aead 1.8.0 → 1.8.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4fa60b57e4bf63e26513af118b1ed12edc3eba1f
-  data.tar.gz: 567bc3e4243d6ef1f38950bc998af9fcddf28260
+  metadata.gz: ec5ecf304323da8bdc09bf7d9e4c7aabff91f9d9
+  data.tar.gz: 78b797df1043c60fbd5a63be09a0988f981577c4
 SHA512:
-  metadata.gz: 513380c93ec0da891916e9f4788168896c8e8e7fdc01e0c05a23022f7d4d7b3055790f16d6a0dd1f1b4c5c8266dc11b274c41c6c6f2d4dcf6e414de41bfaa04c
-  data.tar.gz: 7cf3219248dd1f0adae7b1be92e3d1cdab0af560ffd76c0e5398449e03bb24caf54bf78a6db51b808097dc326a0e988c124caf2c16c3af1d999a33fca1d160a1
+  metadata.gz: f6c7ca97b9619a9c31b05d8a9ada8388e923822f2735ab68c0d8e590e59a1781e0ca69f3d79a05adcc04527ba5e3e8c71fe08c75c8c21df66c6a7e22dea946b4
+  data.tar.gz: fa86c9dd50321c3c0f5f15811636bab1db7976b7bc32bbd900756d3ac477d0f0e0630a2e6bb1c7ee62d4b5040f11a5ab5230e6b9de7e87b8edcb3c2f2dd2203c

data/.travis.yml

@@ -1,3 +1,4 @@
 rvm:
-  - 1.9.2
   - 1.9.3
+  - 2.0.0
+  - 2.1.2

data/Gemfile

@@ -1,7 +1,3 @@
 source "https://rubygems.org"
 
 gemspec
-
-gem 'terminal-notifier-guard'
-gem 'pry'
-gem 'pry-doc'

data/README.md

@@ -23,8 +23,8 @@ require 'aead'
 
 # currently, AES-256-GCM and AES-256-CTR-HMAC-SHA-256 are supported
 mode   = AEAD::Cipher.new('AES-256-GCM')
-key    = cipher.generate_key
-nonce  = cipher.generate_nonce
+key    = mode.generate_key
+nonce  = mode.generate_nonce
 
 cipher    = mode.new(key)
 aead      = cipher.encrypt(nonce, 'authentication data', 'plaintext')

data/VERSION

@@ -1 +1 @@
-1.8.0
+1.8.1

data/aead.gemspec

@@ -17,6 +17,8 @@ Gem::Specification.new do |gem|
   gem.executables = `git ls-files -- script/*`.split("\n").map {|e| e[7..-1] }
   gem.test_files  = `git ls-files -- spec/*`  .split("\n")
 
+  gem.licenses    = ['MIT']
+
   gem.add_dependency 'macaddr', '~> 1'
 
   gem.add_development_dependency 'bundler'
@@ -25,7 +27,7 @@ Gem::Specification.new do |gem|
   gem.add_development_dependency 'guard-minitest'
   gem.add_development_dependency 'guard-yard'
   gem.add_development_dependency 'markdown'
-  gem.add_development_dependency 'minitest'
+  gem.add_development_dependency 'minitest', '~> 4'
   gem.add_development_dependency 'rake'
   gem.add_development_dependency 'redcarpet'
   gem.add_development_dependency 'simplecov'

data/ext/openssl/cipher/aead/aead.c

@@ -126,6 +126,24 @@ ossl_cipher_set_tag(VALUE self, VALUE data)
     return data;
 }
 
+static VALUE
+ossl_cipher_set_iv_length(VALUE self, VALUE iv_length)
+{
+    EVP_CIPHER_CTX *ctx;
+    int             ivlen = NUM2INT(iv_length);
+
+    GetCipher(self, ctx);
+
+#ifndef EVP_CTRL_GCM_SET_IVLEN
+    ossl_raise(eCipherError, "your version of OpenSSL doesn't support GCM");
+#else
+    if (!EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN, ivlen, NULL))
+        ossl_raise(eCipherError, NULL);
+#endif
+
+    return iv_length;
+}
+
 static VALUE
 ossl_cipher_verify(VALUE self)
 {
@@ -149,8 +167,9 @@ Init_aead(void)
 
     eCipherError = rb_define_class_under(mOSSLCipher, "CipherError", eOSSLError);
 
