RubyGems - familia - Versions diffs - 2.0.0.pre4 → 2.0.0.pre5 - Mend

familia 2.0.0.pre4 → 2.0.0.pre5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (134) hide show

checksums.yaml +4 -4
data/.gitignore +3 -0
data/.rubocop_todo.yml +17 -17
data/CLAUDE.md +3 -3
data/Gemfile +5 -1
data/Gemfile.lock +18 -3
data/README.md +36 -157
data/TEST_COVERAGE.md +40 -0
data/docs/overview.md +359 -0
data/docs/wiki/API-Reference.md +270 -0
data/docs/wiki/Encrypted-Fields-Overview.md +64 -0
data/docs/wiki/Home.md +49 -0
data/docs/wiki/Implementation-Guide.md +183 -0
data/docs/wiki/Security-Model.md +143 -0
data/lib/familia/base.rb +18 -27
data/lib/familia/connection.rb +6 -5
data/lib/familia/{datatype → data_type}/commands.rb +2 -5
data/lib/familia/{datatype → data_type}/serialization.rb +8 -10
data/lib/familia/{datatype → data_type}/types/hashkey.rb +2 -2
data/lib/familia/{datatype → data_type}/types/list.rb +17 -18
data/lib/familia/{datatype → data_type}/types/sorted_set.rb +17 -17
data/lib/familia/{datatype → data_type}/types/string.rb +2 -1
data/lib/familia/{datatype → data_type}/types/unsorted_set.rb +17 -18
data/lib/familia/{datatype.rb → data_type.rb} +10 -12
data/lib/familia/encryption/manager.rb +102 -0
data/lib/familia/encryption/provider.rb +49 -0
data/lib/familia/encryption/providers/aes_gcm_provider.rb +103 -0
data/lib/familia/encryption/providers/secure_xchacha20_poly1305_provider.rb +184 -0
data/lib/familia/encryption/providers/xchacha20_poly1305_provider.rb +118 -0
data/lib/familia/encryption/registry.rb +50 -0
data/lib/familia/encryption.rb +178 -0
data/lib/familia/encryption_request_cache.rb +68 -0
data/lib/familia/features/encrypted_fields/encrypted_field_type.rb +153 -0
data/lib/familia/features/encrypted_fields.rb +28 -0
data/lib/familia/features/expiration.rb +107 -77
data/lib/familia/features/quantization.rb +5 -9
data/lib/familia/features/relatable_objects.rb +2 -4
data/lib/familia/features/safe_dump.rb +14 -17
data/lib/familia/features/transient_fields/redacted_string.rb +159 -0
data/lib/familia/features/transient_fields/single_use_redacted_string.rb +62 -0
data/lib/familia/features/transient_fields/transient_field_type.rb +139 -0
data/lib/familia/features/transient_fields.rb +47 -0
data/lib/familia/features.rb +40 -24
data/lib/familia/field_type.rb +270 -0
data/lib/familia/horreum/connection.rb +8 -11
data/lib/familia/horreum/{commands.rb → database_commands.rb} +7 -19
data/lib/familia/horreum/definition_methods.rb +453 -0
data/lib/familia/horreum/{class_methods.rb → management_methods.rb} +19 -243
data/lib/familia/horreum/serialization.rb +46 -18
data/lib/familia/horreum/settings.rb +10 -2
data/lib/familia/horreum/utils.rb +9 -10
data/lib/familia/horreum.rb +18 -10
data/lib/familia/logging.rb +14 -14
data/lib/familia/settings.rb +39 -3
data/lib/familia/utils.rb +45 -0
data/lib/familia/version.rb +1 -1
data/lib/familia.rb +2 -1
data/try/core/base_enhancements_try.rb +115 -0
data/try/core/connection_try.rb +0 -1
data/try/core/errors_try.rb +0 -1
data/try/core/familia_extended_try.rb +3 -4
data/try/core/familia_try.rb +0 -1
data/try/core/pools_try.rb +2 -2
data/try/core/secure_identifier_try.rb +0 -1
data/try/core/settings_try.rb +0 -1
data/try/core/utils_try.rb +0 -1
data/try/{datatypes → data_types}/boolean_try.rb +1 -2
data/try/{datatypes → data_types}/datatype_base_try.rb +2 -3
data/try/{datatypes → data_types}/hash_try.rb +1 -2
