RSpec
Ruby on Rails
Ruby
method
_decrypt
v5.2.3 -
Show latest stable
-
0 notes -
Class: ActiveSupport::MessageEncryptor
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1 (0)
- 3.2.8 (0)
- 3.2.13 (0)
- 4.0.2 (0)
- 4.1.8 (0)
- 4.2.1 (0)
- 4.2.7 (0)
- 4.2.9 (0)
- 5.0.0.1 (0)
- 5.1.7 (0)
- 5.2.3 (0)
- 6.0.0 (0)
- 6.1.3.1 (0)
- 6.1.7.7 (0)
- 7.0.0 (0)
- 7.1.3.2
- What's this?
-
default_cipher
-
key_len
-
new
-
aead_mode?
-
create_message
(>= v7.1.3.2)
-
decrypt
(>= v2.3.8)
-
_decrypt
-
decrypt_and_verify
-
encrypt
(>= v2.3.8)
-
_encrypt
-
encrypt_and_sign
-
extract_part
(>= v7.1.3.2)
-
extract_parts
(>= v7.1.3.2)
-
inspect
(>= v7.1.3.2)
-
join_parts
(>= v7.1.3.2)
-
length_after_encode
(>= v7.1.3.2)
-
length_of_encoded_auth_tag
(>= v7.1.3.2)
-
length_of_encoded_iv
(>= v7.1.3.2)
-
new_cipher
-
read_message
(>= v7.1.3.2)
-
resolve_verifier
-
sign
(>= v7.1.3.2)
-
verifier
-
verify
(>= v7.1.3.2)
= private
= protected
_decrypt(encrypted_message, purpose)
private
Hide source
# File activesupport/lib/active_support/message_encryptor.rb, line 183 def _decrypt(encrypted_message, purpose) cipher = new_cipher encrypted_data, iv, auth_tag = encrypted_message.split("--".freeze).map { |v| ::Base64.strict_decode64(v) } # Currently the OpenSSL bindings do not raise an error if auth_tag is # truncated, which would allow an attacker to easily forge it. See # https://github.com/ruby/openssl/issues/63 raise InvalidMessage if aead_mode? && (auth_tag.nil? || auth_tag.bytes.length != 16) cipher.decrypt cipher.key = @secret cipher.iv = iv if aead_mode? cipher.auth_tag = auth_tag cipher.auth_data = "" end decrypted_data = cipher.update(encrypted_data) decrypted_data << cipher.final message = Messages::Metadata.verify(decrypted_data, purpose) @serializer.load(message) if message rescue OpenSSLCipherError, TypeError, ArgumentError raise InvalidMessage end
