ccrypto 0.1.0 → 0.1.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 708c818b1776a95812b03efc9cc90bffb7e75ef5fe3325c455dfd3b5ae8b52fe
-  data.tar.gz: f62763565bb50a8216d461e02dfb9737cb20867b8606c06e7f1200a161960d9a
+  metadata.gz: d78804b935e3d34f37fb6a0923bf58fd0c7eb8d23686b7da39233c7faee7fcc6
+  data.tar.gz: a9b72eb6dd16aceb1d0ae3dbd7171df9ae0b5113a3e45df5340f9e880331686e
 SHA512:
-  metadata.gz: b35007b3c2e4316328d14fa4a2929f2c8b6be032468711586efb63aeaf4271d5b9714f8d8723b4f0e9871bc46b4bab4e9afcf2dc9a43a7679bd33377cf6fabcb
-  data.tar.gz: '08e2704618f620d371b4d1eebfbe4715b0516a88b1ab09a336d631bedfbccc7dbb96d19ea872918976c6909bdda81c1dbb0f700bf29474083a6ffa961ee42af2'
+  metadata.gz: 17e938a40eb693df83d24341c1400d59640d65e49e53535f838dd918abf5016f541b80897fcb04d3ed4b45a14bcf035cfc7405ce8dbd3c1783c4ef1472874393
+  data.tar.gz: f4efc3711e6886ff8ad32e846cf2db74478197e4643a1a5065e938f7f40acbe4515d46cd9d5d9473ad49ae2ef55a5b2a4a1bc2920f1532546ea9ec4c6305747a

data/.release_history.yml

@@ -0,0 +1,8 @@
+---
+ccrypto:
+- :version: 0.1.0
+  :timestamp: 1660209199.3682408
+- :version: 0.1.1
+  :timestamp: 1678162760.4304333
+- :version: 0.1.2
+  :timestamp: 1680181385.6366327

data/Gemfile.lock

@@ -1,40 +1,81 @@
 PATH
   remote: .
   specs:
-    ccrypto (0.1.0)
+    ccrypto (0.1.3)
+      activesupport
       teLogger
       toolrack
 
 GEM
   remote: https://rubygems.org/
   specs:
-    base58 (0.2.3)
+    activesupport (7.0.4.3)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+    concurrent-ruby (1.2.2)
+    devops_assist (0.3.11)
+      git_cli
+      git_cli_prompt (~> 0.3.3)
+      gvcs
+      teLogger
+      toolrack
+      tty-prompt
     diff-lcs (1.5.0)
+    git_cli (0.11.2)
+      gvcs
+      ptools (~> 1.4.0)
+      teLogger
+      toolrack
+    git_cli_prompt (0.3.4)
+      teLogger
+      toolrack
+      tty-prompt
+    gvcs (0.1.1)
+    i18n (1.12.0)
+      concurrent-ruby (~> 1.0)
+    minitest (5.18.0)
+    pastel (0.8.0)
+      tty-color (~> 0.5)
+    ptools (1.4.3)
     rake (13.0.6)
-    rspec (3.11.0)
-      rspec-core (~> 3.11.0)
-      rspec-expectations (~> 3.11.0)
-      rspec-mocks (~> 3.11.0)
-    rspec-core (3.11.0)
-      rspec-support (~> 3.11.0)
-    rspec-expectations (3.11.0)
+    rspec (3.12.0)
+      rspec-core (~> 3.12.0)
+      rspec-expectations (~> 3.12.0)
+      rspec-mocks (~> 3.12.0)
+    rspec-core (3.12.1)
+      rspec-support (~> 3.12.0)
+    rspec-expectations (3.12.2)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.11.0)
-    rspec-mocks (3.11.0)
+      rspec-support (~> 3.12.0)
+    rspec-mocks (3.12.5)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.11.0)
-    rspec-support (3.11.0)
-    teLogger (0.1.0)
-    tlogger (0.26.3)
-    toolrack (0.18.3)
-      base58
-      tlogger
+      rspec-support (~> 3.12.0)
+    rspec-support (3.12.0)
+    teLogger (0.2.2)
+    toolrack (0.21.0)
+    tty-color (0.6.0)
+    tty-cursor (0.7.1)
+    tty-prompt (0.23.1)
+      pastel (~> 0.8)
+      tty-reader (~> 0.8)
+    tty-reader (0.9.0)
+      tty-cursor (~> 0.7)
+      tty-screen (~> 0.8)
+      wisper (~> 2.0)
+    tty-screen (0.8.1)
+    tzinfo (2.0.6)
+      concurrent-ruby (~> 1.0)
+    wisper (2.0.1)
 
