Merge branch 'fix/attr-encrypted-issue' into 'master'

Fix encrypted data backwards compatibility after upgrading attr_encrypted gem Adds missing attribute to attr_encrypted so it is fully backwards-compatible. Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/19073 See merge request !4963
2016-06-28 08:48:06 +00:00 · 2016-06-28 08:48:06 +00:00 · 2c3f3cb392
parent 0d0f8a3b7d ea441cf27e
commit 2c3f3cb392
4 changed files with 6 additions and 0 deletions
--- a/3
+++ b/3
@ -15,6 +15,9 @@ v 8.10.0 (unreleased)
  - Add API endpoint for a group issues !4520 (mahcsig)
  - Allow [ci skip] to be in any case and allow [skip ci]. !4785 (simon_w)

+v 8.9.3 (unreleased)
+  - Fix encrypted data backwards compatibility after upgrading attr_encrypted gem
+
 v 8.9.2
  - Fix visibility of snippets when searching.
  - Fix an information disclosure when requesting access to a group containing private projects.
--- a/app/models/ci/variable.rb
+++ b/app/models/ci/variable.rb
@ -13,6 +13,7 @@ module Ci

    attr_encrypted :value, 
       mode: :per_attribute_iv_and_salt,
+       insecure_mode: true,
       key: Gitlab::Application.secrets.db_key_base,
       algorithm: 'aes-256-cbc'
  end
--- a/app/models/project_import_data.rb
+++ b/app/models/project_import_data.rb
@ -7,6 +7,7 @@ class ProjectImportData < ActiveRecord::Base
                 marshal: true,
                 encode: true,
                 mode: :per_attribute_iv_and_salt,
+                 insecure_mode: true,
                 algorithm: 'aes-256-cbc'

  serialize :data, JSON
--- a/app/models/user.rb
+++ b/app/models/user.rb
@ -25,6 +25,7 @@ class User < ActiveRecord::Base
  attr_encrypted :otp_secret,
    key:       Gitlab::Application.config.secret_key_base,
    mode:      :per_attribute_iv_and_salt,
+    insecure_mode: true,
    algorithm: 'aes-256-cbc'

  devise :two_factor_authenticatable,