RubyGems - rbnacl - Versions diffs - 3.0.0 → 3.0.1 - Mend

rbnacl 3.0.0 → 3.0.1

Files changed (10) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 6e38c7e8385a6216940cb6463b7735efb3bd44b8
-  data.tar.gz: f399bf5adae36466df158d6a5384ef87d6ab77d5
+  metadata.gz: b67cc643ca784918a3ac35d13c2cb942e494eab9
+  data.tar.gz: 685f56452c4193577b759c5f6c29695c156c644b
 SHA512:
-  metadata.gz: 50b1a9ced0b13cceb527796a276200619448b99dd3156497e97378177537d9f4cb2ad8b08accd169684d2c9277cdf125d23d07dc0a0113acea025a6f3ebe5d37
-  data.tar.gz: 1a1d82499b6b8f0d354fa0d54e018ba98b4dad94ed78a8e8f06efe0f9935296611c83fcaedffbf51cd50a787d80631c48aec3761746ab87d44f443e3ffb9a5a1
+  metadata.gz: c3cd45824f3f0510d497f932cfb6cff78c8ec70c2f13560f39d24c6bc7e00733b7611591c18700e6e4976c54b8c8aabafda86ab91649ba6384f22595a5513134
+  data.tar.gz: e4b7f9a7ccffc5146bb5dbf4358055d6271ef52fd7bba8ca993d874496ae5e79dda972542e53446b8f14a7c1f1b54276a19c6208feda9cf05d12d9441ab9faea

data/.travis.yml CHANGED

@@ -3,7 +3,7 @@ script: "LD_LIBRARY_PATH=lib bundle exec rake ci"
 rvm:
   - 1.9.3
   - 2.0.0
-  - 2.1.0
+  - 2.1.1
   - ruby-head
   - jruby
   - jruby-head

data/CHANGES.md CHANGED

@@ -1,3 +1,8 @@
+3.0.1 (2014-05-12)
+------------------
+* Load gem from RBNACL_LIBSODIUM_GEM_LIB_PATH if set. Used by rbnacl-libsodium
+  gem to use libsodium compiled from a gem.
 3.0.0 (2014-04-22)
 ------------------
 * Rename RandomNonceBox to SimpleBox (backwards compatibility preserved)

