.Core.Security;
namespace IdentityShroud.Core.Services;
/// <summary>
///
/// </summary>
public class EncryptionService : IEncryptionService
{
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
private record struct AlgVersion(int NonceSize, int TagSize);
private AlgVersion[] _versions =
[
new(0, 0), // version 0 does not realy exist
new (12, 16), // version 1
];
private readonly byte[] _encryptionKey;
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
public EncryptionService(ISecretProvider secretProvider)
{
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
_encryptionKey = Convert.FromBase64String(secretProvider.GetSecret("Master"));
if (_encryptionKey.Length != 32) // 256bit key
throw new Exception("Key must be 256bits (32 bytes) for AES256GCM.");
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
}
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
public byte[] Encrypt(ReadOnlyMemory<byte> plaintext)
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
{
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
const int versionNumber = 1;
AlgVersion versionParams = _versions[versionNumber];
int resultSize = 1 + versionParams.NonceSize + versionParams.TagSize + plaintext.Length;
// allocate buffer for complete response
var result = new byte[resultSize];
result[0] = (byte)versionNumber;
// make the spans that point to the parts of the result where their data is located
var nonce = result.AsSpan(1, versionParams.NonceSize);
var tag = result.AsSpan(1 + versionParams.NonceSize, versionParams.TagSize);
var cipher = result.AsSpan(1 + versionParams.NonceSize + versionParams.TagSize);
// use the spans to place the data directly in its place
RandomNumberGenerator.Fill(nonce);
using var aes = new AesGcm(_encryptionKey, versionParams.TagSize);
aes.Encrypt(nonce, plaintext.Span, cipher, tag);
return result;
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
}
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
public byte[] Decrypt(ReadOnlyMemory<byte> input)
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
{
Improve the binary storage format of encrypted secrets. Move the related code from AesGcmHelper into the EncryptionService.
2026-02-22 19:11:17 +01:00
// ----------------------------------------------------------------
// 1⃣ Extract the three components.
// ----------------------------------------------------------------
// AesGcm.NonceByteSizes.MaxSize = 12 bytes (standard GCM nonce length)
// AesGcm.TagByteSizes.MaxSize = 16 bytes (128bit authentication tag)
//int nonceSize = AesGcm.NonceByteSizes.MaxSize; // 12
//int tagSize = AesGcm.TagByteSizes.MaxSize; // 16
var payload = input.Span;
int versionNumber = (int)payload[0];
if (versionNumber != 1)
throw new ArgumentException("Invalid payloag");
AlgVersion versionParams = _versions[versionNumber];
if (payload.Length < 1 + versionParams.NonceSize + versionParams.TagSize)
throw new ArgumentException("Payload is too short to contain nonce, ciphertext, and tag.", nameof(payload));
ReadOnlySpan<byte> nonce = payload.Slice(1, versionParams.NonceSize);
ReadOnlySpan<byte> tag = payload.Slice(1 + versionParams.NonceSize, versionParams.TagSize);
ReadOnlySpan<byte> cipher = payload.Slice(1 + versionParams.NonceSize + versionParams.TagSize);
byte[] plaintext = new byte[cipher.Length];
using var aes = new AesGcm(_encryptionKey, versionParams.TagSize);
try
{
aes.Decrypt(nonce, cipher, tag, plaintext);
}
catch (CryptographicException ex)
{
// Tag verification failed → tampering or wrong key/nonce.
throw new InvalidOperationException("Decryption failed authentication tag mismatch.", ex);
}
return plaintext;
EncryptionService should be using ISecretProvider Remove Async from method that was not Async
2026-02-15 19:18:02 +01:00
}
}
Reference in a new issue Copy permalink