 PLATFORMS
+  ruby
   x86_64-linux
 
 DEPENDENCIES
   ccrypto!
+  devops_assist
   rake (~> 13.0)
   rspec (~> 3.0)
 

data/ccrypto.gemspec

@@ -8,8 +8,8 @@ Gem::Specification.new do |spec|
   spec.authors       = ["Ian"]
   spec.email         = ["cameronian0@protonmail.com"]
 
-  spec.summary       = ""
-  spec.description   = ""
+  spec.summary       = "Crypto API normalization for Ruby and Java"
+  spec.description   = "Attempt to have a common crypto for Ruby and Java to take the selection decision out from the application development until further date"
   spec.homepage      = "https://github.com/cameronian/ccrypto"
   spec.required_ruby_version = ">= 2.4.0"
 

data/lib/ccrypto/configs/cipher_config.rb

@@ -2,7 +2,7 @@
 
 module Ccrypto
 
-  module CipherGCMMode
+  module CipherAuthMode
     attr_accessor :auth_data, :auth_tag
   end
 
@@ -15,23 +15,42 @@ module Ccrypto
     attr_accessor :iv, :ivLength
     attr_accessor :cipherOps
 
+    # required by certain mode such as CCM
+    attr_accessor :plaintext_length, :ciphertext_length, :fixed_auth_tag_length
+
+    # Use cases : 
+    # openssl aes-128-xts only accepts input min 16 bytes
+    # other no padding mode aes128-wrap only works on block of 8 bytes
+    attr_reader :min_input_length, :mandatory_block_size
+
+    # provider specific
+    attr_accessor :native_config
+
     def initialize(algo, opts = {  }, &block)
       @algo = algo
 
       @logger = Tlogger.new
       @logger.tag = :cipher_conf
+
+      @authMode = false
+      @plaintext_length = 0
+      @ciphertext_length = 0
+      @min_input_length = -1
+      @mandatory_Block_size = -1
+      @fixed_iv_length = -1
       
       if not_empty?(opts) and opts.is_a?(Hash)
         @mode = opts[:mode]
 
-        if is_mode?(:gcm)
-          self.extend CipherGCMMode
-          @logger.debug "Extending GCM mode"
+        @authMode = opts[:authMode] || false
+        #if is_mode?(:gcm)
+        if @authMode
+          self.extend CipherAuthMode
+          @logger.debug "Extending auth mode"
 
           @auth_data = opts[:auth_data]
           @auth_tag = opts[:auth_tag]
 
-          #p "auth data : #{@auth_data}"
         end
 
         @iv = opts[:iv] 
@@ -43,29 +62,43 @@ module Ccrypto
         @padding = opts[:padding]
 
         @cipherOps = opts[:cipherOps]
+
+        @min_input_length = opts[:min_input_length] || -1 
+
+        @mandatory_block_size = opts[:mandatory_block_size] || -1
+
+        @fixed_auth_tag_length = opts[:fixed_auth_tag_length] || -1
+
       end
 
-      if block
-        @mode = block.call(:mode)
+      #if block
+      #  @mode = block.call(:mode)
 
-        if is_mode?(:gcm)
-          self.extend CipherGCMMode
-          @logger.debug "Extending GCM mode"
+      #  #if is_mode?(:gcm)
+      #  if @authMode
+      #    self.extend CipherAuthMode
+      #    @logger.debug "Extending auth mode"
 
-          @auth_data = block.call(:auth_data)
-          @auth_tag = block.call(:auth_tag)
-        end
+      #    @auth_data = block.call(:auth_data)
+      #    @auth_tag = block.call(:auth_tag)
+      #  end
 
-        @iv = block.call(:iv)
-        @ivLength = block.call(:ivLength) || 16 if @iv.nil?
+      #  @iv = block.call(:iv)
+      #  @ivLength = block.call(:ivLength) || 16 if @iv.nil?
 
