256-GCM 編碼。
預設情況下,它會使用隨機的初始化向量。在確定性加密中,它會使用要加密的文字和機密的 SHA-256 雜湊。
請參閱 Encryptor
函式
- D
- E
- I
- K
- N
常數
| CIPHER_TYPE | = | "aes-256-gcm" |
類別公開函式
iv_length() 連結
key_length() 連結
new(secret, deterministic: false) 連結
如果未提供 IV,則它會在每次加密作業中產生一個隨機 IV (預設值和建議作業)
執行體公開函式
decrypt(encrypted_message) 連結
# File activerecord/lib/active_record/encryption/cipher/aes256_gcm.rb, line 55 def decrypt(encrypted_message) encrypted_data = encrypted_message.payload iv = encrypted_message.headers.iv auth_tag = encrypted_message.headers.auth_tag # Currently the OpenSSL bindings do not raise an error if auth_tag is # truncated, which would allow an attacker to easily forge it. See # https://github.com/ruby/openssl/issues/63 raise ActiveRecord::Encryption::Errors::EncryptedContentIntegrity if auth_tag.nil? || auth_tag.bytes.length != 16 cipher = OpenSSL::Cipher.new(CIPHER_TYPE) cipher.decrypt cipher.key = @secret cipher.iv = iv cipher.auth_tag = auth_tag cipher.auth_data = "" decrypted_data = encrypted_data.empty? ? encrypted_data : cipher.update(encrypted_data) decrypted_data << cipher.final decrypted_data rescue OpenSSL::Cipher::CipherError, TypeError, ArgumentError raise ActiveRecord::Encryption::Errors::Decryption end
encrypt(clear_text) 連結
# File activerecord/lib/active_record/encryption/cipher/aes256_gcm.rb, line 34 def encrypt(clear_text) # This code is extracted from +ActiveSupport::MessageEncryptor+. Not using it directly because we want to control # the message format and only serialize things once at the +ActiveRecord::Encryption::Message+ level. Also, this # cipher is prepared to deal with deterministic/non deterministic encryption modes. cipher = OpenSSL::Cipher.new(CIPHER_TYPE) cipher.encrypt cipher.key = @secret iv = generate_iv(cipher, clear_text) cipher.iv = iv encrypted_data = clear_text.empty? ? clear_text.dup : cipher.update(clear_text) encrypted_data << cipher.final ActiveRecord::Encryption::Message.new(payload: encrypted_data).tap do |message| message.headers.iv = iv message.headers.auth_tag = cipher.auth_tag end end