dennii/Termix
1
0
Fork 0
Code Issues Pull Requests 2 Actions Packages Projects Releases 22 Wiki Activity
Files
5ccb52071d7d2503fea69ea0db3530030910cbce
Termix/src/backend/utils/encryption-key-manager.ts
ZacharyZcR 5ccb52071d Eliminate JWT security vulnerability with unified encryption architecture 
SECURITY FIX: Replace dangerous JWT_SECRET environment variable with
encrypted database storage using hardware-bound KEK protection.

Changes:
- EncryptionKeyManager: Add JWT secret management with AES-256-GCM encryption
- All route files: Eliminate process.env.JWT_SECRET dependencies
- Database server: Initialize JWT secret during startup with proper error handling
- Testing: Add comprehensive JWT secret management test coverage
- API: Add /encryption/regenerate-jwt endpoint for key rotation

Technical implementation:
- JWT secrets now use same protection as SSH keys (hardware fingerprint binding)
- 512-bit JWT secrets generated via crypto.randomBytes(64)
- KEK-protected storage prevents cross-device secret migration
- No backward compatibility for insecure environment variable approach

This eliminates the critical security flaw where JWT tokens could be
forged using the default "secret" value, achieving uniform security
architecture with no special cases.

Co-Authored-By: Claude <noreply@anthropic.com>
2025-09-21 03:00:59 +08:00

520 lines
14 KiB
TypeScript
Raw Blame History

import crypto from "crypto";
import { db } from "../database/db/index.js";
import { settings } from "../database/db/schema.js";
import { eq } from "drizzle-orm";
import { databaseLogger } from "./logger.js";
import { MasterKeyProtection } from "./master-key-protection.js";
interface EncryptionKeyInfo {
hasKey: boolean;
keyId?: string;
createdAt?: string;
algorithm: string;
}
class EncryptionKeyManager {
private static instance: EncryptionKeyManager;
private currentKey: string | null = null;
private keyInfo: EncryptionKeyInfo | null = null;
private jwtSecret: string | null = null;
private constructor() {}
static getInstance(): EncryptionKeyManager {
if (!this.instance) {
this.instance = new EncryptionKeyManager();
}
return this.instance;
}
private encodeKey(key: string): string {
return MasterKeyProtection.encryptMasterKey(key);
}
private decodeKey(encodedKey: string): string {
if (MasterKeyProtection.isProtectedKey(encodedKey)) {
return MasterKeyProtection.decryptMasterKey(encodedKey);
}
databaseLogger.warn(
"Found legacy base64-encoded key, migrating to KEK protection",
{
operation: "key_migration_legacy",
},
);
const buffer = Buffer.from(encodedKey, "base64");
return buffer.toString("hex");
}
async initializeKey(): Promise<string> {
try {
let existingKey = await this.getStoredKey();
if (existingKey) {
databaseLogger.success("Found existing encryption key", {
operation: "key_init",
hasKey: true,
});
this.currentKey = existingKey;
return existingKey;
}
const environmentKey = process.env.DB_ENCRYPTION_KEY;
if (environmentKey && environmentKey !== "default-key-change-me") {
if (!this.validateKeyStrength(environmentKey)) {
databaseLogger.error(
"Environment encryption key is too weak",
undefined,
{
operation: "key_init",
source: "environment",
keyLength: environmentKey.length,
},
);
throw new Error(
"DB_ENCRYPTION_KEY is too weak. Must be at least 32 characters with good entropy.",
);
}
databaseLogger.info("Using encryption key from environment variable", {
operation: "key_init",
source: "environment",
});
await this.storeKey(environmentKey);
this.currentKey = environmentKey;
return environmentKey;
}
const newKey = await this.generateNewKey();
databaseLogger.warn(
"Generated new encryption key - PLEASE BACKUP THIS KEY",
{
operation: "key_init",
generated: true,
keyPreview: newKey.substring(0, 8) + "...",
},
);
return newKey;
} catch (error) {
databaseLogger.error("Failed to initialize encryption key", error, {
operation: "key_init_failed",
});
throw error;
}
}
async generateNewKey(): Promise<string> {
const newKey = crypto.randomBytes(32).toString("hex");
const keyId = crypto.randomBytes(8).toString("hex");
await this.storeKey(newKey, keyId);
this.currentKey = newKey;
databaseLogger.success("Generated new encryption key", {
operation: "key_generated",
keyId,
keyLength: newKey.length,
});
return newKey;
}
private async storeKey(key: string, keyId?: string): Promise<void> {
const now = new Date().toISOString();
const id = keyId || crypto.randomBytes(8).toString("hex");
const keyData = {
key: this.encodeKey(key),
keyId: id,
createdAt: now,
algorithm: "aes-256-gcm",
};
const encodedData = JSON.stringify(keyData);
try {
const existing = await db
.select()
.from(settings)
.where(eq(settings.key, "db_encryption_key"));
if (existing.length > 0) {
await db
.update(settings)
.set({ value: encodedData })
.where(eq(settings.key, "db_encryption_key"));
} else {
await db.insert(settings).values({
key: "db_encryption_key",
value: encodedData,
});
}
const existingCreated = await db
.select()
.from(settings)
.where(eq(settings.key, "encryption_key_created"));
if (existingCreated.length > 0) {
await db
.update(settings)
.set({ value: now })
.where(eq(settings.key, "encryption_key_created"));
} else {
await db.insert(settings).values({
key: "encryption_key_created",
value: now,
});
}
this.keyInfo = {
hasKey: true,
keyId: id,
createdAt: now,
algorithm: "aes-256-gcm",
};
} catch (error) {
databaseLogger.error("Failed to store encryption key", error, {
operation: "key_store_failed",
});
throw error;
}
}
private async getStoredKey(): Promise<string | null> {
try {
const result = await db
.select()
.from(settings)
.where(eq(settings.key, "db_encryption_key"));
if (result.length === 0) {
return null;
}
const encodedData = result[0].value;
let keyData;
try {
keyData = JSON.parse(encodedData);
} catch {
databaseLogger.warn("Found legacy base64-encoded key data, migrating", {
operation: "key_data_migration_legacy",
});
keyData = JSON.parse(Buffer.from(encodedData, "base64").toString());
}
this.keyInfo = {
hasKey: true,
keyId: keyData.keyId,
createdAt: keyData.createdAt,
algorithm: keyData.algorithm,
};
const decodedKey = this.decodeKey(keyData.key);
if (!MasterKeyProtection.isProtectedKey(keyData.key)) {
databaseLogger.info("Auto-migrating legacy key to KEK protection", {
operation: "key_auto_migration",
keyId: keyData.keyId,
});
await this.storeKey(decodedKey, keyData.keyId);
}
return decodedKey;
} catch (error) {
databaseLogger.error("Failed to retrieve stored encryption key", error, {
operation: "key_retrieve_failed",
});
return null;
}
}
getCurrentKey(): string | null {
return this.currentKey;
}
async getKeyInfo(): Promise<EncryptionKeyInfo> {
if (!this.keyInfo) {
const hasKey = (await this.getStoredKey()) !== null;
return {
hasKey,
algorithm: "aes-256-gcm",
};
}
return this.keyInfo;
}
async regenerateKey(): Promise<string> {
databaseLogger.info("Regenerating encryption key", {
operation: "key_regenerate",
});
const oldKeyInfo = await this.getKeyInfo();
const newKey = await this.generateNewKey();
databaseLogger.warn(
"Encryption key regenerated - ALL DATA MUST BE RE-ENCRYPTED",
{
operation: "key_regenerated",
oldKeyId: oldKeyInfo.keyId,
newKeyId: this.keyInfo?.keyId,
},
);
return newKey;
}
private validateKeyStrength(key: string): boolean {
if (key.length < 32) return false;
const hasLower = /[a-z]/.test(key);
const hasUpper = /[A-Z]/.test(key);
const hasDigit = /\d/.test(key);
const hasSpecial = /[!@#$%^&*()_+\-=\[\]{};':"\\|,.<>\/?]/.test(key);
const entropyTest = new Set(key).size / key.length;
const complexity =
Number(hasLower) +
Number(hasUpper) +
Number(hasDigit) +
Number(hasSpecial);
return complexity >= 3 && entropyTest > 0.4;
}
async validateKey(key?: string): Promise<boolean> {
const testKey = key || this.currentKey;
if (!testKey) return false;
try {
const testData = "validation-test-" + Date.now();
const testBuffer = Buffer.from(testKey, "hex");
if (testBuffer.length !== 32) {
return false;
}
const iv = crypto.randomBytes(16);
const cipher = crypto.createCipheriv(
"aes-256-gcm",
testBuffer,
iv,
) as any;
cipher.update(testData, "utf8");
cipher.final();
cipher.getAuthTag();
return true;
} catch {
return false;
}
}
isInitialized(): boolean {
return this.currentKey !== null;
}
async getEncryptionStatus() {
const keyInfo = await this.getKeyInfo();
const isValid = await this.validateKey();
const kekProtected = await this.isKEKProtected();
return {
hasKey: keyInfo.hasKey,
keyValid: isValid,
keyId: keyInfo.keyId,
createdAt: keyInfo.createdAt,
algorithm: keyInfo.algorithm,
