Refactor scrypt hashing and source app session mgmt pt 1/3 #5692
Conversation
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
2 times, most recently
from
c82e8be to
9e2a118
Compare
nabla-c0d3
changed the title
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
9e2a118 to
5ed7813
Compare
| passphrase=hashed_secret, | ||
| name_email=name, | ||
| passphrase=source_user.gpg_secret, | ||
| name_email=source_user.filesystem_id, |
There was a problem hiding this comment.
This makes the logic self-documenting and the docstring is no longer needed.
| p=1, | ||
| backend=backend, | ||
| ) | ||
| return scrypt_instance.derive(password.encode("utf-8")) |
There was a problem hiding this comment.
Needed for #5613
| @@ -13,7 +13,7 @@ | |||
| DicewarePassphrase = NewType("DicewarePassphrase", str) | |||
|
|
|||
|
|
|||
There was a problem hiding this comment.
Only updated a variable's name in this file.
| # Issue 2386: don't log in on duplicates | ||
| del session['codename'] | ||
| except (SourcePassphraseCollisionError, SourceDesignationCollisionError) as e: | ||
| current_app.logger.error("Could not create a source: {}".format(e)) |
There was a problem hiding this comment.
This consolidates the app's behavior when something goes wrong during account creation.
There was a problem hiding this comment.
behavior change from the perspective of the user when SourcePassphraseCollisionError is raised since they will now get a flashed message, this is fine since the codename is no longer in the session when the exception is raised
securedrop/source_app/utils.py
Outdated
| filesystem_id=filesystem_id, | ||
| gpg_secret=crypto_util_.hash_codename(codename, salt=crypto_util_.scrypt_gpg_pepper) | ||
| ) | ||
| crypto_util_.genkeypair(source_user) |
There was a problem hiding this comment.
genkeypair() now takes a source user.
| return SourceUser(source_db_record, filesystem_id, gpg_secret) | ||
|
|
||
|
|
||
| class _SourceScryptManager: |
There was a problem hiding this comment.
The scrypt hashing logic becomes private and an "implementation detail" of how the source app and users work.
| assert expected_filesystem_id == filesystem_id | ||
|
|
||
| expected_gpg_secret = "AWCRZVPA6YTQ2A3552LZJW3VO7L3ZONDFT6A6VPRGPGQQSNENRLA3EVRW4LZYNSUV5QIKNFZMJ2BMOVORG43ZETV5ZCRQKLJNOC2BXY=" # noqa: E501 | ||
| assert expected_gpg_secret == gpg_secret |
There was a problem hiding this comment.
The test vectors in this test were generated using the previous / non-cryptography implementation of scrypt, to ensure that the new implementation returns the same hashes when given the same input.
|
Hi @nabla-c0d3 , thank you for your continued contributions to the project. We are currently preparing a release this week and next, but will get around to providing comments/review to this PR after that. Given the size and the areas of the code this PR is affecting, it may take us a while to review this series of proposed changes. |
@emkll No problem and makes sense! |
|
Hi @nabla-c0d3, thanks a lot for taking on this complex refactoring work. I just want to manage expectations on review -- we're currently very focused on finishing Ubuntu 20.04 support, and these PRs touch a lot of key areas of the code, so it may still take us several weeks to complete a thorough review of these changes. That said, if you have any questions in the meantime, please don't hesitate to ping. |
|
No rush on my side |
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
2 times, most recently
from
81c9886 to
c2b8415
Compare
|
Thanks for rebasing @nabla-c0d3 -- we're just coming out of the 1.8.0 release cycle and should be able to take a closer look in the next few days, once tests are passing. (Let us know if we can help with that.) |
|
@eloquence Sounds good. The test that is failing doesn't seem to be related to my changes. The latest run on the develop branch failed in a similar fashion (different test but same error "Directory not empty": https://app.circleci.com/pipelines/github/freedomofpress/securedrop/2119/workflows/c6371546-78d2-4050-8513-b33960083a7d/jobs/52269). I will try rebasing again on the next commit that gets merged into develop, and hopefully the tests will pass, |
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
c2b8415 to
8b32fb5
Compare
|
Only one test failed, but I don't think it's related to my changes. AFAIK I haven't touched apparmor or anything related to it. |
| # Issue 2386: don't log in on duplicates | ||
| del session['codename'] | ||
| except (SourcePassphraseCollisionError, SourceDesignationCollisionError) as e: | ||
| current_app.logger.error("Could not create a source: {}".format(e)) |
There was a problem hiding this comment.
behavior change from the perspective of the user when SourcePassphraseCollisionError is raised since they will now get a flashed message, this is fine since the codename is no longer in the session when the exception is raised
| resp = app.post(url_for('main.create'), data={'tab_id': tab_id}, follow_redirects=True) | ||
| assert resp.status_code == 200 | ||
| assert 'codename' not in session | ||
| assert 'logged_in' not in session |
There was a problem hiding this comment.