-    rb_define_method(mOSSLCipher, "aad=",     ossl_cipher_set_aad, 1);
-    rb_define_method(mOSSLCipher, "gcm_tag",  ossl_cipher_get_tag, 0);
-    rb_define_method(mOSSLCipher, "gcm_tag=", ossl_cipher_set_tag, 1);
-    rb_define_method(mOSSLCipher, "verify",   ossl_cipher_verify,  0);
+    rb_define_method(mOSSLCipher, "aad=",        ossl_cipher_set_aad,       1);
+    rb_define_method(mOSSLCipher, "gcm_tag",     ossl_cipher_get_tag,       0);
+    rb_define_method(mOSSLCipher, "gcm_tag=",    ossl_cipher_set_tag,       1);
+    rb_define_method(mOSSLCipher, "gcm_iv_len=", ossl_cipher_set_iv_length, 1);
+    rb_define_method(mOSSLCipher, "verify",      ossl_cipher_verify,        0);
 }

data/lib/aead/cipher.rb

@@ -8,6 +8,7 @@ require 'securerandom'
 # Wraps AEAD ciphers in a simplified interface.
 #
 class AEAD::Cipher
+  autoload :AES_128_GCM,              'aead/cipher/aes_128_gcm'
   autoload :AES_256_GCM,              'aead/cipher/aes_256_gcm'
   autoload :AES_256_CBC_HMAC_SHA_256, 'aead/cipher/aes_256_cbc_hmac_sha_256'
   autoload :AES_256_CTR_HMAC_SHA_256, 'aead/cipher/aes_256_ctr_hmac_sha_256'
@@ -18,7 +19,7 @@ class AEAD::Cipher
   # @param [String] algorithm the AEAD implementation to use
   # @return [Class] the cipher implementation
   #
-  def self.new(algorithm)
+  def self.new(algorithm, options = {})
     # run normal Class#new if we're being called from a subclass
     return super unless self == AEAD::Cipher
 
@@ -110,7 +111,6 @@ class AEAD::Cipher
   #
   def encrypt(nonce, aad, plaintext)
     _verify_nonce_bytesize(nonce, self.nonce_len)
-    _verify_plaintext_presence(plaintext)
 
     self._encrypt(
        _pad_nonce(nonce),
@@ -147,6 +147,8 @@ class AEAD::Cipher
   # The secret key provided by the user.
   attr_accessor :key
 
+  attr_writer :iv_len
+
   #
   # Initializes the cipher.
   #
@@ -155,12 +157,14 @@ class AEAD::Cipher
   # @param [String] key the encryption key supplied by the user
   # @return [Cipher] the initialized Cipher
   #
-  def initialize(algorithm, key)
+  def initialize(algorithm, key, options = {})
     _verify_key_bytesize(key, self.key_len)
 
     self.algorithm = algorithm.dup.freeze
     self.key       = key.dup.freeze
 
+    self.iv_len    = options[:iv_len]
+
     self.freeze
   end
 
@@ -178,7 +182,7 @@ class AEAD::Cipher
   # @return [Integer] the length of initialization vectors in bytes
   #
   def iv_len
-    self.class.iv_len
+    @iv_len || self.class.iv_len
   end
 
   #
@@ -201,15 +205,10 @@ class AEAD::Cipher
   end
 
   def _verify_nonce_bytesize(nonce, nonce_len)
-    raise ArgumentError, "nonce must be at least #{nonce_len} bytes" unless
+    raise ArgumentError, "nonce must be #{nonce_len} bytes" unless
       nonce.bytesize == nonce_len
   end
 
-  def _verify_plaintext_presence(plaintext)
-    raise ArgumentError, 'plaintext must not be empty' unless
-      not plaintext.nil? and not plaintext.empty?
-  end
-
   def _pad_nonce(nonce)
     nonce.rjust(self.iv_len, "\0")
   end

data/lib/aead/cipher/aes_128_gcm.rb

@@ -0,0 +1,17 @@
+require 'aead/cipher'
+require 'aead/cipher/aes_gcm'
+
+#
+# Encrypt plaintext using the Galois Counter Mode of AES.
+#
+class AEAD::Cipher::AES_128_GCM < AEAD::Cipher
+  include AEAD::Cipher::AES_GCM
+
+  def self.cipher_mode; 'aes-128-gcm'; end
+
+  def self.key_len;   16; end
+  def self.iv_len;    12; end
+  #def self.nonce_len; 12; end
+  def self.tag_len;   16; end
+
+end

data/lib/aead/cipher/aes_256_gcm.rb

@@ -1,45 +1,17 @@
 require 'aead/cipher'
+require 'aead/cipher/aes_gcm'
 
