mskeyblob 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: f1dc47d417a33062f972534222dd4cb1babb597a
+  data.tar.gz: 4f2a6903983f95e014a373f1a72e20355b65eeca
+SHA512:
+  metadata.gz: 6630ebb682df863903b3fb435e7d4b338588cc176233087d197c8fc4fcf34ddfc2d3b117e34d9adbde804133ce1b60f4ae353bbb1dcf6cd49cb2fbcc62fd361f
+  data.tar.gz: 084f66bf311ffc0041ee7fddd97872299ed7f2cc77d3d8bfd611b5ad8f2555169aff48808dbce8841307d5fa28cdb0e6ef58307bd18f9951983e294c935428e6

data/.gitignore

@@ -0,0 +1,23 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log
+.idea/

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in mskeyblob.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2015 Alexander Zimin
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,52 @@
+# Microsoft RSA key blob
+
+Exchange RSA keys between Microsoft CSP blob format (ExportCspBlob, ImportCspBlob of RSACryptoServiceProvider)
+and ruby openssl key OpenSSL::PKey::RSA
+
+## Usage
+
+Create key from blob created by ExportCspBlob
+
+```ruby
+    blob = File.binread 'msblob.bin'
+
+    key = OpenSSL::PKey::RSA.from_mskeyblob blob
+```    
+
+Create blob for ExportCspBlob
+
+```ruby
+    key = OpenSSL::PKey::RSA.new 2048
+
+    blob = key.to_mskeyblob
+    public_blob = key.to_mskeyblob(include_private: false)
+```
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'mskeyblob'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install mskeyblob
+
+## Contributing
+
+1. Fork it ( https://github.com/Ziaw/mskeyblob/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request
+
+
+## Links
+
+1. [MSDN Enhanced Provider Key BLOBs](https://msdn.microsoft.com/en-us/library/windows/desktop/aa382021%28v=vs.85%29.aspx)
+
+2. [Ruby and OpenSSL](http://blog.flame.org/2009/02/28/ruby-and-openssl.html)

data/Rakefile

@@ -0,0 +1,10 @@
+require "bundler/gem_tasks"
+
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+end
+
+desc "Run tests"
+task :default => :test

data/lib/mskeyblob.rb

@@ -0,0 +1,101 @@
+require 'mskeyblob/version'
+
+module OpenSSL
+  module PKey
+    class RSA
+      RSA1 = 0x31415352
+      RSA2 = 0x32415352
+
+      PUBLICKEYBLOB = 0x6
+      PRIVATEKEYBLOB = 0x7
+
+      CALG_RSA_KEYX = 0x0000a400
+
+      def self.from_mskeyblob(key)
+        b_type, b_version, reserved, alg_id,  # PUBLICKEYSTRUC
+            magic, bit_len, public_exponent,  # RSAPUBKEY
+            rest =
+            key.unpack('CCSL LLL a*')
+
+        # PUBLICKEYBLOB || PRIVATEKEYBLOB
+        raise OpenSSL::PKey::RSAError, "Neither PUB key nor PRIV key: invalid bType #{b_type}" unless [PUBLICKEYBLOB, 0x7].include? b_type
+        raise OpenSSL::PKey::RSAError, "Neither PUB key nor PRIV key: invalid bVersion #{b_version}" unless b_version == 2
+        raise OpenSSL::PKey::RSAError, "Neither PUB key nor PRIV key: invalid magic #{magic}" unless [RSA1, RSA2].include? magic
+
+        b8 = "a#{bit_len / 8}"
+        b16 = "a#{bit_len / 16}"
+
+        unpack_pattern = [b8, b16, b16, b16, b16, b16, b8].join('')
+
+        modulus, p1, p2, e1, e2, c, private_exponent = rest.unpack(unpack_pattern)
+
+        modulus, p1, p2, e1, e2, c, private_exponent = [modulus, p1, p2, e1, e2, c, private_exponent].map  do |byte_array|
+          if byte_array.empty?
+            nil
+          else
+            OpenSSL::BN.new byte_array.reverse, 2
+          end
+        end
+
+        key = OpenSSL::PKey::RSA.new
+        key.n = modulus
+        key.e = public_exponent
+
+        if private_exponent
+          key.d = private_exponent
+          key.p = p1
+          key.q = p2
+          key.dmp1 = e1
+          key.dmq1 = e2
+          key.iqmp = c
+        end
+
+        key
+      end
+
+      def to_mskeyblob(include_private: :not_set)
+        if include_private == :not_set
+          include_private = private?
+        else
+          if include_private && !private?
+            raise OpenSSL::PKey::RSAError, 'Public key can not export private part'
+          end
+        end
+
+        b_type = include_private ? PRIVATEKEYBLOB : PUBLICKEYBLOB
+        b_version = 2
+        reserved = 0
+        alg_id = CALG_RSA_KEYX
+        magic = include_private ? RSA2 : RSA1
+
+
+        bit_len = n.num_bits # https://github.com/ruby/openssl/issues/5
+        public_exponent = e
+
+        b8 = "a#{bit_len / 8}"
+        b16 = "a#{bit_len / 16}"
+
+        header = [
+            b_type, b_version, reserved, alg_id,  # PUBLICKEYSTRUC
+            magic, bit_len, public_exponent,      # RSAPUBKEY
+        ].pack('CCSL LLL')
+
+        modulus, p1, p2, e1, e2, c, private_exponent = [n, p, q, dmp1, dmq1, iqmp, d].map  do |bn|
+          if bn
+            bn.to_s(2).reverse
+          else
+            nil
+          end
+        end
+
+        if include_private
+          pack_pattern = [b8, b16, b16, b16, b16, b16, b8].join('')
+
+          header + [modulus, p1, p2, e1, e2, c, private_exponent].pack(pack_pattern)
+        else
+          header + [modulus].pack(b8)
+        end
+      end
+    end
+  end
+end

