RubyGems - osp - Versions diffs - 0.1.0.pre.dev.1 → 0.1.0 - Mend

osp 0.1.0.pre.dev.1 → 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 91fa1ed62524c4d5a625fc41b705e53ec07c1025
-  data.tar.gz: 4953a9cc50c9ae298912a8829ad040caa0a273e1
+  metadata.gz: 765b0bc1616f91a2da8a4ec9bb41e46146fe0e58
+  data.tar.gz: d7ea9546689038040a86571bd05c5d4be2da1f90
 SHA512:
-  metadata.gz: a3b038055e9eabb2b95739973349a846db72e4dab13fb75d02eac627284acd91e4d640804edc42158ddad3933cbe80f272d5a57e7308280a15cad09aa7edc188
-  data.tar.gz: 10ed0c220116da7cb8f1b4d72d5dcdd27e9eafb55a8a222032e82e22bc673c7ac3b66263215337dc37caf58c68dd19a63ed66025a015c082407c1b630d019fe9
+  metadata.gz: 9e6211266c619d2ebaa89907e1f6f8581f1d26c7bb58c2288a87106b91b836b66c80807e87fc5ae470810ed96601b12742c9d83bd0b804b9270957ba5e4ae3df
+  data.tar.gz: 0632221c03282e0a437a07fcb2333169ded00eea8a446f396a09330e0ae6656b8dbc263087b0d977974a83e8e3efba32561c0b751d91af65d51833de42208997

data/Gemfile.lock CHANGED

@@ -1,10 +1,9 @@
 PATH
   remote: .
   specs:
-    osp (0.1.0.pre.dev.1)
+    osp (0.1.0)
       highline (~> 1.7)
       msgpack (~> 0.7)
-      rainbow (~> 2.0)
       thefox-ext (~> 1.2)
 GEM
@@ -13,7 +12,6 @@ GEM
     highline (1.7.8)
     minitest (5.8.3)
     msgpack (0.7.1)
-    rainbow (2.0.0)
     thefox-ext (1.2.0)
 PLATFORMS

data/README.md CHANGED

@@ -1,7 +1,19 @@
-# One Shall Pass for Command Line
+# One Shall Pass for Command-line
+## Install
+The preferred method of installation is via RubyGems.org:
+<https://rubygems.org/gems/osp>
+	gem install osp
+or via `Gemfile`:
+	gem 'osp', '~>0.1'
 ## Project Links
+- [Blog Post about OSP](http://blog.fox21.at/2015/12/19/one-shall-pass-for-command-line.html)
 - [Gem](https://rubygems.org/gems/osp)
 - [Travis CI Repository](https://travis-ci.org/TheFox/osp)