data/try/{datatypes → data_types}/list_try.rb +1 -2
data/try/{datatypes → data_types}/set_try.rb +1 -2
data/try/{datatypes → data_types}/sorted_set_try.rb +1 -2
data/try/{datatypes → data_types}/string_try.rb +1 -2
data/try/debugging/README.md +32 -0
data/try/debugging/cache_behavior_tracer.rb +91 -0
data/try/debugging/encryption_method_tracer.rb +138 -0
data/try/debugging/provider_diagnostics.rb +110 -0
data/try/edge_cases/hash_symbolization_try.rb +0 -1
data/try/edge_cases/json_serialization_try.rb +0 -1
data/try/edge_cases/reserved_keywords_try.rb +42 -11
data/try/encryption/config_persistence_try.rb +192 -0
data/try/encryption/encryption_core_try.rb +328 -0
data/try/encryption/instance_variable_scope_try.rb +31 -0
data/try/encryption/module_loading_try.rb +28 -0
data/try/encryption/providers/aes_gcm_provider_try.rb +178 -0
data/try/encryption/providers/xchacha20_poly1305_provider_try.rb +169 -0
data/try/encryption/roundtrip_validation_try.rb +28 -0
data/try/encryption/secure_memory_handling_try.rb +125 -0
data/try/features/encrypted_fields_core_try.rb +117 -0
data/try/features/encrypted_fields_integration_try.rb +220 -0
data/try/features/encrypted_fields_no_cache_security_try.rb +205 -0
data/try/features/encrypted_fields_security_try.rb +370 -0
data/try/features/encryption_fields/aad_protection_try.rb +53 -0
data/try/features/encryption_fields/context_isolation_try.rb +120 -0
data/try/features/encryption_fields/error_conditions_try.rb +116 -0
data/try/features/encryption_fields/fresh_key_derivation_try.rb +122 -0
data/try/features/encryption_fields/fresh_key_try.rb +163 -0
data/try/features/encryption_fields/key_rotation_try.rb +117 -0
data/try/features/encryption_fields/memory_security_try.rb +37 -0
data/try/features/encryption_fields/missing_current_key_version_try.rb +23 -0
data/try/features/encryption_fields/nonce_uniqueness_try.rb +54 -0
data/try/features/encryption_fields/thread_safety_try.rb +199 -0
data/try/features/expiration_try.rb +0 -1
data/try/features/feature_dependencies_try.rb +159 -0
data/try/features/quantization_try.rb +0 -1
data/try/features/real_feature_integration_try.rb +148 -0
data/try/features/relatable_objects_try.rb +0 -1
data/try/features/safe_dump_advanced_try.rb +0 -1
data/try/features/safe_dump_try.rb +0 -1
data/try/features/transient_fields/redacted_string_try.rb +248 -0
data/try/features/transient_fields/refresh_reset_try.rb +164 -0
data/try/features/transient_fields/simple_refresh_test.rb +50 -0
data/try/features/transient_fields/single_use_redacted_string_try.rb +310 -0
data/try/features/transient_fields_core_try.rb +181 -0
data/try/features/transient_fields_integration_try.rb +260 -0
data/try/helpers/test_helpers.rb +42 -0
data/try/horreum/base_try.rb +157 -3
data/try/horreum/enhanced_conflict_handling_try.rb +176 -0
data/try/horreum/field_categories_try.rb +118 -0
data/try/horreum/field_definition_try.rb +96 -0
data/try/horreum/initialization_try.rb +0 -1
data/try/horreum/relations_try.rb +0 -1
data/try/horreum/serialization_persistent_fields_try.rb +165 -0
data/try/horreum/serialization_try.rb +2 -3
data/try/memory/memory_basic_test.rb +73 -0
data/try/memory/memory_detailed_test.rb +121 -0
data/try/memory/memory_docker_ruby_dump.sh +80 -0
data/try/memory/memory_search_for_string.rb +83 -0
data/try/memory/test_actual_redactedstring_protection.rb +38 -0
data/try/models/customer_safe_dump_try.rb +0 -1
data/try/models/customer_try.rb +0 -1