-        @key = block.call(:key)
-        @keysize = block.call(:keysize) if @key.nil?
+      #  @key = block.call(:key)
+      #  @keysize = block.call(:keysize) if @key.nil?
 
-        @padding = block.call(:padding)
+      #  @padding = block.call(:padding)
 
-        @cipherOps = block.call(:cipherOps)
-      end
+      #  @cipherOps = block.call(:cipherOps)
+
+      #  @plaintext_length = 0
+      #  @ciphertext_length = 0
+
+      #  @min_input_length = opts[:min_input_length] || -1 
+
+      #end
 
     end
 
@@ -77,6 +110,18 @@ module Ccrypto
       not_empty?(@key)
     end
 
+    def has_min_input_length?
+      not_empty?(@min_input_length) and @min_input_length.to_i > -1
+    end
+
+    def has_fixed_auth_tag_length?
+      not_empty?(@fixed_auth_tag_length) and @fixed_auth_tag_length.to_i > -1
+    end
+
+    def is_auth_mode_cipher?
+      @authMode == true
+    end
+
     def is_algo?(algo)
       if @algo.nil? or is_empty?(@algo)
         false
@@ -89,10 +134,18 @@ module Ccrypto
       if @mode.nil? or is_empty?(@mode)
         false
       else
-        (@mode.to_s.downcase =~ /#{mode.to_s}/) != nil
+        (@mode.to_s.downcase =~ /#{mode.to_s.downcase}/) != nil
       end
     end
 
+    def needs_plaintext_length?
+      is_mode?(:ccm)
+    end
+
+    def needs_ciphertext_length?
+      is_mode?(:ccm)
+    end
+
     def encrypt_cipher_mode
       @cipherOps = :encrypt
     end
@@ -118,7 +171,9 @@ module Ccrypto
     end
 
     def to_s
-      "#{@algo}-#{@keysize}-#{@mode}-#{@padding}"
+      res = [@algo, @keysize, @mode, @padding].reject { |v| is_empty?(v) }.join("-")
+      "#{res} (#{@authMode})"
+      #"#{@algo}-#{@keysize}-#{@mode}-#{@padding}"
     end
 
     def logger
@@ -130,21 +185,21 @@ module Ccrypto
     end
   end
 
-  class DirectCipherConfig < CipherConfig
-    # str can be String or Hash
-    # If String it will be directly used by underlying
-    # engine with minimum parsing which means might not have other
-    # info
-    def initialize(str)
-      raise CipherConfigException, "Hash is expected" if not str.is_a?(Hash)
-      super(str[:algo], str)
-    end
-
-  end
-
-  class CipherEngineConfig < CipherConfig
-    # engine that is discovered by cipher engine
-    # Means can directly use the object
-  end
+  #class DirectCipherConfig < CipherConfig
+  #  # str can be String or Hash
+  #  # If String it will be directly used by underlying
+  #  # engine with minimum parsing which means might not have other
+  #  # info
+  #  def initialize(str)
+  #    raise CipherConfigException, "Hash is expected" if not str.is_a?(Hash)
+  #    super(str[:algo], str)
+  #  end
+
+  #end
+
+  #class CipherEngineConfig < CipherConfig
+  #  # engine that is discovered by cipher engine
+  #  # Means can directly use the object
+  #end
 
 end

data/lib/ccrypto/configs/kdf_config.rb

@@ -41,6 +41,7 @@ module Ccrypto
     # https://stackoverflow.com/a/33297994/3625825
 
     def initialize
+      @algo = :scrypt
       @cost = 16384 # 2**14
       @blockSize = 8
       @parallel = 1
@@ -51,17 +52,57 @@ module Ccrypto
   class HKDFConfig < KDFConfig
     attr_accessor :salt, :info, :digest
     def initialize
+      @algo = :hkdf
       @salt = SecureRandom.random_bytes(16)
-      @digest = :sha256
+      @digest = :sha3_256
     end
   end
 
   class PBKDF2Config < KDFConfig
     attr_accessor :salt, :digest, :iter
     def initialize
+      @algo = :pbkdf2
       @salt = SecureRandom.random_bytes(16)
-      @digest = :sha256
-      @iter = rand(200000..400000)
+      @digest = :sha3_256
+      @iter = rand(300000..500000)
     end
   end
+
+  class Argon2Config < KDFConfig
+
+    attr_accessor :cost, :salt, :secret, :parallel, :iter
+    attr_accessor :variant
+
+    def initialize
+
+      @algo = :argon2
+
+      # "salt" which can be stored non-secure or with the password Hash
+      @salt = SecureRandom.random_bytes(16)
+      
+      # Secret value which has to be stored in a different secure location from the password hashes
+      @secret = SecureRandom.random_bytes(16)
+
+      # The RFC recommends 4 GB for backend authentication and 1 GB for frontend authentication.
+      @cost = 1*1024*1024*1024 
+
+      # Choose the Number of CPU-Threads you can afford each call (2 Cores = 4 Threads)
+      @parallel = 4
+
+      # Set the number of Iterations each call -> More Iterations = Better Security + more Hashing Time
+      # > 3 Iterations recommended
+      @iter = 3
+
+      # Follow BC library
+      # Argon2d
+      # Argon2i (recommended)
+      # Argon2id
+      # Argon2_version_10
+      # Argon2_version_13
+      @variant = :argon2i
+
+    end
+
+  end
+
 end

data/lib/ccrypto/configs/key_config.rb

@@ -10,5 +10,9 @@ module Ccrypto
       "#{@algo}/#{@keysize}"
     end
 
+    def self.supported_secret_key_config(&block)
+      Provider.instance.provider.supported_secret_key_config(&block)
+    end
+
   end
 end

data/lib/ccrypto/configs/keypair_config.rb

@@ -1,11 +1,32 @@
 
 
 module Ccrypto
+
   class KeypairConfig
     include AlgoConfig
 
     attr_accessor :algo
     attr_accessor :keypair, :private_key, :public_key
+    
+    attr_reader :algo_status
+
+    Algo_Active = :active
+    Algo_NotRecommended = :not_recommended
+    Algo_Obsolete = :obsolete
+    Algo_Broken = :broken
+
+    attr_reader :default
+
+    attr_accessor :native_config 
+
+    def initialize(status = Algo_Active, default = false)
+      @algo_status = status
+      @default = default
+    end
+
+    def is_default_algo?
+      @default
+    end
 
     def has_keypair?
       (not @keypair.nil?) or not (@privateKey.nil? and @publicKey.nil?)
@@ -26,29 +47,85 @@ module Ccrypto
         not @public_key.nil?
       end
     end
-  end
+
+    def self.keypair_purposes
+      {
+        signing: "Keypair for signing and digital signature operation",
+        cipher: "Keypair for data encryption operation",
+        sign_and_encrypt: "Keypair for both signing and data encryption operation"
+      }
+    end
+
+    def self.supported_keypair_config(purpose = :signing, &block)
+      Provider.instance.provider.supported_keypair_config(purpose, &block)
+    end
+
+  end # KeypairConfig
 
   class ECCConfig < KeypairConfig
+
+    def self.name
+      "Elliptic Curve (ECC)"
+    end
+
     attr_accessor :curve
-    def initialize(curve = nil)
+    def initialize(curve = nil, status = Algo_Active, default = false)
       @algo = :ecc
       @curve = curve || :prime256v1
+      @curve = @curve.to_sym if not @curve.is_a?(Symbol)
+      super(status, default)
     end
 
     def to_s
-      "ECC-#{@curve}"
+      "#{@curve}"
     end
-  end
+
+    def self.supported_curves(&block)
+      Provider.instance.provider.algo_instance(*[ECCConfig], &block).supported_curves
+    end
+  end # ECCConfig
 
   class RSAConfig < KeypairConfig
+    def self.name
+      "RSA"
+    end
+
     attr_accessor :keysize
-    def initialize(keysize = 2048)
+    def initialize(keysize = 2048, status = Algo_Active, default = false)
       @keysize = keysize
+      super(status, default)
     end
 
     def to_s
       "RSA-#{keysize} bits"
     end
+
+    def self.supported_keysizes(&block)
+      Provider.instance.provider.algo_instance(*[RSAConfig],&block).supported_keysizes
+    end
+  end # RSAConfig
+
+  # ED25519 for data signature
+  class ED25519Config < KeypairConfig
+    def self.name
+      "ED25519 (Signing Only)"
+    end
+
+    def initialize
+      algo = :ed25519
+      super(Algo_Active, true)
+    end
+  end
+
+  # X25519 for key exchange
+  class X25519Config < KeypairConfig
+    def self.name
+      "X25519 (Data Encipherment only)"
+    end
+    def initialize
+      algo = :x25519
+      super(Algo_Active, true)
+    end
   end
 
 end

data/lib/ccrypto/configs/x509_cert_profile.rb

@@ -15,13 +15,17 @@ module Ccrypto
 
       attr_accessor :owner_name, :org
       attr_accessor :org_unit, :email, :dns_name, :ip_addr, :uri
-      attr_accessor :public_key, :serial, :not_before, :not_after
+      attr_accessor :locality, :country
+      attr_accessor :public_key, :serial # , :not_before, :not_after
+      attr_accessor :csr
       attr_accessor :subj_key_id, :auth_key_id
       attr_accessor :crl_dist_point, :ocsp_url, :issuer_url
       attr_accessor :issuer_cert
       attr_accessor :hashAlgo
       attr_accessor :raise_if_validity_date_not_in_issuer_range
 
+      attr_accessor :issuer_path_len
+
       def initialize
         @hashAlgo = Ccrypto::SHA256
         @serial = SecureRandom.hex(16)
@@ -34,6 +38,28 @@ module Ccrypto
         @raise_if_validity_date_not_in_issuer_range = false
       end
 
+      def not_before=(val)
+        @not_before = val
+      end
+      alias_method :valid_from=, :not_before=
+
+      def not_before
+        @not_before
+      end
+      alias_method :valid_from, :not_before
+
+      def not_after=(val)
+        @not_after = val
+      end
+      alias_method :valid_until=, :not_after=
+      alias_method :valid_to=, :not_after=
+      
+      def not_after
+        @not_after
+      end
+      alias_method :valid_until, :not_after
+      alias_method :valid_to, :not_after
+
       def gen_issuer_cert?
         @issuerCert
       end
@@ -65,6 +91,18 @@ module Ccrypto
         end
       end
 
+      def email=(val)
+        if @email.nil?
+          @email = []
+        end
+
+        case val
+        when Array
+          @email += val
+        else
+          @email << val
+        end
+      end
       def email
         if @email.nil?
           []
@@ -75,6 +113,18 @@ module Ccrypto
         end
       end
 
+      def dns_name=(val)
+        if @dns_name.nil?
+          @dns_name = []
+        end
+
+        case val
+        when Array
+          @dns_name += val
+        else
+          @dns_name << val
+        end
+      end
       def dns_name
         if @dns_name.nil?
           []
@@ -85,6 +135,19 @@ module Ccrypto
         end
       end
 
+
+      def ip_addr=(val)
+        if @ip_addr.nil?
+          @ip_addr = []
+        end
+
+        case val
+        when Array
+          @ip_addr += val
+        else
+          @ip_addr << val
+        end
+      end
       def ip_addr
         if @ip_addr.nil?
           []
@@ -95,6 +158,19 @@ module Ccrypto
         end
       end
 
+      def uri=(val)
+        if @uri.nil?
+          @uri = []
+        end
+
+        case val
+        when Array
+          @uri += val
+        else
+          @uri << val
+        end
+      end
+
       def uri
         if @uri.nil?
           []
@@ -236,8 +312,8 @@ module Ccrypto
           clientAuth: "TLS client authentication",
           codeSigning: "Code signing",
           emailProtection: "Email protection",
-          timestamping: "Time stamping",
-          ocspSigning: "Online Cert Status Protocol signing",
+          timeStamping: "Time stamping",
+          OCSPSigning: "Online Cert Status Protocol signing",
           ipSecIKE: "IPSec Initial Key Exchange",
           msCodeInd: "Microsoft Code Ind",
           msCodeCom: "Microsoft Code Com",
@@ -292,6 +368,17 @@ module Ccrypto
         @domainKeyUsage
       end
 
