RubyGems - cryptology - Versions diffs - 2.0.0 → 2.1.0 - Mend

cryptology 2.0.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 3b487542337e1013f886ac420c0e2a53b0ec22e3
-  data.tar.gz: 9c1e6d5ace17fa5fbedcfd6c6d870e27e7f076f0
+SHA256:
+  metadata.gz: b70731c946f0048683b1eb2c24042b230fc217eed02189b7a367bbf7c9b06409
+  data.tar.gz: 9bded19f40166bf83f01d4e2a00b9c787887f8766500ac3707bbc0935fc65ce6
 SHA512:
-  metadata.gz: eac2db8af311b962af96c6e83f02591e181b65dd147268cf7272b4040557c8e8b9a0cc85b3851fe0c923f8bda14e7f4e140554f620a7f52fda140bf402355611
-  data.tar.gz: 0c39c3408209210ff0f05337ae94196a638a3fdd831d83e2ada51262a6d2d5887016ac6beff5c22a62c27938b61f0397b6b73c70c80a389f97e07b6e925dd2d6
+  metadata.gz: 8a546c32bf248501d522f938c360d87bce367469f988fcf832b9f096be5f9241e944564c295e4de0be5b3b80f654ce03470a9d60f28159dee4af1bc9bb45fc0b
+  data.tar.gz: cb41d1d05ed2a03705f3ecad3cd3f28d4397b9c2dda90e2c2d1e388b2c0b178f86792ad66d7e10e23d19339ed1222f614c83d82685fc75c924c1f2cb1f36abe7

data/.gitignore CHANGED

@@ -1,9 +1,12 @@
 /.bundle/
 /.yardoc
-/Gemfile.lock
 /_yardoc/
 /coverage/
 /doc/
+/Gemfile.lock
 /pkg/
 /spec/reports/
 /tmp/
+# rspec failure tracking
+.rspec_status

data/.rspec CHANGED

@@ -1,2 +1,3 @@
 --format documentation
 --color
+--require spec_helper

data/.rubocop.yml CHANGED

@@ -2,7 +2,7 @@ AllCops:
   TargetRubyVersion: 2.4
 Metrics/BlockLength:
-  ExcludedMethods: RSpec.describe, context
+  ExcludedMethods: [RSpec.describe, context]
 Metrics/LineLength:
   Max: 100
@@ -10,8 +10,11 @@ Metrics/LineLength:
 Metrics/ParameterLists:
   Max: 6
+Naming/MethodParameterName:
+  MinNameLength: 2
 Style/Documentation:
   Enabled: false
 Style/FrozenStringLiteralComment:
-  Enabled: false
+  EnforcedStyle: never

data/.travis.yml CHANGED

@@ -1,7 +1,7 @@
-sudo: false
+dist: bionic
 language: ruby
 rvm:
-  - 2.1.10
-  - 2.2.7
-  - 2.3.4
-  - 2.4.1
+  - 2.4.9
+  - 2.5.7
+  - 2.6.5
+  - 2.7.0

data/CHANGELOG.md CHANGED

@@ -1,24 +1,53 @@
-## 2.0.0 (2017-06-27)
+# [2.1.0](https://github.com/rubysamurai/cryptology/compare/v2.0.0...v2.1.0) (2020-03-04)
-- New: `encrypt` method returns a hash
-- Improvement: `key` hashing method updated
-- Improvement: `iv` is always set if algorithm supports it
-- Improvement: Optional `salt` and `iter` arguments
-- Ruby versioning: Support for Ruby 2.4
-## 1.2.0 (2015-12-10)
+### Features
-- Improvement: Add `decryptable?` helper method
+* Require Ruby 2.4 ([796d1a1](https://github.com/rubysamurai/cryptology/commit/796d1a1ae6e7bcbc2a0062108f8aec0ed68a6d58))
-## 1.1.0 (2015-12-08)
-- Improvement: Switch to keyword arguments
-- Ruby versioning: Drop support for Ruby 2.0
-## 1.0.1 (2015-12-08)
+# [2.0.0](https://github.com/rubysamurai/cryptology/compare/v1.2.0...v2.0.0) (2017-06-27)
-- Bug fix: Allow iv to be nil
-## 1.0.0 (2015-12-07)
+### Features
-- Initial release
+* `encrypt` method returns a hash ([a392972](https://github.com/rubysamurai/cryptology/commit/a3929722c089c6871de9afb91d3199f35a883997))
+* Always set `iv` when possible ([a392972](https://github.com/rubysamurai/cryptology/commit/a3929722c089c6871de9afb91d3199f35a883997))
+* Digest `key` with PBKDF2 SHA256 with an optional `salt` argument ([2296d04](https://github.com/rubysamurai/cryptology/commit/2296d04cd4834d09d0cb1be8b40688b7ce25fa36))
+* Optional `iter` argument ([a3a774d](https://github.com/rubysamurai/cryptology/commit/a3a774d87befa373d45274b350687017a8861abe))
+# [1.2.0](https://github.com/rubysamurai/cryptology/compare/v1.1.0...v1.2.0) (2015-12-10)
+### Features
+* `decryptable?` method ([610dfce](https://github.com/rubysamurai/cryptology/commit/610dfce5f24238327dac85bbf0bca41ad8309dbf))
+# [1.1.0](https://github.com/rubysamurai/cryptology/compare/v1.0.1...v1.1.0) (2015-12-08)
+### Features
+* Require Ruby 2.1 ([bce1367](https://github.com/rubysamurai/cryptology/commit/bce1367c51a40239de39c0c7464c6666356a75c1))
+* Use keyword arguments ([31de476](https://github.com/rubysamurai/cryptology/commit/31de476d3057101efef95fb3378b27fdf9ad9e32))
+# [1.0.1](https://github.com/rubysamurai/cryptology/compare/v1.0.0...v1.0.1) (2015-12-08)
+### Bug Fixes
+* Allow `iv` to be nil ([5abf3e1](https://github.com/rubysamurai/cryptology/commit/5abf3e1f5f40eebd0b38be6b2b57fac642c83cb4))
+# 1.0.0 (2015-12-07)
+Initial release.

data/LICENSE.txt CHANGED

@@ -1,6 +1,6 @@
 The MIT License (MIT)
-Copyright (c) 2015 Dmitriy Tarasov
+Copyright (c) 2017 Dmitriy Tarasov
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md CHANGED

@@ -1,9 +1,9 @@
 # Cryptology
 [![Gem Version](https://badge.fury.io/rb/cryptology.svg)](https://badge.fury.io/rb/cryptology)
-[![Build Status](https://travis-ci.org/rubysamurai/cryptology.svg?branch=master)](https://travis-ci.org/rubysamurai/cryptology)
+[![Build Status](https://travis-ci.com/rubysamurai/cryptology.svg?branch=master)](https://travis-ci.com/rubysamurai/cryptology)
-`Cryptology` is a wrapper for encryption and decryption in Ruby. Supports all cipher algorithms, that are available in installed version of OpenSSL. By default `AES-256-CBC` is used.
+`Cryptology` is a wrapper for encryption and decryption in Ruby using OpenSSL. By default `AES-256-CBC` cipher is used.
 ## Installation
@@ -25,65 +25,124 @@ $ gem install cryptology
 ```ruby
 # Encrypting
-Cryptology.encrypt(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.encrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 # Decrypting
-Cryptology.decrypt(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.decrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 # Check decryption ability (true if can be decrypted, false otherwise)
-Cryptology.decryptable?(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.decryptable?(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 ```
-Argument | Required? | Default       | Comment
----------|-----------|---------------|-------------
-data     | **Yes**   | n/a           | Data to encrypt or decrypt
-key      | **Yes**   | n/a           | Secure key for encryption and decryption
-cipher   | *No*      | `AES-256-CBC` | Cipher algorithm
-iv       | *No*      | `nil`         | Initialization vector for CBC, CFB, CTR, OFB modes
+Argument | Required? | Default                 | Comment
+---------|-----------|-------------------------|-------------
+data     | **Yes**   | n/a                     | Data to encrypt or decrypt
+key      | **Yes**   | n/a                     | Secure key for encryption and decryption
+salt     | *No*      | Random 16 bytes         | Value to prevent attacks on key based on dictionaries
+iter     | *No*      | 10,000                  | Number of iterations to adjust computation time
+cipher   | *No*      | `AES-256-CBC`           | Cipher algorithm
+iv       | *No*      | Random iv for algorithm | Initialization vector
 Example:
 ```ruby
 # Data to encrypt (required)
 data = 'Very, very confidential data'
 # Secure key for encryption (required)
-key = 'veryLongAndSecurePassword_6154309'
-# Use Blowfish cipher in CBC mode (optional)
-cipher = 'BF-CBC'
-# Initialization vector for BF-CBC (optional)
-iv = OpenSSL::Cipher::Cipher.new(cipher).random_iv
+key = 'password_01X'
+# Salt (optional)
+salt = OpenSSL::Random.random_bytes(16)
+# => "r\x97\xEA9]I\x18\x05\xEAZ\xA2\xBB^Y=\x83"
+# Number of iterations (optional)
+iter = 50000
+# Use Camellia cipher in CBC mode (optional)
+cipher = 'CAMELLIA-256-CBC'
+# Initialization vector for CAMELLIA-256-CBC (optional)
+iv = OpenSSL::Cipher.new(cipher).random_iv
+# => "\xB0\xCA\xBBc5'\x03i\x01\xC1@\xC0\xB6\xCE7+"
 # Encrypt our data
-encrypted = Cryptology.encrypt(data: data, key: key, cipher: cipher, iv: iv)
+enc = Cryptology.encrypt(data: data,
+                         key: key,
+                         salt: salt,
+                         iter: iter,
+                         cipher: cipher,
+                         iv: iv)
+# => { "cipher"=>"CAMELLIA-256-CBC",
+#      "salt"=>"r\x97\xEA9]I\x18\x05\xEAZ\xA2\xBB^Y=\x83",
+#      "iter"=>50000,
+#      "iv"=>"\xB0\xCA\xBBc5'\x03i\x01\xC1@\xC0\xB6\xCE7+",
+#      "data"=>"k+e3JZpkFIgkB15LjK85k5roojNgawN9yPEp6CXGhCQ=\n" }
 # Verify that data can be decrypted
-Cryptology.decryptable?(data: encrypted, key: key, cipher: cipher, iv: iv)
+Cryptology.decryptable?(data: enc['data'],
+                        key: key,
+                        salt: enc['salt'],
+                        iter: enc['iter'],
+                        cipher: enc['cipher'],
+                        iv: enc['iv'])
 #  => true
 # Decrypt our data
-plain = Cryptology.decrypt(data: encrypted, key: key, cipher: cipher, iv: iv)
+plain = Cryptology.decrypt(data: enc['data'],
+                           key: key,
+                           salt: enc['salt'],
+                           iter: enc['iter'],
+                           cipher: enc['cipher'],
+                           iv: enc['iv'])
+# => "Very, very confidential data"
 ```
 ### Cipher algorithms
-To get a list of available cipher algorithms in your environment run this command:
-```
-$ openssl list-cipher-algorithms
-```
+> **Note:** Ruby 2.4 and above would throw an error if key is too short or too long for a given cipher algorithm (see [this commit](https://github.com/ruby/ruby/commit/ce635262f53b760284d56bb1027baebaaec175d1) for details) Make sure you choose a cipher with 32 bytes size key.
-or this Ruby code:
+List of tested and supported ciphers:
-```ruby
-require 'openssl'
-puts OpenSSL::Cipher.ciphers
 ```
-## Contributing
-Anyone is welcome to contribute to Cryptology. Please [raise an issue](https://github.com/rubysamurai/cryptology/issues), fork the project, make changes to your forked repository and submit a pull request.
+Ruby 2.7.0, OpenSSL 1.1.1
+AES-128-XTS
+AES-256-CBC
+AES-256-CBC-HMAC-SHA1
+AES-256-CBC-HMAC-SHA256
+AES-256-CFB
+AES-256-CFB1
+AES-256-CFB8
+AES-256-CTR
+AES-256-ECB
+AES-256-OFB
+AES256
+ARIA-256-CBC
+ARIA-256-CFB
+ARIA-256-CFB1
+ARIA-256-CFB8
+ARIA-256-CTR
+ARIA-256-ECB
+ARIA-256-OFB
+ARIA256
+CAMELLIA-256-CBC
+CAMELLIA-256-CFB
+CAMELLIA-256-CFB1
+CAMELLIA-256-CFB8
+CAMELLIA-256-CTR
+CAMELLIA-256-ECB
+CAMELLIA-256-OFB
+CAMELLIA256
+CHACHA20
+CHACHA20-POLY1305
+```
 ## License
-`Cryptology` © Dmitriy Tarasov, 2015. Released under the [MIT](https://github.com/rubysamurai/cryptology/blob/master/LICENSE.txt) license.
+`Cryptology` © Dmitriy Tarasov. Released under the [MIT](LICENSE.txt) license.