data/lib/mskeyblob/version.rb

@@ -0,0 +1,3 @@
+module Mskeyblob
+  VERSION = '0.0.1'
+end

data/mskeyblob.gemspec

@@ -0,0 +1,25 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'mskeyblob/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "mskeyblob"
+  spec.version       = Mskeyblob::VERSION
+  spec.authors       = ["Alexander Zimin"]
+  spec.email         = ["ziminav@gmail.com"]
+  spec.summary       = %q{Using Microsoft crypto service provider RSA blob format.}
+  spec.description   = %q{Exchange RSA keys between Microsoft CSP blob format (ExportCspBlob, ImportCspBlob) and ruby openssl key OpenSSL::PKey::RSA}
+  spec.homepage      = "https://github.com/Ziaw/mskeyblob"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.6"
+  spec.add_development_dependency "rake"
+  spec.add_development_dependency "pry"
+  spec.add_development_dependency "test-unit", '~> 3.0.1'
+end

data/test/fixtures/pem

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/test/fixtures/pem.pub

@@ -0,0 +1,9 @@
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9o2CYu/0TfT8eoqV2DQ
+qkirCCbmm1D+UE/YFFbQkn1j+zhIIDkPDHzYeO+N8lsNPHxcC0chNAPnKj/GjVGT
+v54xK+1++zxnjXfvQR/nQ9TqYt0Unq4vtPD2XtulHSe5JlTPFrIv5vAXV4kFzP4t
+QWZnnzedsi/zgyPFmy0ZmfDLZEPspGkuDk8/2xjyVin0GJZBzsekwj25AzUeZ9lG
+JaZ5Yth1XufaVSSfoy740jmmP9JMYMIDNOAsQf41sngtOoJmw+fOYj52w1uHtsRe
+mAC65xBvPX9FJlQsPNzBUM8PbgtI63qydCJeA4owBFEHpczJqM9IvvdpIlGfZJDZ
+OwIDAQAB
+-----END PUBLIC KEY-----

