chef-encrypted-attributes 0.1.0 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4457a367d12530c417f70d98a8a605e38da1c87b
-  data.tar.gz: 0ea836eb01e192f6dfcb851764b85c2fe0ed7798
+  metadata.gz: 17b97315e38f6e17547fb5686b485d628c84b40e
+  data.tar.gz: c475bd6e9f5631ffa0727cc2685938fa3263c611
 SHA512:
-  metadata.gz: 4db3eb8c4777c354b74885f85e480525a02fb90877d563ce4c056060b79680fe199767bff212e7a6eb3c7d479cc40c2b50525aab3d0b8da5eceb87f34d148570
-  data.tar.gz: bc645990a5ee3bc2ac9134710a8bc6013f7325f9d0ee0ac2df543ec14e41c224fce8736461df1b87d5d4cd5d4bdee5030167bf6170eee39bb0f712297291221a
+  metadata.gz: a24fde54be4cd23dd3215095a7d72f54c25589b3282dbf364569f11cb8e4f98dd92a41219d3962968456f0d5213984bbde841fca33025f404e426f7f9a8a1d42
+  data.tar.gz: ddd03f1b5e9b6a61b6c6d4dbde9239410094130d146b72a19a6024f7d7639159303b7337733bb2999e4d27211c5e8696f14862bfd67eb83253fe650682046f5d

data/CHANGELOG.md

@@ -2,6 +2,14 @@
 
 This file is used to list changes made in each version of `chef-encrypted-attributes`.
 
+## 0.1.1:
+
+* gemspec: replaced open-ended chef dependency by `~> 11.4`
+* Fixed ruby `1.9.2` decryption (uses `PKCS#1` for public key format)
+* README: added `encrypted_attributes` cookbook link
+* INTERNAL doc: added `EncryptedMash` class name to the Version0 structure
+* Added shields.io badges
+
 ## 0.1.0:
 
 * Initial release of `chef-encrypted-attributes`

data/INTERNAL.md

@@ -23,6 +23,7 @@ This is the first version, considered old. Uses public key cryptography (PKI) to
 If you try to read this encrypted attribute structure, you can see a `Chef::Mash` attribute with the following content:
 
 ```
+EncryptedMash
 └── encrypted_data
     ├── pub_key_hash1: The data encrypted using PKI for the public key 1 (base64)
     ├── pub_key_hash2: The data encrypted using PKI for the public key 2 (base64)

data/README.md

@@ -1,11 +1,13 @@
 # Chef-Encrypted-Attributes
-[![Gem Version](https://badge.fury.io/rb/chef-encrypted-attributes.png)](http://badge.fury.io/rb/chef-encrypted-attributes)
-[![Dependency Status](https://gemnasium.com/onddo/chef-encrypted-attributes.png)](https://gemnasium.com/onddo/chef-encrypted-attributes)
-[![Build Status](https://travis-ci.org/onddo/chef-encrypted-attributes.png)](https://travis-ci.org/onddo/chef-encrypted-attributes)
-[![Coverage Status](https://coveralls.io/repos/onddo/chef-encrypted-attributes/badge.png?branch=master)](https://coveralls.io/r/onddo/chef-encrypted-attributes?branch=master)
+[![Gem Version](http://img.shields.io/gem/v/chef-encrypted-attributes.svg?style=flat)](http://badge.fury.io/rb/chef-encrypted-attributes)
+[![Dependency Status](http://img.shields.io/gemnasium/onddo/chef-encrypted-attributes.svg?style=flat)](https://gemnasium.com/onddo/chef-encrypted-attributes)
+[![Build Status](http://img.shields.io/travis/onddo/chef-encrypted-attributes.svg?style=flat)](https://travis-ci.org/onddo/chef-encrypted-attributes)
+[![Coverage Status](http://img.shields.io/coveralls/onddo/chef-encrypted-attributes.svg?style=flat)](https://coveralls.io/r/onddo/chef-encrypted-attributes?branch=master)
 
 [Chef](http://www.getchef.com) plugin to add Node encrypted attributes support using client keys.
 
+We recommend using the [encrypted_attributes cookbook](http://community.opscode.com/cookbooks/encrypted_attributes) for easy installation.
+
 ## Description
 
 Node attributes are encrypted using chef client and user keys with public key infrastructure (PKI). You can choose which clients, nodes or users will be able to read the attribute.
@@ -15,7 +17,7 @@ Node clients with read access can be specified using a `client_search` query. In
 ## Requirements
 
 * Ruby `>= 1.9`
-* Chef Client `>= 11.4`
+* Chef Client `~> 11.4`
 * yajl-ruby `~> 1.1` (included with Chef)
 
 ## Usage in Recipes

data/lib/chef/encrypted_attribute/encrypted_mash/version0.rb

@@ -101,8 +101,25 @@ class Chef
           raise DecryptionFailure, "#{e.class.name}: #{e.to_s}"
         end
 
+        # Heavily based on @sl4m code: https://gist.github.com/sl4m/1470360
+        def rsa_ensure_x509(rsa)
+          if RUBY_VERSION < '1.9.3'
+            modulus = rsa.n
+            exponent = rsa.e
+
+            oid = OpenSSL::ASN1::ObjectId.new('rsaEncryption')
+            alg_id = OpenSSL::ASN1::Sequence.new([oid, OpenSSL::ASN1::Null.new(nil)])
+            ary = [OpenSSL::ASN1::Integer.new(modulus), OpenSSL::ASN1::Integer.new(exponent)]
+            pub_key = OpenSSL::ASN1::Sequence.new(ary)
+            enc_pk = OpenSSL::ASN1::BitString.new(pub_key.to_der)
+            subject_pk_info = OpenSSL::ASN1::Sequence.new([alg_id, enc_pk])
+          else
+            rsa
+          end
+        end
+
         def node_key(public_key)
-          Digest::SHA1.hexdigest(public_key.to_der)
+          Digest::SHA1.hexdigest(rsa_ensure_x509(public_key).to_der)
         end
 
         def rsa_encrypt_value(value, public_key)

data/lib/chef/encrypted_attribute/version.rb

@@ -18,6 +18,6 @@
 
 class Chef
   class EncryptedAttribute
-    VERSION = '0.1.0'
+    VERSION = '0.1.1'
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: chef-encrypted-attributes
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Onddo Labs, SL.
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-21 00:00:00.000000000 Z
+date: 2014-05-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: yajl-ruby
@@ -28,16 +28,16 @@ dependencies:
   name: chef
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 11.4.0
+        version: '11.4'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 11.4.0
+        version: '11.4'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement