GitHub-Bitwarden
/
key-connector
mirror of https://github.com/bitwarden/key-connector.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

[PM-1250] Fix gcp rsa encryption (#30) 

* [PM-1250] fix GCP encryt/decrypt to use RSA

* [PM-1250] remove this from method call

* [PM-1250] delete cryptoKeyName
pull/32/head
Jake Fink 3 years ago committed by GitHub
parent
c3fd8c74d1
commit
47a7a200dc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 9 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 14
      src/KeyConnector/Services/GoogleCloudKmsRsaKeyService.cs

14
src/KeyConnector/Services/GoogleCloudKmsRsaKeyService.cs
Unescape View File

@ -1,4 +1,4 @@ @@ -1,4 +1,4 @@
using System;
using System;
using System.Security.Cryptography;
using System.Threading.Tasks;
using Google.Cloud.Kms.V1;
@ -9,16 +9,12 @@ namespace Bit.KeyConnector.Services @@ -9,16 +9,12 @@ namespace Bit.KeyConnector.Services
public class GoogleCloudKmsRsaKeyService : IRsaKeyService
{
private readonly KeyManagementServiceClient _keyManagementServiceClient;
private readonly CryptoKeyName _cryptoKeyName;
private readonly CryptoKeyVersionName _cryptoKeyVersionName;
public GoogleCloudKmsRsaKeyService(
KeyConnectorSettings settings)
{
_keyManagementServiceClient = KeyManagementServiceClient.Create();
_cryptoKeyName = new CryptoKeyName(settings.RsaKey.GoogleCloudProjectId,
settings.RsaKey.GoogleCloudLocationId, settings.RsaKey.GoogleCloudKeyringId,
settings.RsaKey.GoogleCloudKeyId);
_cryptoKeyVersionName = new CryptoKeyVersionName(settings.RsaKey.GoogleCloudProjectId,
settings.RsaKey.GoogleCloudLocationId, settings.RsaKey.GoogleCloudKeyringId,
settings.RsaKey.GoogleCloudKeyId, settings.RsaKey.GoogleCloudKeyVersionId);
@ -26,14 +22,14 @@ namespace Bit.KeyConnector.Services @@ -26,14 +22,14 @@ namespace Bit.KeyConnector.Services
public async Task<byte[]> EncryptAsync(byte[] data)
{
var result = await _keyManagementServiceClient.EncryptAsync(_cryptoKeyName, ByteString.CopyFrom(data));
return result.Ciphertext.ToByteArray();
var publicKey = await GetRsaPublicKeyAsync();
var result = publicKey.Encrypt(data, RSAEncryptionPadding.OaepSHA256);
return result;
}
public async Task<byte[]> DecryptAsync(byte[] data)
{
var result = await _keyManagementServiceClient.DecryptAsync(_cryptoKeyName, ByteString.CopyFrom(data));
var result = await _keyManagementServiceClient.AsymmetricDecryptAsync(_cryptoKeyVersionName, ByteString.CopyFrom(data));
return result.Plaintext.ToByteArray();
}

Write Preview
Loading…
Cancel
Save