Fix default key length on cipher #25192
Conversation
vipulnsward
force-pushed
the
25185-default-key-length
branch
2 times, most recently
from
94b9583
to
9fceeb6
Compare
vipulnsward
changed the title
|
r? @jeremy |
| @@ -19,7 +19,7 @@ def setup | |||
| test "Generating a key of the default length" do | |||
| derived_key = @generator.generate_key("some_salt") | |||
| assert_kind_of String, derived_key | |||
| assert_equal OpenSSL::Digest::SHA1.new.block_length, derived_key.length, "Should have generated a key of the default size" | |||
| assert_equal OpenSSL::Cipher::Cipher.new('aes-256-cbc').key_len, derived_key.length, "Should have generated a key of the default size" | |||
There was a problem hiding this comment.
This should be OpenSSL::Cipher.new(...). OpenSSL::Cipher::Cipher has been deprecated since Ruby 1.9.
vipulnsward
force-pushed
the
25185-default-key-length
branch
from
9fceeb6
to
a314026
Compare
|
Adding this to 5.0 since, 5.0 Apps can't start on ruby 2.4 without this. |
| @@ -15,7 +15,7 @@ def load(value) | |||
| end | |||
|
|
|||
| def setup | |||
| @secret = SecureRandom.hex(64) | |||
| @secret = SecureRandom.hex(16) | |||
There was a problem hiding this comment.
I think SecureRandom.random_bytes(32) is more readable :)
|
Moving off the 5.0.0 milestone since we don't need to block the release for something that only affects unreleased versions of Ruby. |
|
@vipulnsward can you update with @yui-knk's suggestion and then I'll merge. |
vipulnsward
force-pushed
the
25185-default-key-length
branch
from
a314026
to
f677288
Compare
|
r? @tenderlove Updated |
| @@ -51,7 +51,7 @@ def test_signed_round_tripping | |||
| def test_alternative_serialization_method | |||
| prev = ActiveSupport.use_standard_json_time_format | |||
| ActiveSupport.use_standard_json_time_format = true | |||
| encryptor = ActiveSupport::MessageEncryptor.new(SecureRandom.hex(64), SecureRandom.hex(64), :serializer => JSONSerializer.new) | |||
| encryptor = ActiveSupport::MessageEncryptor.new(SecureRandom.hex(16), SecureRandom.hex(64), :serializer => JSONSerializer.new) | |||
There was a problem hiding this comment.
Change this one to random_bytes too please.
vipulnsward
force-pushed
the
25185-default-key-length
branch
from
f677288
to
a4cc6c7
Compare
|
Updated all occurrences. |
…t can accept key lengths of 128, 192 or 256-bit, whereas currently we were providing twice the acceptable value. ruby < 2.4 allowed accepting these values, as extra key bits were ignored. Since ruby/ruby@ce63526 this now has a strict checking on key length. Default to key length 32 bytes, to match the compatible length for aes-256-cbc Fixes rails#25185
vipulnsward
force-pushed
the
25185-default-key-length
branch
from
a4cc6c7
to
8ee269c
Compare
|
Any option for support 2.4 ruby by edge rails? |
Is this being worked on? I re-opened the attached issue since the change was reverted. |
Backport #25192 to 4-2-stable
Revert "Backport #25192 to 4-2-stable"
|
I'm getting this error with Ruby 2.4.0p0 and Rails 4.2.7.1. Are there plans to support Ruby 2.4 with Rails 4.2? |
We default to using aes-256-cbc as our verification/signing cipher. It can accept key lengths of 128, 192 or 256-bit, whereas currently we were providing twice the acceptable value. ruby < 2.4 allowed accepting these values, as extra key bits were ignored. Since ruby/ruby@ce63526 this now has a strict checking on key length. Default to key length 32 bytes, to match the compatible length for aes-256-cbc Backport to Rails 4.2.8 of fix for rails#25185 Credit to @vipulnsward See: rails#25192
We default to using aes-256-cbc as our verification/signing cipher. It can accept key lengths of 128, 192 or 256-bit, whereas currently we were providing twice the acceptable value. ruby < 2.4 allowed accepting these values, as extra key bits were ignored. Since ruby/ruby@ce63526 this now has a strict checking on key length. Default to key length 32 bytes, to match the compatible length for aes-256-cbc Backport to Rails 4.2.8 of fix for rails#25185 Credit to @vipulnsward, @matthewd See: rails#25192 See: rails#25602
|
On my personal projet I use a key size of 128 chars. This change break my code. I'm using rails 4.2.8 and ruby 2.4.0. def encryptor(id)
ActiveSupport::MessageEncryptor.new(key(id)) # key(id).length = 128
end
def key(id)
ActiveSupport::KeyGenerator.new(
Digest::SHA512.base64digest(
id.to_s + (0...64).map { ('a'..'z').to_a[rand(26)] }.join
)
).generate_key((0...64).map { ('a'..'z').to_a[rand(26)] }.join, 128)
endI get Does it means I can't use 128 key size? |
|
@benoittgt this PR changed the default value of an argument you're explicitly supplying; it is not involved in the change you're seeing. The change you care about is ruby/ruby@ce63526, which is not in Rails. |
|
Thanks @matthewd. Sorry for the noise. |
|
still no idea how the steps to fix this ? help pelase |
|
This needs some more work IMO. As a workaround for people updating their code, provide a sliced secret for en/decryption but the full length for signing/verifying. ActiveSupport::MessageEncryptor.new(mykey[0, 32], mykey) |
|
Forgot to mention people @vipulnsward, @matthewd, @vanbumi |
This reverts commit b77a3e3. Because Ruby 2.4.0+ does not allow keys longer than `32` bytes, as per rails/rails#25192
This reverts commit b77a3e3. Because Ruby 2.4.0+ does not allow keys longer than `32` bytes, as per rails/rails#25192 On staging and production we are currently using longer than 32 strings, and we can't just shorten them (grab the first 32 chars) since we have tokens stored in the DB encrypted with those longer strings.
This reverts commit b77a3e3. Because Ruby 2.4.0+ does not allow keys longer than `32` bytes, as per rails/rails#25192 On staging and production we are currently using longer than 32 strings, and we can't just shorten them (grab the first 32 chars) since we have tokens stored in the DB encrypted with those longer strings.
We default to using aes-256-cbc as our verification/signing cipher. It can accept key lengths of 128, 192 or 256-bit, whereas currently we were providing twice the acceptable value.
ruby < 2.4 allowed accepting these values, as extra key bits were ignored. Since ruby/ruby@ce63526 this now has a strict checking on key length.
Default to key length 32 bytes, to match the compatible length for aes-256-cbc
Fixes #25185