 #
 # Encrypt plaintext using the Galois Counter Mode of AES.
 #
 class AEAD::Cipher::AES_256_GCM < AEAD::Cipher
+  include AEAD::Cipher::AES_GCM
+
+  def self.cipher_mode; 'aes-256-gcm'; end
+
   def self.key_len;   32; end
   def self.iv_len;    12; end
   def self.nonce_len; 12; end
   def self.tag_len;   16; end
 
-  #
-  # Instantiates the cipher with a secret key.
-  #
-  # @param [String] key a secret encryption key
-  #
-  def initialize(key)
-    super('aes-256-gcm', key)
-  end
-
-  protected
-
-  def _encrypt(nonce, aad, plaintext)
-    self.cipher(:encrypt) do |cipher|
-      cipher.key = self.key
-      cipher.iv  = nonce
-      cipher.aad = aad.to_s if aad
-
-      cipher.update(plaintext) + cipher.final + cipher.gcm_tag
-    end
-  end
-
-  def _decrypt(nonce, aad, ciphertext, tag)
-    self.cipher(:decrypt) do |cipher|
-      cipher.key     = self.key
-      cipher.iv      = nonce
-      cipher.gcm_tag = tag
-      cipher.aad     = aad.to_s if aad
-
-      cipher.update(ciphertext).tap { cipher.verify }
-    end
-  rescue OpenSSL::Cipher::CipherError
-    raise ArgumentError, 'ciphertext failed authentication step'
-  end
 end

data/lib/aead/cipher/aes_gcm.rb

@@ -0,0 +1,51 @@
+require 'aead/cipher'
+
+#
+# Provides the implementation details of AES + GCM, assuming the
+# class including this module has defined proper class methods.
+#
+module AEAD::Cipher::AES_GCM
+
+  #
+  # Instantiates the cipher with a secret key.
+  #
+  # @param [String] key a secret encryption key
+  #
+  def initialize(key, options = {})
+    super(self.class.cipher_mode, key, options)
+  end
+
+  def nonce_len
+    iv_len
+  end
+
+  protected
+
+  def _encrypt(nonce, aad, plaintext)
+    self.cipher(:encrypt) do |cipher|
+      cipher.gcm_iv_len = self.iv_len
+      cipher.key        = self.key
+      cipher.iv         = nonce
+      cipher.aad        = aad.to_s if aad
+
+      unless plaintext.nil? || plaintext.empty?
+        ciphertext = cipher.update(plaintext)
+      end
+      ciphertext = (ciphertext || "") + cipher.final + cipher.gcm_tag
+    end
+  end
+
+  def _decrypt(nonce, aad, ciphertext, tag)
+    self.cipher(:decrypt) do |cipher|
+      cipher.gcm_iv_len = self.iv_len
+      cipher.key        = self.key
+      cipher.iv         = nonce
+      cipher.gcm_tag    = tag
+      cipher.aad        = aad.to_s if aad
+
+      cipher.update(ciphertext).tap { cipher.verify }
+    end
+  rescue OpenSSL::Cipher::CipherError
+    raise ArgumentError, 'ciphertext failed authentication step'
+  end
+end

data/lib/aead/cipher/aes_hmac.rb

@@ -10,7 +10,7 @@ module AEAD::Cipher::AES_HMAC
   #
   # @param [String] key a secret encryption key
   #
-  def initialize(key)
+  def initialize(key, options = {})
     super(self.class.cipher_mode, key)
   end
 
@@ -29,7 +29,10 @@ module AEAD::Cipher::AES_HMAC
       cipher.key = self.encryption_key
       cipher.iv  = nonce
 
