encrypto 0.0.1

data/.gitignore

@@ -0,0 +1,23 @@
+# See http://help.github.com/ignore-files/ for more about ignoring files.
+#
+# If you find yourself ignoring temporary files generated by your text editor
+# or operating system, you probably want to add a global ignore instead:
+#   git config --global core.excludesfile ~/.gitignore_global
+
+# Ignore bundler config
+/.bundle
+/.jbundler
+
+# Ignore the default SQLite database.
+/db/*.sqlite3
+
+# Ignore all logfiles and tempfiles.
+/log/*.log
+/tmp
+
+rspec.html
+cucumber.html
+**/.DS_Store
+
+/coverage/
+.vagrant

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--format progress

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/Gemfile.lock

@@ -0,0 +1,53 @@
+PATH
+  remote: .
+  specs:
+    encrypto (0.0.1)
+      attr_encrypted (~> 1.3.0)
+      rbnacl (~> 1.1.0)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    attr_encrypted (1.3.0)
+      encryptor (>= 1.3.0)
+    coderay (1.1.0)
+    diff-lcs (1.2.5)
+    docile (1.1.1)
+    encryptor (1.3.0)
+    ffi (1.9.3)
+    method_source (0.8.2)
+    multi_json (1.8.2)
+    pry (0.9.12.4)
+      coderay (~> 1.0)
+      method_source (~> 0.8)
+      slop (~> 3.4)
+    pry-nav (0.2.3)
+      pry (~> 0.9.10)
+    rbnacl (1.1.0)
+      ffi
+    rspec (2.14.1)
+      rspec-core (~> 2.14.0)
+      rspec-expectations (~> 2.14.0)
+      rspec-mocks (~> 2.14.0)
+    rspec-core (2.14.7)
+    rspec-expectations (2.14.4)
+      diff-lcs (>= 1.1.3, < 2.0)
+    rspec-mocks (2.14.4)
+    simplecov (0.8.2)
+      docile (~> 1.1.0)
+      multi_json
+      simplecov-html (~> 0.8.0)
+    simplecov-html (0.8.0)
+    slop (3.4.7)
+    spec_coverage (0.0.5)
+      rspec (~> 2.0)
+      simplecov
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  encrypto!
+  pry-nav (~> 0.2.3)
+  rspec (~> 2.14.1)
+  spec_coverage (~> 0.0.5)

data/README.md

@@ -0,0 +1,7 @@
+Encrypto
+========
+
+A gem that supports encrypting personal data by using rbnacl and attr_encrypted
+
+
+This gem was made by @Ruben-Hartog and @arnetim, inspired by @ariekanarie and @rvdijk

data/encrypto.gemspec

@@ -0,0 +1,23 @@
+# -*- encoding: utf-8 -*-
+require File.expand_path('../lib/encrypto/version', __FILE__)
+
+Gem::Specification.new do |gem|
+  gem.name          = 'encrypto'
+  gem.version       = Encrypto::VERSION
+  gem.date          = '2013-12-04'
+  gem.summary       = "A gem that supports encrypting personal data by using rbnacl and attr_encrypted"
+  gem.description   = "A gem that supports encrypting personal data by using rbnacl and attr_encrypted"
+  gem.authors       = ["Ruben", "Arne"]
+  gem.email         = 'service@finalist.nl'
+  gem.files         = `git ls-files`.split($\)
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+  gem.homepage      = 'http://github.com/finalist/encrypto'
+
+  gem.add_dependency             "rbnacl",         "~> 1.1.0"
+  gem.add_dependency             "attr_encrypted", "~> 1.3.0"
+
+  gem.add_development_dependency "pry-nav",        "~> 0.2.3"
+  gem.add_development_dependency "rspec",          "~> 2.14.1"
+  gem.add_development_dependency "spec_coverage",  "~> 0.0.5"
+end

data/lib/encrypto.rb

@@ -0,0 +1,5 @@
+require "rbnacl"
+require "attr_encrypted"
+require "encrypto/version"
+
+Dir[File.dirname(__FILE__) + '/encrypto/**/*.rb'].each {|file| require file }