data/try/models/datatype_base_try.rb +1 -2
data/try/models/familia_object_try.rb +0 -1
metadata +85 -18

data/try/features/transient_fields/single_use_redacted_string_try.rb ADDED Viewed

@@ -0,0 +1,310 @@
+# try/features/transient_fields/single_use_redacted_string_try.rb
+require_relative '../../helpers/test_helpers'
+@otp_code = "123456"
+@auth_token = "temp-auth-token-xyz"
+@encryption_key = "encryption-key-abc123"
+@empty_secret = ""
+@long_secret = "x" * 50  # Test long string handling
+@special_chars = "tëmp!@#$%"
+## Basic initialization creates SingleUseRedactedString instance
+single_use = SingleUseRedactedString.new(@otp_code)
+single_use.class
+#=> SingleUseRedactedString
+## SingleUseRedactedString inherits from RedactedString
+single_use_inheritance = SingleUseRedactedString.new(@auth_token)
+single_use_inheritance.is_a?(RedactedString)
+#=> true
+## Initialization accepts various input types
+SingleUseRedactedString.new("string").class
+#=> SingleUseRedactedString
+SingleUseRedactedString.new(123).class  # to_s conversion
+#=> SingleUseRedactedString
+SingleUseRedactedString.new(nil).class  # nil handling
+#=> SingleUseRedactedString
+## Fresh instance is not cleared initially
+fresh_single_use = SingleUseRedactedString.new(@otp_code)
+fresh_single_use.cleared?
+#=> false
+## to_s returns redacted placeholder (inherited behavior)
+single_use_to_s = SingleUseRedactedString.new(@auth_token)
+single_use_to_s.to_s
+#=> "[REDACTED]"
+## inspect returns same as to_s (inherited behavior)
+single_use_inspect = SingleUseRedactedString.new(@encryption_key)
+single_use_inspect.inspect
+#=> "[REDACTED]"
+## String interpolation is redacted (inherited behavior)
+single_use_interpolation = SingleUseRedactedString.new(@otp_code)
+"OTP: #{single_use_interpolation}"
+#=> "OTP: [REDACTED]"
+## Direct value() access raises SecurityError (overridden behavior)
+single_use_direct_access = SingleUseRedactedString.new(@auth_token)
+begin
+  single_use_direct_access.value
+rescue SecurityError => e
+  e.message
+end
+#=> "Direct value access not allowed for single-use secrets. Use #expose with a block."
+## expose method requires block (inherited behavior)
+single_use_no_block = SingleUseRedactedString.new(@otp_code)
+begin
+  single_use_no_block.expose
+rescue ArgumentError => e
+  e.message
+end
+#=> "Block required"
+## expose method provides access to original value
+single_use_expose = SingleUseRedactedString.new("123456")
+result = nil
+single_use_expose.expose { |val| result = val.dup }
+result
+#=> "123456"
+## expose automatically clears value after use (key single-use behavior)
+single_use_auto_clear = SingleUseRedactedString.new(@otp_code)
+single_use_auto_clear.expose { |val| val.length }
+single_use_auto_clear.cleared?
+#=> true
+## Second expose attempt raises SecurityError after clearing
+single_use_second_expose = SingleUseRedactedString.new(@auth_token)
+single_use_second_expose.expose { |val| val.upcase }  # First use
+begin
+  single_use_second_expose.expose { |val| val }  # Second attempt
+rescue SecurityError => e
+  e.message
+end
+#=> "Value already cleared"
+## expose clears value even when exception occurs in block
+single_use_exception = SingleUseRedactedString.new(@encryption_key)
+begin
+  single_use_exception.expose { |val| raise "test error" }
+rescue => e
+  # Exception occurred, but string should still be cleared
+end
+single_use_exception.cleared?
