RubyGems - pws - Versions diffs - 1.0.5 → 1.0.6 - Mend

pws 1.0.5 → 1.0.6

Files changed (8) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 2578b98bcf749f13ca577edfc08cb67e50de5775
-  data.tar.gz: 46f08de52048fea3f9e19dde45d7e880edbef131
+  metadata.gz: cc1bda6125f66bd7dab182c1f36e041ed31c508a
+  data.tar.gz: bd1b9682fc619df19892b53bf6ffc3697bfa9b2c
 SHA512:
-  metadata.gz: af7abbcf348f2a89396580f9afb5c46497ad30486d03b71fef9a014cb7d48ec179a9d860724a2bce9d57aab9b13c7a618ba29a30774ea7156415d74b74c50439
-  data.tar.gz: f33460bb739d46952e1cab6b95b0611ef4b8e5987a3c7a1a700ac5c830186630bbeba2d10244780cb22bc5f14e288a5f726dadb5a2bb4ec7ac4179c210dd2bbb
+  metadata.gz: d9ff5f1633c6b41bec56714684fc7ddc38068b4f5e31a33d151bf0cfc575e6ade4e42313d2e847d3dde06357a015111d82d124f1a2c0a5f31a0626df062c6057
+  data.tar.gz: 47dff7dc77be80f60ad44407877ad849b9ea79ab0fe7846711e8b7ec5932c4f8704e2d596fe0b3aac318ac2392608b290dd44f9584e117698e0573ffdef314b2

data/CHANGELOG.md ADDED

@@ -0,0 +1,60 @@
+== 1.0.6
+* Ruby 2.2 compat (remove digest/hmac)
+== 1.0.5
+* Ruby 2 compat
+* Use "pbkdf2-ruby" instead of "pbkdf2" gem
+* Bump paint/clipboard dependencies
+* Remove zucker dependency
+== 1.0.4
+* You can now get your passwords using as short shortcuts as possible powered by stdlib's abbrev library
+== 1.0.3
+* Fix single options (like --cwd) to really be single
+== 1.0.2
+* Output a small warning when using Ruby fallback (pbkdf2 is only implemented in openssl >= 1.0)
+* New --cwd option for easy access to .pws files in the current directory
+== 1.0.1
+* Ruby fallback if pbkdf2 is not available in OpenSSL
+== 1.0.0
+* New file format, the old one needs to be  converted by calling `pws resave --in 0.9 --out 1.0`
+* Bruteforce protection by using pbkdf2, you can choose the number of iterations (default: 75_000)
+* Password files have now better integrity checks
+* Store and display updated_at timestamp for entries
+* Don't rely on Ruby marshalling
+* New actions: update (updates an entry, cannot be used to create one), update-gen
+* New action: resave (useful for converting safes)
+* Better exit statuses
+* Misc tweaks (password confirmation when creating, etc)
+== 0.9.2
+* Configure your favourite waiting time, password length and password char pool using ENV options
+* More flexible command line argument parsing, allows allows overriding of the ENV options
+* Show action takes optional regex filter argument
+* Creating new safes also creates the directory for them and sets permissions to 0600
+== 0.9.1
+* Add password confirmation when changing master password
+== 0.9.0
+* It's working, again! (Sorry for the broken gem version that long time...)
+* Cucumber spec suite :D [based on the one by thecatwasnot]
+* Ruby 1.9 only
+* Colorized output using the paint gem
+* Fix an encoding issue
+* New redundancy data mechanism (old file format not compatible anymore)
+* Uses PWS environment variable to determine the password file location (default is still: ~/.pws)
+* Easy namespace support for different password files
+* Add ability to rename entry keys
+* Remove descriptions (keep it simple)
+* Different generate method interface
+* Uses SecureRandom instead of rand
+* Fix removing passwords
+* Lots of little fixes and tweaks
+* New default clipboard time: 10 seconds. Another feature: Old clipboard content gets restored after that time
+== See gist https://gist.github.com/658494 for older changes