-      ciphertext = cipher.update(plaintext) + cipher.final
+      unless plaintext.nil? || plaintext.empty?
+        ciphertext = cipher.update(plaintext)
+      end
+      ciphertext = (ciphertext || "") + cipher.final
       mac        = hmac_generate(nonce, aad.to_s, ciphertext)
 
       ciphertext << mac

data/spec/aead/cipher/aes_128_gcm_spec.rb

@@ -0,0 +1,149 @@
+require 'spec_helper'
+require 'aead/cipher/aes_128_gcm'
+
+describe AEAD::Cipher::AES_128_GCM do
+  subject { self.cipher.new(self.key) }
+
+  let(:algo)      { 'aes-128-gcm' }
+  let(:cipher)    { AEAD::Cipher.new(algo) }
+  let(:key)       { self.cipher.generate_key }
+  let(:nonce)     { self.cipher.generate_nonce }
+  let(:aad)       { SecureRandom.random_bytes }
+  let(:plaintext) { SecureRandom.random_bytes }
+
+  it 'must decrypt its own ciphertexts' do
+    ciphertext = subject.encrypt(self.nonce, self.aad, self.plaintext)
+    plaintext  = subject.decrypt(self.nonce, self.aad, ciphertext)
+
+    plaintext.must_equal self.plaintext
+  end
+
+  it 'must require a 128-bit or larger key' do
+    bad_keys  = [  0,  1,  15 ].map {|size| SecureRandom.random_bytes(size) }
+    good_keys = [ 16, 17, 256 ].map {|size| SecureRandom.random_bytes(size) }
+
+    bad_keys.each do |key|
+      lambda { self.cipher.new(key) }.must_raise ArgumentError
+    end
+
+    good_keys.each do |key|
+      self.cipher.new(key).must_be_kind_of AEAD::Cipher
+    end
+  end
+
+  it 'must require a 12-byte nonce by default' do
+    bad_nonces  = [0, 1, 11, 13 ].map {|size| SecureRandom.random_bytes(size) }
+    good_nonces = [ 12 ]         .map {|size| SecureRandom.random_bytes(size) }
+
+    bad_nonces.each do |nonce|
+      lambda { self.subject.encrypt(nonce, self.plaintext, self.aad) }.
+        must_raise ArgumentError
+    end
+
+    good_nonces.each do |nonce|
+      self.subject.encrypt(nonce, self.plaintext, self.aad).
+        must_be_kind_of String
+    end
+  end
+
+  it 'must require a correct length nonce' do
+    cipher = self.cipher.new(self.key, :iv_len => 16)
+    bad_nonces  = [0, 1, 15, 17 ].map {|size| SecureRandom.random_bytes(size) }
+    good_nonces = [ 16 ]         .map {|size| SecureRandom.random_bytes(size) }
+
+    bad_nonces.each do |nonce|
+      lambda { cipher.encrypt(nonce, self.plaintext, self.aad) }.
+          must_raise ArgumentError
+    end
+
+    good_nonces.each do |nonce|
+      cipher.encrypt(nonce, self.plaintext, self.aad).
+          must_be_kind_of String
+    end
+  end
+
+  it 'must accept empty plaintext' do
+    self.subject.encrypt(nonce, self.aad, nil).must_be_kind_of String
+    self.subject.encrypt(nonce, self.aad, '').must_be_kind_of String
+  end
+
+  it 'must encrypt plaintexts correctly' do
+    subject.encrypt(self.nonce, self.aad, self.plaintext).
+      must_equal openssl_encrypt(self.key, self.nonce, self.aad, self.plaintext)
+  end
+
+  it 'must decrypt ciphertexts correctly' do
+    ciphertext = openssl_encrypt(self.key, self.nonce, self.aad, self.plaintext)
+
+    subject.decrypt(self.nonce, self.aad, ciphertext).
+      must_equal openssl_decrypt(self.key, self.nonce, self.aad, ciphertext)
+  end
+
+  it 'must resist manipulation of the key' do
+    ciphertext = subject.encrypt(self.nonce, self.aad, self.plaintext)
+    cipher     = self.cipher.new twiddle(key)
+
+    lambda { cipher.decrypt(self.nonce, self.aad, ciphertext) }.
+      must_raise ArgumentError
+  end
+
+  it 'must resist manipulation of the nonce' do
+    ciphertext = subject.encrypt(self.nonce, self.aad, self.plaintext)
+    nonce      = twiddle(self.nonce)
+
+    lambda { self.subject.decrypt(nonce, self.aad, ciphertext) }.
+      must_raise ArgumentError
+  end
+
+  it 'must resist manipulation of the ciphertext' do
+    ciphertext = subject.encrypt(self.nonce, self.aad, self.plaintext)
+    ciphertext = twiddle(ciphertext)
+
+    lambda { self.subject.decrypt(self.nonce, self.aad, ciphertext) }.
+      must_raise ArgumentError
+  end
+
+  it 'must resist manipulation of the aad' do
+    ciphertext = subject.encrypt(self.nonce, self.aad, self.plaintext)
+    aad        = twiddle(self.aad)
+
+    lambda { self.subject.decrypt(self.nonce, aad, ciphertext) }.
+      must_raise ArgumentError
+  end
+
+  def twiddle(bytes)
+    # pick a random byte to change
+    index  = SecureRandom.random_number(bytes.bytesize)
+
+    # change it by a random offset that won't loop back around to its
+    # original value
+    offset = SecureRandom.random_number(254) + 1
+    ord    = bytes[index].ord
+    byte   = (ord + offset).modulo(256).chr
+
+    # reconstruct the bytes with the twiddled bit inserted in place
+    bytes[0, index] << byte << bytes[index.succ..-1]
+  end
+
+  def openssl_encrypt(key, nonce, aad, plaintext)
+    cipher     = OpenSSL::Cipher.new(self.algo).encrypt
+    cipher.key = key
+    cipher.iv  = nonce
+    cipher.aad = aad if aad
+
+    cipher.update(plaintext) + cipher.final + cipher.gcm_tag
+  end
+
+  def openssl_decrypt(key, nonce, aad, ciphertext)
+    tag        = ciphertext[ -16 ..  -1 ]
+    ciphertext = ciphertext[   0 .. -17 ]
+
+    cipher         = OpenSSL::Cipher.new(self.algo).decrypt
+    cipher.key     = key
+    cipher.iv      = nonce
+    cipher.gcm_tag = tag
+    cipher.aad     = aad if aad
+
+    cipher.update(ciphertext).tap { cipher.verify }
+  end
+end if OpenSSL::Cipher.ciphers.include?('aes-128-gcm')