+      def add_custom_extension(oid, value, type = :string, critical = false)
+        custom_extension[oid] = { type: type, value: value, critical: critical }
+      end
+
+      def custom_extension
+        if @custom_extension.nil?
+          @custom_extension = {  }
+        end
+        @custom_extension
+      end
+
     end
   end
 end

data/lib/ccrypto/configs/x509_csr_profile.rb

@@ -0,0 +1,147 @@
+
+require_relative 'algo_config'
+
+module Ccrypto
+  module X509
+    class CSRProfile
+      include Ccrypto::AlgoConfig
+      include TR::CondUtils
+
+      include TeLogger::TeLogHelper
+      teLogger_tag :csr
+
+      attr_accessor :owner_name, :org
+      attr_accessor :org_unit, :email, :dns_name, :ip_addr, :uri
+      attr_accessor :public_key
+      attr_accessor :hashAlgo
+
+      def initialize
+        @hashAlgo = Ccrypto::SHA256
+      end
+
+      def org_unit
+        if @org_unit.nil?
+          []
+        elsif not @org_unit.is_a?(Array)
+          [@org_unit]
+        else
+          @org_unit
+        end
+      end
+
+      def email=(val)
+        if @email.nil?
+          @email = []
+        end
+
+        case val
+        when Array
+          @email += val
+        else
+          @email << val
+        end
+      end
+      def email
+        if @email.nil?
+          []
+        elsif not @email.is_a?(Array)
+          [@email]
+        else
+          @email
+        end
+      end
+
+      def dns_name=(val)
+        if @dns_name.nil?
+          @dns_name = []
+        end
+
+        case val
+        when Array
+          @dns_name += val
+        else
+          @dns_name << val
+        end
+      end
+
+      def dns_name
+        if @dns_name.nil?
+          []
+        elsif not @dns_name.is_a?(Array)
+          [@dns_name]
+        else
+          @dns_name
+        end
+      end
+
+
+      def ip_addr=(val)
+        if @ip_addr.nil?
+          @ip_addr = []
+        end
+
+        case val
+        when Array
+          @ip_addr += val
+        else
+          @ip_addr << val
+        end
+      end
+      def ip_addr
+        if @ip_addr.nil?
+          []
+        elsif not @ip_addr.is_a?(Array)
+          [@ip_addr]
+        else
+          @ip_addr
+        end
+      end
+
+      def uri=(val)
+        if @uri.nil?
+          @uri = []
+        end
+
+        case val
+        when Array
+          @uri += val
+        else
+          @uri << val
+        end
+      end
+
+      def uri
+        if @uri.nil?
+          []
+        elsif not @uri.is_a?(Array)
+          [@uri]
+        else
+          @uri
+        end
+      end
+
+      def add_custom_attribute(key,value, type = :string)
+        additional_attributes[key] = { value: value, type: type }
+      end
+
+      def additional_attributes
+        if @addAttr.nil?
+          @addAttr = {}
+        end
+        @addAttr
+      end
+
+      def add_custom_extension(oid, value, type = :string, critical = false)
+        custom_extension[oid] = { type: type, value: value, critical: critical }
+      end
+
+      def custom_extension
+        if @custom_extension.nil?
+          @custom_extension = {  }
+        end
+        @custom_extension
+      end
+
+    end
+  end
+end

data/lib/ccrypto/key_bundle.rb

@@ -3,6 +3,11 @@
 module Ccrypto
   module KeyBundle
     attr_accessor :nativeKeypair
+
+    def KeyBundle.from_storage(*args, &block)
+      Provider.instance.provider.keybundle_from_storage(*args, &block)
+    end
+
   end
 
   module ECCKeyBundle
@@ -12,4 +17,12 @@ module Ccrypto
   module RSAKeyBundle
     include KeyBundle
   end
+
+  module ED25519KeyBundle
+    include KeyBundle
+  end
+
+  module X25519KeyBundle
+    include KeyBundle
+  end
 end

data/lib/ccrypto/private_key.rb

@@ -27,4 +27,6 @@ module Ccrypto
 
   class ECCPrivateKey < PrivateKey; end
   class RSAPrivateKey < PrivateKey; end
+  class ED25519PrivateKey < PrivateKey; end
+  class X25519PrivateKey < PrivateKey; end
 end

data/lib/ccrypto/public_key.rb

@@ -27,4 +27,6 @@ module Ccrypto
 
   class ECCPublicKey < PublicKey; end
   class RSAPublicKey < PublicKey; end
+  class ED25519PublicKey < PublicKey; end
+  class X25519PublicKey < PublicKey; end
 end

data/lib/ccrypto/supported_cipher_list.rb

@@ -0,0 +1,141 @@
+
+require 'singleton'
+
+module Ccrypto
+
+  class SupportedCipherListError < StandardError; end
+
+  class SupportedCipherList
+    include TR::CondUtils
+    include Singleton
+
+    include TeLogger::TeLogHelper
+    teLogger_tag :supCipherList
+
+    def initialize
+      @algos = {}
+      @keysizes = {}
+      @modes = {}
+
+      @algoKeysize = {}
+      @algoKeysizeMode = {}
+      @keysizeMode = {}
+      @algoMode = {}
+      @items = []
+    end
+
+    def register(cc)
+      raise SupportedCipherListError, "Ccrypto::CipherConfig required. Got '#{cc.class}'" if not cc.is_a?(Ccrypto::CipherConfig)
+
+      @items << cc
+      algo = cc.algo.to_sym
+      @algos[algo] = [] if @algos[algo].nil?
+      @algos[algo] << cc
+
+      keysize = cc.keysize.to_s
+      @keysizes[keysize] = [] if @keysizes[keysize].nil?
+      @keysizes[keysize] << cc
+
+      mode = cc.mode.nil? ? "" : cc.mode.to_s
+      if not_empty?(mode)
+        @modes[mode] = [] if @modes[mode].nil?
+        @modes[mode] << cc
+      end
+
+      @algoKeysize[algo] = {  } if @algoKeysize[algo].nil?
+      @algoKeysize[algo][keysize] = [] if @algoKeysize[algo][keysize].nil?
+      @algoKeysize[algo][keysize] << cc
+
+      if not_empty?(mode)
+        @algoMode[algo] = {} if @algoMode[algo].nil?
+        @algoMode[algo][mode] = [] if @algoMode[algo][mode].nil?
+        @algoMode[algo][mode] << cc
+
+        @keysizeMode[keysize] = {} if @keysizeMode[keysize].nil?
+        @keysizeMode[keysize][mode] = [] if @keysizeMode[keysize][mode].nil?
+        @keysizeMode[keysize][mode] << cc
+
+        @algoKeysizeMode[algo] = {} if @algoKeysizeMode[algo].nil?
+        @algoKeysizeMode[algo][keysize] = {} if @algoKeysizeMode[algo][keysize].nil?
+        @algoKeysizeMode[algo][keysize][mode] = [] if @algoKeysizeMode[algo][keysize][mode].nil?
+        @algoKeysizeMode[algo][keysize][mode] << cc
+      end 
+
+    end
+
+    def items
+      @items.freeze
+    end
+
+    def each(&block)
+      @items.each(&block)
+    end
+
+    def algo_count
+      @algos.length
+    end
+    def find_algo(algo)
+      res = @algos[algo.to_sym] || []
+      res.freeze
+    end
+
+    # Problem with this is the algo is in symbol
+    # and external app need to remember to conver it to
+    # symbol in order to compare.
+    # therefore the new method is_algo_supported? created
+    # to solve this issue
+    def algos
+      @algos.keys.freeze
+    end
+
+    def is_algo_supported?(algo)
+      @algos.keys.include?(algo.to_sym)
+    end
+
+    def keysizes_count
+      @keysizes.length 
+    end
+    def keysizes
+      @keysizes.keys.freeze
+    end
+    def find_config_by_keysize(keysize)
+      @keysizes[keysize.to_s].freeze
+    end
+
+    def mode_count
+      @modes.length
+    end
+    def find_config_by_mode(mode)
+      @modes[mode.to_s].freeze
+    end
+    def modes
+      @modes.keys.freeze
+    end
+
+    def find_algo_keysize(algo, keysize)
+      res = @algoKeysize[algo.to_sym] || {  }
+      res = res[keysize.to_s] || []
+      res.freeze
+    end
+
+    def find_algo_mode(algo, mode)
+      res = @algoMode[algo.to_sym] || {}
+      res = res[mode.to_s] || []
+      res.freeze
+    end
+
+    def find_algo_keysize_mode(algo, keysize, mode)
+      res = @algoKeysizeMode[algo.to_sym] || {}
+      res = res[keysize.to_s] || {}
+      res = res[mode.to_s] || []
+      res.freeze
+    end
+
+    def find_keysize_modes(keysize, mode)
+      res = @keysizeMode[keysize.to_s] || {}
+      res = res[mode.to_s] || []
+      res.freeze
+    end
+
+  end
+end

