forked from p15670423/monkey
Merge pull request #2078 from guardicore/1965-repository-encryptor
1965 repository encryptor
This commit is contained in:
commit
69d513b136
|
@ -7,6 +7,8 @@ from .password_based_bytes_encryptor import (
|
|||
InvalidCredentialsError,
|
||||
InvalidCiphertextError,
|
||||
)
|
||||
from .i_lockable_encryptor import ILockableEncryptor, LockedKeyError, UnlockError, ResetKeyError
|
||||
from .repository_encryptor import RepositoryEncryptor
|
||||
from .data_store_encryptor import (
|
||||
get_datastore_encryptor,
|
||||
unlock_datastore_encryptor,
|
||||
|
|
|
@ -15,6 +15,7 @@ _KEY_FILE_NAME = "mongo_key.bin"
|
|||
_encryptor: Union[None, IEncryptor] = None
|
||||
|
||||
|
||||
# NOTE: This class is being replaced by RepositoryEncryptor
|
||||
class DataStoreEncryptor(IEncryptor):
|
||||
_KEY_LENGTH_BYTES = 32
|
||||
|
||||
|
@ -46,10 +47,10 @@ class DataStoreEncryptor(IEncryptor):
|
|||
|
||||
return KeyBasedEncryptor(plaintext_key)
|
||||
|
||||
def encrypt(self, plaintext: str) -> str:
|
||||
def encrypt(self, plaintext: bytes) -> bytes:
|
||||
return self._key_based_encryptor.encrypt(plaintext)
|
||||
|
||||
def decrypt(self, ciphertext: str):
|
||||
def decrypt(self, ciphertext: bytes) -> bytes:
|
||||
return self._key_based_encryptor.decrypt(ciphertext)
|
||||
|
||||
|
||||
|
|
|
@ -5,8 +5,8 @@ from . import IFieldEncryptor
|
|||
class StringEncryptor(IFieldEncryptor):
|
||||
@staticmethod
|
||||
def encrypt(value: str):
|
||||
return get_datastore_encryptor().encrypt(value)
|
||||
return get_datastore_encryptor().encrypt(value.encode())
|
||||
|
||||
@staticmethod
|
||||
def decrypt(value: str):
|
||||
return get_datastore_encryptor().decrypt(value)
|
||||
return get_datastore_encryptor().decrypt(value).decode()
|
||||
|
|
|
@ -7,8 +7,8 @@ from . import IFieldEncryptor
|
|||
class StringListEncryptor(IFieldEncryptor):
|
||||
@staticmethod
|
||||
def encrypt(value: List[str]):
|
||||
return [get_datastore_encryptor().encrypt(string) for string in value]
|
||||
return [get_datastore_encryptor().encrypt(string.encode()) for string in value]
|
||||
|
||||
@staticmethod
|
||||
def decrypt(value: List[str]):
|
||||
return [get_datastore_encryptor().decrypt(string) for string in value]
|
||||
def decrypt(value: List[bytes]):
|
||||
return [get_datastore_encryptor().decrypt(bytes_).decode() for bytes_ in value]
|
||||
|
|
|
@ -1,20 +1,21 @@
|
|||
from abc import ABC, abstractmethod
|
||||
from typing import Any
|
||||
|
||||
|
||||
class IEncryptor(ABC):
|
||||
@abstractmethod
|
||||
def encrypt(self, plaintext: Any) -> Any:
|
||||
"""Encrypts data and returns the ciphertext.
|
||||
def encrypt(self, plaintext: bytes) -> bytes:
|
||||
"""
|
||||
Encrypts data and returns the ciphertext.
|
||||
|
||||
:param plaintext: Data that will be encrypted
|
||||
:return: Ciphertext generated by encrypting value
|
||||
:rtype: Any
|
||||
:return: Ciphertext generated by encrypting the plaintext
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def decrypt(self, ciphertext: Any):
|
||||
"""Decrypts data and returns the plaintext.