data/spec/aead/cipher/aes_256_cbc_hmac_sha_256_spec.rb

@@ -32,8 +32,10 @@ describe AEAD::Cipher::AES_256_CBC_HMAC_SHA_256 do
   end
 
   it 'must require a 16-byte nonce' do
-    bad_nonces  = [ 0, 1, 15, 17 ].map {|size| SecureRandom.random_bytes(size) }
-    good_nonces = [ 16 ]          .map {|size| SecureRandom.random_bytes(size) }
+    bad_nonces  = [ 0, 1, 15, 17 ]
+      .map { |size| SecureRandom.random_bytes(size) }
+    good_nonces = [ 16 ]
+      .map { |size| SecureRandom.random_bytes(size) }
 
     bad_nonces.each do |nonce|
       lambda { self.subject.encrypt(nonce, self.plaintext, self.aad) }.
@@ -46,9 +48,9 @@ describe AEAD::Cipher::AES_256_CBC_HMAC_SHA_256 do
     end
   end
 
-  it 'must require a non-empty plaintext' do
-    lambda { self.subject.encrypt(nonce, self.aad, nil) }.must_raise ArgumentError
-    lambda { self.subject.encrypt(nonce, self.aad,  '') }.must_raise ArgumentError
+  it 'must accept empty plaintext' do
+    self.subject.encrypt(nonce, self.aad, nil).must_be_kind_of String
+    self.subject.encrypt(nonce, self.aad, '').must_be_kind_of String
   end
 
   it 'must encrypt plaintexts correctly' do

data/spec/aead/cipher/aes_256_ctr_hmac_sha_256_spec.rb

@@ -46,9 +46,9 @@ describe AEAD::Cipher::AES_256_CTR_HMAC_SHA_256 do
     end
   end
 