note to other maintainers: this PR does preserve the duplicate tab behavior implemented in the test steps in #5075
securedrop/tests/test_source_user.py
Outdated
|
|
||
| # When deriving the passphrase's filesystem ID and GPG secret | ||
| scrypt_mgr = _SourceScryptManager( | ||
| salt_for_gpg_secret="YrPAwKMyWN66Y2WNSt+FS1KwfysMHwPISG0wmpb717k=".encode(), |
There was a problem hiding this comment.
nit: slight preference for an all caps constant for clarity at the top of the file or at the top of the function, e.g. TEST_SALT_GPG_SECRET for the values for salt_for_gpg_secret and similar for salt_for_filesystem_id
| assert expected_filesystem_id == filesystem_id | ||
|
|
||
| expected_gpg_secret = "AWCRZVPA6YTQ2A3552LZJW3VO7L3ZONDFT6A6VPRGPGQQSNENRLA3EVRW4LZYNSUV5QIKNFZMJ2BMOVORG43ZETV5ZCRQKLJNOC2BXY=" # noqa: E501 | ||
| assert expected_gpg_secret == gpg_secret |
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
2 times, most recently
from
c847406 to
99dd2c8
Compare
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
99dd2c8 to
83a026a
Compare
No problem - I just did the rebase and it went smoothly. There are two tests failing in testinfra now, but as mentioned before I have not been able to setup a VM that can run |
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
83a026a to
a7c8dc5
Compare
|
This pull request introduces 2 alerts when merging a7c8dc5 into 46e993b - view on LGTM.com new alerts:
|
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
a7c8dc5 to
0d988d5
Compare
|
This pull request introduces 2 alerts when merging 0d988d5 into 46e993b - view on LGTM.com new alerts:
|
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
3 times, most recently
from
3c5595f to
653357b
Compare
|
I have rebased this PR, but the same I haven't been able to figure it out because the CircleCI log does not show the full output ( |
|
Hi @nabla-c0d3 - looks like a file (Also rebased again to pull in an unrelated CI fix) |
zenmonkeykstop
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
5e722ce to
e2a11fa
Compare
Thanks for looking into this. Looks like CI is now passing! 🎉 |
There was a problem hiding this comment.
There is one comment from @redshiftzero https://github.com/freedomofpress/securedrop/pull/5692/files#r601688777 which can be addressed in this while doing the conflict fix. After that we can merge this.
To test
- I created a staging instance from
developand created users. - created sources on that
- build debian package from this branch and redeployed
- old users can login, new users can be created and login properly
The code changes look good to me. @nabla-c0d3 after you update the branch, I will do one quick round of check and merge. For now moving to the next PR. Thank you once again for doing this.
| @@ -224,7 +224,13 @@ def test_were_there_submissions_today(source_app, config): | |||
| args = argparse.Namespace(data_root=data_root, verbose=logging.DEBUG) | |||
|
|
|||
| count_file = os.path.join(data_root, 'submissions_today.txt') | |||
| source, codename = db_helper.init_source_without_keypair() | |||
There was a problem hiding this comment.
codename was not used, so this is fine.
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
e2a11fa to
436a804
Compare
|
@kushaldas Thanks for looking into this and testing it.
Ok I have made the change and fixed the conflict. |
|
|
||
|
|
||
| TEST_SALT_GPG_SECRET = "YrPAwKMyWN66Y2WNSt+FS1KwfysMHwPISG0wmpb717k=" | ||
| TEST_SALT_FOR_FILESYSTEM_ID = "mEFXIwvxoBqjyxc/JypLdvgMRNRjApoaM0OBNrxJM2E=" |
There was a problem hiding this comment.
Moved these to the top of the file
Fix test Fix tests added securedrop/source_user.py to Apache Apparmor profile minor fix to dev data loader
nabla-c0d3
force-pushed
the
refactor-scrypt-hashing-pt-1
branch
from
50a7aaf to
203a873
Compare
Status
Ready.
Description of Changes
This PR started with the goal of refactoring CryptoUtil.hash_codename() to move it out of CryptoUtil (for #5599).
However, I ran into some problems as I was trying to do this, and saw some opportunities for larger improvements. The downside is that the changes are bigger, so I split them into 3 PRs so they're a bit easier to review. While I know big changes are annoying to review, merge and ultimately deal with, I think these ones are important and worth it.
Overall I felt that a crucial concept was "missing"/invisible in the code base: a user who is currently logged into the source application.
So the main change of these PRs is the introduction of a SourceUser class, which ties it all together: how a user's session is managed (when they create an account, login, etc.), how the user's crypto works (filesystem_id, gpg_secret, etc.), and the user's corresponding "Source" record in the DB.
My overall goal is to make all this logic self-documenting so it is clear to the reader how these users (and more generally the source app) work. Currently, this logic is spread throughout the code base and also repeated a lot, which makes it hard to understand and hard to change. The main example of this is how hash_codename() is used in a lot of code locations, but in each of them it is hard to understand what is getting hashed, and why.
While I split the changes into 3 PRs, each PR brings something useful independently of the other ones:
If everything gets merged, the following issues will be completed or will see progress: #5455, #5599, #5613. I also think the source app's code base will be significantly easier to approach, understand, and maintain (at least that's the main goal).
About this PR which is part 1/3: