Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Crypto] Implement support for high-level crypto APIs #387

Merged
merged 10 commits into from May 26, 2023
Merged

[Crypto] Implement support for high-level crypto APIs #387

merged 10 commits into from May 26, 2023

Conversation

ItalyPaleAle
Copy link
Contributor

@ItalyPaleAle ItalyPaleAle commented Apr 5, 2023
edited

This implements support for the high-level crypto APIs implemented here: dapr/dapr#6197

These allow encrypting and decrypting files of arbitrary length (up to 256TB :) ), while working on a stream of data.

The gRPC APIs are quite complex as they require data to be chunked, but the SDK takes care of all that complexity and offers a simple API with Encrypt and Decrypt. Both accept a readable stream as input (io.Reader) and return a readable stream (io.Reader) that receives the processed data.

Example usage. This reads a file and encrypts it, storing the result in another file:

// Input file, clear-text
rf, err := os.Open("input")
if err != nil {
	panic(err)
}
defer rf.Close()

// Output file, encrypted
wf, err := os.Create("output.enc")
if err != nil {
	panic(err)
}
defer wf.Close()

// Encrypt the data using Dapr
out, err := sdkClient.Encrypt(context.Background(), rf, dapr.EncryptOptions{
	// These are the 3 required parameters
	ComponentName: "mycryptocomponent",
	KeyName:        "mykey",
	Algorithm:     "RSA",
})
if err != nil {
	panic(err)
}

// Read the stream and copy it to the out file
n, err := io.Copy(wf, out)
if err != nil {
	panic(err)
}
fmt.Println("Written", n, "bytes")

Decrypting works very similarly:

out, err := sdkClient.Decrypt(context.Background(), rf, dapr.EncryptOptions{
	// Only required option is the component name
	ComponentName: "mycryptocomponent",
})

@ItalyPaleAle
Updated generated protos
c1d6049 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle
Added encrypt method
b92c9ea 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle
Add Decrypt method
43cfa79 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle ItalyPaleAle requested a review from a team as a code owner April 5, 2023 20:57
@ItalyPaleAle ItalyPaleAle mentioned this pull request Apr 5, 2023
Open
21 tasks
@codecov
Copy link

codecov bot commented Apr 5, 2023
edited

Codecov Report

Merging #387 (54d4130) into main (b14253b) will increase coverage by 0.88%.
The diff coverage is 83.75%.

@@            Coverage Diff             @@
##             main     #387      +/-   ##
==========================================
+ Coverage   69.08%   69.97%   +0.88%     
==========================================
  Files          31       33       +2     
  Lines        2491     2651     +160     
==========================================
+ Hits         1721     1855     +134     
- Misses        676      695      +19     
- Partials       94      101       +7
Impacted Files Coverage Δ
client/client.go 69.74% <ø> (ø)
client/crypto.go 83.11% <83.11%> (ø)
client/bufpool.go 100.00% <100.00%> (ø)

This was referenced Apr 5, 2023
Closed
Open
Closed
Open
@ItalyPaleAle
Working on tests
42c457f 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle
Added unit tests
5f641ff 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
ItalyPaleAle
ItalyPaleAle commented Apr 5, 2023
View reviewed changes
Makefile Show resolved Hide resolved
@ItalyPaleAle
Sync protos
a896d70 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle ItalyPaleAle mentioned this pull request Apr 14, 2023
Merged
@ItalyPaleAle
Updated protos
47a1dd1 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle ItalyPaleAle mentioned this pull request Apr 18, 2023
Open
@hhunter-ms hhunter-ms mentioned this pull request May 1, 2023
Closed
@artursouza artursouza mentioned this pull request May 2, 2023
Closed
@ItalyPaleAle
Merge branch 'main' of https://github.com/dapr/go-sdk into crypto-encv1
e1afb21 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle ItalyPaleAle mentioned this pull request May 20, 2023
Closed
@yaron2
Copy link
Member

yaron2 commented May 25, 2023

@daixiang0 can you please review this?

daixiang0
daixiang0 reviewed May 25, 2023
View reviewed changes
client/bufpool.go Outdated Show resolved Hide resolved
@ItalyPaleAle
💄
8f837d0 
Signed-off-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com>
@ItalyPaleAle
Merge branch 'main' of https://github.com/dapr/go-sdk into crypto-encv1
54d4130
@yaron2 yaron2 merged commit 92c23df into dapr:main May 26, 2023
7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@daixiang0 daixiang0 daixiang0 left review comments

@yaron2 yaron2 yaron2 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@ItalyPaleAle @yaron2 @daixiang0