|
||||
:param ciphertext: Ciphertext that will be decrypted
|
||||
:return: Plaintext generated by decrypting value
|
||||
:rtype: Any
|
||||
def decrypt(self, ciphertext: bytes) -> bytes:
|
||||
"""
|
||||
Decrypts data and returns the plaintext.
|
||||
|
||||
:param ciphertext: Ciphertext that will be decrypted
|
||||
:return: Plaintext generated by decrypting the ciphertext
|
||||
"""
|
||||
|
|
|
@ -0,0 +1,85 @@
|
|||
from abc import ABC, abstractmethod
|
||||
|
||||
# NOTE: The ILockableEncryptor introduces temporal coupling, that is, you must first unlock the
|
||||
# encryptor before you can use it. This is because the key material used to encrypt repository
|
||||
# contents is encrypted using the user's username and password. This adds extra security by
|
||||
# allowing us to fully encrypt data at rest. Without this, we'd need to store the repository
|
||||
# key in plaintext. Alternative solutions are as follows:
|
||||
# 1. Store the repository key in plaintext
|
||||
# 2. Add an initialization phase to the island's boot sequence. At the moment, this is the
|
||||
# only element of the design that would benefit from adding an additional phase. If
|
||||
# other temporal coupling begins to creep in, we can add the initialization phase at
|
||||
# that time and remove this interface.
|
||||
|
||||
|
||||
class LockedKeyError(Exception):
|
||||
"""
|
||||
Raised when an ILockableEncryptor attemps to encrypt or decrypt data before the
|
||||
ILockableEncryptor has been unlocked.
|
||||
"""
|
||||
|
||||
|
||||
class UnlockError(Exception):
|
||||
"""
|
||||
Raised if an error occurs while attempting to unlock an ILockableEncryptor
|
||||
"""
|
||||
|
||||
|
||||
class ResetKeyError(Exception):
|
||||
"""
|
||||
Raised if an error occurs while attempting to reset an ILockableEncryptor's key
|
||||
"""
|
||||
|
||||
|
||||
class ILockableEncryptor(ABC):
|
||||
"""
|
||||
An encryptor that can be locked or unlocked.
|
||||
|
||||
ILockableEncryptor's require a secret in order to access their key material. These encryptors
|
||||
must be unlocked before use and can be re-locked at the user's request.
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def unlock(self, secret: bytes):
|
||||
"""
|
||||
Unlock the encryptor
|
||||
|
||||
:param secret: A secret that must be used to access the ILockableEncryptor's key material.
|
||||
:raises UnlockError: If the ILockableEncryptor could not be unlocked
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def lock(self):
|
||||
"""
|
||||
Lock the encryptor, making it unusable
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def reset_key(self):
|
||||
"""
|
||||
Reset the encryptor's key
|
||||
|
||||
Remove the existing key material so that it can never be used again.
|
||||
|
||||
:raises ResetKeyError: If an error occurred while attemping to reset the key
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def encrypt(self, plaintext: bytes) -> bytes:
|
||||
"""
|
||||
Encrypts data and returns the ciphertext.
|
||||
|
||||
:param plaintext: Data that will be encrypted
|
||||
:return: Ciphertext generated by encrypting the plaintext
|
||||
:raises LockedKeyError: If encrypt() is called while the ILockableEncryptor is locked
|
||||
"""
|
||||
|
||||
@abstractmethod
|
||||
def decrypt(self, ciphertext: bytes) -> bytes:
|
||||
"""
|
||||
Decrypts data and returns the plaintext.
|
||||
|
||||
:param ciphertext: Ciphertext that will be decrypted
|
||||
:return: Plaintext generated by decrypting the ciphertext
|
||||
:raises LockedKeyError: If decrypt() is called while the ILockableEncryptor is locked
|
||||
"""
|
|
@ -31,15 +31,15 @@ class KeyBasedEncryptor(IEncryptor):
|
|||
# something up. The main drawback to fernet is that it uses AES-128, which is not
|
||||
# quantum-safe. At the present time, human error is probably a greater risk than quantum
|
||||
# computers.
|
||||
def encrypt(self, plaintext: str) -> str:
|
||||
def encrypt(self, plaintext: bytes) -> bytes:
|
||||
cipher_iv = Random.new().read(AES.block_size)
|
||||
cipher = AES.new(self._key, AES.MODE_CBC, cipher_iv)
|
||||
padded_plaintext = Padding.pad(plaintext.encode(), self._BLOCK_SIZE)
|
||||
return base64.b64encode(cipher_iv + cipher.encrypt(padded_plaintext)).decode()
|
||||
padded_plaintext = Padding.pad(plaintext, self._BLOCK_SIZE)
|
||||
return base64.b64encode(cipher_iv + cipher.encrypt(padded_plaintext))
|
||||
|
||||
def decrypt(self, ciphertext: str):
|
||||
def decrypt(self, ciphertext: bytes) -> bytes:
|
||||
enc_message = base64.b64decode(ciphertext)
|
||||
cipher_iv = enc_message[0 : AES.block_size]
|
||||
cipher = AES.new(self._key, AES.MODE_CBC, cipher_iv)
|
||||
padded_plaintext = cipher.decrypt(enc_message[AES.block_size :])
|
||||
return Padding.unpad(padded_plaintext, self._BLOCK_SIZE).decode()
|
||||
return Padding.unpad(padded_plaintext, self._BLOCK_SIZE)
|
||||
|
|
|
@ -0,0 +1,71 @@
|
|||
import secrets
|
||||
from pathlib import Path
|
||||
|
||||
from monkey_island.cc.server_utils.file_utils import open_new_securely_permissioned_file
|
||||
|
||||
from . import ILockableEncryptor, LockedKeyError, ResetKeyError, UnlockError
|
||||
from .key_based_encryptor import KeyBasedEncryptor
|
||||
from .password_based_bytes_encryptor import PasswordBasedBytesEncryptor
|
||||
|
||||
|
||||
class RepositoryEncryptor(ILockableEncryptor):
|
||||
_KEY_LENGTH_BYTES = 32
|
||||
|
||||
def __init__(self, key_file: Path):
|
||||
self._key_file = key_file
|
||||
self._password_based_encryptor = None
|
||||
self._key_based_encryptor = None
|
||||
|
||||
def unlock(self, secret: bytes):
|
||||
try:
|
||||
self._password_based_encryptor = PasswordBasedBytesEncryptor(secret.decode())
|
||||
self._key_based_encryptor = self._initialize_key_based_encryptor()
|
||||
except Exception as err:
|
||||
raise UnlockError(err)
|
||||
|
||||
def _initialize_key_based_encryptor(self):
|
||||
if self._key_file.is_file():
|
||||
return self._load_key()
|
||||
|
||||
return self._create_key()
|
||||
|
||||
def _load_key(self) -> KeyBasedEncryptor:
|
||||
with open(self._key_file, "rb") as f:
|
||||
encrypted_key = f.read()
|
||||
|
||||
plaintext_key = self._password_based_encryptor.decrypt(encrypted_key)
|
||||
return KeyBasedEncryptor(plaintext_key)
|
||||
|
||||
def _create_key(self) -> KeyBasedEncryptor:
|
||||
plaintext_key = secrets.token_bytes(RepositoryEncryptor._KEY_LENGTH_BYTES)
|
||||
|
||||
encrypted_key = self._password_based_encryptor.encrypt(plaintext_key)
|
||||
with open_new_securely_permissioned_file(str(self._key_file), "wb") as f:
|
||||
f.write(encrypted_key)
|
||||
|
||||
return KeyBasedEncryptor(plaintext_key)
|
||||
|
||||
def lock(self):
|
||||
self._key_based_encryptor = None
|
||||
|
||||
def reset_key(self):
|
||||
try:
|
||||
if self._key_file.is_file():
|
||||
self._key_file.unlink()
|
||||
except Exception as err:
|
||||
raise ResetKeyError(err)
|
||||
|
||||
self._password_based_encryptor = None
|
||||
self._key_based_encryptor = None
|
||||
|
||||
def encrypt(self, plaintext: bytes) -> bytes:
|
||||
if self._key_based_encryptor is None:
|
||||
raise LockedKeyError("Cannot encrypt while the encryptor is locked)")
|
||||
|
||||
return self._key_based_encryptor.encrypt(plaintext)
|
||||
|
||||
def decrypt(self, ciphertext: bytes) -> bytes:
|
||||
if self._key_based_encryptor is None:
|
||||
raise LockedKeyError("Cannot decrypt while the encryptor is locked)")
|
||||
|
||||
return self._key_based_encryptor.decrypt(ciphertext)
|
|
@ -11,7 +11,7 @@ from monkey_island.cc.server_utils.encryption import (
|
|||
# Mark all tests in this module as slow
|
||||
pytestmark = pytest.mark.slow
|
||||
|
||||
PLAINTEXT = "Hello, Monkey!"
|
||||
PLAINTEXT = b"Hello, Monkey!"
|
||||
MOCK_SECRET = "53CR31"
|
||||
|
||||
|
||||
|
|
|
@ -14,19 +14,19 @@ kb_encryptor = KeyBasedEncryptor(KEY)
|
|||
|
||||
|
||||
def test_encrypt_decrypt_string_with_key():
|
||||
encrypted = kb_encryptor.encrypt(PLAINTEXT)
|
||||
decrypted = kb_encryptor.decrypt(encrypted)
|
||||
encrypted = kb_encryptor.encrypt(PLAINTEXT.encode())
|
||||
decrypted = kb_encryptor.decrypt(encrypted).decode()
|
||||
assert decrypted == PLAINTEXT
|
||||
|
||||
|
||||
@pytest.mark.parametrize("plaintext", [PLAINTEXT_UTF8_1, PLAINTEXT_UTF8_2, PLAINTEXT_UTF8_3])
|
||||
def test_encrypt_decrypt_string_utf8_with_key(plaintext):
|
||||
encrypted = kb_encryptor.encrypt(plaintext)
|
||||
decrypted = kb_encryptor.decrypt(encrypted)
|
||||
encrypted = kb_encryptor.encrypt(plaintext.encode())
|
||||
decrypted = kb_encryptor.decrypt(encrypted).decode()
|
||||
assert decrypted == plaintext
|
||||
|
||||
|
||||
def test_encrypt_decrypt_string_multiple_block_size_with_key():
|
||||
encrypted = kb_encryptor.encrypt(PLAINTEXT_MULTIPLE_BLOCK_SIZE)
|
||||
decrypted = kb_encryptor.decrypt(encrypted)
|
||||
encrypted = kb_encryptor.encrypt(PLAINTEXT_MULTIPLE_BLOCK_SIZE.encode())
|
||||
decrypted = kb_encryptor.decrypt(encrypted).decode()
|
||||
assert decrypted == PLAINTEXT_MULTIPLE_BLOCK_SIZE
|
||||
|
|
|
@ -0,0 +1,129 @@
|
|||
import random
|
||||
import string
|
||||
|
||||
import pytest
|
||||
|
||||
from common.utils.file_utils import get_file_sha256_hash
|
||||
from monkey_island.cc.server_utils.encryption import (
|
||||
LockedKeyError,
|
||||
RepositoryEncryptor,
|
||||
ResetKeyError,
|
||||
UnlockError,
|
||||
)
|
||||
|
||||
# Mark all tests in this module as slow
|
||||
pytestmark = pytest.mark.slow
|
||||
|
||||
PLAINTEXT = b"Hello, Monkey!"