+#=> true
+## expose clears value even when block returns early
+single_use_early_return = SingleUseRedactedString.new(@otp_code)
+result = single_use_early_return.expose do |val|
+  next "early" if val.length > 0
+  "normal"
+end
+single_use_early_return.cleared?
+#=> true
+## Multiple values can be processed in the expose block
+single_use_multiple_ops = SingleUseRedactedString.new("password123")
+results = []
+single_use_multiple_ops.expose do |val|
+  results << val.length
+  results << val.upcase
+  results << val.include?("123")
+end
+results
+#=> [11, "PASSWORD123", true]
+## expose with empty string
+single_use_empty = SingleUseRedactedString.new(@empty_secret)
+result = nil
+single_use_empty.expose { |val| result = val.dup }
+result
+#=> ""
+## Can manually expose the length of the value without duplicating
+single_use_long = SingleUseRedactedString.new(@long_secret)
+result = nil
+single_use_long.expose { |val| result = val.length }
+result
+#=> 50
+## Can manually expose the length of the value by duplicating
+single_use_long = SingleUseRedactedString.new(@long_secret)
+result = nil
+single_use_long.expose { |val| result = val.dup.length }
+result
+#=> 50
+## Cannot manually expose the value
+single_use_special = SingleUseRedactedString.new(@special_chars)
+result = nil
+single_use_special.expose { |val| result = val }
+result
+#=> ""
+## Can manually expose the value with special characters by duplicating
+single_use_special = SingleUseRedactedString.new(@special_chars)
+result = nil
+single_use_special.expose { |val| result = val.dup }
+result
+#=> "tëmp!@#$%"
+## Can manually expose the value with special characters by duplicating
+single_use_special = SingleUseRedactedString.new(@special_chars)
+result = nil
+single_use_special.expose { |val| result = val.dup }
+result
+##=> "tëmp!@#$%"
+## expose with special characters via raw method (IN TEST ONLY)
+module SpecialTestonlyDirectAccess
+  using SingleUseRedactedStringTestHelper
+  single_use_special = SingleUseRedactedString.new("tëmp!@#$%")
+  # Use raw to access the internal value before expose clears it
+  single_use_special.raw
+end
+#=> "tëmp!@#$%"
+## Cleared single-use string maintains redacted appearance
+single_use_appearance = SingleUseRedactedString.new(@auth_token)
+single_use_appearance.expose { |val| val }  # Use and clear
+single_use_appearance.to_s
+#=> "[REDACTED]"
+## Cleared single-use string inspect still redacted
+single_use_inspect_cleared = SingleUseRedactedString.new(@otp_code)
+single_use_inspect_cleared.expose { |val| val }  # Use and clear
+single_use_inspect_cleared.inspect
+#=> "[REDACTED]"
+## Object equality works same as parent (inherited behavior)
+single_use1 = SingleUseRedactedString.new(@auth_token)
+single_use2 = SingleUseRedactedString.new(@auth_token)
+single_use1 == single_use2
+#=> false
+## Same object equality returns true (inherited behavior)
+single_use_same = SingleUseRedactedString.new(@otp_code)
+single_use_same == single_use_same
+#=> true
+## eql? behaves same as == (inherited behavior)
+single_use_eql1 = SingleUseRedactedString.new(@encryption_key)
+single_use_eql2 = SingleUseRedactedString.new(@encryption_key)
+single_use_eql1.eql?(single_use_eql2)
+#=> false
+## Hash behavior consistent with parent (inherited behavior)
+single_use_hash1 = SingleUseRedactedString.new(@auth_token)
+single_use_hash2 = SingleUseRedactedString.new(@otp_code)
+single_use_hash1.hash == single_use_hash2.hash
+#=> true
+## Hash value consistent with RedactedString class (inherited behavior)
+single_use_hash = SingleUseRedactedString.new(@encryption_key)
+single_use_hash.hash == RedactedString.hash
+#=> true
+## Cannot be used in string operations (inherited behavior)
+single_use_no_concat = SingleUseRedactedString.new(@auth_token)
+begin
+  result = single_use_no_concat + "suffix"
+  false  # Should not reach here
