ece 0.2.1 → 0.2.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 2e947d1704ffb9c3b8df64b1e1086b0cb6ccc582
-  data.tar.gz: a3106fb907ef7f8be5e16b9bbbd48230e8065dfd
+SHA256:
+  metadata.gz: e83a743e5e15a8603358906d330f2152763bcdc48d0bb7793ccbb7a8f30cc86c
+  data.tar.gz: 2251ca33088306a752a496d2e5204658daee8a7c2ef7782f119f6840a8fb7d78
 SHA512:
-  metadata.gz: e715f1010c9d164946d1764c413fbf220387bbf579a32cfac29590a797ace9a8455b5d8d7ca820ae54c45399f7431cb4eb0c5060356be0c2603e49db8b7d7dba
-  data.tar.gz: 3b1e07649a250825e1cb0b078006519fc19023306784566c4b889fe368906b86446167271f797885d9ec7e268798fbf5e7e41f2bf4bd106d1544def73d247dac
+  metadata.gz: 47e9b83318a4e511dc962b8ab1a42e45b351e2d2961a392ae9096425337b55d7df583d05a54c798cfffa0a3294aba0e6fe1426a3cd47725cad155c548ae2b5f6
+  data.tar.gz: '09ac0852fbb993ffa142a1ccfb5d4de2f7c45ea8dc93c0c4d8fe46f07d8b7c3f8024a62c5314ebd7d6fc4e20293eddc385a2b609a6ce88b79e2496388e42551d'

data/README.md

@@ -1,6 +1,6 @@
 # ECE
 
-Ruby implementation of encrypted content-encoding. 
+Ruby implementation of encrypted content-encoding.
 
 https://tools.ietf.org/html/draft-thomson-http-encryption-02
 
@@ -34,11 +34,35 @@ data = "Your very private data"
 encrypted_data = ECE.encrypt(data, key: key, salt: salt)
 ```
 Decrypting:
+
 ```ruby
 ECE.decrypt(encrypted_data, key: key, salt: salt)
 ```
 Data can be bytestring as well.
+
+Encrypting data with elliptical curve Diffie-Hellman (ECDH) key agreement
+protocol using client keys providing by a [Web Push subscription](https://developer.mozilla.org/en-US/docs/Web/API/PushSubscription/getKey):
+
+```ruby
+user_public_key # Provided by the browser, effectively: Random.new.bytes(65)
+user_auth # Provided by the browser, effectively: Random.new.bytes(16)
+
+local_curve = OpenSSL::PKey::EC.new("prime256v1")
+local_curve.generate_key
+user_public_key_point = OpenSSL::PKey::EC::Point.new(local_curve.group, OpenSSL::BN.new(user_public_key, 2))
+
+key = local_curve.dh_compute_key(user_public_key_point)
+server_public_key = local_curve.public_key.to_bn.to_s(2)
+salt = Random.new.bytes(16)
+
+encrypted_data = ECE.encrypt(data,
+  key: key,
+  salt: salt
+  server_public_key: server_public_key,
+  user_public_key: user_public_key,
+  auth: user_auth)
+```
+
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at https://github.com/randomlogin/ece.
-

data/Rakefile

@@ -1,2 +1,10 @@
 require "bundler/gem_tasks"
-task :default => :spec
+require "rake/testtask"
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << "test"
+  t.libs << "lib"
+  t.test_files = FileList["test/**/*_test.rb"]
+end
+
+task :default => :test

data/ece.gemspec

@@ -18,6 +18,6 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
 
   spec.add_development_dependency "bundler", "~> 1.11"
-  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rake", "~> 12.3.3"
   spec.add_dependency 'hkdf'
 end

data/lib/ece.rb

@@ -1,3 +1,2 @@
 require 'ece/version'
 require 'ece/ece'
-

data/lib/ece/ece.rb

@@ -19,7 +19,7 @@ class ECE
   def self.hkdf_extract(salt, ikm) #ikm stays for input keying material
     hmac_hash(salt,ikm)
   end
-  
+
   def self.get_info(type, client_public, server_public)
     cl_len_no = [client_public.size].pack('n')
     sv_len_no = [server_public.size].pack('n')
@@ -104,7 +104,7 @@ class ECE
     raise "Block is too small" if buffer.length <= TAG_LENGTH+pad_bytes
     gcm.auth_tag = buffer[-TAG_LENGTH..-1]
     decrypted = gcm.update(buffer[0..-TAG_LENGTH-1]) + gcm.final
-    
+
     if params[:auth]
       padding_length = decrypted[0..1].unpack("n")[0]
       raise "Padding is too big" if padding_length+2 > decrypted.length
@@ -117,7 +117,7 @@ class ECE
       padding = decrypted[1..padding_length]
       raise "Wrong padding"  unless padding = "\x00"*padding_length
       return decrypted[1..-1]
-    end    
+    end
   end
 
   def self.encrypt_record(params, counter, buffer, pad=0)
@@ -125,7 +125,7 @@ class ECE
     gcm.encrypt
     gcm.key = params[:key]
     gcm.iv = generate_nonce(params[:nonce], counter)
-    gcm.auth_data = "" 
+    gcm.auth_data = ""
     padding = ""
     if params[:auth]
       padding = [pad].pack('n') + "\x00"*pad # 2 bytes, big endian, then n zero bytes of padding
@@ -134,9 +134,8 @@ class ECE
     else
       record = gcm.update("\x00"+buffer) # 1 padding byte, not fully implemented
     end
-    enc = record + gcm.final + gcm.auth_tag 
+    enc = record + gcm.final + gcm.auth_tag
     enc
   end
 
-
 end

data/lib/ece/version.rb

@@ -1,3 +1,3 @@
 class ECE
-  VERSION = "0.2.1"
+  VERSION = "0.2.2"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ece
 version: !ruby/object:Gem::Version
-  version: 0.2.1
+  version: 0.2.2
 platform: ruby
 authors:
 - Alexander Shevtsov
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2016-03-15 00:00:00.000000000 Z
+date: 2021-04-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: 12.3.3
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: 12.3.3
 - !ruby/object:Gem::Dependency
   name: hkdf
   requirement: !ruby/object:Gem::Requirement
@@ -87,8 +87,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.4.8
+rubygems_version: 3.1.2
 signing_key: 
 specification_version: 4
 summary: Ruby implementation of encrypted content-encoding