data/test/test_mskeyblob.rb

@@ -0,0 +1,77 @@
+require 'test/unit'
+require 'mskeyblob'
+require 'base64'
+
+class TestActor < Test::Unit::TestCase
+  TEST_DATA = 'test'
+  ENCRYPTED_TEST_DATA = Base64.decode64 'RqcD37GZP0D3T24GEU+xEI9v8D/jKpwIFhD37EJ/MBMF82MqeyJ/RN689UExT2kzuOt8CqIA2S6c9xXVxw4aWTPJq8jJO431yFvSYQBNGyQ6jkPCE5s2TW8HI5vxWiaGkIdR6wJJP2KtDr5s0BsspjDmH2dNlQ6sPnkKJJEaxuS041PjwA8F+gEKbbwCmOc5hs4J8yQfBezn61VXYXzRDDSUtYhhscko9Nb44O9fXRcLh0KXr2nqZcn16pWalwHvx9zBt9EROlCRJmGPXBZPmXdtTgGNZZqaaca+3p5VjXN652sdT4EQX52sKLWBLSiwHD+u15NoAJ8BcQwBnW8Nng=='
+
+  def test_private_key_from_mskeyblob
+    base = File.dirname(__FILE__)
+    msblob = File.binread(File.join(base, 'fixtures', 'msblob'))
+
+    key = OpenSSL::PKey::RSA.from_mskeyblob msblob
+
+    assert_not_nil key
+    assert key.private?
+
+    pem = File.read(File.join(base, 'fixtures', 'pem'))
+    pem_key = OpenSSL::PKey::RSA.new pem
+
+    assert_equal key.n, pem_key.n
+    assert_equal key.e, pem_key.e
+    assert_equal key.d, pem_key.d
+    assert_equal key.p, pem_key.p
+    assert_equal key.q, pem_key.q
+    assert_equal key.dmp1, pem_key.dmp1
+    assert_equal key.dmq1, pem_key.dmq1
+    assert_equal key.iqmp, pem_key.iqmp
+
+    assert_equal key.private_decrypt(key.public_encrypt(TEST_DATA)), TEST_DATA
+    assert_equal key.public_decrypt(key.private_encrypt(TEST_DATA)), TEST_DATA
+
+    assert_equal key.private_decrypt(ENCRYPTED_TEST_DATA), TEST_DATA
+  end
+
+  def test_private_key_to_mskeyblob
+    base = File.dirname(__FILE__)
+    msblob = File.binread(File.join(base, 'fixtures', 'msblob'))
+    pem = File.read(File.join(base, 'fixtures', 'pem'))
+
+    pem_key = OpenSSL::PKey::RSA.new pem
+
+    assert_equal pem_key.to_mskeyblob, msblob
+
+    msblob = File.binread(File.join(base, 'fixtures', 'msblob.pub'))
+    assert_equal pem_key.to_mskeyblob(include_private: false), msblob
+  end
+
+  def test_public_key_from_mskeyblob
+    base = File.dirname(__FILE__)
+    msblob = File.binread(File.join(base, 'fixtures', 'msblob.pub'))
+
+    key = OpenSSL::PKey::RSA.from_mskeyblob msblob
+
+    assert_not_nil key
+    assert key.public?
+    assert !key.private?
+
+    pem = File.read(File.join(base, 'fixtures', 'pem'))
+    pem_key = OpenSSL::PKey::RSA.new pem
+
+    assert_equal key.n, pem_key.n
+    assert_equal key.e, pem_key.e
+
+    assert_equal key.public_decrypt(pem_key.private_encrypt(TEST_DATA)), TEST_DATA
+  end
+
+  def test_public_key_to_mskeyblob
+    base = File.dirname(__FILE__)
+    msblob = File.binread(File.join(base, 'fixtures', 'msblob.pub'))
+    pem = File.read(File.join(base, 'fixtures', 'pem.pub'))
+
+    pem_key = OpenSSL::PKey::RSA.new pem
+
+    assert_equal pem_key.to_mskeyblob, msblob
+  end
+end

metadata

@@ -0,0 +1,119 @@
+--- !ruby/object:Gem::Specification
+name: mskeyblob
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Alexander Zimin
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-05-26 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: test-unit
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.0.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.0.1
+description: Exchange RSA keys between Microsoft CSP blob format (ExportCspBlob, ImportCspBlob)
+  and ruby openssl key OpenSSL::PKey::RSA
+email:
+- ziminav@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- lib/mskeyblob.rb
+- lib/mskeyblob/version.rb
+- mskeyblob.gemspec
+- test/fixtures/msblob
+- test/fixtures/msblob.pub
+- test/fixtures/pem
+- test/fixtures/pem.pub
+- test/test_mskeyblob.rb
+homepage: https://github.com/Ziaw/mskeyblob
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: Using Microsoft crypto service provider RSA blob format.
+test_files:
+- test/fixtures/msblob
+- test/fixtures/msblob.pub
+- test/fixtures/pem
+- test/fixtures/pem.pub
+- test/test_mskeyblob.rb