minio/internal/crypto/sse-s3.go

// Copyright (c) 2015-2021 MinIO, Inc.
//
// This file is part of MinIO Object Storage stack
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// This program is distributed in the hope that it will be useful
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program.  If not, see <http://www.gnu.org/licenses/>.

package crypto

import (
	"context"
	"encoding/base64"
	"errors"
	"net/http"
	"path"
	"strings"

	xhttp "github.com/minio/minio/internal/http"
	"github.com/minio/minio/internal/kms"
	"github.com/minio/minio/internal/logger"
)

type sses3 struct{}

var (
	// S3 represents AWS SSE-S3. It provides functionality to handle
	// SSE-S3 requests.
	S3 = sses3{}

	_ Type = S3
)

// String returns the SSE domain as string. For SSE-S3 the
// domain is "SSE-S3".
func (sses3) String() string { return "SSE-S3" }

func (sses3) IsRequested(h http.Header) bool {
	_, ok := h[xhttp.AmzServerSideEncryption]
	return ok && strings.ToLower(h.Get(xhttp.AmzServerSideEncryption)) != xhttp.AmzEncryptionKMS // Return only true if the SSE header is specified and does not contain the SSE-KMS value
}

// ParseHTTP parses the SSE-S3 related HTTP headers and checks
// whether they contain valid values.
func (sses3) ParseHTTP(h http.Header) error {
	if h.Get(xhttp.AmzServerSideEncryption) != xhttp.AmzEncryptionAES {
		return ErrInvalidEncryptionMethod
	}
	return nil
}

// IsEncrypted returns true if the object metadata indicates
// that the object was uploaded using SSE-S3.
func (sses3) IsEncrypted(metadata map[string]string) bool {
	if _, ok := metadata[MetaSealedKeyS3]; ok {
		return true
	}
	return false
}

// UnsealObjectKey extracts and decrypts the sealed object key
// from the metadata using KMS and returns the decrypted object
// key.
func (s3 sses3) UnsealObjectKey(KMS kms.KMS, metadata map[string]string, bucket, object string) (key ObjectKey, err error) {
	keyID, kmsKey, sealedKey, err := s3.ParseMetadata(metadata)
	if err != nil {
		return key, err
	}
	unsealKey, err := KMS.DecryptKey(keyID, kmsKey, kms.Context{bucket: path.Join(bucket, object)})
	if err != nil {
		return key, err
	}
	err = key.Unseal(unsealKey[:], sealedKey, s3.String(), bucket, object)
	return key, err
}

// CreateMetadata encodes the sealed object key into the metadata and returns
// the modified metadata. If the keyID and the kmsKey is not empty it encodes
// both into the metadata as well. It allocates a new metadata map if metadata
// is nil.
func (sses3) CreateMetadata(metadata map[string]string, keyID string, kmsKey []byte, sealedKey SealedKey) map[string]string {
	if sealedKey.Algorithm != SealAlgorithm {
		logger.CriticalIf(context.Background(), Errorf("The seal algorithm '%s' is invalid for SSE-S3", sealedKey.Algorithm))
	}

	// There are two possibilites:
	// - We use a KMS -> There must be non-empty key ID and a KMS data key.
	// - We use a K/V -> There must be no key ID and no KMS data key.
	// Otherwise, the caller has passed an invalid argument combination.
	if keyID == "" && len(kmsKey) != 0 {
		logger.CriticalIf(context.Background(), errors.New("The key ID must not be empty if a KMS data key is present"))
	}
	if keyID != "" && len(kmsKey) == 0 {
		logger.CriticalIf(context.Background(), errors.New("The KMS data key must not be empty if a key ID is present"))
	}

	if metadata == nil {
		metadata = make(map[string]string, 5)
	}

	metadata[MetaAlgorithm] = sealedKey.Algorithm
	metadata[MetaIV] = base64.StdEncoding.EncodeToString(sealedKey.IV[:])
	metadata[MetaSealedKeyS3] = base64.StdEncoding.EncodeToString(sealedKey.Key[:])
	if len(kmsKey) > 0 && keyID != "" { // We use a KMS -> Store key ID and sealed KMS data key.
		metadata[MetaKeyID] = keyID
		metadata[MetaDataEncryptionKey] = base64.StdEncoding.EncodeToString(kmsKey)
	}
	return metadata
}

// ParseMetadata extracts all SSE-S3 related values from the object metadata
// and checks whether they are well-formed. It returns the sealed object key
// on success. If the metadata contains both, a KMS master key ID and a sealed
// KMS data key it returns both. If the metadata does not contain neither a
// KMS master key ID nor a sealed KMS data key it returns an empty keyID and
// KMS data key. Otherwise, it returns an error.
func (sses3) ParseMetadata(metadata map[string]string) (keyID string, kmsKey []byte, sealedKey SealedKey, err error) {
	// Extract all required values from object metadata
	b64IV, ok := metadata[MetaIV]
	if !ok {
		return keyID, kmsKey, sealedKey, errMissingInternalIV
	}
	algorithm, ok := metadata[MetaAlgorithm]
	if !ok {
		return keyID, kmsKey, sealedKey, errMissingInternalSealAlgorithm
	}
	b64SealedKey, ok := metadata[MetaSealedKeyS3]
	if !ok {
		return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal sealed key for SSE-S3")
	}

	// There are two possibilites:
	// - We use a KMS -> There must be a key ID and a KMS data key.
	// - We use a K/V -> There must be no key ID and no KMS data key.
	// Otherwise, the metadata is corrupted.
	keyID, idPresent := metadata[MetaKeyID]
	b64KMSSealedKey, kmsKeyPresent := metadata[MetaDataEncryptionKey]
	if !idPresent && kmsKeyPresent {
		return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal KMS key-ID for SSE-S3")
	}
	if idPresent && !kmsKeyPresent {
		return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal sealed KMS data key for SSE-S3")
	}

	// Check whether all extracted values are well-formed
	iv, err := base64.StdEncoding.DecodeString(b64IV)
	if err != nil || len(iv) != 32 {
		return keyID, kmsKey, sealedKey, errInvalidInternalIV
	}
	if algorithm != SealAlgorithm {
		return keyID, kmsKey, sealedKey, errInvalidInternalSealAlgorithm
	}
	encryptedKey, err := base64.StdEncoding.DecodeString(b64SealedKey)
	if err != nil || len(encryptedKey) != 64 {
		return keyID, kmsKey, sealedKey, Errorf("The internal sealed key for SSE-S3 is invalid")
	}
	if idPresent && kmsKeyPresent { // We are using a KMS -> parse the sealed KMS data key.
		kmsKey, err = base64.StdEncoding.DecodeString(b64KMSSealedKey)
		if err != nil {
			return keyID, kmsKey, sealedKey, Errorf("The internal sealed KMS data key for SSE-S3 is invalid")
		}
	}

	sealedKey.Algorithm = algorithm
	copy(sealedKey.IV[:], iv)
	copy(sealedKey.Key[:], encryptedKey)
	return keyID, kmsKey, sealedKey, nil
}
update license change for MinIO Signed-off-by: Harshavardhana <harsha@minio.io> 2021-04-19 03:41:13 +08:00			`// Copyright (c) 2015-2021 MinIO, Inc.`
			`//`
			`// This file is part of MinIO Object Storage stack`
			`//`
			`// This program is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU Affero General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// This program is distributed in the hope that it will be useful`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU Affero General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU Affero General Public License`
			`// along with this program. If not, see <http://www.gnu.org/licenses/>.`
refactor cmd/crypto code for SSE handling and parsing (#11045) This commit refactors the code in `cmd/crypto` and separates SSE-S3, SSE-C and SSE-KMS. This commit should not cause any behavior change except for: - `IsRequested(http.Header)` which now returns the requested type {SSE-C, SSE-S3, SSE-KMS} and does not consider SSE-C copy headers. However, SSE-C copy headers alone are anyway not valid. 2020-12-23 01:19:32 +08:00
			`package crypto`

			`import (`
			`"context"`
			`"encoding/base64"`
			`"errors"`
			`"net/http"`
			`"path"`
			`"strings"`

rename all remaining packages to internal/ (#12418) This is to ensure that there are no projects that try to import `minio/minio/pkg` into their own repo. Any such common packages should go to `https://github.com/minio/pkg` 2021-06-02 05:59:40 +08:00			`xhttp "github.com/minio/minio/internal/http"`
			`"github.com/minio/minio/internal/kms"`
			`"github.com/minio/minio/internal/logger"`
refactor cmd/crypto code for SSE handling and parsing (#11045) This commit refactors the code in `cmd/crypto` and separates SSE-S3, SSE-C and SSE-KMS. This commit should not cause any behavior change except for: - `IsRequested(http.Header)` which now returns the requested type {SSE-C, SSE-S3, SSE-KMS} and does not consider SSE-C copy headers. However, SSE-C copy headers alone are anyway not valid. 2020-12-23 01:19:32 +08:00			`)`

			`type sses3 struct{}`

			`var (`
			`// S3 represents AWS SSE-S3. It provides functionality to handle`
			`// SSE-S3 requests.`
			`S3 = sses3{}`

			`_ Type = S3`
			`)`

			`// String returns the SSE domain as string. For SSE-S3 the`
			`// domain is "SSE-S3".`
			`func (sses3) String() string { return "SSE-S3" }`

