enzoic 1.0.3 → 1.1.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: f384606d64ea5eac9f13b2467ab4e494d7043312
-  data.tar.gz: 7f3d428ada763102e27d26aba7ee5172169e5bee
+  metadata.gz: 193cc6ee5e5585ea3a76add970ce69feb44c2383
+  data.tar.gz: a77cdcf48592e05a9f06ef1ad486467002f2df30
 SHA512:
-  metadata.gz: 7a6da77a5e86c97d835e50378c67423c6197f771d5647216d9c7613d7cf402ff6705dbf9e20fce28796bf8957741a3d7459c6dbec0aead19f0ff9e3a7bc4b09e
-  data.tar.gz: 20356c44bacd22fa24ea58ee85515acecb44326b4fc5b46ee233ad0b132727b8b61594053e2c91df1a4c5300277f0bcda1c7691acf14ed5b126e59bc265e55b1
+  metadata.gz: 641ca919dd26147fe4e06550923f380f2b54eb0959372171f57a4f17ff2bcd5f98adcd446d3d39e9f0205910671307c7e78b6954ffa77e0ad58513f25ca31084
+  data.tar.gz: 9acf2c9d120dc0292f136b7583ba0d36f2aacd4c7e9fe52de19ec2c6468f7f42738e939250893345fe1fdc6e5d77b44e203db2558b34b0a541303365515b393d

data/README.md

@@ -48,6 +48,18 @@ else
     puts("Credentials are not compromised")
 end
 
+# Check whether a specific set of credentials are compromised, using the optional 
+# lastCheckData parameter.
+# lastCheckDate is the timestamp for the last check you performed for this user.
+# If the DateTime you provide for the last check is greater than the timestamp Enzoic has 
+# for the last breach affecting this user, the check will not be performed.  
+# This can be used to substantially increase performance. 
+if enzoic.check_credentials("test@enzoic.com", "password-to-test", DateTime.parse("2019-07-15T19:57:43.000Z"))
+    puts("Credentials are compromised")
+else
+    puts("Credentials are not compromised")
+end
+
 # get all exposures for a given user
 exposures = enzoic.get_exposures_for_user("test@enzoic.com")
 puts(exposures.count.to_s + " exposures found for test@enzoic.com")

data/Rakefile

@@ -20,9 +20,9 @@ Rake::ExtensionTask.new('whirlpool', gemspec) do |ext|
   ext.lib_dir = 'lib/digest'
 end
 
-Rake::ExtensionTask.new('argon2-wrapper', gemspec) do |ext|
-  ext.ext_dir = 'ext/argon2-wrapper'
-  ext.lib_dir = 'lib/enzoic'
-end
+# Rake::ExtensionTask.new('argon2-wrapper', gemspec) do |ext|
+#   ext.ext_dir = 'ext/argon2-wrapper'
+#   ext.lib_dir = 'lib/enzoic'
+# end
 
 task :default => :test

data/ext/phc-winner-argon2/argon2.dSYM/Contents/Info.plist

@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+	<dict>
+		<key>CFBundleDevelopmentRegion</key>
+		<string>English</string>
+		<key>CFBundleIdentifier</key>
+		<string>com.apple.xcode.dsym.argon2</string>
+		<key>CFBundleInfoDictionaryVersion</key>
+		<string>6.0</string>
+		<key>CFBundlePackageType</key>
+		<string>dSYM</string>
+		<key>CFBundleSignature</key>
+		<string>????</string>
+		<key>CFBundleShortVersionString</key>
+		<string>1.0</string>
+		<key>CFBundleVersion</key>
+		<string>1</string>
+	</dict>
+</plist>

data/ext/phc-winner-argon2/libargon2.0.dylib.dSYM/Contents/Info.plist

@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+	<dict>
+		<key>CFBundleDevelopmentRegion</key>
+		<string>English</string>
+		<key>CFBundleIdentifier</key>
+		<string>com.apple.xcode.dsym.libargon2.0.dylib</string>
+		<key>CFBundleInfoDictionaryVersion</key>
+		<string>6.0</string>
+		<key>CFBundlePackageType</key>
+		<string>dSYM</string>
+		<key>CFBundleSignature</key>
+		<string>????</string>
+		<key>CFBundleShortVersionString</key>
+		<string>1.0</string>
+		<key>CFBundleVersion</key>
+		<string>1</string>
+	</dict>
+</plist>

data/lib/enzoic.rb

@@ -23,7 +23,7 @@ module Enzoic
       @authString = calc_auth_string(@apiKey, @secret)
     end
 