data/bin/osp CHANGED

@@ -5,22 +5,13 @@ raise 'Ruby >=2.1 required' unless RUBY_VERSION >= '2.1.0'
 require 'optparse'
 require 'fileutils'
-#require 'securerandom'
-#require 'openssl'
-#require 'base64'
-# require 'yaml/store'
 require 'pp'
 require 'bundler/setup'
-#require 'highline/import'
 require 'highline'
-require 'rainbow'
 require 'msgpack'
 require 'osp'
-#msg = [1,2,3].to_msgpack
-#MessagePack.unpack(msg)
 options = {
 	:database_path => "#{Dir.home}/.osp",
@@ -39,7 +30,6 @@ opts = OptionParser.new do |opts|
 		exit 3
 	end
 end
-#ARGV << '-h' if ARGV.count == 0
 args = opts.parse(ARGV)
@@ -50,22 +40,20 @@ puts TheFox::OSP::HOMEPAGE
 puts
 puts 'Master Login'
-# email    = @cli.ask('   Email: ')
-puts '   Email: xyz@example.com'
-# password = @cli.ask('Password: '){ |q| q.echo = '*' }
-puts 'Password: xyz'
+email    = @cli.ask('   Email: ')
+password = @cli.ask('Password: '){ |q| q.echo = '*' }
 Console.cursor_jump_to_column
 Console.cursor_up(2)
 Console.screen_clear_to_bottom
 puts '   Email: *****'
 puts 'Password: *****'
 puts
-email = 'xyz@example.com'
-password = 'xyz'
+printf "Calculating base hash: #{TheFox::OSP::HASHES_N} (#{TheFox::OSP::HASHES_EXP}-bit) - please wait ..."
+osp = TheFox::OSP::OSP.new(email, password, TheFox::OSP::HASHES_N)
+osp.key_derivation
+puts ' done'
 database = {
 	'meta' => {
@@ -78,28 +66,58 @@ database = {
 has_database = false
 has_database_changes = false
 if File.exist?(options[:database_path])
-	puts "Found database file: #{options[:database_path]}",
+	puts "Use database file: #{options[:database_path]}",
 		'Try to open it ...'
 	begin
-		database = MessagePack.unpack(File.binread(options[:database_path]))
-		database['hosts'] = database['hosts'].map{ |name, host| [name, TheFox::OSP::Host.from_h(host)] }.to_h
+		puts "Read file '#{options[:database_path]}'."
+		db_meta = File.binread(options[:database_path])
+		puts 'Process metadata.'
+		db_meta = Base64.strict_decode64(db_meta)
+		db_meta = MessagePack.unpack(db_meta)
+		db_e = Base64.strict_decode64(db_meta['db'])
+		mac = OpenSSL::Digest::SHA256.digest(db_e)
+		if db_meta['mac'] == mac
+			puts 'Setup database encryption.'
+			dk_sha256 = OpenSSL::Digest::SHA256.digest(osp.dk)
+			iv = Base64.strict_decode64(db_meta['iv'])
+			aes = OpenSSL::Cipher::Cipher.new('AES-256-CBC')
+			aes.decrypt
+			aes.key = dk_sha256
+			aes.iv = iv
+			begin
+				puts 'Decrypt database.'
+				db_b64 = aes.update(db_e)
+				db_b64 << aes.final
+			rescue Exception => e
+				raise 'Incorrect email and password combination.'
+			end
+			puts 'Build database.'
+			database = MessagePack.unpack(Base64.strict_decode64(db_b64))
+			database['hosts'] = database['hosts'].map{ |name, host|
+				host_o = TheFox::OSP::Host.from_h(host)
+				host_o.osp = osp
+				[name, host_o]
+			}.to_h
+			puts 'Startup done.'
+		else
+			raise 'Integrity check failed.'
+		end
 	rescue Exception => e
 		puts "FATAL ERROR: couldn't open database:"
-		puts "'#{e}'"
+		puts "#{e}"
-		exit
+		exit 1
 	end
 end
-printf "Calculating base hash: #{TheFox::OSP::HASHES_N} (#{TheFox::OSP::HASHES_EXP}-bit) - please wait ..."