			`func (sses3) IsRequested(h http.Header) bool {`
			`_, ok := h[xhttp.AmzServerSideEncryption]`
			`return ok && strings.ToLower(h.Get(xhttp.AmzServerSideEncryption)) != xhttp.AmzEncryptionKMS // Return only true if the SSE header is specified and does not contain the SSE-KMS value`
			`}`

			`// ParseHTTP parses the SSE-S3 related HTTP headers and checks`
			`// whether they contain valid values.`
			`func (sses3) ParseHTTP(h http.Header) error {`
			`if h.Get(xhttp.AmzServerSideEncryption) != xhttp.AmzEncryptionAES {`
			`return ErrInvalidEncryptionMethod`
			`}`
			`return nil`
			`}`

			`// IsEncrypted returns true if the object metadata indicates`
			`// that the object was uploaded using SSE-S3.`
			`func (sses3) IsEncrypted(metadata map[string]string) bool {`
			`if _, ok := metadata[MetaSealedKeyS3]; ok {`
			`return true`
			`}`
			`return false`
			`}`

			`// UnsealObjectKey extracts and decrypts the sealed object key`
			`// from the metadata using KMS and returns the decrypted object`
			`// key.`
kms: replace KES client implementation with minio/kes (#12207) This commit replaces the custom KES client implementation with the KES SDK from https://github.com/minio/kes The SDK supports multi-server client load-balancing and requests retry out of the box. Therefore, this change reduces the overall complexity within the MinIO server and there is no need to maintain two separate client implementations. Signed-off-by: Andreas Auernhammer <aead@mail.de> 2021-05-11 09:15:11 +08:00			`func (s3 sses3) UnsealObjectKey(KMS kms.KMS, metadata map[string]string, bucket, object string) (key ObjectKey, err error) {`
refactor cmd/crypto code for SSE handling and parsing (#11045) This commit refactors the code in `cmd/crypto` and separates SSE-S3, SSE-C and SSE-KMS. This commit should not cause any behavior change except for: - `IsRequested(http.Header)` which now returns the requested type {SSE-C, SSE-S3, SSE-KMS} and does not consider SSE-C copy headers. However, SSE-C copy headers alone are anyway not valid. 2020-12-23 01:19:32 +08:00			`keyID, kmsKey, sealedKey, err := s3.ParseMetadata(metadata)`
			`if err != nil {`
			`return key, err`
			`}`
kms: replace KES client implementation with minio/kes (#12207) This commit replaces the custom KES client implementation with the KES SDK from https://github.com/minio/kes The SDK supports multi-server client load-balancing and requests retry out of the box. Therefore, this change reduces the overall complexity within the MinIO server and there is no need to maintain two separate client implementations. Signed-off-by: Andreas Auernhammer <aead@mail.de> 2021-05-11 09:15:11 +08:00			`unsealKey, err := KMS.DecryptKey(keyID, kmsKey, kms.Context{bucket: path.Join(bucket, object)})`
refactor cmd/crypto code for SSE handling and parsing (#11045) This commit refactors the code in `cmd/crypto` and separates SSE-S3, SSE-C and SSE-KMS. This commit should not cause any behavior change except for: - `IsRequested(http.Header)` which now returns the requested type {SSE-C, SSE-S3, SSE-KMS} and does not consider SSE-C copy headers. However, SSE-C copy headers alone are anyway not valid. 2020-12-23 01:19:32 +08:00			`if err != nil {`
			`return key, err`
			`}`
introduce new package pkg/kms (#12019) This commit introduces a new package `pkg/kms`. It contains basic types and functions to interact with various KMS implementations. This commit also moves KMS-related code from `cmd/crypto` to `pkg/kms`. Now, it is possible to implement a KMS-based config data encryption in the `pkg/config` package. 2021-04-15 23:47:33 +08:00			`err = key.Unseal(unsealKey[:], sealedKey, s3.String(), bucket, object)`
refactor cmd/crypto code for SSE handling and parsing (#11045) This commit refactors the code in `cmd/crypto` and separates SSE-S3, SSE-C and SSE-KMS. This commit should not cause any behavior change except for: - `IsRequested(http.Header)` which now returns the requested type {SSE-C, SSE-S3, SSE-KMS} and does not consider SSE-C copy headers. However, SSE-C copy headers alone are anyway not valid. 2020-12-23 01:19:32 +08:00			`return key, err`
			`}`

			`// CreateMetadata encodes the sealed object key into the metadata and returns`
			`// the modified metadata. If the keyID and the kmsKey is not empty it encodes`
			`// both into the metadata as well. It allocates a new metadata map if metadata`
			`// is nil.`
			`func (sses3) CreateMetadata(metadata map[string]string, keyID string, kmsKey []byte, sealedKey SealedKey) map[string]string {`
			`if sealedKey.Algorithm != SealAlgorithm {`
			`logger.CriticalIf(context.Background(), Errorf("The seal algorithm '%s' is invalid for SSE-S3", sealedKey.Algorithm))`
			`}`

