Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Encrypt credentials in memory #1349

Open
wants to merge 68 commits into
base: master
Choose a base branch
from
Open

Encrypt credentials in memory #1349

Show file tree
Hide file tree
Changes from 20 commits
Commits
Show all changes
68 commits
Select commit Hold shift + click to select a range
49c6586
Initialize Android KeyStore
avazirna Oct 9, 2023
09d9900
Retrieve key from Android KeyStore
avazirna Oct 10, 2023
c95b7c8
Refactor getSecretKey
avazirna Oct 10, 2023
676442b
Add method to check whether Android KeyStore is supported
avazirna Oct 10, 2023
93f33c8
Update encrypt and decrypt methods
avazirna Oct 10, 2023
cd6c546
Encrypt user credentials in memory
avazirna Oct 10, 2023
f20986c
Merge branch 'master' into encrypt-credentials-in-memory
avazirna Oct 10, 2023
7968312
Return plain username
avazirna Oct 11, 2023
c5d3f94
Lint
avazirna Oct 11, 2023
7b0a54d
Pass algorithm to cryptographic methods
avazirna Oct 12, 2023
a22ff5a
Refactor
avazirna Oct 13, 2023
3647d76
Add support to convert RSA keys
avazirna Oct 13, 2023
c485e5a
Set cryptographic transformation according to algorithm
avazirna Oct 13, 2023
b075ac9
Allow null IV for RSA ciphers
avazirna Oct 13, 2023
eff308b
Lint
avazirna Oct 13, 2023
99e70fd
Refactor
avazirna Oct 16, 2023
efdc30a
Refactor
avazirna Oct 16, 2023
448f074
Lint
avazirna Oct 16, 2023
0c39c5a
Update comments
avazirna Oct 16, 2023
5b66cc4
Set platform KeyStore name
avazirna Oct 16, 2023
8feef57
Lint
avazirna Nov 1, 2023
659f47e
Refactor
avazirna Nov 1, 2023
f6ac37d
Refactor secret key generation method
avazirna Nov 1, 2023
c67c1df
Refactor key pair generation method
avazirna Nov 1, 2023
e151f5f
Add unit tests for RSA
avazirna Nov 1, 2023
1069a52
Split credentials into plaintext and encrypted
avazirna Nov 23, 2023
87f6a93
Handle KeyStore exceptions by call
avazirna Nov 24, 2023
aae5ff2
Formatting
avazirna Nov 24, 2023
5f561fb
JavaDoc
avazirna Nov 24, 2023
92cef42
Add EncryptionKeyAndTransformation class
avazirna Nov 29, 2023
fcf749d
Remove KeyStore reference from CommCarePlatform
avazirna Nov 29, 2023
276c050
Add EncryptionKeyProvider service interface
avazirna Nov 30, 2023
0a32085
Add service loader utility class
avazirna Nov 30, 2023
0b39e88
Add dummy encryption key provider
avazirna Nov 30, 2023
03f0ac0
Acquire an encryption key provider
avazirna Nov 30, 2023
eb4b3ed
Refactor
avazirna Nov 30, 2023
409a6f5
JavaDoc updates
avazirna Nov 30, 2023
5fe6f00
Add service providers configuration files
avazirna Nov 30, 2023
20b2068
Lint
avazirna Dec 4, 2023
4c429d4
Refactor
avazirna Dec 5, 2023
dbb1983
Merge branch 'master' into encrypt-credentials-in-memory
avazirna Dec 6, 2023
0b771c7
Lint
avazirna Dec 7, 2023
db3d264
Lint
avazirna Dec 13, 2023
7c9f89d
Redirect InvalidParameterException to XPathException
avazirna Dec 13, 2023
fb70f9b
Rename key alias
avazirna Dec 13, 2023
acd23a9
Add key algorithms constants
avazirna Dec 14, 2023
41cb1f2
Comment
avazirna Dec 14, 2023
dd45f8d
Refactor EncryptionUtils to EncryptionHelper
avazirna Dec 20, 2023
19fc7d8
Revert "Add unit tests for RSA"
avazirna Jan 19, 2024
3767176
Remove RSA option for encryption with encoded string
avazirna Jan 19, 2024
5b8f281
Rmove BasicEncryptionKeyProvider
avazirna Jan 22, 2024
2f269e8
Add EncryptionKeyHelper class
avazirna Jan 22, 2024
df1575a
Refactor IEncryptionKeyProvider to support KeyStore Key generation only
avazirna Jan 22, 2024
f7ab55b
Update javadoc
avazirna Jan 22, 2024
10352e1
Refactor
avazirna Jan 22, 2024
c3b79b9
Add key generation in KeyStore when alias is not found
avazirna Jan 22, 2024
94b0062
Make EncryptionHelper stateless
avazirna Jan 22, 2024
f176952
Refactor
avazirna Jan 22, 2024
7a82c35
Add EncryptionKeyException to umbrella exceptions related to encrypti…
avazirna Jan 22, 2024
96f0b04
Check IV lenght to apply GCMParameterSpec
avazirna Jan 22, 2024
ffc0c96
Check if there are valid EncryptionKeyProvider implementations
avazirna Jan 22, 2024
58ffb32
Throw EncryptionKeyException when key generation fails
avazirna Jan 23, 2024
b2a8da9
Rename IEncrypitonKeyProvider to IKeyStoreEncryptionKeyProvider
avazirna Jan 23, 2024
8c7363a
Refactor
avazirna Jan 23, 2024
188e22b
Update javadocs
avazirna Jan 23, 2024
a2928bd
Refactor
avazirna Jan 23, 2024
bd512d6
Bubble up encryption key exceptions
avazirna Jan 23, 2024
4716bda
Throw exception when there is no keyStore facility
avazirna Jan 24, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions src/main/java/org/commcare/util/CommCarePlatform.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,10 @@
public class CommCarePlatform {
// TODO: We should make this unique using the parser to invalidate this ID or something
public static final String APP_PROFILE_RESOURCE_ID = "commcare-application-profile";

