Implement GitHubTokenEncryption struct

Turbo87 · Turbo87 · commit 09456390c365 · 2025-08-04T12:13:51.000+02:00
diff --git a/.env.sample b/.env.sample
@@ -72,6 +72,10 @@ export GIT_REPO_URL=file://$PWD/tmp/index-bare
 export GH_CLIENT_ID=
 export GH_CLIENT_SECRET=
 
+# Key for encrypting/decrypting GitHub tokens. Must be exactly 64 hex characters.
+# Used for secure storage of GitHub tokens in the database.
+export GITHUB_TOKEN_ENCRYPTION_KEY=0af877502cf11413eaa64af985fe1f8ed250ac9168a3b2db7da52cd5cc6116a9
+
 # Credentials for configuring Mailgun. You can leave these commented out
 # if you are not interested in actually sending emails. If left empty,
 # a mock email will be sent to a file in your local '/tmp/' directory.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -47,6 +47,7 @@ name = "crates_io"
 doctest = true
 
 [dependencies]
+aes-gcm = { version = "=0.10.3", features = ["std"] }
 anyhow = "=1.0.98"
 astral-tokio-tar = "=0.5.2"
 async-compression = { version = "=0.4.27", default-features = false, features = ["gzip", "tokio"] }
diff --git a/src/util.rs b/src/util.rs
@@ -4,6 +4,7 @@ pub use crates_io_database::utils::token;
 