			`// There are two possibilites:`
			`// - We use a KMS -> There must be non-empty key ID and a KMS data key.`
			`// - We use a K/V -> There must be no key ID and no KMS data key.`
			`// Otherwise, the caller has passed an invalid argument combination.`
			`if keyID == "" && len(kmsKey) != 0 {`
			`logger.CriticalIf(context.Background(), errors.New("The key ID must not be empty if a KMS data key is present"))`
			`}`
			`if keyID != "" && len(kmsKey) == 0 {`
			`logger.CriticalIf(context.Background(), errors.New("The KMS data key must not be empty if a key ID is present"))`
			`}`

			`if metadata == nil {`
			`metadata = make(map[string]string, 5)`
			`}`

			`metadata[MetaAlgorithm] = sealedKey.Algorithm`
			`metadata[MetaIV] = base64.StdEncoding.EncodeToString(sealedKey.IV[:])`
			`metadata[MetaSealedKeyS3] = base64.StdEncoding.EncodeToString(sealedKey.Key[:])`
			`if len(kmsKey) > 0 && keyID != "" { // We use a KMS -> Store key ID and sealed KMS data key.`
			`metadata[MetaKeyID] = keyID`
			`metadata[MetaDataEncryptionKey] = base64.StdEncoding.EncodeToString(kmsKey)`
			`}`
			`return metadata`
			`}`

			`// ParseMetadata extracts all SSE-S3 related values from the object metadata`
			`// and checks whether they are well-formed. It returns the sealed object key`
			`// on success. If the metadata contains both, a KMS master key ID and a sealed`
			`// KMS data key it returns both. If the metadata does not contain neither a`
			`// KMS master key ID nor a sealed KMS data key it returns an empty keyID and`
			`// KMS data key. Otherwise, it returns an error.`
			`func (sses3) ParseMetadata(metadata map[string]string) (keyID string, kmsKey []byte, sealedKey SealedKey, err error) {`
			`// Extract all required values from object metadata`
			`b64IV, ok := metadata[MetaIV]`
			`if !ok {`
			`return keyID, kmsKey, sealedKey, errMissingInternalIV`
			`}`
			`algorithm, ok := metadata[MetaAlgorithm]`
			`if !ok {`
			`return keyID, kmsKey, sealedKey, errMissingInternalSealAlgorithm`
			`}`
			`b64SealedKey, ok := metadata[MetaSealedKeyS3]`
			`if !ok {`
			`return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal sealed key for SSE-S3")`
			`}`

			`// There are two possibilites:`
			`// - We use a KMS -> There must be a key ID and a KMS data key.`
			`// - We use a K/V -> There must be no key ID and no KMS data key.`
			`// Otherwise, the metadata is corrupted.`
			`keyID, idPresent := metadata[MetaKeyID]`
			`b64KMSSealedKey, kmsKeyPresent := metadata[MetaDataEncryptionKey]`
			`if !idPresent && kmsKeyPresent {`
			`return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal KMS key-ID for SSE-S3")`
			`}`
			`if idPresent && !kmsKeyPresent {`
			`return keyID, kmsKey, sealedKey, Errorf("The object metadata is missing the internal sealed KMS data key for SSE-S3")`
			`}`

			`// Check whether all extracted values are well-formed`
			`iv, err := base64.StdEncoding.DecodeString(b64IV)`
			`if err != nil \|\| len(iv) != 32 {`
			`return keyID, kmsKey, sealedKey, errInvalidInternalIV`
			`}`
			`if algorithm != SealAlgorithm {`
			`return keyID, kmsKey, sealedKey, errInvalidInternalSealAlgorithm`
			`}`
			`encryptedKey, err := base64.StdEncoding.DecodeString(b64SealedKey)`
			`if err != nil \|\| len(encryptedKey) != 64 {`
			`return keyID, kmsKey, sealedKey, Errorf("The internal sealed key for SSE-S3 is invalid")`
			`}`
			`if idPresent && kmsKeyPresent { // We are using a KMS -> parse the sealed KMS data key.`
			`kmsKey, err = base64.StdEncoding.DecodeString(b64KMSSealedKey)`
			`if err != nil {`
			`return keyID, kmsKey, sealedKey, Errorf("The internal sealed KMS data key for SSE-S3 is invalid")`
			`}`
			`}`

			`sealedKey.Algorithm = algorithm`
			`copy(sealedKey.IV[:], iv)`
			`copy(sealedKey.Key[:], encryptedKey)`
			`return keyID, kmsKey, sealedKey, nil`
			`}`