Skip to content

Improve email encryption error checking #759

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
pkarman merged 2 commits into from
Nov 22, 2016
Merged

Improve email encryption error checking #759

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
53653a2
Refactor cipher error checking
Nov 22, 2016
72e80fb
Rename users.email instead of dropping
Nov 22, 2016
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions app/services/pii/cipher.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,13 @@ def decipher(payload)
cipher.iv = iv(unpacked_payload)
cipher.auth_tag = tag(unpacked_payload)
cipher.auth_data = 'PII'
try_decipher(unpacked_payload)
end

def try_decipher(unpacked_payload)
cipher.update(ciphertext(unpacked_payload)) + cipher.final
rescue OpenSSL::Cipher::CipherError => err
raise EncryptionError, 'failed to decipher payload: ' + err.to_s
end

def unpack_payload(payload)
Expand Down
2 changes: 1 addition & 1 deletion app/services/pii/encryptor.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ def decrypt_and_test_payload(payload, cek)
begin
payload = cipher.decrypt(payload, cek)
rescue OpenSSL::Cipher::CipherError => err
raise EncryptionError, err
raise EncryptionError, err.inspect
end
raise EncryptionError, 'payload is invalid' unless sane_payload?(payload)
plaintext, fingerprint = split_into_segments(payload)
Expand Down
1 change: 1 addition & 0 deletions app/services/user_access_key.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,7 @@ def encryption_key
end

def unlock(random_key)
raise Pii::EncryptionError, 'Cannot unlock with nil random_key' unless random_key.present?
self.unlocked = true
self.random_r = random_key
hash_e
Expand Down
10 changes: 6 additions & 4 deletions db/migrate/20161118150205_add_user_email_fingerprint.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,12 +8,13 @@ def up
encrypt_user_emails
change_column_null :users, :email_fingerprint, false
change_column_null :users, :encrypted_email, false
remove_column :users, :email
remove_index :users, :email
rename_column :users, :email, :email_plain
change_column_null :users, :email_plain, true
end

def down
add_column :users, :email, :string
add_index :users, :email, unique: true
rename_column :users, :email_plain, :email
decrypt_user_emails
change_column_null :users, :email, false
remove_column :users, :email_fingerprint
Expand All @@ -31,7 +32,8 @@ def encrypt_user_emails
def decrypt_user_emails
User.where(email: nil).each do |user|
ee = EncryptedEmail.new(user.encrypted_email)
user.update!(email: ee.decrypted)
escaped = ActiveRecord::Base.connection.quote(ee.decrypted)
execute "UPDATE users set email=#{escaped} WHERE id=#{user.id}"
end
end
end
1 change: 1 addition & 0 deletions db/schema.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -82,6 +82,7 @@
add_index "profiles", ["user_id"], name: "index_profiles_on_user_id", using: :btree

create_table "users", force: :cascade do |t|
t.string "email_plain", limit: 255, default: ""
t.string "encrypted_password", limit: 255, default: ""
t.string "reset_password_token", limit: 255
t.datetime "reset_password_sent_at"
Expand Down