rhodecode-enterprise-ce Commit - r4946:6cad5217

1

# -*- coding: utf-8 -*-

1

# -*- coding: utf-8 -*-

2

3

4

#

4

#

5

# This program is free software: you can redistribute it and/or modify

5

# This program is free software: you can redistribute it and/or modify

6

# it under the terms of the GNU Affero General Public License, version 3

6

# it under the terms of the GNU Affero General Public License, version 3

7

# (only), as published by the Free Software Foundation.

7

# (only), as published by the Free Software Foundation.

8

#

8

#

9

# This program is distributed in the hope that it will be useful,

9

# This program is distributed in the hope that it will be useful,

10

# but WITHOUT ANY WARRANTY; without even the implied warranty of

10

# but WITHOUT ANY WARRANTY; without even the implied warranty of

11

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

11

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

12

# GNU General Public License for more details.

12

# GNU General Public License for more details.

13

#

13

#

14

# You should have received a copy of the GNU Affero General Public License

14

# You should have received a copy of the GNU Affero General Public License

15

# along with this program. If not, see <http://www.gnu.org/licenses/>.

15

# along with this program. If not, see <http://www.gnu.org/licenses/>.

16

#

16

#

17

# This program is dual-licensed. If you wish to learn more about the

17

# This program is dual-licensed. If you wish to learn more about the

18

# RhodeCode Enterprise Edition, including its added features, Support services,

18

# RhodeCode Enterprise Edition, including its added features, Support services,

19

# and proprietary license terms, please see https://rhodecode.com/licenses/

19

# and proprietary license terms, please see https://rhodecode.com/licenses/

20

21

22

"""

22

"""

23

Generic encryption library for RhodeCode

23

Generic encryption library for RhodeCode

24

"""

24

"""

25

26

import base64

26

import base64

27

28

from Crypto.Cipher import AES

28

from Crypto.Cipher import AES

29

from Crypto import Random

29

from Crypto import Random

30

from Crypto.Hash import HMAC, SHA256

30

from Crypto.Hash import HMAC, SHA256

31

32

from rhodecode.lib.utils2 import safe_~~str~~

32

from rhodecode.lib.str_utils import safe_bytes

33

34

35

class SignatureVerificationError(Exception):

35

class SignatureVerificationError(Exception):

36

pass

36

pass

37

38

39

class InvalidDecryptedValue(str):

39

class InvalidDecryptedValue(str):

40

41

def __new__(cls, content):

41

def __new__(cls, content):

42

"""

42

"""

43

This will generate something like this::

43

This will generate something like this::

44

<InvalidDecryptedValue(QkWusFgLJXR6m42v...)>

44

<InvalidDecryptedValue(QkWusFgLJXR6m42v...)>

45

And represent a safe indicator that encryption key is broken

45

And represent a safe indicator that encryption key is broken

46

"""

46

"""

47

content = '<{}({}...)>'.format(cls.__name__, content[:16])

47

content = '<{}({}...)>'.format(cls.__name__, content[:16])

48

return str.__new__(cls, content)

48

return str.__new__(cls, content)

49

50

51

class AESCipher(object):

51

class AESCipher(object):

52

def __init__(self, key, hmac=False, strict_verification=True):

52

def __init__(self, key, hmac=False, strict_verification=True):

53

if not key:

53

if not key:

54

raise ValueError('passed key variable is empty')

54

raise ValueError('passed key variable is empty')

55

self.strict_verification = strict_verification

55

self.strict_verification = strict_verification

56

self.block_size = 32

56

self.block_size = 32

57

self.hmac_size = 32

57

self.hmac_size = 32

58

self.hmac = hmac

58

self.hmac = hmac

59

60

self.key = SHA256.new(safe_~~str~~(key)).digest()

60

self.key = SHA256.new(safe_bytes(key)).digest()

61

self.hmac_key = SHA256.new(self.key).digest()

61

self.hmac_key = SHA256.new(self.key).digest()

62

63

def verify_hmac_signature(self, raw_data):

63

def verify_hmac_signature(self, raw_data):

64

org_hmac_signature = raw_data[-self.hmac_size:]

64

org_hmac_signature = raw_data[-self.hmac_size:]

65

data_without_sig = raw_data[:-self.hmac_size]

65

data_without_sig = raw_data[:-self.hmac_size]

66

recomputed_hmac = HMAC.new(

66

recomputed_hmac = HMAC.new(

67

self.hmac_key, data_without_sig, digestmod=SHA256).digest()

67

self.hmac_key, data_without_sig, digestmod=SHA256).digest()

68

return org_hmac_signature == recomputed_hmac

68

return org_hmac_signature == recomputed_hmac

69

70

def encrypt(self, raw):

70

def encrypt(self, raw):