// To be initialized by child cases in case the platform supports keyStore tech
protected static String platformKeyStoreName = null;

private int profile;
private Profile cachedProfile;

Expand Down Expand Up @@ -232,4 +236,8 @@ public PropertyManager getPropertyManager() {
public StorageManager getStorageManager() {
return storageManager;
}

public static String getPlatformKeyStoreName(){
return platformKeyStoreName;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there is no reason to make a variable for something constant. You can just return null from here directly instead.

Copy link
Contributor Author

@avazirna avazirna Oct 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So, this is kind of a hack, platformKeyStoreName is static but not final, so not a constant. Reason why is that we want child cases to initialize this with the KeyStore name they support. I don't think we can override static methods. What do you think?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In this commit is where I set the Android Key Store name.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ahh it should not really be static, thinking again probably the easiest way to handle this is pass this as an argument directly to the encryptionutils methods

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@shubham1g5 wouldn't that mean having platform specific terminology on core? In this case, the EncryptionUtils method are called from the User class, adding as a parameter means that we still need to pull that from some place, right?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm I do see your issue. I think it's fine for now. I will see if I can find a better solution here.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How about we make new methods in user class as getUsername(keystoreName) and setUsername(keystoreName) and use those instead if it's not too complicates to implement and change.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem with that is that some of the calls are made from within core, so we would still have the problem of having to pass on the name from there. But also, I find it more elegant to reference the KeyStore of the platform, instead of having to include in each call, it feels redundant.

}
}
226 changes: 192 additions & 34 deletions src/main/java/org/commcare/util/EncryptionUtils.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,49 +1,112 @@
package org.commcare.util;

import java.io.IOException;
import java.nio.ByteBuffer;
import java.nio.charset.Charset;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.KeyFactory;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.Security;
import java.security.UnrecoverableEntryException;
import java.security.cert.CertificateException;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;

import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.GCMParameterSpec;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;

import static org.commcare.util.CommCarePlatform.getPlatformKeyStoreName;

public class EncryptionUtils {

public static final String USER_CREDENTIALS_KEY_ALIAS = "user-credentials-key-alias";

public static final String RSA_ALGORITHM_KEY = "RSA";
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we already have tests for AES as part of xpath encrypt and decrypt methods, but we will need to add tests for RSA encyrption as well as it's a sensitive code base area.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes

public static final String AES_ALGORITHM_KEY = "AES";


private static KeyStore platformKeyStore;

private enum CryptographicOperation {Encryption, Decryption}

public static KeyStore getPlatformKeyStore() {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can be private ?

if (platformKeyStore == null) {
try {
platformKeyStore = KeyStore.getInstance(getPlatformKeyStoreName());
platformKeyStore.load(null);
} catch (KeyStoreException | IOException | NoSuchAlgorithmException |
CertificateException e) {
throw new RuntimeException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should we throw a specific exception that callers can handle for and take appropriate fallbacks.

}
}
return platformKeyStore;
}

public static String encryptUsingKeyFromKeyStore(String message, String alias)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

encryptUsingKeyFromKeyStore -> encryptWithKeyStore
alias -> keyAlias

same comments for decrypt methods as well

throws EncryptionException {
Key key;
try {
key = retrieveKeyFromKeyStore(alias, CryptographicOperation.Encryption);
} catch (KeyStoreException | UnrecoverableEntryException | NoSuchAlgorithmException e) {
throw new RuntimeException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should bubble up the specific exceptions to caller.

}
return encrypt(key.getAlgorithm(), message, key);
}

public static String encryptUsingBase64EncodedKey(String algorithm, String message, String key)
throws EncryptionException {
Key secret;
try {
secret = getKey(algorithm, key, CryptographicOperation.Encryption);
} catch (InvalidKeySpecException e) {
throw new EncryptionException("Invalid Key specifications", e);
}
return encrypt(algorithm, message, secret);
}

/**
* Encrypts a message using the AES encryption and produces a base64 encoded payload containing the ciphertext, and a random IV which was used to encrypt the input.
* Encrypts a message using the AES or RAS algorithms and produces a base64 encoded payload
* containing the ciphertext, and, when applicable, a random IV which was used to encrypt
* the input.
*
* @param message a UTF-8 encoded message to be encrypted
* @param key A base64 encoded 256 bit symmetric key
* @return A base64 encoded payload containing the IV and AES encrypted ciphertext, which can be decoded by this utility's decrypt method and the same symmetric key
* @param algorithm the algotithm to be used to encrypt the data
* @param message a UTF-8 encoded message to be encrypted
* @param key depending on the algorithm, a SecretKey or PublicKey to be used to
* encrypt the message
* @return A base64 encoded payload containing the IV and AES or RSA encrypted ciphertext,
* which can be decoded by this utility's decrypt method and the same symmetric key
*/
public static String encrypt(String message, String key) throws EncryptionException {
final String ENCRYPT_ALGO = "AES/GCM/NoPadding";
public static String encrypt(String algorithm, String message, Key key)
throws EncryptionException {
final int MIN_IV_LENGTH_BYTE = 1;
final int MAX_IV_LENGTH_BYTE = 255;
SecretKey secret = getSecretKeySpec(key);