data/lib/encrypto/box.rb

@@ -0,0 +1,30 @@
+module Encrypto
+
+  class Box
+    def initialize(nacl_box)
+      @nacl_box = nacl_box
+    end
+
+    def box(value)
+      @nacl_box.box(value, :hex)
+    end
+
+    def open(cipher_text)
+      @nacl_box.open(cipher_text, :hex)
+    end
+
+    def self.from_passphrase(passphrase)
+      passphrase_sha = Crypto::Hash.sha256(passphrase)
+      from_secret_key(passphrase_sha)
+    end
+
+    def self.from_secret_key(secret_key)
+      new(Crypto::RandomNonceBox.from_secret_key(secret_key))
+    end
+
+    def self.from_keypair(public_key, private_key)
+      new(Crypto::RandomNonceBox.from_keypair(public_key, private_key))
+    end
+
+  end
+end

data/lib/encrypto/database/attr_encrypted.rb

@@ -0,0 +1,17 @@
+module Encrypto
+  module Database
+    module AttrEncrypted
+
+      def self.included(model)
+        model.class_eval do
+          attr_encrypted_options.merge!(
+            :encryptor => ::Encrypto::Database::Encryptor,
+            :key => :encryption_key,
+            :encode => false
+          )
+        end
+      end
+
+    end
+  end
+end

data/lib/encrypto/database/encryptor.rb

@@ -0,0 +1,17 @@
+module Encrypto
+  module Database
+
+    class Encryptor
+      def self.encrypt(options)
+        box = Box.from_secret_key(options[:key])
+        box.box(options[:value])
+      end
+
+      def self.decrypt(options)
+        box = Box.from_secret_key(options[:key])
+        box.open(options[:value])
+      end
+    end
+
+  end
+end

data/lib/encrypto/encrypto.rb

@@ -0,0 +1,40 @@
+module Encrypto
+
+  def self.generate_keypair
+    Keys.generate_keypair
+  end
+
+  def self.generate_random_key
+    Random.bytes
+  end
+
+  def self.encrypt_with_passphrase(value, passphrase)
+    passphrase_box(passphrase).box(value)
+  end
+
+  def self.decrypt_with_passphrase(cipher_text, passphrase)
+    passphrase_box(passphrase).open(cipher_text)
+  end
+
+  def self.encrypt_with_keypair(value, public_key, signing_private_key)
+    hex_public_key = Keys.hex_public_key(public_key)
+    keypair_box(hex_public_key, signing_private_key).box(value)
+  end
+
+  def self.decrypt_with_keypair(cipher_text, hex_public_key, private_key)
+    public_key = Keys.hex_public_key(hex_public_key)
+    box = Box.from_keypair(public_key, private_key)
+    box.open(cipher_text)
+  end
+
+  private
+
+  def self.keypair_box(public_key, private_key)
+    Box.from_keypair(public_key, private_key)
+  end
+
+  def self.passphrase_box(passphrase)
+    Box.from_passphrase(passphrase)
+  end
+
+end

data/lib/encrypto/keys.rb

@@ -0,0 +1,14 @@
+module Encrypto
+  module Keys
+
+    def self.generate_keypair
+      private_key = Crypto::PrivateKey.generate
+      [private_key.public_key.to_s(:hex), private_key]
+    end
+
+    def self.hex_public_key(value)
+      Crypto::PublicKey.new(value, :hex)
+    end
+
+  end
+end

data/lib/encrypto/random.rb

@@ -0,0 +1,9 @@
+module Encrypto
+  module Random
+
+    def self.bytes
+      Crypto::Random.random_bytes
+    end
+
+  end
+end

data/lib/encrypto/version.rb

@@ -0,0 +1,3 @@
+module Encrypto
+  VERSION = "0.0.1"
+end

data/script/bundler

@@ -0,0 +1,10 @@
+#!/bin/bash
+set -e
+
+echo "--- Making sure bundler is installed"
+
+gem which bundler &> /dev/null || gem install bundler --no-ri --no-rdoc
+
+echo "--- Installing gems"
+
+bundle check --no-color || time bundle install --no-color

