[UtilitiesBundle] Cipher deprecations #1673
Conversation
|
@cv65kr When searching a bit on the internet, the library https://github.com/defuse/php-encryption is used in lots of places and even suggested by symfony. Maybe it's a good package to use for this purpose ? |
|
@sandergo90, Yes this lib is great and is better choice than our simple crypto class. Summarizing: Crypto::decryptWithPassword($ciphertext, $password, $raw_binary = false)
Crypto::decrypt($ciphertext, Key $key, $raw_binary = false)
// etc.or we implement all method in our service like factory? WDYT? |
|
@cv65kr I would keep our utility service and implement all methods in our service. That way we can still extend our service when there is the need to and we can still use the secret as parameter voor the new encrypter. |
|
@cv65kr I also think that we shouldn't make the PR on the 4.0 branch. Php 7 will not be supported in 4.0 branch so we can just add the functionality to the master branch ? |
|
@sandergo90, ok i will do rebase if PR will be done. I need some idea because at this moment lib need secret key like this otherwise throws exceptions. The main purpose was to use Also, i created command for handling cipher. |
13d5a07 to
efb37fb
Compare
efb37fb to
c839775
Compare
|
You could still use the secret in a useful way by using it as a salt when storing the asciisafe representation of a Key object in your value itself or in any other place with a different implementation. so you could theoretically do in the constructor private $secret;
private $ultimateSecret;
/**
* @param string $secret
* @throws \Defuse\Crypto\Exception\EnvironmentIsBrokenException
* @throws \Defuse\Crypto\Exception\BadFormatException
*/
public function __construct($secret)
{
Assert::stringNotEmpty($secret, 'You need to configure a Cipher secret in your parameters.yml before you can use this!');
$key = Key::createNewRandomKey();
$this->secret = $secret;
$this->ultimateSecret = base64_encode($key->saveToAsciiSafeString() . $this->secret);
}
/**
* Encrypt the given value to an unreadable string.
*
* @param string $value
* @param bool $raw_binary
* @return string
* @throws \Defuse\Crypto\Exception\EnvironmentIsBrokenException
*/
public function encrypt($value, $raw_binary=false)
{
$value = Crypto::encrypt($value, $this->secret, $raw_binary);
return base64_encode($value . "_key_" . $this->ultimateSecret);
}
/**
* Decrypt the given value so that it's readable again.
*
* @param string $value
* @param bool $raw_binary
* @return string
* @throws \Defuse\Crypto\Exception\WrongKeyOrModifiedCiphertextException
* @throws \Defuse\Crypto\Exception\EnvironmentIsBrokenException
*/
public function decrypt($value, $raw_binary=false)
{
$value = base64_decode($value);
$parts = explode("_key_", $value);
$encryptedValue = $parts[0];
$key = str_replace($this->secret, "", base64_decode($parts[1]));
return Crypto::decrypt($encryptedValue, Key:: loadFromAsciiSafeString($key), $raw_binary);
}Now everytime you encrypt a value you could append that ultimateSecret to the result and base64_encode it again to store it. This could solve both your problems of having no use for the secret parameter and for how to store the key to the encryption. the key would be stored in the result itself. And since you need to know the $secret value to be able to get the original encryption key back, its safe to store it in the value. Disclaimer |
|
On the other hand the Crypto class has a method called encryptWithPassword() which skips the key all together and encrypts a value based on a password. the $secret in our case. That would be a lot simpler but probably also less secure than using a real generated random key for each value. |
|
@Numkil I think this solution have a one simple mistake, if you have a hash, just use twice Maybe using a |
efa2397 to
4921b73
Compare
|
@Numkil, i decide changed to |
|
@cv65kr thank you. this is a very necesary improvement. |
* master: (33 commits) [NodeBundle] vixed error bubbling for URLChooser [UtilitiesBundle] Using Symfony Process in Shell Class [RedirectBundle] Stop duplicate origins for single domain redirects [FormBundle] Make label non nullable in abstract form page part and assert not blank [AdminBundle] Hide wrapping content of large value fix styling of reset password form [GeneratorBundle]: fix classes in fields.html.twig [RedirectBundle] Ability to redirect for eg. /whatever/* to /something-else/* [UtilitiesBundle] Cipher deprecations (#1673) [MediaBundle] - Use JsonResponse to set headers instead of calling header() [FormBundle] Default file upload label required to false [MediaBundle] Include filters even if no results found [AdminBundle] remove hard coded 'validators' from twig view version bump moment js [MultiDomainBundle] Cache previously fetched node translations in array property [SearchBundle] add punctuation to kuma_ngram tokenizer Paginate Image thumbnail view to 24 images (6 rows of 4) per page (#1633) Remove alias functions usage by using the original functions Remove double (unnecessary) semicolon 'static::incrementString(...)' should be used instead. ...
mcrypt_decrypt, mcrypt_encrypt - deprecated for PHP 7.1