+rescue => e
+  true   # Expected to raise error
+end
+#=> true
+## Not a String subclass (inherited behavior)
+single_use_type = SingleUseRedactedString.new(@otp_code)
+single_use_type.is_a?(String)
+#=> false
+## Numeric input handling
+single_use_numeric = SingleUseRedactedString.new(42)
+result = nil
+single_use_numeric.expose { |val| result = val.dup }
+result
+#=> "42"
+## Symbol input handling
+single_use_symbol = SingleUseRedactedString.new(:secret)
+result = nil
+single_use_symbol.expose { |val| result = val.dup }
+result
+#=> "secret"
+## Nil input handling
+single_use_nil = SingleUseRedactedString.new(nil)
+result = nil
+single_use_nil.expose { |val| result = val.dup }
+result
+#=> ""
+## Block can return different values
+single_use_return_test = SingleUseRedactedString.new("test123")
+result = single_use_return_test.expose { |val| "processed: #{val.length}" }
+result
+#=> "processed: 7"
+## clear! method works on SingleUseRedactedString (inherited behavior)
+single_use_manual_clear = SingleUseRedactedString.new(@auth_token)
+single_use_manual_clear.clear!
+single_use_manual_clear.cleared?
+#=> true
+## Manual clear! prevents subsequent expose
+single_use_manual_then_expose = SingleUseRedactedString.new(@otp_code)
+single_use_manual_then_expose.clear!
+begin
+  single_use_manual_then_expose.expose { |val| val }
+rescue SecurityError => e
+  e.message
+end
+#=> "Value already cleared"
+## freeze behavior after expose (automatic clearing freezes object)
+single_use_freeze = SingleUseRedactedString.new(@encryption_key)
+single_use_freeze.expose { |val| val }
+single_use_freeze.frozen?
+#=> true
+## Working with sensitive data patterns - OTP example
+otp = SingleUseRedactedString.new("123456")
+verification_result = otp.expose do |code|
+  # Simulate OTP verification
+  code == "123456" ? "valid" : "invalid"
+end
+# OTP is now unusable
+[verification_result, otp.cleared?]
+#=> ["valid", true]
+## Working with sensitive data patterns - temporary token example
+temp_token = SingleUseRedactedString.new("temp-xyz-789")
+auth_result = temp_token.expose do |token|
+  # Simulate authentication
+  { success: true, token_length: token.length }
+end
+# Token is now unusable
+[auth_result[:success], temp_token.cleared?]
+#=> [true, true]
+# TEARDOWN
+# Clean up any remaining test objects
+@otp_code = nil
+@auth_token = nil
+@encryption_key = nil
+@empty_secret = nil
+@long_secret = nil
+@special_chars = nil
+# Force garbage collection to trigger any finalizers
+GC.start

data/try/features/transient_fields_core_try.rb ADDED Viewed

@@ -0,0 +1,181 @@
+# try/features/transient_fields_core_try.rb
+require_relative '../helpers/test_helpers'
+class SecretService < Familia::Horreum
+  feature :transient_fields
+  field :name
+  field :endpoint_url
+  transient_field :api_key
+  transient_field :password
+  transient_field :secret_token, as: :token
+end
+@service = SecretService.new
+@service.name = 'Test API Service'
+@service.endpoint_url = 'https://api.example.com'
+@service.api_key = 'sk-1234567890abcdef'
+@service.password = 'super_secret_password'
+@service.token = 'token-xyz789'
+## Class has correct field definitions
+SecretService.fields.sort
+#=> [:api_key, :endpoint_url, :name, :password, :secret_token]
+## Persistent fields exclude transient ones
+SecretService.persistent_fields.sort
+#=> [:endpoint_url, :name]
+## Transient field definitions have correct category
+SecretService.field_types[:api_key].category
+#=> :transient
+## Password field definition has correct category
+SecretService.field_types[:password].category
+#=> :transient
+## Secret token field definition has correct category
+SecretService.field_types[:secret_token].category
+#=> :transient
+## Regular field definition has correct category
+SecretService.field_types[:name].category
+#=> :field
+## Transient field stores RedactedString object for api_key