data/README.md CHANGED

@@ -78,6 +78,16 @@ for information regarding installation:
 https://github.com/jedisct1/libsodium
+For FreeBSD users, libsodium is available both via pkgng and ports.  To install
+a binary package:
+    pkg install libsodium
+To install from ports on FreeBSD, use your favorite ports front end (e.g.
+portmaster or portupgrade), or use make as follows:
+    cd /usr/ports/security/libsodium; make install clean
 For OS X users, libsodium is available via homebrew and can be installed with:
     brew install libsodium
@@ -107,6 +117,7 @@ Inside of your Ruby program do:
 RbNaCl's documentation can be found [in the Wiki][wiki]. The following features
 are supported:
+* [SimpleBox]: easy-to-use public-key or secret-key encryption "on Rails"
 * [Secret-key Encryption][secretkey]: authenticated symmetric encryption using a
   single key shared among parties
 * [Public-key Encryption][publickey]: securely send messages to a given public
@@ -124,6 +135,7 @@ information.
 [RDoc documentation][rdoc] is also available.
 [wiki]: https://github.com/cryptosphere/rbnacl/wiki
+[simplebox]: https://github.com/cryptosphere/rbnacl/wiki/SimpleBox
 [secretkey]: https://github.com/cryptosphere/rbnacl/wiki/Secret-Key-Encryption
 [publickey]: https://github.com/cryptosphere/rbnacl/wiki/Public-Key-Encryption
 [signatures]: https://github.com/cryptosphere/rbnacl/wiki/Digital-Signatures
@@ -141,32 +153,6 @@ by professional cryptographers.
 That said, it's probably still a million times better than OpenSSL...
-## Using Signed Gems
-The RbNaCl gem is signed by Tony Arcieri's certificate, which identifies
-as `bascule@gmail.com`. You can obtain the official certificate with:
-```
-curl https://raw.github.com/cryptosphere/rbnacl/master/bascule.cert > /tmp/bascule.cert
-gem cert -a /tmp/bascule.cert
-```
-You can verify the authenticity of bascule.cert by its SHA256 hash:
-```
-$ shasum -a 256 bascule.cert
-6e8b7e53d347ca6c6d214efef2b923aadecdd7650565f0eb1d8d0419723ae20c  bascule.cert
-```
-If you get a different number than `6e8b7e53...`, this is not the cert you are
-looking for!
-If you'd like to install the gem in high security mode, run:
-```
-gem install rbnacl-1.0.0.gem -P HighSecurity
-```
 ## Reporting Security Problems
 If you have discovered a bug in RbNaCl of a sensitive nature, i.e.
@@ -174,11 +160,11 @@ one which can compromise the security of RbNaCl users, you can
 report it securely by sending a GPG encrypted message. Please use
 the following key:
-https://raw.github.com/cryptosphere/rbnacl/master/rbnacl.gpg
+https://raw.github.com/cryptosphere/rbnacl/master/bascule.gpg
 The key fingerprint is (or should be):
-`190E 42D6 8327 A515 BFDF AAE0 B210 269D BB2D 8787`
+`25C1 198A C8A1 8212 7D24 E665 666B AFA9 D77E E055`
 ## Learn More
@@ -208,6 +194,10 @@ Coursera offers from Stanford University Professor Dan Boneh:
 Only if your military understands twisted Edwards curves
+### Is it "Bank Grade™"?
+No, that means 3DES, which this library doesn't support, sorry
 ### Does it have a lock with a checkmark?
 Sure, here you go:

data/bascule.gpg ADDED

@@ -0,0 +1,52 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+Version: GnuPG v1
+mQINBFNXTYEBEADG3Vk/ZLx6Uuw2e7SDZuyBCssszjQ+Zkkd4v1at0oinXMNBv7h
+oRCUnx0xkHGKCeMYEWlpLKIQBQ8ngPpD1agsBlTB+dkcerADduUeiL0ftbc57lqu
+Jss32JFQzoVybhfA1LPMnNndgNMCfKneCxftirsRIxOZg7tDvYBbRZIpFzcn8B6N
+n3KgDqE4xZaR3N66lJhuW1exS0jHJiZ8l9IJv1zVtSinoFb5VdohPU3UnTG2rCw9
+fIqic1ZPNFmBSMcowENulDxhfxywcJbXzGd2GA2959d3CgL+mSHNQk4etPM7Hnw1
+rUWA84EQM+eSmI/fSNMIQKCc/Ds5JI0ZDm0ej0+LpZru6UpwDzpiviNFfIxx0ztJ
+RQ04yRhOswpJAVNtarL6xVsXjyDqe1j+/RUkWQLAyKvasCUNAfEidI52uSG1NscB
+dpqsj4D66FSnFKljdv9FkpcwfpkgyDh9dg134RzzpuWBZF2et0Gpu7T8SwbzfdaF
+FdlIod9EE1gV/Ngc4mjy3Em+63mRXVcLa5cuLMh4N2rY4s//yz7dRV+J7xvyi/FH
+QfOr+YcvrGrcuta3PZ0sEBBwD1ZoLv4mvtE8+V2DYA/ym7reuiBlJcLJnOX/Y4b4
++5oofRcZBdX8ts/nTGCp42ESm8by5mj1bjRBvJXpbvmDh0leTBWRHaLnkwARAQAB
+tCpUb255IEFyY2llcmkgKGJhc2N1bGUpIDxiYXNjdWxlQGdtYWlsLmNvbT6JAj4E
+EwECACgFAlNXTYECGwMFCQPCZwAGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJ
+EGZrr6nXfuBVAc4P/jITN+3drmiw87A0SfyqyxGAmkyDTzXRJqC85LoCehGaBqrn
+APHKV4YRuN771WDnFGv9EjsrV4az8evsJ1A/mHHxj6kNKtoF45XTzUDk/dGAxh/0
+YmpZ7d9iZS0mKNw0OTLGbVsP4Jtfn71uSVujSn805bxjKBDsfXglRb6JFLPhA35R
+iD4K/kjRhFpyL4zo2Ymvrqe715oDtOLBX9AcGW9KjEQ6ytsC2Gbx+apv0kocmfec
+PjVQgZVI6MugHvgEvQLogSMthKfMnxt1+3dgYQ3OyAF1os9BNq3DsG1PXfiCQyNi
+I6weV7aMltIVItaIlBdQ9FpwTzU6ZVXi8Qd9PX1SYea3cpYD1IZL92oJMBYBgOKY
+kUU0K5ABdNdLtEPpKDf75c01c5amDJdahOID6dDqKmLDy48NAazzDtMIN1p7fsBJ
+LyR0BA16ds34jE8huJfvI1GwMldnVxsJhmqxveYDEKQV/KDOJ3AV1iWPa1A5EUVa
+EEhdpq6JcIhTq+5ips7K17cjMB+c95WpNCq6zQ4BXQmSce9Hz+1VAa1wogyeakR5
+JseJEkwgQeYgU8ZiQKgQUDNFFNGMOkq8MCRki7LScfivMz8d1yTk2VBmZ/sN0RTn
+izlT7TY6451UalCFiPSoMDxjClaFrLD3wDTR4exyvgUopWubbHDntUYFUEvBuQIN
+BFNXTYEBEADBtXebb611svSJeDnSfbKb1935iYmeve7sx+dsZz03hgjTxmxG3fk5
+auWusMyHeFZPp7SCE+nI3u0quzB0npW4mxpICxQGDy9rNMT3vHfKtJyoQph/CUPB
+jGUUDWF+bwGVzIXmZwO7ic2KvL/p9g3EM6aAvNYI7NwwmOBCF19Qi2J2GRPbd/YT
+Ans25AR4BmxrW8+HyENgnlPBNB9W9f+nqE7DukiYHtY+7VdC8j9XHmgW2ukDZLQd
+eobl5XvwpZEpntRO6qCw0vP9diNfQhhaUZz5MRJlmJwa3xd/HFtbjo7RMwUXXZcw
+Bvj0WAa+lNuOAYC2g03w/LIhll4Eq6FJwmHTvaTki9m/Ib9ucCz9aJiqwp3qH1F2
+f0ASOJPfU5k7XNnhfZhY+tiaXwSQBYjkK5IiwmcVWcixfAjavnE6vGbUda0gHNYG
+fQ93OhAsRd1lGv3w4r9aAZg8kMA/dg9XvB92/NkPABIj1frEhI1ptUVnrNovX7XU
+N/eN6UsjWMxUyplKO9QLbliSXfRE55/anmej9WvrQ9MYGEcvoShEpC4Uv2oSZWHH
+6Fc7ZJ9Mf4JB4vFRy2+zNdvPEon4ZJalW14Cu3aKzFLb7BuscsJ8nT13POKpqqhI
+7bPt9ApVOgAXPRqCko5U5M5O0fsBDrFK8czLWxR+M5ef5YvpYMsyLwARAQABiQIl
+BBgBAgAPBQJTV02BAhsMBQkDwmcAAAoJEGZrr6nXfuBVhxUP/0CeBdkTy0FdLx9R
+2wBFVjFmbgRqzP2XC+2QJlLxVFFluG9eEMOdK7jHPu6CrZxo0OYx7k7eI+m8Os6F
+tWsJaAmSkiMpqOWvy/jGH9bwoVDnHJ4BbBw9pbqWw9zba62QQ2vK4qAbGK8JS7Mz
+b4M012k5IxD10CWdN85TdCDVFjHCLkdUYEmqx0ibugL1hcpEBWZlM3CFa8Jl/X04
+HLgBl6CTN++7MQa11TfLL7DkjPTBe7/LwMRMigUEQUmJpVNNHuL9jnvzJcylscKJ
+0u8uwk1StNtz/fwTsFV5s5ilg0dt+/hSB+TQbr7uI9PPgWPrGQIa1EzkjflaWYJd
+hB4R44c5iYeRpGZoiXh5bm82yxGmIleRKJtRZ8OYJy/2QRFfhG1sS24FYZWojwve
+0A7wguMB8SSfOj6cMo14sPe38h1w7XuDrvc4HshRNoB+7SYuqH2wQRd8GdkkX0SP
+xfJy+3H9Mq1vGWHM5ZqVpA2QEEGArVuUh6TwjqB1gUvcoNFFZ5jLS4O06r7sNxrx
+4udMZXdmYiztQzOak3rGI8bE4NwXRsJdiAnRC6pfhJmoVGI+y0dkkQfPaZEoiAHA
+DGnZHqa7tnlSe7LcbC8FpCnSmaEEhx9blDv6z7vYZaCkNiGb3tIeHEeOm5wLsByC
+8VqIziiGfWBn7c9CNBhHoBsTb/oK
+=EFdK
+-----END PGP PUBLIC KEY BLOCK-----

