cryptology 2.0.0 → 2.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 3b487542337e1013f886ac420c0e2a53b0ec22e3
-  data.tar.gz: 9c1e6d5ace17fa5fbedcfd6c6d870e27e7f076f0
+SHA256:
+  metadata.gz: b70731c946f0048683b1eb2c24042b230fc217eed02189b7a367bbf7c9b06409
+  data.tar.gz: 9bded19f40166bf83f01d4e2a00b9c787887f8766500ac3707bbc0935fc65ce6
 SHA512:
-  metadata.gz: eac2db8af311b962af96c6e83f02591e181b65dd147268cf7272b4040557c8e8b9a0cc85b3851fe0c923f8bda14e7f4e140554f620a7f52fda140bf402355611
-  data.tar.gz: 0c39c3408209210ff0f05337ae94196a638a3fdd831d83e2ada51262a6d2d5887016ac6beff5c22a62c27938b61f0397b6b73c70c80a389f97e07b6e925dd2d6
+  metadata.gz: 8a546c32bf248501d522f938c360d87bce367469f988fcf832b9f096be5f9241e944564c295e4de0be5b3b80f654ce03470a9d60f28159dee4af1bc9bb45fc0b
+  data.tar.gz: cb41d1d05ed2a03705f3ecad3cd3f28d4397b9c2dda90e2c2d1e388b2c0b178f86792ad66d7e10e23d19339ed1222f614c83d82685fc75c924c1f2cb1f36abe7

data/.gitignore

@@ -1,9 +1,12 @@
 /.bundle/
 /.yardoc
-/Gemfile.lock
 /_yardoc/
 /coverage/
 /doc/
+/Gemfile.lock
 /pkg/
 /spec/reports/
 /tmp/
+
+# rspec failure tracking
+.rspec_status

data/.rspec

@@ -1,2 +1,3 @@
 --format documentation
 --color
+--require spec_helper

data/.rubocop.yml

@@ -2,7 +2,7 @@ AllCops:
   TargetRubyVersion: 2.4
 
 Metrics/BlockLength:
-  ExcludedMethods: RSpec.describe, context
+  ExcludedMethods: [RSpec.describe, context]
 
 Metrics/LineLength:
   Max: 100
@@ -10,8 +10,11 @@ Metrics/LineLength:
 Metrics/ParameterLists:
   Max: 6
 
+Naming/MethodParameterName:
+  MinNameLength: 2
+
 Style/Documentation:
   Enabled: false
 
 Style/FrozenStringLiteralComment:
-  Enabled: false
+  EnforcedStyle: never

data/.travis.yml

@@ -1,7 +1,7 @@
-sudo: false
+dist: bionic
 language: ruby
 rvm:
-  - 2.1.10
-  - 2.2.7
-  - 2.3.4
-  - 2.4.1
+  - 2.4.9
+  - 2.5.7
+  - 2.6.5
+  - 2.7.0

data/CHANGELOG.md

@@ -1,24 +1,53 @@
-## 2.0.0 (2017-06-27)
+# [2.1.0](https://github.com/rubysamurai/cryptology/compare/v2.0.0...v2.1.0) (2020-03-04)
 
-- New: `encrypt` method returns a hash
-- Improvement: `key` hashing method updated
-- Improvement: `iv` is always set if algorithm supports it
-- Improvement: Optional `salt` and `iter` arguments 
-- Ruby versioning: Support for Ruby 2.4
 
-## 1.2.0 (2015-12-10)
+### Features
 
-- Improvement: Add `decryptable?` helper method
+* Require Ruby 2.4 ([796d1a1](https://github.com/rubysamurai/cryptology/commit/796d1a1ae6e7bcbc2a0062108f8aec0ed68a6d58))
 
-## 1.1.0 (2015-12-08)
 
-- Improvement: Switch to keyword arguments
-- Ruby versioning: Drop support for Ruby 2.0
 
-## 1.0.1 (2015-12-08)
+# [2.0.0](https://github.com/rubysamurai/cryptology/compare/v1.2.0...v2.0.0) (2017-06-27)
 
-- Bug fix: Allow iv to be nil
 
-## 1.0.0 (2015-12-07)
+### Features
 
-- Initial release
+* `encrypt` method returns a hash ([a392972](https://github.com/rubysamurai/cryptology/commit/a3929722c089c6871de9afb91d3199f35a883997))
+* Always set `iv` when possible ([a392972](https://github.com/rubysamurai/cryptology/commit/a3929722c089c6871de9afb91d3199f35a883997))
+* Digest `key` with PBKDF2 SHA256 with an optional `salt` argument ([2296d04](https://github.com/rubysamurai/cryptology/commit/2296d04cd4834d09d0cb1be8b40688b7ce25fa36))
+* Optional `iter` argument ([a3a774d](https://github.com/rubysamurai/cryptology/commit/a3a774d87befa373d45274b350687017a8861abe))
+
+
+
+# [1.2.0](https://github.com/rubysamurai/cryptology/compare/v1.1.0...v1.2.0) (2015-12-10)
+
+
+### Features
+
+* `decryptable?` method ([610dfce](https://github.com/rubysamurai/cryptology/commit/610dfce5f24238327dac85bbf0bca41ad8309dbf))
+
+
+
+# [1.1.0](https://github.com/rubysamurai/cryptology/compare/v1.0.1...v1.1.0) (2015-12-08)
+
+
+### Features
+
+* Require Ruby 2.1 ([bce1367](https://github.com/rubysamurai/cryptology/commit/bce1367c51a40239de39c0c7464c6666356a75c1))
+* Use keyword arguments ([31de476](https://github.com/rubysamurai/cryptology/commit/31de476d3057101efef95fb3378b27fdf9ad9e32))
+
+
+
+# [1.0.1](https://github.com/rubysamurai/cryptology/compare/v1.0.0...v1.0.1) (2015-12-08)
+
+
+### Bug Fixes
+
+* Allow `iv` to be nil ([5abf3e1](https://github.com/rubysamurai/cryptology/commit/5abf3e1f5f40eebd0b38be6b2b57fac642c83cb4))
+
+
+
+# 1.0.0 (2015-12-07)
+
+
+Initial release.

data/LICENSE.txt

@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2015 Dmitriy Tarasov
+Copyright (c) 2017 Dmitriy Tarasov
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md

@@ -1,9 +1,9 @@
 # Cryptology
 
 [![Gem Version](https://badge.fury.io/rb/cryptology.svg)](https://badge.fury.io/rb/cryptology)
-[![Build Status](https://travis-ci.org/rubysamurai/cryptology.svg?branch=master)](https://travis-ci.org/rubysamurai/cryptology)
+[![Build Status](https://travis-ci.com/rubysamurai/cryptology.svg?branch=master)](https://travis-ci.com/rubysamurai/cryptology)
 
-`Cryptology` is a wrapper for encryption and decryption in Ruby. Supports all cipher algorithms, that are available in installed version of OpenSSL. By default `AES-256-CBC` is used.
+`Cryptology` is a wrapper for encryption and decryption in Ruby using OpenSSL. By default `AES-256-CBC` cipher is used.
 
 ## Installation
 
@@ -25,65 +25,124 @@ $ gem install cryptology
 
 ```ruby
 # Encrypting
-Cryptology.encrypt(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.encrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 
 # Decrypting
-Cryptology.decrypt(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.decrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 
 # Check decryption ability (true if can be decrypted, false otherwise)
-Cryptology.decryptable?(data: data, key: key, cipher: cipher, iv: iv)
+Cryptology.decryptable?(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
 ```
 
 
-Argument | Required? | Default       | Comment
----------|-----------|---------------|-------------
-data     | **Yes**   | n/a           | Data to encrypt or decrypt
-key      | **Yes**   | n/a           | Secure key for encryption and decryption
-cipher   | *No*      | `AES-256-CBC` | Cipher algorithm
-iv       | *No*      | `nil`         | Initialization vector for CBC, CFB, CTR, OFB modes
+Argument | Required? | Default                 | Comment
+---------|-----------|-------------------------|-------------
+data     | **Yes**   | n/a                     | Data to encrypt or decrypt
+key      | **Yes**   | n/a                     | Secure key for encryption and decryption
+salt     | *No*      | Random 16 bytes         | Value to prevent attacks on key based on dictionaries
+iter     | *No*      | 10,000                  | Number of iterations to adjust computation time
+cipher   | *No*      | `AES-256-CBC`           | Cipher algorithm
+iv       | *No*      | Random iv for algorithm | Initialization vector
 
 Example:
 
 ```ruby
 # Data to encrypt (required)
 data = 'Very, very confidential data'
+
 # Secure key for encryption (required)
-key = 'veryLongAndSecurePassword_6154309'
-# Use Blowfish cipher in CBC mode (optional)
-cipher = 'BF-CBC'
-# Initialization vector for BF-CBC (optional)
-iv = OpenSSL::Cipher::Cipher.new(cipher).random_iv
+key = 'password_01X'
+
+# Salt (optional)
+salt = OpenSSL::Random.random_bytes(16)
+# => "r\x97\xEA9]I\x18\x05\xEAZ\xA2\xBB^Y=\x83"
+
+# Number of iterations (optional)
+iter = 50000
+
+# Use Camellia cipher in CBC mode (optional)
+cipher = 'CAMELLIA-256-CBC'
+
+# Initialization vector for CAMELLIA-256-CBC (optional)
+iv = OpenSSL::Cipher.new(cipher).random_iv
+# => "\xB0\xCA\xBBc5'\x03i\x01\xC1@\xC0\xB6\xCE7+"
 
 # Encrypt our data
-encrypted = Cryptology.encrypt(data: data, key: key, cipher: cipher, iv: iv)
+enc = Cryptology.encrypt(data: data,
+                         key: key,
+                         salt: salt,
+                         iter: iter,
+                         cipher: cipher,
+                         iv: iv)
+
+# => { "cipher"=>"CAMELLIA-256-CBC",
+#      "salt"=>"r\x97\xEA9]I\x18\x05\xEAZ\xA2\xBB^Y=\x83",
+#      "iter"=>50000,
+#      "iv"=>"\xB0\xCA\xBBc5'\x03i\x01\xC1@\xC0\xB6\xCE7+",
+#      "data"=>"k+e3JZpkFIgkB15LjK85k5roojNgawN9yPEp6CXGhCQ=\n" }
 
 # Verify that data can be decrypted
-Cryptology.decryptable?(data: encrypted, key: key, cipher: cipher, iv: iv)
+Cryptology.decryptable?(data: enc['data'],
+                        key: key,
+                        salt: enc['salt'],
+                        iter: enc['iter'],
+                        cipher: enc['cipher'],
+                        iv: enc['iv'])
 #  => true
 
 # Decrypt our data
-plain = Cryptology.decrypt(data: encrypted, key: key, cipher: cipher, iv: iv)
+plain = Cryptology.decrypt(data: enc['data'],
+                           key: key,
+                           salt: enc['salt'],
+                           iter: enc['iter'],
+                           cipher: enc['cipher'],
+                           iv: enc['iv'])
+# => "Very, very confidential data"
 ```
 
 ### Cipher algorithms
 
-To get a list of available cipher algorithms in your environment run this command:
-
-```
-$ openssl list-cipher-algorithms
-```
+> **Note:** Ruby 2.4 and above would throw an error if key is too short or too long for a given cipher algorithm (see [this commit](https://github.com/ruby/ruby/commit/ce635262f53b760284d56bb1027baebaaec175d1) for details) Make sure you choose a cipher with 32 bytes size key.
 
-or this Ruby code:
+List of tested and supported ciphers:
 