data/lib/ccrypto/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Ccrypto
-  VERSION = "0.1.0"
+  VERSION = "0.1.3"
 end

data/lib/ccrypto/x509_csr.rb

@@ -0,0 +1,11 @@
+
+
+module Ccrypto
+  class X509CSR
+    attr_accessor :nativeCSR
+
+    def initialize(csr)
+      @nativeCSR = csr
+    end
+  end
+end

data/lib/ccrypto.rb

@@ -1,13 +1,14 @@
 # frozen_string_literal: true
 
 require 'toolrack'
-require 'tlogger'
+require 'teLogger'
 
 require_relative "ccrypto/version"
 
 require_relative 'ccrypto/provider'
 require_relative 'ccrypto/algo_factory'
 require_relative 'ccrypto/key_bundle'
+require_relative 'ccrypto/supported_cipher_list'
 
 require_relative 'ccrypto/asn1'
 require_relative 'ccrypto/asn1_object'
@@ -23,6 +24,7 @@ require_relative 'ccrypto/private_key'
 require_relative 'ccrypto/secret_key'
 
 require_relative 'ccrypto/x509_cert'
+require_relative 'ccrypto/x509_csr'
 
 module Ccrypto
   class Error < StandardError; end
@@ -34,6 +36,10 @@ module Ccrypto
   class KeypairEngineException < StandardError; end
   class KeyBundleException < StandardError; end
   class X509EngineException < StandardError; end
+
+  class X509CSRException < StandardError; end
+  class X509CSRSignatureInvalid < StandardError; end
+
   class CipherEngineException < StandardError; end
   class ASN1EngineException < StandardError; end
 
@@ -50,4 +56,7 @@ module Ccrypto
 
   class KeyBundleStorageException < StandardError; end
   # Your code goes here...
+
+  Root_OID = ["2","0","18"]
+
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ccrypto
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.3
 platform: ruby
 authors:
 - Ian
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-08-11 00:00:00.000000000 Z
+date: 2023-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: teLogger
@@ -66,13 +66,15 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-description: ''
+description: Attempt to have a common crypto for Ruby and Java to take the selection
+  decision out from the application development until further date
 email:
 - cameronian0@protonmail.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".release_history.yml"
 - ".rspec"
 - Gemfile
 - Gemfile.lock
@@ -97,14 +99,17 @@ files:
 - lib/ccrypto/configs/secret_sharing_config.rb
 - lib/ccrypto/configs/secure_random_config.rb
 - lib/ccrypto/configs/x509_cert_profile.rb
+- lib/ccrypto/configs/x509_csr_profile.rb
 - lib/ccrypto/key_bundle.rb
 - lib/ccrypto/private_key.rb
 - lib/ccrypto/provider.rb
 - lib/ccrypto/public_key.rb
 - lib/ccrypto/secret_key.rb
+- lib/ccrypto/supported_cipher_list.rb
 - lib/ccrypto/util_factory.rb
 - lib/ccrypto/version.rb
 - lib/ccrypto/x509_cert.rb
+- lib/ccrypto/x509_csr.rb
 homepage: https://github.com/cameronian/ccrypto
 licenses: []
 metadata: {}
@@ -123,8 +128,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.22
+rubygems_version: 3.4.10
 signing_key: 
 specification_version: 4
-summary: ''
+summary: Crypto API normalization for Ruby and Java
 test_files: []