data/lib/rbnacl/init.rb CHANGED

@@ -3,7 +3,11 @@ module RbNaCl
   # Defines the libsodium init function
   module Init
     extend FFI::Library
-    ffi_lib 'sodium'
+    if defined?(RBNACL_LIBSODIUM_GEM_LIB_PATH)
+      ffi_lib RBNACL_LIBSODIUM_GEM_LIB_PATH
+    else
+      ffi_lib 'sodium'
+    end
     attach_function :sodium_init, [], :int
   end

data/lib/rbnacl/sodium.rb CHANGED

@@ -6,7 +6,11 @@ module RbNaCl
   module Sodium
     def self.extended(klass)
       klass.extend FFI::Library
-      klass.ffi_lib 'sodium'
+      if defined?(RBNACL_LIBSODIUM_GEM_LIB_PATH)
+        klass.ffi_lib RBNACL_LIBSODIUM_GEM_LIB_PATH
+      else
+        klass.ffi_lib 'sodium'
+      end
     end

data/lib/rbnacl/version.rb CHANGED

@@ -1,5 +1,5 @@
 # encoding: binary
 module RbNaCl
   # The library's version
-  VERSION = "3.0.0"
+  VERSION = "3.0.1"
 end

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rbnacl
 version: !ruby/object:Gem::Version
-  version: 3.0.0
+  version: 3.0.1
 platform: ruby
 authors:
 - Tony Arcieri
@@ -10,7 +10,7 @@ autorequire:
 bindir: bin
 cert_chain:
 - bascule.cert
-date: 2014-04-23 00:00:00.000000000 Z
+date: 2014-05-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -88,6 +88,7 @@ files:
 - README.md
 - Rakefile
 - bascule.cert
+- bascule.gpg
 - images/dragons.png
 - images/ed25519.png
 - images/hash.png
@@ -122,7 +123,6 @@ files:
 - lib/rbnacl/util.rb
 - lib/rbnacl/version.rb
 - rbnacl.gemspec
-- rbnacl.gpg
 - spec/rbnacl/authenticators/poly1305_spec.rb
 - spec/rbnacl/boxes/curve25519xsalsa20poly1305/private_key_spec.rb
 - spec/rbnacl/boxes/curve25519xsalsa20poly1305/public_key_spec.rb
@@ -166,7 +166,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.2.0
+rubygems_version: 2.2.2
 signing_key:
 specification_version: 4
 summary: The Networking and Cryptography (NaCl) library provides a high-level toolkit