-```ruby
-require 'openssl'
-puts OpenSSL::Cipher.ciphers
 ```
-
-## Contributing
-
-Anyone is welcome to contribute to Cryptology. Please [raise an issue](https://github.com/rubysamurai/cryptology/issues), fork the project, make changes to your forked repository and submit a pull request.
+Ruby 2.7.0, OpenSSL 1.1.1
+
+AES-128-XTS
+AES-256-CBC
+AES-256-CBC-HMAC-SHA1
+AES-256-CBC-HMAC-SHA256
+AES-256-CFB
+AES-256-CFB1
+AES-256-CFB8
+AES-256-CTR
+AES-256-ECB
+AES-256-OFB
+AES256
+
+ARIA-256-CBC
+ARIA-256-CFB
+ARIA-256-CFB1
+ARIA-256-CFB8
+ARIA-256-CTR
+ARIA-256-ECB
+ARIA-256-OFB
+ARIA256
+
+CAMELLIA-256-CBC
+CAMELLIA-256-CFB
+CAMELLIA-256-CFB1
+CAMELLIA-256-CFB8
+CAMELLIA-256-CTR
+CAMELLIA-256-ECB
+CAMELLIA-256-OFB
+CAMELLIA256
+
+CHACHA20
+CHACHA20-POLY1305
+```
 
 ## License
 
-`Cryptology` © Dmitriy Tarasov, 2015. Released under the [MIT](https://github.com/rubysamurai/cryptology/blob/master/LICENSE.txt) license.
+`Cryptology` © Dmitriy Tarasov. Released under the [MIT](LICENSE.txt) license.

data/bin/console

@@ -11,4 +11,4 @@ require 'cryptology'
 # Pry.start
 
 require 'irb'
-IRB.start
+IRB.start(__FILE__)

data/bin/setup

@@ -1,6 +1,7 @@
-#!/bin/bash
+#!/usr/bin/env bash
 set -euo pipefail
 IFS=$'\n\t'
+set -vx
 
 bundle install
 

data/cryptology.gemspec

@@ -1,8 +1,4 @@
-# coding: utf-8
-
-lib = File.expand_path('../lib', __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require 'cryptology/version'
+require_relative 'lib/cryptology/version'
 
 Gem::Specification.new do |spec|
   spec.name          = 'cryptology'
@@ -15,12 +11,18 @@ Gem::Specification.new do |spec|
   spec.homepage      = 'https://github.com/rubysamurai/cryptology'
   spec.license       = 'MIT'
 
-  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(spec|features)/}) }
+  spec.metadata['bug_tracker_uri'] = 'https://github.com/rubysamurai/cryptology/issues'
+  spec.metadata['changelog_uri'] = 'https://github.com/rubysamurai/cryptology/blob/master/CHANGELOG.md'
+
+  spec.files = Dir.chdir(File.expand_path(__dir__)) do
+    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  end
+
   spec.bindir        = 'exe'
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.required_ruby_version = '>= 2.1.0'
+  spec.required_ruby_version = Gem::Requirement.new('>= 2.4.0')
 
   spec.add_development_dependency 'rake',  '>= 12.0'
   spec.add_development_dependency 'rspec', '>= 3.6'

data/lib/cryptology.rb

@@ -23,7 +23,7 @@ module Cryptology
   def self.decryptable?(data:, key:, salt:, iter: 10_000, cipher: 'AES-256-CBC', iv:)
     return true if decrypt(data: data, key: key, salt: salt, iter: iter, cipher: cipher, iv: iv)
   rescue OpenSSL::Cipher::CipherError
-    return false
+    false
   end
 
   def self.encrypt_data(data, key, cipher, iv)

data/lib/cryptology/version.rb

@@ -1,3 +1,3 @@
 module Cryptology
-  VERSION = '2.0.0'.freeze
+  VERSION = '2.1.0'.freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cryptology
 version: !ruby/object:Gem::Version
-  version: 2.0.0
+  version: 2.1.0
 platform: ruby
 authors:
 - Dmitriy Tarasov
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2017-06-27 00:00:00.000000000 Z
+date: 2020-03-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rake
@@ -62,7 +62,9 @@ files:
 homepage: https://github.com/rubysamurai/cryptology
 licenses:
 - MIT
-metadata: {}
+metadata:
+  bug_tracker_uri: https://github.com/rubysamurai/cryptology/issues
+  changelog_uri: https://github.com/rubysamurai/cryptology/blob/master/CHANGELOG.md
 post_install_message: 
 rdoc_options: []
 require_paths:
@@ -71,15 +73,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.1.0
+      version: 2.4.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.6.12
+rubygems_version: 3.0.6
 signing_key: 
 specification_version: 4
 summary: Symmetric encryption and decryption with OpenSSL