try {
Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
cipher.init(Cipher.ENCRYPT_MODE, secret);
Cipher cipher = Cipher.getInstance(getCryptographicTransformation(algorithm));
cipher.init(Cipher.ENCRYPT_MODE, key);
byte[] encryptedMessage = cipher.doFinal(message.getBytes(Charset.forName("UTF-8")));
byte[] iv = cipher.getIV();
if (iv.length < MIN_IV_LENGTH_BYTE || iv.length > MAX_IV_LENGTH_BYTE) {
int ivSize = (iv == null ? 0 : iv.length);
if (ivSize == 0) {
iv = new byte[0];
} else if (ivSize < MIN_IV_LENGTH_BYTE || ivSize > MAX_IV_LENGTH_BYTE) {
throw new EncryptionException("Initialization vector should be between " +
MIN_IV_LENGTH_BYTE + " and " + MAX_IV_LENGTH_BYTE +
" bytes long, but it is " + iv.length + " bytes");
" bytes long, but it is " + ivSize + " bytes");
}
// The conversion of iv.length to byte takes the low 8 bits. To
// convert back, cast to int and mask with 0xFF.
byte[] ivPlusMessage = ByteBuffer.allocate(1 + iv.length + encryptedMessage.length)
.put((byte)iv.length)
byte[] ivPlusMessage = ByteBuffer.allocate(1 + ivSize + encryptedMessage.length)
.put((byte)ivSize)
.put(iv)
.put(encryptedMessage)
.array();
Expand All @@ -53,33 +116,120 @@ public static String encrypt(String message, String key) throws EncryptionExcept
}
}


private static SecretKey getSecretKeySpec(String key) throws EncryptionException {
final int KEY_LENGTH_BIT = 256;
/**
* Converts a Base64 encoded key into a SecretKey, PrivateKey or PublicKey, depending on the
* algorithm and cryptographic operation
*
* @param algorithm the algorithm to be used to encrypt/decrypt
* @param base64encodedKey key in String format
* @param cryptographicOperation Cryptographic operation where the key is to be used, relevant
* to the RSA algorithm
* @return Secret key, Public key or Private Key to be used
*/
private static Key getKey(String algorithm,
String base64encodedKey,
CryptographicOperation cryptographicOperation)
throws EncryptionException, InvalidKeySpecException {
byte[] keyBytes;
try {
keyBytes = Base64.decode(key);
keyBytes = Base64.decode(base64encodedKey);
} catch (Base64DecoderException e) {
throw new EncryptionException("Encryption key base 64 encoding is invalid", e);
}
if (8 * keyBytes.length != KEY_LENGTH_BIT) {
throw new EncryptionException("Key should be " + KEY_LENGTH_BIT +
" bits long, not " + 8 * keyBytes.length);

if (algorithm.equals(AES_ALGORITHM_KEY)) {
final int KEY_LENGTH_BIT = 256;

if (8 * keyBytes.length != KEY_LENGTH_BIT) {
throw new EncryptionException("Key should be " + KEY_LENGTH_BIT +
" bits long, not " + 8 * keyBytes.length);
}
return new SecretKeySpec(keyBytes, AES_ALGORITHM_KEY);
} else if (algorithm.equals(RSA_ALGORITHM_KEY)) {
// This is not very relevant at the moment as the RSA algorithm is only used to encrypt
// user credentials on devices runnning Android 5.0 - 5.1.1 for the KeyStore
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

unnecessary comment, It's still relevant even if it's getting used on a small set of devices.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not necessarily, we only use RSA when working with the keyStore on devices running versions of the android sdk prior to 23, this method is used to convert a Base64 encoded key into a SecretKey, PrivateKey or PublicKey, so not called needed when using the KeyStore. For all other purposes we use 'AES'. Maybe I should remove this.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

True, you can just say - RSA is only used for Android 5.0 - 5.1.1

KeyFactory keyFactory = null;
try {
keyFactory = KeyFactory.getInstance(RSA_ALGORITHM_KEY);
} catch (NoSuchAlgorithmException e) {
throw new EncryptionException("There is no Provider for the selected algorithm", e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

use RSA algorithm instead of selected algorithm since we already know the selected algo

}

if (cryptographicOperation == CryptographicOperation.Encryption) {
X509EncodedKeySpec keySpec = new X509EncodedKeySpec(keyBytes);
return keyFactory.generatePublic(keySpec);
} else {
PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(keyBytes);
return keyFactory.generatePrivate(keySpec);
}
}
// This should cause an error
return null;
}

private static String getCryptographicTransformation(String algorithm) {
if (algorithm.equals(AES_ALGORITHM_KEY)) {
return "AES/GCM/NoPadding";
} else if (algorithm.equals(RSA_ALGORITHM_KEY)) {
return "RSA/ECB/PKCS1Padding";
} else {
// This will cause an error
return null;
}
}