data/{LICENSE → LICENSE.txt} RENAMED

@@ -1,4 +1,4 @@
-Copyright (c) 2010-2012 Jan Lelis
+Copyright (c) 2010-2015 Jan Lelis
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the

data/README.md CHANGED

@@ -47,4 +47,4 @@ Contributors
 J-\_-L
 ---
-© 2010-2013 Jan Lelis, MIT license
+© 2010-2015 Jan Lelis, MIT license

data/lib/pws/format/1.0.rb CHANGED

@@ -2,7 +2,6 @@
 require_relative '../format'
 require 'securerandom'
-require 'digest/hmac'
 require 'openssl'
 require 'pbkdf2'
@@ -15,12 +14,12 @@ class PWS
       DEFAULT_ITERATIONS =        75_000
       MAX_ITERATIONS     =    10_000_000
       MAX_ENTRY_LENGTH   = 4_294_967_295 # N
       class << self
         def write(application_data, options = {})
           encrypt(marshal(application_data), options)
         end
         def encrypt(unencrypted_data, options = {})
           raise ArgumentError, 'No password given' if \
               !options[:password]
@@ -28,27 +27,27 @@ class PWS
           iterations = ( options[:iterations] || DEFAULT_ITERATIONS ).to_i
           raise ArgumentError, 'Invalid iteration count given' if \
               iterations > MAX_ITERATIONS || iterations < 2
           salt = SecureRandom.random_bytes(64)
           iv  = Encryptor.random_iv
           encryption_key, hmac_key = kdf(
             options[:password],
             salt,
             iterations,
           ).unpack('a256 a256')
           sha = hmac(hmac_key, salt, iv, iterations, unencrypted_data)
           encrypted_data = Encryptor.encrypt(
             unencrypted_data,
             key: encryption_key,
             iv:  iv,
           )
-          [salt, iv, iterations, sha, encrypted_data].pack(TEMPLATE)
+          [salt, iv, iterations, sha, encrypted_data].pack(TEMPLATE)
         end
         def marshal(application_data, options = {})
           number_of_dummy_bytes = 100_000 + SecureRandom.random_number(1_000_000)
           ordered_data = application_data.to_a
@@ -62,32 +61,32 @@ class PWS
             SecureRandom.random_bytes(100_000 + SecureRandom.random_number(1_000_000))
           ].pack('N N a*')
         end
         # - - -
         def read(encrypted_data, options = {})
           unmarshal(decrypt(encrypted_data, options))
         end
         def decrypt(saved_data, options = {})
           raise ArgumentError, 'No password given' if \
               !options[:password]
           raise ArgumentError, 'No data given' if \
               !saved_data || saved_data.empty?
           salt, iv, iterations, sha, encrypted_data = saved_data.unpack(TEMPLATE)
           raise NoAccess, 'Password file invalid' if \
               salt.size != 64             ||
               iterations > MAX_ITERATIONS ||
               iv.size != 16               ||
               sha.size != 64
           encryption_key, hmac_key = kdf(
             options[:password],
             salt,
             iterations,
           ).unpack('a256 a256')
           begin
             unencrypted_data = Encryptor.decrypt(
               encrypted_data,
@@ -97,13 +96,13 @@ class PWS
           rescue OpenSSL::Cipher::CipherError
             raise NoAccess, 'Could not decrypt'
           end
           raise NoAccess, 'Password file invalid' unless \
               sha == hmac(hmac_key, salt, iv, iterations, unencrypted_data)
           unencrypted_data
         end
         def unmarshal(saved_data, options = {})
           number_of_dummy_bytes, data_size, raw_data = saved_data.unpack('N N a*')
           i = number_of_dummy_bytes
@@ -121,15 +120,15 @@ class PWS
             )
           ]
         end
         # support
         def hmac(key, *strings)
-          Digest::HMAC.new(key, Digest::SHA512).update(
+          OpenSSL::HMAC.new(key, OpenSSL::Digest::SHA512.new).update(
             strings.map(&:to_s).join
           ).digest
         end
         def kdf_openssl(password, salt, iterations)
           OpenSSL::PKCS5::pbkdf2_hmac(
             password,
@@ -139,7 +138,7 @@ class PWS
             OpenSSL::Digest::SHA512.new,
           )
         end
         def kdf_ruby(password, salt, iterations)
           PBKDF2.new(
             password: password,
@@ -149,7 +148,7 @@ class PWS
             hash_function: OpenSSL::Digest::SHA512,
           ).bin_string
         end
         # see gh#7
         begin
           OpenSSL::PKCS5::pbkdf2_hmac("","",2,512,OpenSSL::Digest::SHA512.new)
@@ -159,9 +158,9 @@ class PWS
         else
           alias kdf kdf_openssl
         end
         private
         def array_to_data_string(array)
           array.map{ |e|
             e = e.to_s
@@ -170,12 +169,12 @@ class PWS
             [s, e].pack('N a*')
           }.join
         end
         def get_next_data_string(string, pos)
           res_length = string[pos..pos+4].unpack('N')[0]
           new_pos = pos + 4 + res_length
           res = string[pos+4...new_pos].unpack('a*')[0]
           [res, new_pos]
         end
       end#self

