legion-crypt 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 07b24418ca073e0f27ac8b1971b3dff861e245f9e469a1d78bf14a500e02ded8
-  data.tar.gz: 73c531446637ff282583e5e74db187077dd0431493919db84b00348d592b262d
+  metadata.gz: cd2d51f77fcc6ca9912e92fbc1a7aa633182d17c503d8ae9b0c130de46e9c3d6
+  data.tar.gz: f2973995be01490a44a894e52809391c40e0dcfce69b3f6517a2c662f3b30f99
 SHA512:
-  metadata.gz: 4bee5884abd1308aad74fd342168f3622bd19aa213be6908e42178c02172a3682a44398bbad7a484533cd70b6c6e3203ae8589b4b79d9455a971cfda9dc61035
-  data.tar.gz: a4770c968abc0a5f8743a042238f2aa0225ee6189ae49854d1db45e3e6b2b7b442f1b40862d0135e3f901f731a57d4017765d8846c0888b61a014b118eff3849
+  metadata.gz: 52d19767ddc8bf1d5919c63176118cb6160179dea6670c7ac513cc6895d0c3fab7d2d7a0588475176fc392e9d7d952668b80449b101768c72b3130a5e5f74e5e
+  data.tar.gz: '088e8074518db4634c575e5f409eac8a890c40b84ba6445ab6eb7ff4c0505b5f4abad62a7dd4f2a274426e7df98aec9bae3d0b9d5a66b93535aea311670f3e47'

data/.idea/legion-crypt.iml

@@ -5,41 +5,50 @@
   </component>
   <component name="NewModuleRootManager">
     <content url="file://$MODULE_DIR$" />
-    <orderEntry type="inheritedJdk" />
+    <orderEntry type="jdk" jdkName="RVM: ruby-2.7.0" jdkType="RUBY_SDK" />
     <orderEntry type="sourceFolder" forTests="false" />
-    <orderEntry type="library" scope="PROVIDED" name="amq-protocol (v2.3.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="ast (v2.4.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="aws-eventstream (v1.0.3, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="aws-sigv4 (v1.1.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="bundler (v2.1.4, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="bunny (v2.14.4, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="diff-lcs (v1.3, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="docile (v1.3.2, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="ffi (v1.12.2, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="jaro_winkler (v1.5.4, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="json (v2.3.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="legion (v0.1.2, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="legion-json (v0.1.6, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="legion-logging (v1.0.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="legion-settings (v1.0.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="legion-transport (v0.1.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="oj (v3.10.5, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="parallel (v1.19.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="parser (v2.7.0.4, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rainbow (v3.0.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rake (v13.0.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rbnacl (v7.1.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rexml (v3.2.4, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rspec (v3.9.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rspec-core (v3.9.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rspec-expectations (v3.9.0, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rspec-mocks (v3.9.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rspec-support (v3.9.2, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rubocop (v0.80.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="ruby-progressbar (v1.10.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="simplecov (v0.18.5, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="simplecov-html (v0.12.2, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="unicode-display_width (v1.6.1, RVM: ruby-2.6.3) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="vault (v0.13.0, RVM: ruby-2.6.3) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="amq-protocol (v2.3.2, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="ast (v2.4.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="aws-eventstream (v1.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="aws-sigv4 (v1.2.2, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="bundler (v2.1.4, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="bunny (v2.16.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="chef (v16.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="concurrent-ruby (v1.1.7, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="concurrent-ruby-ext (v1.1.7, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="connection_pool (v2.2.3, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="daemons (v1.3.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="dalli (v2.7.10, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="diff-lcs (v1.4.4, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="ffi (v1.13.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="hashdiff (v1.0.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-cache (v1.0.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-data (v0.2.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-exceptions (v1.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-json (v1.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-logging (v1.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-settings (v1.1.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="legion-transport (v1.1.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="multi_json (v1.15.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="mysql2 (v0.5.3, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="parallel (v1.19.2, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="parser (v2.7.1.4, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rainbow (v3.0.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rake (v13.0.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rbnacl (v7.1.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="redis (v4.2.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="regexp_parser (v1.7.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rexml (v3.2.4, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rspec (v3.9.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rspec-core (v3.9.2, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rspec-expectations (v3.9.2, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rspec-mocks (v3.9.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rspec-support (v3.9.3, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rubocop (v0.89.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="rubocop-ast (v0.3.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="ruby-progressbar (v1.10.1, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="sequel (v5.35.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="unicode-display_width (v1.7.0, RVM: ruby-2.7.0) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="vault (v0.15.0, RVM: ruby-2.7.0) [gem]" level="application" />
   </component>
 </module>