data/script/ci

@@ -0,0 +1,22 @@
+run() {
+  time bundle exec $*
+}
+
+echo "--- Starting continuous integration build"
+
+./script/bundler
+
+if [[ -d coverage ]]; then
+  echo "Removing old coverage report"
+  rm -r coverage
+fi
+
+echo "--- Running RSpec"
+
+run rspec --color spec --format SpecCoverage --format progress --format html --out rspec.html
+rspec=$?
+
+if [[ $rspec -ne 0 ]]; then
+  echo "--- Some tests have failed."
+  exit 1
+fi

data/script/install_libsodium

@@ -0,0 +1,10 @@
+#!/bin/sh
+if [ ! -f /usr/local/lib/libsodium.a ];
+then
+  curl -o /tmp/sodium.tar.gz https://download.libsodium.org/libsodium/releases/old/libsodium-0.2.tar.gz
+  cd /tmp
+  tar vfzx sodium.tar.gz
+  cd libsodium-0.2
+  ./configure
+  make && make check && make install
+fi

data/spec/encrypto/box_spec.rb

@@ -0,0 +1,72 @@
+require 'spec_helper'
+
+module Encrypto
+  describe Box do
+
+    describe '.from_passphrase' do
+      let(:passphrase) { 'password' }
+
+      it 'hashes the secret key' do
+        Crypto::Hash.should_receive(:sha256).with(passphrase)
+        Crypto::RandomNonceBox.stub(:from_secret_key)
+        Encrypto::Box.from_passphrase(passphrase)
+      end
+
+      it 'creates a random nonce box based on the hashed secret key' do
+        Crypto::Hash.stub(:sha256 => "sha")
+        Crypto::RandomNonceBox.should_receive(:from_secret_key).with("sha")
+        Encrypto::Box.from_passphrase(passphrase)
+      end
+
+      it 'initializes with a random nonce box' do
+        box = double("box")
+        Crypto::Hash.stub(:sha256 => "sha")
+        Crypto::RandomNonceBox.stub(:from_secret_key => box)
+        Encrypto::Box.should_receive(:new).with(box)
+        Encrypto::Box.from_passphrase(passphrase)
+      end
+    end
+
+    describe ".from_keypair" do
+      let(:public_key)  { double("public key") }
+      let(:private_key) { double("private key") }
+
+      it "creates a random nonce box based on the keypair" do
+        Crypto::RandomNonceBox.should_receive(:from_keypair).with(public_key, private_key)
+        Encrypto::Box.from_keypair(public_key, private_key)
+      end
+
+      it "initializes with a random nonce box" do
+        box = double("box")
+        Crypto::RandomNonceBox.stub(:from_keypair => box)
+        Encrypto::Box.should_receive(:new).with(box)
+        Encrypto::Box.from_keypair(public_key, private_key)
+      end
+    end
+
+    describe '#box' do
+      it 'boxes the value' do
+        value = double("value")
+
+        some_box = double("box")
+        some_box.should_receive(:box).with(value, :hex)
+
+        box = Encrypto::Box.new(some_box)
+        box.box(value)
+      end
+    end
+
+    describe "#open" do
+      it "opens the cipher text" do
+        cipher_text = double("cipher text")
+
+        some_box = double("box")
+        some_box.should_receive(:open).with(cipher_text, :hex)
+
+        box = Encrypto::Box.new(some_box)
+        box.open(cipher_text)
+      end
+    end
+
+  end
+end

data/spec/encrypto/database/encryptor_spec.rb

@@ -0,0 +1,49 @@
+require 'spec_helper'
+
+module Encrypto
+  module Database
+
+    describe Encryptor do
+
+      describe ".encrypt" do
+
+        it "creates a symmetric box based on the key" do
+          box = double("box").as_null_object
+          Box.should_receive(:from_secret_key).with("key").and_return(box)
+
+          Encryptor.encrypt({:value => "value", :key => "key"})
+        end
+
+        it "boxes the value" do
+          box = double("box")
+          Box.stub(:from_secret_key).and_return(box)
+
+          box.should_receive(:box).with("value")
+
+          Encryptor.encrypt({:value => "value", :key => "key"})
+        end
+
+      end
+
+      describe ".decrypt" do
+
+        it "creates a symmetric box based on the key" do
+          box = double("box").as_null_object
+          Box.should_receive(:from_secret_key).with("key").and_return(box)
+
+          Encryptor.decrypt({:value => "value", :key => "key"})
+        end
+
+        it "opens the value" do
+          box = double("box")
+          Box.stub(:from_secret_key).and_return(box)
+
+          box.should_receive(:open).with("value")
+
+          Encryptor.decrypt({:value => "value", :key => "key"})
+        end
+
+      end
+    end
+  end
+end

data/spec/encrypto/encrypto_spec.rb

@@ -0,0 +1,109 @@
+require 'spec_helper'
+
+module Encrypto
+  describe Encrypto do
+
+    describe ".generate_keypair" do
+      it "delegates to Keys" do
+        Encrypto::Keys.should_receive(:generate_keypair)
+        subject.generate_keypair
+      end
+    end
+
+    describe ".generate_random_key" do
+      it "delegates to Random" do
+        Encrypto::Random.should_receive(:bytes)
+        subject.generate_random_key
+      end
+    end
+
+    describe '.encrypt_with_passphrase' do
+      it 'boxes the value in a passphrase box' do
+        value = double("value")
+        passphrase = double("passphrase")
+        box = double("box")
+
+        Encrypto::Box.should_receive(:from_passphrase).
+                    with(passphrase).
+                    and_return(box)
+
+        box.should_receive(:box).
+            with(value)
+
+        subject.encrypt_with_passphrase(value, passphrase)
+      end
+    end
+
+    describe ".decrypt_with_passphrase" do
+      it "opens the ciphertext with from passphrase box" do
+        passphrase = double("passphrase")
+        box = double("box")
+        cipher_text = double("cipher text")
+
+        Encrypto::Box.should_receive(:from_passphrase)
+        .with(passphrase)
+        .and_return(box)
+
+        box.should_receive(:open).
+          with(cipher_text)
+
+        subject.decrypt_with_passphrase(cipher_text, passphrase)
+      end
+    end
+
+    describe '.encrypt_with_keypair' do
+      it 'boxes the value in a keypair box' do
+        value = double("value")
+        public_key = double("public")
+        hex_public_key = double("hex_public_key")
+        signing_private_key = double("signing_private_key")
+        box = double("box")
+
+        Encrypto::Keys.should_receive(:hex_public_key).
+             with(public_key).
+             and_return(hex_public_key)
+
+        Encrypto::Box.should_receive(:from_keypair).
+                    with(hex_public_key, signing_private_key).
+                    and_return(box)
+
+        box.should_receive(:box).
+            with(value)
+
+        subject.encrypt_with_keypair(value, public_key, signing_private_key)
+      end
+    end
+
+    describe ".decrypt_with_keypair" do
+      let(:cipher_text)    { double("cipher text") }
+      let(:hex_public_key) { double("hex public key") }
+      let(:public_key)     { double("public key") }
+      let(:private_key)    { double("private key") }
+
+      it "creates a public key" do
+        Encrypto::Keys.should_receive(:hex_public_key).with(hex_public_key)
+        Encrypto::Box.stub(from_keypair: double(open: nil))
+
+        subject.decrypt_with_keypair(cipher_text, hex_public_key, private_key)
+      end
+
+      it "decrypts the cipher text with the keypair"  do
+        box = double
+
+        Encrypto::Keys.stub(hex_public_key: public_key)
+        Encrypto::Box.should_receive(:from_keypair).with(public_key, private_key).and_return(box)
+        box.should_receive(:open).with(cipher_text)
+
+        subject.decrypt_with_keypair(cipher_text, hex_public_key, private_key)
+      end
+
+      it "returns the decrypted cipher text" do
+        box = double(open: "decrypted value")
+        Encrypto::Keys.stub(hex_public_key: public_key)
+        Encrypto::Box.stub(from_keypair: box)
+
+        subject.decrypt_with_keypair(cipher_text, hex_public_key, private_key).should eql "decrypted value"
+      end
+    end
+  end
+end