-    def check_credentials(username, password)
+    def check_credentials(username, password, lastCheckTimestamp = Date.new(1980, 1, 1))
       raise EnzoicFail, "API key/Secret not set" if !@authString || @authString == ''
 
       response = make_rest_call(@baseURL + Constants::ACCOUNTS_API_PATH + "?username=" + Hashing.sha256(username), "GET", nil)
@@ -33,40 +33,44 @@ module Enzoic
       end
 
       account_response = JSON.parse(response)
-      hashes_required = account_response["passwordHashesRequired"]
 
-      bcrypt_count = 0
-      query_string = ""
+      # if lastCheckTimestamp was provided, see if we need to go any further
+      if (Date.parse(account_response["lastBreachDate"]) > lastCheckTimestamp)
+        hashes_required = account_response["passwordHashesRequired"]
 
-      for i in 0..hashes_required.length - 1 do
-        hash_spec = hashes_required[i]
+        bcrypt_count = 0
+        query_string = ""
 
-        # bcrypt gets far too expensive for good response time if there are many of them to calculate.
-        # some mostly garbage accounts have accumulated a number of them in our DB and if we happen to hit one it
-        # kills performance, so short circuit out after at most 2 BCrypt hashes
-        if (hash_spec["hashType"] != PasswordType::BCrypt || bcrypt_count <= 2)
-          if (hash_spec["hashType"] == PasswordType::BCrypt)
-            bcrypt_count = bcrypt_count + 1
-          end
+        for i in 0..hashes_required.length - 1 do
+          hash_spec = hashes_required[i]
+
+          # bcrypt gets far too expensive for good response time if there are many of them to calculate.
+          # some mostly garbage accounts have accumulated a number of them in our DB and if we happen to hit one it
+          # kills performance, so short circuit out after at most 2 BCrypt hashes
+          if (hash_spec["hashType"] != PasswordType::BCrypt || bcrypt_count <= 2)
+            if (hash_spec["hashType"] == PasswordType::BCrypt)
+              bcrypt_count = bcrypt_count + 1
+            end
 
-          if (hash_spec["hashType"] != nil)
-            credential_hash = calc_credential_hash(username, password, account_response["salt"], hash_spec);
+            if (hash_spec["hashType"] != nil)
+              credential_hash = calc_credential_hash(username, password, account_response["salt"], hash_spec);
 
-            if (credential_hash != nil)
-              if (query_string.length == 0)
-                query_string = query_string + "?hashes=" + CGI.escape(credential_hash);
-              else
-                query_string = query_string + "&hashes=" + CGI.escape(credential_hash);
+              if (credential_hash != nil)
+                if (query_string.length == 0)
+                  query_string = query_string + "?hashes=" + CGI.escape(credential_hash);
+                else
+                  query_string = query_string + "&hashes=" + CGI.escape(credential_hash);
+                end
               end
             end
           end
         end
-      end
 
-      if (query_string.length > 0)
-        creds_response = make_rest_call(
-                @baseURL + Constants::CREDENTIALS_API_PATH + query_string, "GET", nil)
-        return creds_response != "404"
+        if (query_string.length > 0)
+          creds_response = make_rest_call(
+                  @baseURL + Constants::CREDENTIALS_API_PATH + query_string, "GET", nil)
+          return creds_response != "404"
+        end
       end
 