private static Key retrieveKeyFromKeyStore(String keyAlias, CryptographicOperation operation)
throws KeyStoreException, UnrecoverableEntryException, NoSuchAlgorithmException {
if (getPlatformKeyStore().containsAlias(keyAlias)) {
KeyStore.Entry keyEntry = getPlatformKeyStore().getEntry(keyAlias, null);
if (keyEntry instanceof KeyStore.PrivateKeyEntry) {
if (operation == CryptographicOperation.Encryption) {
return ((KeyStore.PrivateKeyEntry)keyEntry).getCertificate().getPublicKey();
} else {
return ((KeyStore.PrivateKeyEntry)keyEntry).getPrivateKey();
}
} else {
return ((KeyStore.SecretKeyEntry)keyEntry).getSecretKey();
}
} else {
throw new KeyStoreException("Key not found in KeyStore");
}
return new SecretKeySpec(keyBytes, "AES");
}

public static String decryptUsingKeyFromKeyStore(String message, String alias)
throws EncryptionException {
Key key;
try {
key = retrieveKeyFromKeyStore(alias, CryptographicOperation.Decryption);
} catch (KeyStoreException | UnrecoverableEntryException | NoSuchAlgorithmException e) {
throw new RuntimeException(e);
}
return decrypt(key.getAlgorithm(), message, key);
}

public static String decryptUsingBase64EncodedKey(String algorithm, String message, String key)
throws EncryptionException {
Key secret = null;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: null assignment should not be needed.

try {
secret = getKey(algorithm, key, CryptographicOperation.Decryption);
} catch (InvalidKeySpecException e) {
throw new EncryptionException("Invalid Key specifications", e);
}
return decrypt(algorithm, message, secret);
}

/**
* Decrypts a base64 payload containing an IV and AES encrypted ciphertext using the provided key
* Decrypts a base64 payload containing an IV and AES or RSA encrypted ciphertext using the
* provided key
*
* @param message a message to be decrypted
* @param key key that should be used for decryption
* @return Decrypted message for the given AES encrypted message
* @param algorithm the algorithm to be used to decrypt the message
* @param message a message to be decrypted
* @param key dependening on the algorithm, a Secret key or Private key to be used for
* decryption
* @return Decrypted message for the given encrypted message
*/
public static String decrypt(String message, String key) throws EncryptionException {
final String ENCRYPT_ALGO = "AES/GCM/NoPadding";
private static String decrypt(String algorithm, String message, Key key) throws EncryptionException {
final int TAG_LENGTH_BIT = 128;
SecretKey secret = getSecretKeySpec(key);

try {
byte[] messageBytes = Base64.decode(message);
Expand All @@ -91,17 +241,25 @@ public static String decrypt(String message, String key) throws EncryptionExcept
byte[] cipherText = new byte[bb.remaining()];
bb.get(cipherText);


Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
cipher.init(Cipher.DECRYPT_MODE, secret, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
Cipher cipher = Cipher.getInstance(getCryptographicTransformation(algorithm));
if (algorithm.equals(AES_ALGORITHM_KEY)) {
cipher.init(Cipher.DECRYPT_MODE, key, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
} else {
cipher.init(Cipher.DECRYPT_MODE, key);
}
byte[] plainText = cipher.doFinal(cipherText);
return new String(plainText, Charset.forName("UTF-8"));
} catch (NoSuchAlgorithmException | BadPaddingException | NoSuchPaddingException |
IllegalBlockSizeException | InvalidAlgorithmParameterException | InvalidKeyException | Base64DecoderException e) {
IllegalBlockSizeException | InvalidKeyException | Base64DecoderException |
InvalidAlgorithmParameterException e) {
throw new EncryptionException("Error encountered while decrypting the message", e);
}
}

public static boolean isPlatformKeyStoreAvailable() {
return Security.getProvider(getPlatformKeyStoreName()) != null;
}

public static class EncryptionException extends Exception {

public EncryptionException(String message) {
Expand Down
Loading