data/rbnacl.gpg DELETED

@@ -1,30 +0,0 @@
------BEGIN PGP PUBLIC KEY BLOCK-----
-Version: GnuPG v1.4.12 (Darwin)
-mQENBFE2gC4BCADG/9ea48mbfT4Odzi6JLXQMt2z4Md6zO52O1w8RvA32hgx+Sm4
-4amvwMGb44WXQkSCp//X4YWcZ+WAefZDz8VSfsvQ11CLAnnGPuKiItFCkmDCL0iV
-2PrHQ3oZ8kfd3/f8qKPZI+TcPmJw1ttF/ugcly7zndCQq+17G/nMYNIxltegtfxm
-AHGeuzgfG6r/IbvBrMgvAmV2+0/CnCpuuuIiSqkp9TnBH3rYl2x4ewwGrgp3GrGT
-OLm/qEKNHbQGa8Q+yaHJczTJ5fNxEdVllEAfVhYPuEoBLDm4fjkgGS98nr9+T7pF
-9M1IfmszfyenWut6RF1lfRrZQD7v02K7XOIXABEBAAG0JVRvbnkgQXJjaWVyaSA8
-dG9ueS5hcmNpZXJpQGdtYWlsLmNvbT6JAT4EEwECACgFAlE2gC4CGwMFCQHhM4AG
-CwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJELIQJp27LYeHjwQH/jktme/Uzxhp
-jodHv9iTUbaNi3PSjmNZJAzmtvsJzavrP2EuYomOK2Z0K387HbWPQpRGNxMzF85X
-71YYRCGCsja6sFFaiVE5EOzbQVAdT0gyE7U/iPImbqtXAH9WdbxqgjrvnECwDsod
-WyzGaanfbcF9E3b+od/CcjSpcsOJkuxZXwrZKxP9ehvy5dobYrLfageXVxJdj1rs
-4tuD5IsIQnqW3uUzfaAOLS0oh6e4faDV5232Gva/y7j2fs235ceuHGv24iYf2NAE
-c7rfnOpqT2/3ezNwqpNqE1RH2p1LgtmNkOn7z0iyck171WpCNUaDzT2QVMW1sVEQ
-OQzIVvzM6DC5AQ0EUTaALgEIALCnnwjepJiWFYy6iSMDOZ4g6ifxOPdmlQp0SF83
-BqbEuhr19EBb8Z3BTewIeszwiozCrYyE3Z/hXwJX9JcsTd+YlNE93IMXWq0Dvr2u
-YPhXg4z7Ni9geJaCuQVu4R6pGHI9Irw2F/+xBvccS8nf+xzPsqcqZkFnal5ohCR2
-Z4eXUI26La9qq9j5K6SGMemGwt9FKLXDuInOWSWpiztQBpEo66d8LGqvvHGUUTYH
-LEsJzItLFTHOxTySvjt+9bVWgtXl5iLiR+dAL03Yf6J6E+Dzu12ELoq1kI/M6c0f
-cczmhGT9+9PJfqg2A6MjAF5JEQUVa1HlDH9vnfwSc8nm0qUAEQEAAYkBJQQYAQIA
-DwUCUTaALgIbDAUJAeEzgAAKCRCyECaduy2Hh19aB/93WEEPqVAFzo04f8P27KTw
-n+UiVTTxLkEBNbUHqNDBwWZLBUhzDxoEI21OyAxMzJEj80GXyFtLBMO+lbzz8MvI
-IcfLS3zXaeEFO+fofKbfilvzezSzslPTjxFx0He8C/SjggWVIRPfv5hpoyyx4FXW
-a6ZmA5G29O2J85VhZr8EQuykB10K9tIGIgfpuvjfeL8K30rgPGPfwbZP7/U33Yxs
-qwAwsd6Ej98U8TGUr/tTSVztjg7inWwkL84I3DnfedOn4ofVDetDvtjuaJcc16Z5
-QspnbOIn+KGOcdodZQKglj4Esal0W3kg56Du9M5xzmfEB2UeK5aMTL5akoCjs9aK
-=64l+
------END PGP PUBLIC KEY BLOCK-----