data/bin/console CHANGED

@@ -11,4 +11,4 @@ require 'cryptology'
 # Pry.start
 require 'irb'
-IRB.start
+IRB.start(__FILE__)

data/bin/setup CHANGED

@@ -1,6 +1,7 @@
-#!/bin/bash
+#!/usr/bin/env bash
 set -euo pipefail
 IFS=$'\n\t'
+set -vx
 bundle install

data/cryptology.gemspec CHANGED

@@ -1,8 +1,4 @@
-# coding: utf-8
-lib = File.expand_path('../lib', __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require 'cryptology/version'
+require_relative 'lib/cryptology/version'
 Gem::Specification.new do |spec|
   spec.name          = 'cryptology'
@@ -15,12 +11,18 @@ Gem::Specification.new do |spec|
   spec.homepage      = 'https://github.com/rubysamurai/cryptology'
   spec.license       = 'MIT'
-  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(spec|features)/}) }
+  spec.metadata['bug_tracker_uri'] = 'https://github.com/rubysamurai/cryptology/issues'
+  spec.metadata['changelog_uri'] = 'https://github.com/rubysamurai/cryptology/blob/master/CHANGELOG.md'
+  spec.files = Dir.chdir(File.expand_path(__dir__)) do
+    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  end
   spec.bindir        = 'exe'
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
-  spec.required_ruby_version = '>= 2.1.0'
+  spec.required_ruby_version = Gem::Requirement.new('>= 2.4.0')
   spec.add_development_dependency 'rake',  '>= 12.0'
   spec.add_development_dependency 'rspec', '>= 3.6'

data/lib/cryptology.rb CHANGED

@@ -23,7 +23,7 @@ module Cryptology
   def self.decryptable?(data:, key:, salt:, iter: 10_000, cipher: 'AES-256-CBC', iv:)
     return true if decrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
   rescue OpenSSL::Cipher::CipherError
-    return false
+    false
   end
   def self.encrypt_data(data, key, cipher, iv)

data/lib/cryptology/version.rb CHANGED

@@ -1,3 +1,3 @@
 module Cryptology
-  VERSION = '2.0.0'.freeze
+  VERSION = '2.1.0'.freeze
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cryptology
 version: !ruby/object:Gem::Version
-  version: 2.0.0
+  version: 2.1.0
 platform: ruby
 authors:
 - Dmitriy Tarasov
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2017-06-27 00:00:00.000000000 Z
+date: 2020-03-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rake
@@ -62,7 +62,9 @@ files:
 homepage: https://github.com/rubysamurai/cryptology
 licenses:
 - MIT
-metadata: {}
+metadata:
+  bug_tracker_uri: https://github.com/rubysamurai/cryptology/issues
+  changelog_uri: https://github.com/rubysamurai/cryptology/blob/master/CHANGELOG.md
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -71,15 +73,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.1.0
+      version: 2.4.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.6.12
+rubygems_version: 3.0.6
 signing_key:
 specification_version: 4
 summary: Symmetric encryption and decryption with OpenSSL