-osp = TheFox::OSP::OSP.new(email, password, TheFox::OSP::HASHES_N)
-osp.key_derivation
-puts ' done'
-database['hosts'].each{ |name, host| host.osp = osp }
 def password_callback_method(step, pw)
 	printf '.'
 end
@@ -125,16 +143,9 @@ def host_edit(osp, host = nil)
 	host = TheFox::OSP::Host.new(osp) if host.nil?
 	tmp = @cli.ask('      Name: ' + (!host.name.nil? ? "[#{host.name}]" : '') + ' ').strip.to_s
-	# puts "name: '#{tmp}' #{tmp.class}"
 	host.name = tmp if tmp != ''
-	# puts "name: '#{host.name}' #{host.name.class}"
 	host.name = nil if host.name == ''
-	# puts "name: '#{host.name}' #{host.name.class}"
 	if host.name.nil?
-		# puts "No host input."
 		return nil
 	end
@@ -188,12 +199,9 @@ while true
 		hosts_n = database['hosts'].count
 		format = '%' + hosts_n.to_s.length.to_s + 'd'
-		# puts "format: '#{format}'"
 		n = 0
 		database['hosts'].values.each do |host|
 			n += 1
-			# pp host
 			printf "#{format}. %s\n", n, host.name
 		end
 	when 's'
@@ -273,7 +281,7 @@ while true
 					if !selected_host.nil?
 						host_edit(osp, selected_host)
-						host_show(selected_host)
+						host_show(selected_host, true)
 						database['hosts'][selected_host.name] = selected_host
@@ -317,21 +325,51 @@ while true
 	when 'w'
 		if has_database_changes
 			tmp = "#{options[:database_path]}~"
-			backup = "#{options[:database_path]}~backup"
 			database['meta']['updated_at'] = DateTime.now.to_s
-			if File.exist?(options[:database_path])
-				puts "Backup old file to        '#{backup}'."
-				FileUtils.mv(options[:database_path], backup)
-			end
+			# http://stackoverflow.com/questions/9049789/aes-encryption-key-versus-iv
+			# http://keepass.info/help/base/security.html
+			# https://gist.github.com/byu/99651
-			puts "Write temp file to        '#{tmp}'."
+			puts 'Make temp database.'
 			db_c = database.clone
 			db_c['hosts'] = db_c['hosts'].map{ |name, host| [name, host.to_h] }.to_h
-			File.binwrite(tmp, db_c.to_msgpack)
-			puts "Finally move temp file to '#{options[:database_path]}'."
+			puts 'Setup database encryption.'
+			dk_sha256 = OpenSSL::Digest::SHA256.digest(osp.dk)
+			iv = OpenSSL::Cipher::Cipher.new('AES-256-CBC').random_iv
+			aes = OpenSSL::Cipher::Cipher.new('AES-256-CBC')
+			aes.encrypt
+			aes.key = dk_sha256
+			aes.iv = iv
+			puts 'Encrypt database.'
+			db_e = aes.update(Base64.strict_encode64(db_c.to_msgpack))
+			db_e << aes.final
+			mac = OpenSSL::Digest::SHA256.digest(db_e)
+			db_out = {
+				'version' => 1,
+				'iv' => Base64.strict_encode64(iv),
+				'db' => Base64.strict_encode64(db_e),
+				'mac' => mac,
+			}
+			db_out = db_out.to_msgpack
+			db_out = Base64.strict_encode64(db_out)
+			puts "Write temp file to '#{tmp}'."
+			File.binwrite(tmp, db_out)
+			backup_dts = Time.now.strftime('%Y%m%d-%H%M%S')
+			backup = "#{options[:database_path]}~backup_#{backup_dts}_" + Digest::SHA256.file(tmp).hexdigest[0..7]
+			puts "Backup temp file to '#{backup}'."
+			FileUtils.cp(tmp, backup)
+			puts "Finally, move temp file to '#{options[:database_path]}'."
 			FileUtils.mv(tmp, options[:database_path])
 			has_database_changes = false

data/lib/osp/host.rb CHANGED

@@ -4,16 +4,8 @@ module TheFox
 		class Host
-			# attr_accessor :osp
-			# attr_accessor :version
 			attr_accessor :created_at
 			attr_accessor :updated_at
-			# attr_accessor :name
-			# attr_accessor :generation
-			# attr_accessor :length
-			# attr_accessor :symbols
-			# attr_accessor :hashes
-			# attr_accessor :password
 			def initialize(osp = nil)
 				@osp = osp
@@ -48,14 +40,6 @@ module TheFox
 				@version.to_i
 			end
-			# def created_at=(v)
-			# 	@created_at = v
-			# end
-			# def created_at
-			# 	@created_at
-			# end
 			def name=(v)
 				v = nil if v == ''
 				@name = v
@@ -99,7 +83,6 @@ module TheFox
 			def generate_password(regenerate = false)
 				if @password.nil? && !@osp.nil? || regenerate
-					# puts "host name: '#{@name}'"
 					@password = @osp.password(@name, @length, @generation, @symbols)
 				end
 			end
@@ -127,8 +110,6 @@ module TheFox
 					'length' => @length,
 					'symbols' => @symbols,
 					'hashes' => @hashes,
-					#'password' => @password,
 				}
 			end

data/lib/osp/osp.rb CHANGED

@@ -18,6 +18,7 @@ module TheFox
 		class OSP
+			attr_accessor :dk
 			attr_accessor :hashes
 			def initialize(email, password, hashes = HASHES_N)
@@ -29,14 +30,7 @@ module TheFox
 			end
 			def key_derivation
-				# puts "password: #{@password}"
-				# puts "email: #{@email}"
-				# puts "hashes: #{@hashes}"
 				@dk = OpenSSL::PKCS5.pbkdf2_hmac(@password, @email, @hashes, 64, OpenSSL::Digest::SHA512.new)
-				# pp @dk.length
-				# pp @dk.length * 8
-				# pp @dk.to_hex
 			end
 			def password(host_name, length = 16, generation = 1, symbols = 1)
@@ -48,29 +42,23 @@ module TheFox
 				step = 0
 				while pw.nil?
 					raw = [ID, @email, host_name, generation, step]
-					# pp raw
 					data = raw.to_msgpack
 					hmac_p = OpenSSL::HMAC.digest(OpenSSL::Digest::SHA512.new, @dk, data)
 					hmac_b64 = Base64.strict_encode64(hmac_p)
 					pw = hmac_b64 if is_ok_pw(hmac_b64)
-					# pp hmac_b64[0..16]
-					#sleep 0.1
 					@password_callback_method.call(step, hmac_b64) if !@password_callback_method.nil?
 					step += 1
 				end
 				if symbols > 0
 					sub_method = find_method_to_sub(pw)
-					#puts "sub_method = #{sub_method}"
 					_b64map = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/='
 					indices = []
 					(0..PASSWORD_MIN_SIZE).each do |n|
 						c = pw[n]
-						#puts "#{n} = #{c}"
 						if c.method(sub_method).call
 							indices << n
 							if indices.count >= symbols
@@ -79,8 +67,6 @@ module TheFox
 						end
 					end
-					#pp indices
 					_map = "`~!@#$%^&*()-_+={}[]|;:,<>.?/"
 					_map_len = _map.length
@@ -93,15 +79,10 @@ module TheFox
 						x = _map[i % _map_len]
 						arr << x
 						last = index + 1
-						#puts "#{index} = '#{c}' '#{i}' '#{x}'    #{last}"
 					end
 					arr << pw[last..-1]
-					#pp arr
 					pw = arr.join
 				end
-				#puts "length: #{length}"
 				pw[0...length]
 			end
@@ -119,8 +100,6 @@ module TheFox
 				(0...PASSWORD_MIN_SIZE).each do |n|
 					c = pw[n]
-					# puts "#{n} = #{c}"
 					if c.is_digit?
 						digits += 1
 					elsif c.is_upper?
@@ -135,7 +114,6 @@ module TheFox
 				bad = lambda { |x| x == 0 || x > 5 }
 				if bad.call(caps) || bad.call(lowers) || bad.call(digits)
-					#puts 'return false'
 					return false
 				end
@@ -162,8 +140,6 @@ module TheFox
 					elsif c.is_lower?
 						lowers += 1
 					end
-					#puts "#{n} = #{c}   #{digits} #{caps} #{lowers}"
 				end
 				rv = ''
@@ -174,7 +150,6 @@ module TheFox
 				else
 					rv = 'is_upper?'
 				end
-				#rv = 'is_upper?'
 				rv
 			end

data/lib/osp/version.rb CHANGED

@@ -2,8 +2,8 @@
 module TheFox
 	module OSP
 		RELEASE_ID = 0
-		VERSION = '0.1.0-dev.1'
-		DATE = '2015-12-17'
+		VERSION = '0.1.0'
+		DATE = '2015-12-19'
 		HOMEPAGE = 'https://github.com/TheFox/osp'
 	end
 end

data/osp.gemspec CHANGED

@@ -13,23 +13,20 @@ Gem::Specification.new do |spec|
 	spec.email         = 'christian@fox21.at'
 	spec.summary       = %q{One Shall Pass}
-	spec.description   = %q{One Shall Pass}
+	spec.description   = %q{One Shall Pass for Command Line.}
 	spec.homepage      = TheFox::OSP::HOMEPAGE
 	spec.license       = 'GPL-3.0'
 	spec.files         = `git ls-files -z`.split("\x0").reject{ |f| f.match(%r{^(test|spec|features)/}) }
 	spec.bindir        = 'bin'
-	spec.executables   = ['osp', 'catmp']
+	spec.executables   = ['osp']
 	spec.require_paths = ['lib']
 	spec.required_ruby_version = '>=2.1.0'
-	#spec.requirements  << ''
 	spec.add_development_dependency 'bundler', '~>1.10'
 	spec.add_development_dependency 'minitest', '~>5.8'
 	spec.add_dependency 'highline', '~>1.7'
-	spec.add_dependency 'rainbow', '~>2.0'
 	spec.add_dependency 'msgpack', '~>0.7'
 	spec.add_dependency 'thefox-ext', '~>1.2'

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: osp
 version: !ruby/object:Gem::Version
-  version: 0.1.0.pre.dev.1
+  version: 0.1.0
 platform: ruby
 authors:
 - Christian Mayer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-12-17 00:00:00.000000000 Z
+date: 2015-12-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -52,20 +52,6 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.7'
-- !ruby/object:Gem::Dependency
-  name: rainbow
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '2.0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: msgpack
   requirement: !ruby/object:Gem::Requirement
@@ -94,11 +80,10 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.2'
-description: One Shall Pass
+description: One Shall Pass for Command Line.
 email: christian@fox21.at
 executables:
 - osp
-- catmp
 extensions: []
 extra_rdoc_files: []
 files:
@@ -109,7 +94,6 @@ files:
 - Makefile
 - Makefile.common
 - README.md
-- bin/catmp
 - bin/osp
 - lib/ext/string.rb
 - lib/osp.rb
@@ -136,9 +120,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: 2.1.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">"
+  - - ">="
     - !ruby/object:Gem::Version
-      version: 1.3.1
+      version: '0'
 requirements: []
 rubyforge_project:
 rubygems_version: 2.4.7

data/bin/catmp DELETED

@@ -1,56 +0,0 @@
-#!/usr/bin/env ruby
-# coding: UTF-8
-raise 'Ruby >=2.1 required' unless RUBY_VERSION >= '2.1.0'
-require 'optparse'
-require 'yaml'
-require 'pp'
-require 'bundler/setup'
-require 'msgpack'
-options = {
-	:path => nil,
-	:yaml => false,
-}
-opts = OptionParser.new do |opts|
-	opts.banner = 'Usage: catmp'
-	opts.separator('')
-	# opts.on('-p', '--path <path>', 'Path msgpack file.') do |path|
-	# 	options[:path] = path
-	# end
-	opts.on('-y', '--yaml', 'Output in YAML format.') do
-		options[:yaml] = true
-	end
-	opts.on_tail('-h', '--help', 'Show this message.') do
-		puts opts
-		puts
-		exit 3
-	end
-end
-#ARGV << '-h' if ARGV.count == 0
-args = opts.parse(ARGV)
-if args.count > 0
-	options[:path] = args.shift
-	if !options[:path].nil?
-		ar = MessagePack.unpack(File.binread(options[:path]))
-		if options[:yaml]
-			print YAML.dump(ar)
-		else
-			pp ar
-		end
-	else
-		raise 'FATAL ERROR: path invalid.'
-	end
-else
-	opts.parse(['-h'])
-end