data/.rubocop.yml

@@ -6,6 +6,14 @@ Metrics/ClassLength:
   Max: 1500
 Metrics/BlockLength:
   Max: 50
+Metrics/CyclomaticComplexity:
+  Max: 15
+Metrics/AbcSize:
+  Max: 20
+Metrics/PerceivedComplexity:
+  Max: 15
+Naming/MethodParameterName:
+  Enabled: false
 Layout/SpaceAroundEqualsInParameterDefault:
   EnforcedStyle: space
 Style/SymbolArray:
@@ -17,6 +25,7 @@ Style/Documentation:
   Enabled: false
 AllCops:
   TargetRubyVersion: 2.5
+  NewCops: enable
 Style/FrozenStringLiteralComment:
   Enabled: false
 Naming/FileName:

data/Gemfile

@@ -3,3 +3,4 @@
 source 'https://rubygems.org'
 
 gemspec
+gem 'legionio', path: '../legion'

data/README.md

@@ -22,7 +22,11 @@ Or install it yourself as:
 
 ## Usage
 
-TODO: Write usage instructions here
+Ciper class  
+1) check to see if connected to vault, if so, use that
+2) check to see if it was set via config
+3) request it from the cluster
+4) generate it
 
 ## Development
 

data/legion-crypt.gemspec

@@ -28,12 +28,12 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'rbnacl'
   spec.add_dependency 'vault'
 
-  spec.add_development_dependency 'legion'
-  spec.add_development_dependency 'legion-logging', '>= 1.0.0'
-  spec.add_development_dependency 'legion-settings', '>= 1.0.0'
-  spec.add_development_dependency 'legion-transport', '>= 0.1.0'
+  spec.add_development_dependency 'legion-logging'
+  spec.add_development_dependency 'legion-settings'
+  spec.add_development_dependency 'legion-transport'
+  # spec.add_development_dependency 'legionio'
   spec.add_development_dependency 'rake'
   spec.add_development_dependency 'rspec'
   spec.add_development_dependency 'rubocop'
-  spec.add_development_dependency 'simplecov'
+  # spec.add_development_dependency 'simplecov', '< 0.18.0'
 end

data/lib/legion/crypt.rb

@@ -1,30 +1,28 @@
 # frozen_string_literal: true
 
+require 'openssl'
 require 'legion/crypt/version'
 require 'legion/crypt/settings'
 require 'rbnacl'
 require 'base64'
 
 require 'legion/crypt/box'
+require 'legion/crypt/cipher'
 require 'legion/crypt/vault'
 
 module Legion
   module Crypt
     class << self
-      attr_reader :public_key, :sessions
-      include Legion::Crypt::Box
+      attr_reader :sessions
+
+      include Legion::Crypt::Cipher
       include Legion::Crypt::Vault if Legion::Settings[:crypt][:vault][:enabled]
 
       def start
         Legion::Logging.debug 'Legion::Crypt is running start'
-        if Dir.exist?('./settings') && File.exist?('./settings/private.key') && File.exist?('./settings/public.key')
-          load_keys
-        else
-          delete_keys if Dir.exist? './settings'
-          create_keys
-        end
+        # load_keys if Dir.exist?('./settings') && File.exist?('./settings/private.key') && File.exist?('./settings/public.key')
 
-        connect_vault
+        # connect_vault unless Legion::Settings[:crypt][:vault][:token].nil?
       end
 
       def shutdown

data/lib/legion/crypt/box.rb

@@ -47,7 +47,7 @@ module Legion
         @box.decrypt(Base64.decode64(message))
       end
 