71

raw = self._pad(raw)

71

raw = self._pad(raw)

72

iv = Random.new().read(AES.block_size)

72

iv = Random.new().read(AES.block_size)

73

cipher = AES.new(self.key, AES.MODE_CBC, iv)

73

cipher = AES.new(self.key, AES.MODE_CBC, iv)

74

enc_value = cipher.encrypt(raw)

74

enc_value = cipher.encrypt(raw)

75

76

hmac_signature = ''

76

hmac_signature = ''

77

if self.hmac:

77

if self.hmac:

78

# compute hmac+sha256 on iv + enc text, we use

78

# compute hmac+sha256 on iv + enc text, we use

79

# encrypt then mac method to create the signature

79

# encrypt then mac method to create the signature

80

hmac_signature = HMAC.new(

80

hmac_signature = HMAC.new(

81

self.hmac_key, iv + enc_value, digestmod=SHA256).digest()

81

self.hmac_key, iv + enc_value, digestmod=SHA256).digest()

82

83

return base64.b64encode(iv + enc_value + hmac_signature)

83

return base64.b64encode(iv + enc_value + hmac_signature)

84

85

def decrypt(self, enc):

85

def decrypt(self, enc):

86

enc_org = enc

86

enc_org = enc

87

enc = base64.b64decode(enc)

87

enc = base64.b64decode(enc)

88

89

if self.hmac and len(enc) > self.hmac_size:

89

if self.hmac and len(enc) > self.hmac_size:

90

if self.verify_hmac_signature(enc):

90

if self.verify_hmac_signature(enc):

91

# cut off the HMAC verification digest

91

# cut off the HMAC verification digest

92

enc = enc[:-self.hmac_size]

92

enc = enc[:-self.hmac_size]

93

else:

93

else:

94

if self.strict_verification:

94

if self.strict_verification:

95

raise SignatureVerificationError(

95

raise SignatureVerificationError(

96

"Encryption signature verification failed. "

96

"Encryption signature verification failed. "

97

"Please check your secret key, and/or encrypted value. "

97

"Please check your secret key, and/or encrypted value. "

98

"Secret key is stored as "

98

"Secret key is stored as "

99

"`rhodecode.encrypted_values.secret` or "

99

"`rhodecode.encrypted_values.secret` or "

100

"`beaker.session.secret` inside .ini file")

100

"`beaker.session.secret` inside .ini file")

101

102

return InvalidDecryptedValue(enc_org)

102

return InvalidDecryptedValue(enc_org)

103

104

iv = enc[:AES.block_size]

104

iv = enc[:AES.block_size]

105

cipher = AES.new(self.key, AES.MODE_CBC, iv)

105

cipher = AES.new(self.key, AES.MODE_CBC, iv)

106

return self._unpad(cipher.decrypt(enc[AES.block_size:]))

106

return self._unpad(cipher.decrypt(enc[AES.block_size:]))

107

108

def _pad(self, s):

108

def _pad(self, s):

109

return (s + (self.block_size - len(s) % self.block_size)

109

return (s + (self.block_size - len(s) % self.block_size)

110

* chr(self.block_size - len(s) % self.block_size))

110

* chr(self.block_size - len(s) % self.block_size))

111

112

@staticmethod

112

@staticmethod

113

def _unpad(s):

113

def _unpad(s):

114

return s[:-ord(s[len(s)-1:])]

114

return s[:-ord(s[len(s)-1:])]

115

116

117

def validate_and_get_enc_data(enc_data, enc_key, enc_strict_mode):

117

def validate_and_get_enc_data(enc_data, enc_key, enc_strict_mode):

118

parts = enc_data.split('$', 3)

118

parts = enc_data.split('$', 3)

119

if not len(parts) == 3:

119

if not len(parts) == 3:

120

# probably not encrypted values

120

# probably not encrypted values

121

return enc_data

121

return enc_data

122

else:

122

else:

123

if parts[0] != 'enc':

123

if parts[0] != 'enc':

124

# parts ok but without our header ?

124

# parts ok but without our header ?

125

return enc_data

125

return enc_data

126

127

# at that stage we know it's our encryption

127

# at that stage we know it's our encryption

128

if parts[1] == 'aes':

128

if parts[1] == 'aes':

129

decrypted_data = AESCipher(enc_key).decrypt(parts[2])

129

decrypted_data = AESCipher(enc_key).decrypt(parts[2])

130

elif parts[1] == 'aes_hmac':

130

elif parts[1] == 'aes_hmac':

131

decrypted_data = AESCipher(

131

decrypted_data = AESCipher(

132

enc_key, hmac=True,

132

enc_key, hmac=True,

133

strict_verification=enc_strict_mode).decrypt(parts[2])