-  it 'must require a non-empty plaintext' do
-    lambda { self.subject.encrypt(nonce, self.aad, nil) }.must_raise ArgumentError
-    lambda { self.subject.encrypt(nonce, self.aad,  '') }.must_raise ArgumentError
+  it 'must accept empty plaintext' do
+    self.subject.encrypt(nonce, self.aad, nil).must_be_kind_of String
+    self.subject.encrypt(nonce, self.aad, '').must_be_kind_of String
   end
 
   it 'must encrypt plaintexts correctly' do

data/spec/aead/cipher/aes_256_gcm_spec.rb

@@ -31,7 +31,7 @@ describe AEAD::Cipher::AES_256_GCM do
     end
   end
 
-  it 'must require a 12-byte nonce' do
+  it 'must require a 12-byte nonce by default' do
     bad_nonces  = [0, 1, 11, 13 ].map {|size| SecureRandom.random_bytes(size) }
     good_nonces = [ 12 ]         .map {|size| SecureRandom.random_bytes(size) }
 
@@ -46,9 +46,25 @@ describe AEAD::Cipher::AES_256_GCM do
     end
   end
 
-  it 'must require a non-empty plaintext' do
-    lambda { self.subject.encrypt(nonce, self.aad, nil) }.must_raise ArgumentError
-    lambda { self.subject.encrypt(nonce, self.aad,  '') }.must_raise ArgumentError
+  it 'must require a correct length nonce' do
+    cipher = self.cipher.new(self.key, :iv_len => 16)
+    bad_nonces  = [0, 1, 15, 17 ].map {|size| SecureRandom.random_bytes(size) }
+    good_nonces = [ 16 ]         .map {|size| SecureRandom.random_bytes(size) }
+
+    bad_nonces.each do |nonce|
+      lambda { cipher.encrypt(nonce, self.plaintext, self.aad) }.
+          must_raise ArgumentError
+    end
+
+    good_nonces.each do |nonce|
+      cipher.encrypt(nonce, self.plaintext, self.aad).
+          must_be_kind_of String
+    end
+  end
+
+  it 'must accept empty plaintext' do
+    self.subject.encrypt(nonce, self.aad, nil).must_be_kind_of String
+    self.subject.encrypt(nonce, self.aad, '').must_be_kind_of String
   end
 
   it 'must encrypt plaintexts correctly' do

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aead
 version: !ruby/object:Gem::Version
-  version: 1.8.0
+  version: 1.8.1
 platform: ruby
 authors:
 - Stephen Touset
 autorequire: 
 bindir: script
 cert_chain: []
-date: 2013-10-30 00:00:00.000000000 Z
+date: 2014-12-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: macaddr
@@ -112,16 +112,16 @@ dependencies:
   name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '4'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '4'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -214,12 +214,15 @@ files:
 - ext/openssl/cipher/aead/extconf.rb
 - lib/aead.rb
 - lib/aead/cipher.rb
+- lib/aead/cipher/aes_128_gcm.rb
 - lib/aead/cipher/aes_256_cbc_hmac_sha_256.rb
 - lib/aead/cipher/aes_256_ctr_hmac_sha_256.rb
 - lib/aead/cipher/aes_256_gcm.rb
+- lib/aead/cipher/aes_gcm.rb
 - lib/aead/cipher/aes_hmac.rb
 - lib/aead/nonce.rb
 - lib/openssl/cipher/.gitignore
+- spec/aead/cipher/aes_128_gcm_spec.rb
 - spec/aead/cipher/aes_256_cbc_hmac_sha_256_spec.rb
 - spec/aead/cipher/aes_256_ctr_hmac_sha_256_spec.rb
 - spec/aead/cipher/aes_256_gcm_spec.rb
@@ -227,7 +230,8 @@ files:
 - spec/aead/nonce_spec.rb
 - spec/spec_helper.rb
 homepage: https://github.com/onelogin/aead
-licenses: []
+licenses:
+- MIT
 metadata: {}
 post_install_message: 
 rdoc_options: []
@@ -245,14 +249,16 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.2.0.preview.1
+rubygems_version: 2.2.2
 signing_key: 
 specification_version: 4
 summary: Ruby library to generate AEADs
 test_files:
+- spec/aead/cipher/aes_128_gcm_spec.rb
 - spec/aead/cipher/aes_256_cbc_hmac_sha_256_spec.rb
 - spec/aead/cipher/aes_256_ctr_hmac_sha_256_spec.rb
 - spec/aead/cipher/aes_256_gcm_spec.rb
 - spec/aead/cipher_spec.rb
 - spec/aead/nonce_spec.rb
 - spec/spec_helper.rb
+has_rdoc: