Skip to content

Fix broken storage key encryption; S3 adapter fixes #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Jun 9, 2019
Merged

Fix broken storage key encryption; S3 adapter fixes #5

merged 6 commits into from
Jun 9, 2019

Conversation

@boite
Copy link
Collaborator

@boite boite commented Jun 6, 2019

  • 0c8f61f Changes

      `setData(encrypt(key), encrypt(object))`

    to

      `setData(hash(key), encrypt(concat(key, object)))`

    so that we can actually retrive our objects ;) and to provide assurance that:-

    • keys aren't leaked
    • keys and objects are assured to be authentic
    • objects cannot have their keys maliciously "swapped"

  • d9cec37 fixes the S3 adapter so that it works with a modern aws-sdk-php

  • 4e51144 changes the default S3 "canned ACL" to private from readable by the public; this can now be configured per instance of the S3 adapter

boite added 6 commits June 4, 2019 12:27
@boite
Fix broken implementation of storage key encryption
0c8f61f 
The storage key is now the hashed (and authenticated) original storage
key so that lookups succeed.  The storage key was encrypted
npn-deterministicaly in the previous implementation which made lookups
fail.

Storage keys are guaranteed not to have been tampered with (say, an
attacker replaces a stored value with another, authentic value, but that
is not related to the original storage key).
@boite
Cosmetic improvement to S3Adapter
f959800
@boite
Fix S3 creds. config and add region and version
d9cec37
@boite
Change S3 default Canned ACL and expose config
4e51144 
The default was "public-read" :o

Now it is "private" and can be configured at build time by supplying a
config with key "canned_acl_for_objects".
@boite
Add phpstan and enable autoloading for tests
b6e12eb
@boite
Pretty output for genkey command
ed81287
@boite boite requested a review from joostfaassen June 6, 2019 09:38
joostfaassen
joostfaassen approved these changes Jun 8, 2019
View reviewed changes
Copy link
Member

@joostfaassen joostfaassen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jah thanks! Happy to retrieve objects again :) Should I tag this as v4.0.0 ?

composer.json
"symfony/console": "^4",
"aws/aws-sdk-php": "^3",
"friendsofphp/php-cs-fixer": "^2.15",
"phpstan/phpstan": "^0.11.8",
Copy link
Member

@joostfaassen joostfaassen Jun 8, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1

@boite
Copy link
Collaborator Author

boite commented Jun 8, 2019

@jah thanks! Happy to retrieve objects again :) Should I tag this as v4.0.0 ?

Heh heh. Yes please v4.0.0 is a good idea.

@joostfaassen joostfaassen merged commit 6004442 into master Jun 9, 2019
@delete-merged-branch delete-merged-branch bot deleted the develop branch June 9, 2019 18:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@joostfaassen joostfaassen joostfaassen approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@boite @joostfaassen