data/spec/encrypto/keys_spec.rb

@@ -0,0 +1,16 @@
+require 'spec_helper'
+
+module Encrypto
+  describe Keys do
+
+    describe ".generate_keypair" do
+      it "generates a keypair" do
+        public_key = double("public_key", :to_s => "hex public key")
+        private_key = double("private key", :public_key => public_key)
+        Crypto::PrivateKey.should_receive(:generate).and_return(private_key)
+        Encrypto::Keys.generate_keypair.should eql ["hex public key", private_key]
+      end
+    end
+
+  end
+end

data/spec/encrypto/random_spec.rb

@@ -0,0 +1,14 @@
+require 'spec_helper'
+
+module Encrypto
+  describe Random
+
+  describe ".bytes" do
+    it "creates a random byte sequence" do
+      random_bytes = "asf2020fasd"
+      Crypto::Random.should_receive(:random_bytes).and_return(random_bytes)
+      Encrypto::Random.bytes.should eql random_bytes
+    end
+  end
+
+end

data/spec/spec_helper.rb

@@ -0,0 +1,4 @@
+require 'pry-nav'
+require 'rbnacl'
+require 'attr_encrypted'
+require "encrypto"

metadata

@@ -0,0 +1,129 @@
+--- !ruby/object:Gem::Specification
+name: encrypto
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Ruben
+- Arne
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-12-04 00:00:00.000000000Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rbnacl
+  requirement: &70128989961020 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: *70128989961020
+- !ruby/object:Gem::Dependency
+  name: attr_encrypted
+  requirement: &70128989960500 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+  type: :runtime
+  prerelease: false
+  version_requirements: *70128989960500
+- !ruby/object:Gem::Dependency
+  name: pry-nav
+  requirement: &70128989959820 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.2.3
+  type: :development
+  prerelease: false
+  version_requirements: *70128989959820
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: &70128989959120 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.14.1
+  type: :development
+  prerelease: false
+  version_requirements: *70128989959120
+- !ruby/object:Gem::Dependency
+  name: spec_coverage
+  requirement: &70128989958440 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.0.5
+  type: :development
+  prerelease: false
+  version_requirements: *70128989958440
+description: A gem that supports encrypting personal data by using rbnacl and attr_encrypted
+email: service@finalist.nl
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .rspec
+- Gemfile
+- Gemfile.lock
+- README.md
+- encrypto.gemspec
+- lib/encrypto.rb
+- lib/encrypto/box.rb
+- lib/encrypto/database/attr_encrypted.rb
+- lib/encrypto/database/encryptor.rb
+- lib/encrypto/encrypto.rb
+- lib/encrypto/keys.rb
+- lib/encrypto/random.rb
+- lib/encrypto/version.rb
+- script/bundler
+- script/ci
+- script/install_libsodium
+- spec/encrypto/box_spec.rb
+- spec/encrypto/database/encryptor_spec.rb
+- spec/encrypto/encrypto_spec.rb
+- spec/encrypto/keys_spec.rb
+- spec/encrypto/random_spec.rb
+- spec/spec_helper.rb
+homepage: http://github.com/finalist/encrypto
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.10
+signing_key: 
+specification_version: 3
+summary: A gem that supports encrypting personal data by using rbnacl and attr_encrypted
+test_files:
+- spec/encrypto/box_spec.rb
+- spec/encrypto/database/encryptor_spec.rb
+- spec/encrypto/encrypto_spec.rb
+- spec/encrypto/keys_spec.rb
+- spec/encrypto/random_spec.rb
+- spec/spec_helper.rb