initialized: this.isInitialized(),
kekProtected,
kekValid: kekProtected ? MasterKeyProtection.validateProtection() : false,
};
}
private async isKEKProtected(): Promise<boolean> {
try {
const result = await db
.select()
.from(settings)
.where(eq(settings.key, "db_encryption_key"));
if (result.length === 0) return false;
const keyData = JSON.parse(result[0].value);
return MasterKeyProtection.isProtectedKey(keyData.key);
} catch {
return false;
}
}
async getJWTSecret(): Promise<string> {
if (this.jwtSecret) {
return this.jwtSecret;
}
try {
let existingSecret = await this.getStoredJWTSecret();
if (existingSecret) {
databaseLogger.success("Found existing JWT secret", {
operation: "jwt_secret_init",
hasSecret: true,
});
this.jwtSecret = existingSecret;
return existingSecret;
}
const newSecret = await this.generateJWTSecret();
databaseLogger.success("Generated new JWT secret", {
operation: "jwt_secret_generated",
secretLength: newSecret.length,
});
return newSecret;
} catch (error) {
databaseLogger.error("Failed to initialize JWT secret", error, {
operation: "jwt_secret_init_failed",
});
throw new Error("JWT secret initialization failed - cannot start server");
}
}
private async generateJWTSecret(): Promise<string> {
const newSecret = crypto.randomBytes(64).toString("hex");
const secretId = crypto.randomBytes(8).toString("hex");
await this.storeJWTSecret(newSecret, secretId);
this.jwtSecret = newSecret;
databaseLogger.success("Generated secure JWT secret", {
operation: "jwt_secret_generated",
secretId,
secretLength: newSecret.length,
});
return newSecret;
}
private async storeJWTSecret(secret: string, secretId?: string): Promise<void> {
const now = new Date().toISOString();
const id = secretId || crypto.randomBytes(8).toString("hex");
const secretData = {
secret: this.encodeKey(secret),
secretId: id,
createdAt: now,
algorithm: "aes-256-gcm",
};
const encodedData = JSON.stringify(secretData);
try {
const existing = await db
.select()
.from(settings)
.where(eq(settings.key, "jwt_secret"));
if (existing.length > 0) {
await db
.update(settings)
.set({ value: encodedData })
.where(eq(settings.key, "jwt_secret"));
} else {
await db.insert(settings).values({
key: "jwt_secret",
value: encodedData,
});
}
const existingCreated = await db
.select()
.from(settings)
.where(eq(settings.key, "jwt_secret_created"));
if (existingCreated.length > 0) {
await db
.update(settings)
.set({ value: now })
.where(eq(settings.key, "jwt_secret_created"));
} else {
await db.insert(settings).values({
key: "jwt_secret_created",
value: now,
});
}
databaseLogger.success("JWT secret stored securely", {
operation: "jwt_secret_stored",
secretId: id,
});
} catch (error) {
databaseLogger.error("Failed to store JWT secret", error, {
operation: "jwt_secret_store_failed",
});
throw error;
}
}
private async getStoredJWTSecret(): Promise<string | null> {
try {
const result = await db
.select()
.from(settings)
.where(eq(settings.key, "jwt_secret"));
if (result.length === 0) {
return null;
}
const encodedData = result[0].value;
let secretData;
try {
secretData = JSON.parse(encodedData);
} catch {
databaseLogger.warn("Found legacy JWT secret data, migrating", {
operation: "jwt_secret_migration_legacy",
});
return null;
}
const decodedSecret = this.decodeKey(secretData.secret);
if (!MasterKeyProtection.isProtectedKey(secretData.secret)) {
databaseLogger.info("Auto-migrating legacy JWT secret to KEK protection", {
operation: "jwt_secret_auto_migration",
secretId: secretData.secretId,
});
await this.storeJWTSecret(decodedSecret, secretData.secretId);
}
return decodedSecret;
} catch (error) {
databaseLogger.error("Failed to retrieve stored JWT secret", error, {
operation: "jwt_secret_retrieve_failed",
});
return null;
}
}
async regenerateJWTSecret(): Promise<string> {
databaseLogger.warn("Regenerating JWT secret - ALL ACTIVE TOKENS WILL BE INVALIDATED", {
operation: "jwt_secret_regenerate",
});
const newSecret = await this.generateJWTSecret();
databaseLogger.success("JWT secret regenerated successfully", {
operation: "jwt_secret_regenerated",
warning: "All existing JWT tokens are now invalid",
});
return newSecret;
}
}
export { EncryptionKeyManager };
export type { EncryptionKeyInfo };
Reference in New Issue View Git Blame Copy Permalink