|
||||
SECRET = b"53CR31"
|
||||
|
||||
|
||||
@pytest.fixture
|
||||
def key_file(tmp_path):
|
||||
return tmp_path / "test_key.bin"
|
||||
|
||||
|
||||
@pytest.fixture
|
||||
def encryptor(key_file):
|
||||
return RepositoryEncryptor(key_file)
|
||||
|
||||
|
||||
def test_encryption(encryptor):
|
||||
plaintext = "".join(
|
||||
random.choice(string.ascii_uppercase + string.digits) for _ in range(128) # noqa: DUO102
|
||||
).encode()
|
||||
encryptor.unlock(SECRET)
|
||||
|
||||
encrypted_data = encryptor.encrypt(plaintext)
|
||||
assert encrypted_data != plaintext
|
||||
|
||||
decrypted_data = encryptor.decrypt(encrypted_data)
|
||||
assert decrypted_data == plaintext
|
||||
|
||||
|
||||
def test_key_creation(encryptor, key_file):
|
||||
assert not key_file.is_file()
|
||||
encryptor.unlock(SECRET)
|
||||
assert key_file.is_file()
|
||||
|
||||
|
||||
def test_existing_key_reused(encryptor, key_file):
|
||||
assert not key_file.is_file()
|
||||
|
||||
encryptor.unlock(SECRET)
|
||||
key_file_hash_1 = get_file_sha256_hash(key_file)
|
||||
|
||||
encryptor.unlock(SECRET)
|
||||
key_file_hash_2 = get_file_sha256_hash(key_file)
|
||||
|
||||
assert key_file_hash_1 == key_file_hash_2
|
||||
|
||||
|
||||
def test_unlock_os_error(encryptor, key_file):
|
||||
key_file.mkdir()
|
||||
|
||||
with pytest.raises(UnlockError):
|
||||
encryptor.unlock(SECRET)
|
||||
|
||||
|
||||
def test_unlock_wrong_password(encryptor):
|
||||
encryptor.unlock(SECRET)
|
||||
|
||||
with pytest.raises(UnlockError):
|
||||
encryptor.unlock(b"WRONG_PASSWORD")
|
||||
|
||||
|
||||
def test_use_locked_encryptor__encrypt(encryptor):
|
||||
with pytest.raises(LockedKeyError):
|
||||
encryptor.encrypt(PLAINTEXT)
|
||||
|
||||
|
||||
def test_use_locked_encryptor__decrypt(encryptor):
|
||||
with pytest.raises(LockedKeyError):
|
||||
encryptor.decrypt(PLAINTEXT)
|
||||
|
||||
|
||||
def test_lock(encryptor):
|
||||
encryptor.unlock(SECRET)
|
||||
encrypted_data = encryptor.encrypt(PLAINTEXT)
|
||||
encryptor.lock()
|
||||
|
||||
with pytest.raises(LockedKeyError):
|
||||
encryptor.decrypt(encrypted_data)
|
||||
|
||||
|
||||
def test_reset(encryptor, key_file):
|
||||
encryptor.unlock(SECRET)
|
||||
key_file_hash_1 = get_file_sha256_hash(key_file)
|
||||
|
||||
encryptor.reset_key()
|
||||
encryptor.unlock(SECRET)
|
||||
key_file_hash_2 = get_file_sha256_hash(key_file)
|
||||
|
||||
assert key_file_hash_1 != key_file_hash_2
|
||||
|
||||
|
||||
def test_encrypt_after_reset(encryptor, key_file):
|
||||
encryptor.unlock(SECRET)
|
||||
encryptor.reset_key()
|
||||
|
||||
with pytest.raises(LockedKeyError):
|
||||
encryptor.encrypt(PLAINTEXT)
|
||||
|
||||
|
||||
def test_reset_before_unlock(encryptor):
|
||||
# Test will fail if an exception is raised
|
||||
encryptor.reset_key()
|
||||
|
||||
|
||||
def test_reset_key_error(key_file):
|
||||
class UnlinkErrorWrapper(key_file.__class__):
|
||||
def unlink(self):
|
||||
raise OSError("Can't delete file")
|
||||
|
||||
encryptor = RepositoryEncryptor(UnlinkErrorWrapper(key_file))
|
||||
encryptor.unlock(SECRET)
|
||||
encryptor.lock()
|
||||
|
||||
with pytest.raises(ResetKeyError):
|
||||
encryptor.reset_key()
|
Loading…
Reference in New Issue