       return false

data/lib/enzoic/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 # Standard Gem version constant.
 module Enzoic
-  VERSION = "1.0.3".freeze
+  VERSION = "1.1.3".freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: enzoic
 version: !ruby/object:Gem::Version
-  version: 1.0.3
+  version: 1.1.3
 platform: ruby
 authors:
 - Enzoic
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-07-02 00:00:00.000000000 Z
+date: 2019-08-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -230,9 +230,11 @@ files:
 - Rakefile
 - enzoic.gemspec
 - ext/.DS_Store
+- ext/argon2-wrapper/.DS_Store
 - ext/argon2-wrapper/Makefile
 - ext/argon2-wrapper/argon2-wrapper.c
 - ext/argon2-wrapper/extconf.rb
+- ext/argon2-wrapper/libargon2-wrapper.bundle
 - ext/argon2_import/.DS_Store
 - ext/digest/whirlpool/extconf.rb
 - ext/digest/whirlpool/whirlpool-algorithm.c
@@ -251,7 +253,10 @@ files:
 - ext/phc-winner-argon2/Makefile
 - ext/phc-winner-argon2/README.md
 - ext/phc-winner-argon2/appveyor.yml
+- ext/phc-winner-argon2/argon2
 - ext/phc-winner-argon2/argon2-specs.pdf
+- ext/phc-winner-argon2/argon2.dSYM/Contents/Info.plist
+- ext/phc-winner-argon2/argon2.dSYM/Contents/Resources/DWARF/argon2
 - ext/phc-winner-argon2/export.sh
 - ext/phc-winner-argon2/include/argon2.h
 - ext/phc-winner-argon2/kats/argon2d
@@ -278,27 +283,37 @@ files:
 - ext/phc-winner-argon2/latex/pics/generic.pdf
 - ext/phc-winner-argon2/latex/pics/power-distribution.jpg
 - ext/phc-winner-argon2/latex/tradeoff.bib
+- ext/phc-winner-argon2/libargon2.0.dylib
+- ext/phc-winner-argon2/libargon2.0.dylib.dSYM/Contents/Info.plist
+- ext/phc-winner-argon2/libargon2.0.dylib.dSYM/Contents/Resources/DWARF/libargon2.0.dylib
+- ext/phc-winner-argon2/libargon2.a
 - ext/phc-winner-argon2/libargon2.pc
 - ext/phc-winner-argon2/man/argon2.1
 - ext/phc-winner-argon2/src/argon2.c
+- ext/phc-winner-argon2/src/argon2.o
 - ext/phc-winner-argon2/src/bench.c
 - ext/phc-winner-argon2/src/blake2/blake2-impl.h
 - ext/phc-winner-argon2/src/blake2/blake2.h
 - ext/phc-winner-argon2/src/blake2/blake2b.c
+- ext/phc-winner-argon2/src/blake2/blake2b.o
 - ext/phc-winner-argon2/src/blake2/blamka-round-opt.h
 - ext/phc-winner-argon2/src/blake2/blamka-round-ref.h
 - ext/phc-winner-argon2/src/core.c
 - ext/phc-winner-argon2/src/core.h
+- ext/phc-winner-argon2/src/core.o
 - ext/phc-winner-argon2/src/encoding.c
 - ext/phc-winner-argon2/src/encoding.h
+- ext/phc-winner-argon2/src/encoding.o
 - ext/phc-winner-argon2/src/genkat.c
 - ext/phc-winner-argon2/src/genkat.h
 - ext/phc-winner-argon2/src/opt.c
+- ext/phc-winner-argon2/src/opt.o
 - ext/phc-winner-argon2/src/ref.c
 - ext/phc-winner-argon2/src/run.c
 - ext/phc-winner-argon2/src/test.c
 - ext/phc-winner-argon2/src/thread.c
 - ext/phc-winner-argon2/src/thread.h
+- ext/phc-winner-argon2/src/thread.o
 - ext/phc-winner-argon2/vs2015/Argon2Opt/Argon2Opt.vcxproj
 - ext/phc-winner-argon2/vs2015/Argon2Opt/Argon2Opt.vcxproj.filters
 - ext/phc-winner-argon2/vs2015/Argon2OptBench/Argon2OptBench.vcxproj