Source code for invenio_accounts.hash

# -*- coding: utf-8 -*-
# This file is part of Invenio.
# Copyright (C) 2015-2018 CERN.
# Invenio is free software; you can redistribute it and/or modify it
# under the terms of the MIT License; see LICENSE file for more details.

"""Legacy Invenio hash support."""

import hashlib

from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from passlib.utils.compat import str_to_uascii
from passlib.utils.handlers import GenericHandler, HasSalt, parse_mc2, render_mc2

__all__ = ("InvenioAesEncryptedEmail",)

def _to_binary(val):
    """Convert to binary."""
    if isinstance(val, str):
        return val.encode("utf-8")
    assert isinstance(val, bytes)
    return val

def _to_string(val):
    """Convert to text."""
    if isinstance(val, bytes):
        return val.decode("utf-8")
    assert isinstance(val, str)
    return val

def _mysql_aes_key(key):
    """Format key."""
    final_key = bytearray(16)
    for i, c in enumerate(key):
        final_key[i % 16] ^= key[i]
    return bytes(final_key)

def _mysql_aes_pad(val):
    val = _to_string(val)
    pad_value = 16 - (len(val) % 16)
    return _to_binary("{0}{1}".format(val, chr(pad_value) * pad_value))

def _mysql_aes_unpad(val):
    """Reverse padding."""
    val = _to_string(val)
    pad_value = ord(val[-1])
    return val[:-pad_value]

def _mysql_aes_engine(key):
    """Create MYSQL AES cipher engine."""
    return Cipher(algorithms.AES(key), modes.ECB(), default_backend())

def mysql_aes_encrypt(val, key):
    """Mysql AES encrypt value with secret key.

    :param val: Plain text value.
    :param key: The AES key.
    :returns: The encrypted AES value.
    assert isinstance(val, bytes) or isinstance(val, str)
    assert isinstance(key, bytes) or isinstance(key, str)
    k = _mysql_aes_key(_to_binary(key))
    v = _mysql_aes_pad(_to_binary(val))
    e = _mysql_aes_engine(k).encryptor()

    return e.update(v) + e.finalize()

def mysql_aes_decrypt(encrypted_val, key):
    """Mysql AES decrypt value with secret key.

    :param encrypted_val: Encrypted value.
    :param key: The AES key.
    :returns: The AES value decrypted.
    assert isinstance(encrypted_val, bytes) or isinstance(encrypted_val, str)
    assert isinstance(key, bytes) or isinstance(key, str)
    k = _mysql_aes_key(_to_binary(key))
    d = _mysql_aes_engine(_to_binary(k)).decryptor()
    return _mysql_aes_unpad(d.update(_to_binary(encrypted_val)) + d.finalize())

[docs]class InvenioAesEncryptedEmail(HasSalt, GenericHandler): """Invenio AES encryption of user email using password as secret key. Invenio 1.x was AES encrypting the users email address with the password as the secret key and storing it in a blob column. This e.g. caused problems when a user wanted to change email address. This hashing engine, differs from Invenio 1.x in that it sha256 hashes the encrypted value as well to produce a string in the same length instead of a binary blob. It is not done for extra security, just for convenience of migration to using passlib's sha512. An upgrade recipe is provided to migrated existing binary password hashes to hashes of this engine. """ name = "invenio_aes_encrypted_email" setting_kwds = "salt" ident = "$invenio-aes$"
[docs] @classmethod def from_string(cls, hash, **context): """Parse instance from configuration string in Modular Crypt Format.""" salt, checksum = parse_mc2(hash, cls.ident, handler=cls) return cls(salt=salt, checksum=checksum)
[docs] def to_string(self): """Render instance to configuration string in Modular Crypt Format.""" return render_mc2(self.ident, self.salt, self.checksum)
def _calc_checksum(self, secret): """Calculate string. :param secret: The secret key. :returns: The checksum. """ return str_to_uascii( hashlib.sha256(mysql_aes_encrypt(self.salt, secret)).hexdigest() )