+@service.api_key.class
+#=> RedactedString
+## Transient field stores RedactedString object for password
+@service.password.class
+#=> RedactedString
+## Transient field stores RedactedString object for token alias
+@service.token.class
+#=> RedactedString
+## Regular field stores normal string value for name
+@service.name.class
+#=> String
+## Regular field stores normal string value for endpoint_url
+@service.endpoint_url.class
+#=> String
+## Transient field value is redacted in string representation
+@service.api_key.to_s
+#=> "[REDACTED]"
+## Transient field value is redacted in inspect output
+@service.password.inspect
+#=> "[REDACTED]"
+## Transient field can expose value securely through block
+result = nil
+@service.api_key.expose { |val| result = val.dup }
+result
+#=> "sk-1234567890abcdef"
+## Transient field with custom method name exposes value correctly
+result = nil
+@service.token.expose { |val| result = val.dup }
+result
+#=> "token-xyz789"
+## Setting transient field with existing RedactedString works
+already_redacted = RedactedString.new('already_wrapped')
+@service.password = already_redacted
+@service.password.class
+#=> RedactedString
+## Serialization to_h only includes persistent fields
+hash_result = @service.to_h
+hash_result.keys.sort
+#=> [:endpoint_url, :name]
+## Serialization to_h excludes api_key transient field
+hash_result = @service.to_h
+hash_result.key?('api_key')
+#=> false
+## Serialization to_h excludes password transient field
+hash_result = @service.to_h
+hash_result.key?('password')
+#=> false
+## Serialization to_h excludes secret_token transient field
+hash_result = @service.to_h
+hash_result.key?('secret_token')
+#=> false
+## Serialization to_a only includes persistent field values
+array_result = @service.to_a
+array_result.length
+#=> 2
+## String interpolation with transient field shows redacted value
+log_message = "Connecting to #{@service.name} with key: #{@service.api_key}"
+log_message.include?('[REDACTED]')
+#=> true
+## String interpolation with transient field hides actual value
+log_message = "Connecting to #{@service.name} with key: #{@service.api_key}"
+log_message.include?('sk-1234567890abcdef')
+#=> false
+## Hash containing transient field shows redacted in string output
+config_hash = {
+  service: @service.name,
+  key: @service.api_key,
+  url: @service.endpoint_url
+}
+config_hash.to_s.include?('[REDACTED]')
+#=> true
+## Hash containing transient field hides actual value in string output
+config_hash = {
+  service: @service.name,
+  key: @service.api_key,
+  url: @service.endpoint_url
+}
+config_hash.to_s.include?('sk-1234567890abcdef')
+#=> false
+## Exception messages with transient fields are safe
+begin
+  raise StandardError, "Failed to authenticate with key: #{@service.api_key}"
+rescue StandardError => e
+  e.message.include?('[REDACTED]')
+end
+#=> true
+## Multiple transient field assignment creates RedactedString instances
+new_service = SecretService.new
+new_service.name = 'Another Service'
+new_service.api_key = 'new-api-key-123'
+new_service.password = 'new-password-456'
+new_service.token = 'new-token-789'
+[new_service.api_key, new_service.password, new_service.token].all? { |f| f.is_a?(RedactedString) }
+#=> true
+## Transient field can be set to nil value
+new_service = SecretService.new
+new_service.api_key = nil
+new_service.api_key
+#=> nil
+## Persistent field definitions are correctly identified
+SecretService.field_types.values.select(&:persistent?).map(&:name).sort
+#=> [:endpoint_url, :name]
+## Transient field definitions are correctly identified
+transient_fields = SecretService.field_types.values.reject(&:persistent?).map(&:name).sort
+transient_fields
+#=> [:api_key, :password, :secret_token]
+# Clean up test objects
+@service = nil
+# Force garbage collection to trigger any finalizers
+GC.start