133

strict_verification=enc_strict_mode).decrypt(parts[2])

134

else:

134

else:

135

raise ValueError(

135

raise ValueError(

136

'Encryption type part is wrong, must be `aes` '

136

'Encryption type part is wrong, must be `aes` '

137

'or `aes_hmac`, got `%s` instead' % (parts[1]))

137

'or `aes_hmac`, got `%s` instead' % (parts[1]))

138

return decrypted_data

138

return decrypted_data

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

             # -*- coding: utf-8 -*-
             # Copyright (C) 2014-2020 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             Generic encryption library for RhodeCode
             """
             import base64
             from Crypto.Cipher import AES
             from Crypto import Random
             from Crypto.Hash import HMAC, SHA256
-            from rhodecode.lib.utils2 import safe_str
+            from rhodecode.lib.str_utils import safe_bytes
             class SignatureVerificationError(Exception):
                 pass
             class InvalidDecryptedValue(str):
                 def __new__(cls, content):
                     """
                     This will generate something like this::
                         <InvalidDecryptedValue(QkWusFgLJXR6m42v...)>
                     And represent a safe indicator that encryption key is broken
                     """
                     content = '<{}({}...)>'.format(cls.__name__, content[:16])
                     return str.__new__(cls, content)
             class AESCipher(object):
                 def __init__(self, key, hmac=False, strict_verification=True):
                     if not key:
                         raise ValueError('passed key variable is empty')
                     self.strict_verification = strict_verification
                     self.block_size = 32
                     self.hmac_size = 32
                     self.hmac = hmac
-                    self.key = SHA256.new(safe_str(key)).digest()
+                    self.key = SHA256.new(safe_bytes(key)).digest()
                     self.hmac_key = SHA256.new(self.key).digest()
                 def verify_hmac_signature(self, raw_data):
                     org_hmac_signature = raw_data[-self.hmac_size:]
                     data_without_sig = raw_data[:-self.hmac_size]
                     recomputed_hmac = HMAC.new(
                         self.hmac_key, data_without_sig, digestmod=SHA256).digest()
                     return org_hmac_signature == recomputed_hmac
                 def encrypt(self, raw):
                     raw = self._pad(raw)
                     iv = Random.new().read(AES.block_size)
                     cipher = AES.new(self.key, AES.MODE_CBC, iv)
                     enc_value = cipher.encrypt(raw)
                     hmac_signature = ''
                     if self.hmac:
                         # compute hmac+sha256 on iv + enc text, we use
                         # encrypt then mac method to create the signature
                         hmac_signature = HMAC.new(
                             self.hmac_key, iv + enc_value, digestmod=SHA256).digest()
                     return base64.b64encode(iv + enc_value + hmac_signature)
                 def decrypt(self, enc):
                     enc_org = enc
                     enc = base64.b64decode(enc)
                     if self.hmac and len(enc) > self.hmac_size:
                         if self.verify_hmac_signature(enc):
                             # cut off the HMAC verification digest
                             enc = enc[:-self.hmac_size]
                         else:
                             if self.strict_verification:
                                 raise SignatureVerificationError(
                                     "Encryption signature verification failed. "
                                     "Please check your secret key, and/or encrypted value. "
                                     "Secret key is stored as "
                                     "`rhodecode.encrypted_values.secret` or "
                                     "`beaker.session.secret` inside .ini file")
                             return InvalidDecryptedValue(enc_org)
                     iv = enc[:AES.block_size]
                     cipher = AES.new(self.key, AES.MODE_CBC, iv)
                     return self._unpad(cipher.decrypt(enc[AES.block_size:]))
                 def _pad(self, s):
                     return (s + (self.block_size - len(s) % self.block_size)
                             * chr(self.block_size - len(s) % self.block_size))
                 @staticmethod
                 def _unpad(s):
                     return s[:-ord(s[len(s)-1:])]
             def validate_and_get_enc_data(enc_data, enc_key, enc_strict_mode):
                 parts = enc_data.split('$', 3)
                 if not len(parts) == 3:
                     # probably not encrypted values
                     return enc_data
                 else:
                     if parts[0] != 'enc':
                         # parts ok but without our header ?
                         return enc_data
                     # at that stage we know it's our encryption
                     if parts[1] == 'aes':
                         decrypted_data = AESCipher(enc_key).decrypt(parts[2])
                     elif parts[1] == 'aes_hmac':
                         decrypted_data = AESCipher(
                             enc_key, hmac=True,
                             strict_verification=enc_strict_mode).decrypt(parts[2])
                     else:
                         raise ValueError(
                             'Encryption type part is wrong, must be `aes` '
                             'or `aes_hmac`, got `%s` instead' % (parts[1]))
                     return decrypted_data