 pub mod diesel;
 pub mod errors;
+pub mod gh_token_encryption;
 mod io_util;
 mod request_helpers;
 pub mod string_excl_null;
diff --git a/src/util/gh_token_encryption.rs b/src/util/gh_token_encryption.rs
@@ -0,0 +1,176 @@
+use aes_gcm::aead::{Aead, AeadCore, OsRng};
+use aes_gcm::{Aes256Gcm, Key, KeyInit, Nonce};
+use anyhow::{Context, Result};
+use oauth2::AccessToken;
+
+/// A struct that encapsulates GitHub token encryption and decryption
+/// using AES-256-GCM.
+pub struct GitHubTokenEncryption {
+    cipher: Aes256Gcm,
+}
+
+impl GitHubTokenEncryption {
+    /// Creates a new [GitHubTokenEncryption] instance with the provided cipher
+    pub fn new(cipher: Aes256Gcm) -> Self {
+        Self { cipher }
+    }
+
+    /// Creates a new [GitHubTokenEncryption] instance with a cipher for testing
+    /// purposes.
+    #[cfg(test)]
+    pub fn for_testing() -> Self {
+        let test_key = b"test_key_32_bytes_long_for_tests";
+        Self::new(Aes256Gcm::new(Key::<Aes256Gcm>::from_slice(test_key)))
+    }
+
+    /// Creates a new [GitHubTokenEncryption] instance from the environment
+    ///
+    /// Reads the `GITHUB_TOKEN_ENCRYPTION_KEY` environment variable, which
+    /// should be a 64-character hex string (32 bytes when decoded).
+    pub fn from_environment() -> Result<Self> {
+        let gh_token_key = std::env::var("GITHUB_TOKEN_ENCRYPTION_KEY")
+            .context("GITHUB_TOKEN_ENCRYPTION_KEY environment variable not set")?;
+
+        if gh_token_key.len() != 64 {
+            anyhow::bail!("GITHUB_TOKEN_ENCRYPTION_KEY must be exactly 64 hex characters");
+        }
+
+        let gh_token_key = hex::decode(gh_token_key.as_bytes())
+            .context("GITHUB_TOKEN_ENCRYPTION_KEY must be exactly 64 hex characters")?;
+
+        let cipher = Aes256Gcm::new(Key::<Aes256Gcm>::from_slice(&gh_token_key));
+
+        Ok(Self::new(cipher))
+    }
+
+    /// Encrypts a GitHub access token using AES-256-GCM
+    ///
+    /// The encrypted data format is: `[12-byte nonce][encrypted data]`
+    /// The nonce is randomly generated for each encryption to ensure uniqueness.
+    pub fn encrypt(&self, plaintext: &str) -> Result<Vec<u8>> {
+        // Generate a random nonce for this encryption
+        let nonce = Aes256Gcm::generate_nonce(&mut OsRng);
+
+        // Encrypt the token
+        let encrypted = self
+            .cipher
+            .encrypt(&nonce, plaintext.as_bytes())
+            .map_err(|error| anyhow::anyhow!("Failed to encrypt token: {error}"))?;
+
+        // Combine nonce + ciphertext (which includes the auth tag)
+        let mut result = Vec::with_capacity(nonce.len() + encrypted.len());
+        result.extend_from_slice(&nonce);
+        result.extend_from_slice(&encrypted);
+
+        Ok(result)
+    }
+
+    /// Decrypts a GitHub access token using AES-256-GCM
+    ///
+    /// Expects the data format: `[12-byte nonce][encrypted data]`
+    pub fn decrypt(&self, encrypted: &[u8]) -> Result<AccessToken> {
+        if encrypted.len() < 12 {
+            anyhow::bail!("Invalid encrypted token: too short");
+        }
+
+        // Extract nonce and ciphertext
+        let (nonce_bytes, ciphertext) = encrypted.split_at(12);
+        let nonce = Nonce::from_slice(nonce_bytes);
+
+        // Decrypt the token
+        let plaintext = self
+            .cipher
+            .decrypt(nonce, ciphertext)
+            .context("Failed to decrypt token")?;
+
+        let plaintext =
+            String::from_utf8(plaintext).context("Decrypted token is not valid UTF-8")?;
+
+        Ok(AccessToken::new(plaintext))
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use aes_gcm::{Key, KeyInit};
+    use claims::{assert_err, assert_ok};
+    use insta::assert_snapshot;
+
+    fn create_test_encryption() -> GitHubTokenEncryption {
+        let key = Key::<Aes256Gcm>::from_slice(b"test_master_key_32_bytes_long!!!");
+        let cipher = Aes256Gcm::new(key);
+        GitHubTokenEncryption { cipher }
+    }
+
+    #[test]
+    fn test_encrypt_decrypt_roundtrip() {
+        let encryption = create_test_encryption();
+        let original_token = "ghs_test_token_123456789";
+
+        // Encrypt the token
+        let encrypted = assert_ok!(encryption.encrypt(original_token));
+
+        // Decrypt it back
+        let decrypted = assert_ok!(encryption.decrypt(&encrypted));
+
+        assert_eq!(original_token, decrypted.secret());
+    }
+
+    #[test]
+    fn test_encrypt_produces_different_ciphertext() {
+        let encryption = create_test_encryption();
+        let token = "ghs_test_token_123456789";
+
+        // Encrypt the same token twice
+        let encrypted1 = assert_ok!(encryption.encrypt(token));
+        let encrypted2 = assert_ok!(encryption.encrypt(token));
+
+        // Should produce different ciphertext due to random nonce
+        assert_ne!(encrypted1, encrypted2);
+
+        // But both should decrypt to the same plaintext
+        let decrypted1 = assert_ok!(encryption.decrypt(&encrypted1));
+        let decrypted2 = assert_ok!(encryption.decrypt(&encrypted2));
+
+        assert_eq!(decrypted1.secret(), decrypted2.secret());
+        assert_eq!(decrypted1.secret(), token);
+    }
+
+    #[test]
+    fn test_invalid_encrypted_data() {
+        let encryption = create_test_encryption();
+
+        // Too short
+        let err = assert_err!(encryption.decrypt(&[1, 2, 3]));
+        assert_snapshot!(err, @"Invalid encrypted token: too short");
+
+        // Invalid data
+        let invalid_data = vec![0u8; 50];
+        let err = assert_err!(encryption.decrypt(&invalid_data));
+        assert_snapshot!(err, @"Failed to decrypt token");
+    }
+
+    #[test]
+    fn test_different_keys() {
+        let encryption1 = create_test_encryption();
+
+        // Create a different encryption with a different key
+        let key2 = Key::<Aes256Gcm>::from_slice(b"different_key_32_bytes_long!!!!!");
+        let cipher2 = Aes256Gcm::new(key2);
+        let encryption2 = GitHubTokenEncryption { cipher: cipher2 };
+
+        let token = "ghs_test_token_123456789";
+
+        // Encrypt with encryption1
+        let encrypted = assert_ok!(encryption1.encrypt(token));
+
+        // Try to decrypt with encryption2 (should fail)
+        let err = assert_err!(encryption2.decrypt(&encrypted));
+        assert_snapshot!(err, @"Failed to decrypt token");
+
+        // But encryption1 should still work
+        let decrypted = assert_ok!(encryption1.decrypt(&encrypted));
+        assert_eq!(decrypted.secret(), token);
+    }
+}