-      def setup_safe # rubocop:disable Metrics/CyclomaticComplexity,Metrics/AbcSize,Metrics/PerceivedComplexity
+      def setup_safe # rubocop:disable Metrics/AbcSize,Metrics/PerceivedComplexity
         Legion::Logging.debug 'Setting up Legion::Crypt safe'
         if Legion::Settings[:crypt][:cluster_secret].nil?
           if Legion::Settings[:crypt][:vault][:connected] && Legion::Crypt.exist?('crypt')

data/lib/legion/crypt/cipher.rb

@@ -0,0 +1,90 @@
+require 'securerandom'
+
+module Legion
+  module Crypt
+    module Cipher
+      def encrypt(message)
+        cipher = OpenSSL::Cipher.new('aes-256-cbc')
+        cipher.encrypt
+        cipher.key = cs
+        iv = cipher.random_iv
+        { enciphered_message: Base64.encode64(cipher.update(message) + cipher.final), iv: Base64.encode64(iv) }
+      end
+
+      def decrypt(message, iv)
+        until cs.is_a?(String) || Legion::Settings[:client][:shutting_down]
+          Legion::Logging.debug('sleeping Legion::Crypt.decrypt due to CS not being set')
+          sleep(0.5)
+        end
+
+        decipher = OpenSSL::Cipher.new('aes-256-cbc')
+        decipher.decrypt
+        decipher.key = cs
+        decipher.iv = Base64.decode64(iv)
+        message = Base64.decode64(message)
+        decipher.update(message) + decipher.final
+      end
+
+      def encrypt_from_keypair(message:, pub_key: public_key)
+        rsa_public_key = OpenSSL::PKey::RSA.new(pub_key)
+
+        Base64.encode64(rsa_public_key.public_encrypt(message))
+      end
+
+      def decrypt_from_keypair(message:, **_opts)
+        private_key.private_decrypt(Base64.decode64(message))
+      end
+
+      def public_key
+        @public_key ||= private_key.public_key.to_s
+      end
+
+      def private_key
+        @private_key ||= OpenSSL::PKey::RSA.new 2048
+      end
+
+      def cs
+        @cs ||= Digest::SHA256.digest fetch_cs
+      end
+
+      def fetch_cs # rubocop:disable Metrics/AbcSize
+        if Legion::Settings[:crypt][:vault][:read_cluster_secret] && Legion::Settings[:crypt][:vault][:connected] && Legion::Crypt.exist?('crypt') # rubocop:disable Layout/LineLength
+          Legion::Crypt.get('crypt')[:cluster_secret]
+        elsif Legion::Settings[:crypt][:cluster_secret].is_a? String
+          Legion::Settings[:crypt][:cluster_secret]
+        elsif Legion::Transport::Queue.new('node.crypt', passive: true).consumer_count.zero?
+          Legion::Settings[:crypt][:cluster_secret] = generate_secure_random
+        elsif Legion::Transport::Queue.new('node.crypt', passive: true).consumer_count.positive?
+          require 'legion/transport/messages/request_cluster_secret'
+          Legion::Logging.info 'Requesting cluster secret via public key'
+          start = Time.now
+          Legion::Transport::Messages::RequestClusterSecret.new.publish
+          sleep_time = 0.001
+          until !Legion::Settings[:crypt][:cluster_secret].nil? || (Time.now - start) > Legion::Settings[:crypt][:cluster_secret_timeout]
+            sleep(sleep_time)
+            sleep_time *= 2 unless sleep_time > 0.5
+          end
+          unless Legion::Settings[:crypt][:cluster_secret].nil?
+            Legion::Logging.info "Received cluster secret in #{((Time.new - start) * 1000.0).round}ms"
+          end
+          Legion::Logging.warn 'Cluster secret is still nil' if Legion::Settings[:crypt][:cluster_secret].nil?
+        else
+          Legion::Settings[:crypt][:cluster_secret] = generate_secure_random
+        end
+        Legion::Settings[:crypt][:cs_encrypt_ready] = true
+        Legion::Settings[:crypt][:cluster_secret]
+      rescue StandardError => e
+        Legion::Logging.error(e.message)
+        Legion::Logging.error(e.backtrace)
+
+        Legion::Settings[:crypt][:cluster_secret] = generate_secure_random
+        Legion::Settings[:crypt][:cs_encrypt_ready] = true
+        Legion::Settings[:crypt][:cluster_secret]
+      end
+
+      def generate_secure_random
+        SecureRandom.alphanumeric(32)
+      end
+    end
+  end
+end

data/lib/legion/crypt/settings.rb

@@ -19,8 +19,8 @@ module Legion
           connected:           false,
           renewer_time:        5,
           renewer:             true,
-          push_cluster_secret: false,
-          read_cluster_secret: false
+          push_cluster_secret: true,
+          read_cluster_secret: true
         }
       end
     end

data/lib/legion/crypt/vault.rb

@@ -4,6 +4,7 @@ module Legion
   module Crypt
     module Vault
       attr_accessor :sessions
+
       def settings
         Legion::Settings[:crypt][:vault]
       end
@@ -23,24 +24,28 @@ module Legion
         @renewer = Legion::Crypt::Vault::Renewer.new
       end
 
-      def read(path, type = 'kv-v2')
-        lease = ::Vault.logical.read(type + '/' + path)
+      def read(path, type = 'legion')
+        full_path = type.nil? || type.empty? ? "#{type}/#{path}" : path
+        lease = ::Vault.logical.read(full_path)
         add_session(path: lease.lease_id) if lease.respond_to? :lease_id
         lease.data
       end
 
       def get(path)
-        ::Vault.kv('kv-v2').read(path).data
+        result = ::Vault.kv('legion').read(path)
+        return nil if result.nil?
+
+        result.data
       end
 
       def write(path, key, value)
         hash = {}
         hash[key.to_sym] = value
-        ::Vault.kv('kv-v2').write(path, **hash)
+        ::Vault.kv('legion').write(path, **hash)
       end
 
       def exist?(path)
-        !::Vault.kv('kv-v2').read_metadata(path).nil?
+        !::Vault.kv('legion').read_metadata(path).nil?
       end
 
       def add_session(path:)
@@ -49,6 +54,8 @@ module Legion
 
       def close_sessions
         Legion::Logging.info 'Closing all Legion::Crypt vault sessions'
+        return if @sessions.nil?
+
         @sessions.each do |session|
           close_session(session: session)
         end
@@ -70,7 +77,7 @@ module Legion
         ::Vault.sys.renew(session)
       end
 
-      def renew_sessions
+      def renew_sessions(**_opts)
         @sessions.each do |session|
           renew_session(session: session)
         end

data/lib/legion/crypt/vault_renewer.rb

@@ -8,7 +8,7 @@ module Legion
           'renew_sessions'
         end
 
-        def klass
+        def runner_class
           Legion::Crypt
         end
 
@@ -23,6 +23,10 @@ module Legion
         def generate_task?
           false
         end
+
+        def use_runner?
+          false
+        end
       end
     end
   end

data/lib/legion/crypt/version.rb

@@ -2,6 +2,6 @@
 
 module Legion
   module Crypt
-    VERSION = '0.1.0'
+    VERSION = '0.2.0'
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: legion-crypt
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Esity
-autorequire: 
+autorequire:
 bindir: exe
 cert_chain: []
-date: 2020-03-12 00:00:00.000000000 Z
+date: 2020-08-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rbnacl
@@ -39,7 +39,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: legion
+  name: legion-logging
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -52,48 +52,34 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: legion-logging
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.0.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.0.0
 - !ruby/object:Gem::Dependency
   name: legion-settings
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: legion-transport
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.1.0
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.1.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -136,20 +122,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: simplecov
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: Integrates with Hashicorps vault and other encryption type things
 email:
 - matthewdiverson@gmail.com
@@ -176,6 +148,7 @@ files:
 - legion-crypt.gemspec
 - lib/legion/crypt.rb
 - lib/legion/crypt/box.rb
+- lib/legion/crypt/cipher.rb
 - lib/legion/crypt/settings.rb
 - lib/legion/crypt/vault.rb
 - lib/legion/crypt/vault_renewer.rb
@@ -187,7 +160,7 @@ metadata:
   homepage_uri: https://bitbucket.org/legion-io/legion-vault/
   source_code_uri: https://bitbucket.org/legion-io/legion/
   changelog_uri: https://bitbucket.org/legion-io/legion/src/master/CHANGELOG.md
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -202,8 +175,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.8
-signing_key: 
+rubygems_version: 3.1.2
+signing_key:
 specification_version: 4
 summary: Legion::Vault is used to keep things safe
 test_files: []