data/lib/pws/version.rb CHANGED

@@ -1,3 +1,3 @@
 class PWS
-  VERSION = '1.0.5'
+  VERSION = '1.0.6'
 end

data/pws.gemspec CHANGED

@@ -4,7 +4,7 @@ name = 'pws'
 require File.dirname(__FILE__) + "/lib/#{name}/version"
 Gem::Specification.new do |s|
-  s.required_ruby_version = '>= 1.9.2'
+  s.required_ruby_version = '>= 1.9.3'
   s.name        = name
   s.version     = PWS::VERSION
   s.authors     = ["Jan Lelis"]
@@ -13,7 +13,7 @@ Gem::Specification.new do |s|
   s.summary     = "pws is a CLI password safe."
   s.description = "pws is a command-line password safe. Please run `pws --help` for usage information."
   s.files = Dir.glob(%w[{lib,test}/**/*.rb bin/* [A-Z]*.{txt,rdoc} ext/**/*.{rb,c} features/**/*]) + %w{Rakefile pws.gemspec}
-  s.extra_rdoc_files = ["README.md", "LICENSE"]
+  s.extra_rdoc_files = ["README.md", "LICENSE.txt", "CHANGELOG.md"]
   s.license = 'MIT'
   s.executables = ['pws']
   s.add_dependency 'clipboard', '~> 1.0.5'

metadata CHANGED

@@ -1,139 +1,139 @@
 --- !ruby/object:Gem::Specification
 name: pws
 version: !ruby/object:Gem::Version
-  version: 1.0.5
+  version: 1.0.6
 platform: ruby
 authors:
 - Jan Lelis
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2014-03-24 00:00:00.000000000 Z
+date: 2015-01-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: clipboard
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 1.0.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 1.0.5
 - !ruby/object:Gem::Dependency
   name: paint
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.8.7
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.8.7
 - !ruby/object:Gem::Dependency
   name: pbkdf2-ruby
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: aruba
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: cucumber
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: guard-cucumber
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: guard-rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 description: pws is a command-line password safe. Please run `pws --help` for usage
@@ -144,9 +144,11 @@ executables:
 extensions: []
 extra_rdoc_files:
 - README.md
-- LICENSE
+- LICENSE.txt
+- CHANGELOG.md
 files:
-- LICENSE
+- CHANGELOG.md
+- LICENSE.txt
 - README.md
 - Rakefile
 - bin/pws
@@ -190,12 +192,12 @@ require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
-      version: 1.9.2
+      version: 1.9.3
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []