hashpasswd 0.2.2 → 0.3.0

data/LICENSE

@@ -0,0 +1,20 @@
+The MIT License (MIT)
+
+Copyright (c) 2013 Ben
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,4 @@
+hashpasswd
+==========
+
+Password hashing and validation.

data/Rakefile

@@ -0,0 +1,10 @@
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+  t.test_files = FileList['test/test*.rb']
+  t.verbose = true
+end
+
+desc "Run tests"
+task :default => :test

data/lib/hashpasswd.rb

@@ -25,15 +25,15 @@ module Hashpasswd
     @delimeter = options[:delimter] || ':'
     @digest = options[:digest] || 'SHA1'
 
-    salt = SecureRandom.base64( @salt_byte_size )
+    salt = SecureRandom.base64(@salt_byte_size)
     pbkdf2 = OpenSSL::PKCS5::pbkdf2_hmac(
       password,
       salt,
       @pbkdf2_iterations,
       @hash_byte_size,
       @digest
-    )
-    return [@digest, @pbkdf2_iterations, salt, Base64.encode64( pbkdf2 )].join( @delimeter )
+   )
+    return [@digest, @pbkdf2_iterations, salt, Base64.encode64(pbkdf2)].join(@delimeter)
   end
 
   # Validates a password against a hash
@@ -49,14 +49,14 @@ module Hashpasswd
     params = hash.split(@delimeter)
     return false if params.length != HASH_SECTIONS
 
-    pbkdf2 = Base64.decode64( params[HASH_INDEX] )
+    pbkdf2 = Base64.decode64(params[HASH_INDEX])
     testhash = OpenSSL::PKCS5::pbkdf2_hmac(
       password,
       params[SALT_INDEX],
       params[ITERATIONS_INDEX].to_i,
       pbkdf2.length,
       params[0] 
-    )
+   )
 
     return pbkdf2 == testhash
   end

data/test/test_hashpasswd.rb

@@ -0,0 +1,135 @@
+require 'test/unit'
+require 'securerandom'
+require './lib/hashpasswd'
+
+class HashpasswdTest < Test::Unit::TestCase
+
+  def test_getconstants
+    constants = Hashpasswd.getconstants
+    assert_equal 4,
+      constants[:HASH_SECTIONS]
+    assert_equal 1,
+      constants[:ITERATIONS_INDEX]
+    assert_equal 2,
+      constants[:SALT_INDEX]
+    assert_equal 3,
+      constants[:HASH_INDEX]
+    assert_equal ':',
+      constants[:DEFAULT_DELIMETER]
+  end
+
+  def test_create_and_validate_hash
+    correct_password = 'testpassword'
+    wrong_password = 'nottestpassword'
+    hash = Hashpasswd.createhash(correct_password)
+    assert(Hashpasswd.validatepasswd(correct_password, hash) == true, "correct password")
+    assert(Hashpasswd.validatepasswd(wrong_password, hash) == false, "wrong password")
+  end
+
+  def test_hash_and_salt_difference
+    password = 'somepassword'
+    hash = Hashpasswd.createhash(password)
+    h1 = hash.split(Hashpasswd.getconstants[:DEFAULT_DELIMETER])
+    h2 = Hashpasswd.createhash(password).split(Hashpasswd.getconstants[:DEFAULT_DELIMETER])
+    assert(h1[Hashpasswd.getconstants[:HASH_INDEX]] != h2[Hashpasswd.getconstants[:HASH_INDEX]], "different hashes")
+    assert(h1[Hashpasswd.getconstants[:SALT_INDEX]] != h2[Hashpasswd.getconstants[:SALT_INDEX]], "different salt")
+  end
+
+  def test_passwords_validate
+    password=[]
+    password[0] = "42+' x53q~16%vQ"
+    password[1] = 'v,@8DDD>mwy%Io0'
+    password[2] = 'f=j2p~/U5~bLmgg'
+    password[3] = 'Y~k.[*6K{ }^~1V'
+    password[4] = 'iLf<!,:P!tF&lg^/w)=4'
+    password[5] = 'I2O/#+;|@0<$L."c^%k!;Uz}4'
+    password[6] = ",}9#ps&+/'@^=.=3'Nr*X+B2>G+=uh"
+    password[7] = 'GPXE)uQxdEx39>sOAfLfxGPkE,KHCT11C}q'
+    password[8] = 'p3"3f(V5k7-0%{&}7)[U{/p&7g$}Tv*9+"+^[G1F'
+    password[9] = 'bS2FCtXKRxxFTn0m7hyn2TS6MfPxkzkeC42I=9uaIc4vR6PP5r'
+    wrong_password = 'P@ssw0rd!'
+
+    hash = []
+    for i in 0..(password.length - 1) do
+      hash[i] = Hashpasswd.createhash(password[i])
+    end
+
+    for i in 0..(hash.length - 1) do
+      assert(Hashpasswd.validatepasswd(password[i], hash[i]) == true, "correct password")
+      assert(Hashpasswd.validatepasswd(wrong_password, hash[i]) == false, "wrong password")
+    end
+  end
+
+  def test_hash_difference
+    password=[]
+    password[0] = "42+' x53q~16%vQ"
+    password[1] = 'v,@8DDD>mwy%Io0'
+    password[2] = 'f=j2p~/U5~bLmgg'
+    password[3] = 'Y~k.[*6K{ }^~1V'
+    password[4] = 'iLf<!,:P!tF&lg^/w)=4'
+    password[5] = 'I2O/#+;|@0<$L."c^%k!;Uz}4'
+    password[6] = ",}9#ps&+/'@^=.=3'Nr*X+B2>G+=uh"
+    password[7] = 'GPXE)uQxdEx39>sOAfLfxGPkE,KHCT11C}q'
+    password[8] = 'p3"3f(V5k7-0%{&}7)[U{/p&7g$}Tv*9+"+^[G1F'
+    password[9] = 'bS2FCtXKRxxFTn0m7hyn2TS6MfPxkzkeC42I=9uaIc4vR6PP5r'
+
+    hash = []
+    for i in 0..(password.length - 1) do
+      hash[i] = Hashpasswd.createhash(password[i])
+    end
+
+    hash2 = []
+    for i in 0..(password.length - 1) do
+      hash2[i] = Hashpasswd.createhash(password[i])
+    end
+    
+    for i in 0..(hash.length - 1) do
+      assert(Hashpasswd.validatepasswd(password[i], hash[i]) == true, "password for hash[#{i}] validates") 
+      assert(Hashpasswd.validatepasswd(password[i], hash2[i]) == true, "password for hash2[#{i}] validates")
+      assert(hash[i] != hash2[i], "hash[#{i}] != hash2[#{i}]")
+    end
+  end
+
+  def test_random_passwords_validate
+    password = []
+    wrong_password = []
+    for i in 0..9 do
+      password[i] = SecureRandom.base64((i+1)*5)
+      wrong_password[i] = SecureRandom.base64((i+1)*5)
+    end
+
+    hash = []
+    for i in 0..(password.length - 1) do
+      hash[i] = Hashpasswd.createhash(password[i])
+    end
+
+    for i in 0..(hash.length - 1) do
+      assert(Hashpasswd.validatepasswd(password[i], hash[i]) == true, "correct password")
+      assert(Hashpasswd.validatepasswd(wrong_password[i], hash[i]) == false, "wrong password")
+    end
+  end
+
+  def test_random_hash_difference
+    password=[]
+    for i in 0..9 do
+      password[i] = SecureRandom.base64((i+1)*5)
+    end
+
+    hash = []
+    for i in 0..(password.length - 1) do
+      hash[i] = Hashpasswd.createhash(password[i])
+    end
+
+    hash2 = []
+    for i in 0..(password.length - 1) do
+      hash2[i] = Hashpasswd.createhash(password[i])
+    end
+
+    for i in 0..(hash.length - 1) do
+      assert(Hashpasswd.validatepasswd(password[i], hash[i]) == true, "password for hash[#{i}] validates")
+      assert(Hashpasswd.validatepasswd(password[i], hash2[i]) == true, "password for hash2[#{i}] validates")
+      assert(hash[i] != hash2[i], "hash[#{i}] != hash2[#{i}]")
+    end
+  end
+
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: hashpasswd
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.3.0
   prerelease: 
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-08-06 00:00:00.000000000 Z
+date: 2013-08-07 00:00:00.000000000 Z
 dependencies: []
 description: Password hashing and validation using OpenSSL::PKCS5::pbkdf2_hmac for
   the hash and SecureRandom.base64 for the salt. Digest defaults to SHA1, but can
@@ -20,6 +20,10 @@ extensions: []
 extra_rdoc_files: []
 files:
 - lib/hashpasswd.rb
+- LICENSE
+- README.md
+- Rakefile
+- test/test_hashpasswd.rb
 homepage: http://rubygems.org/gems/hashpasswd
 licenses: []
 post_install_message: