router_crypt 0.3.1 → 0.4.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 27c72c9db801e1733ea262975a6057782fc5351b
+  data.tar.gz: 60f4d105d9b314e5a8991321bd7a83f081a6590a
+SHA512:
+  metadata.gz: 98c8aac4fa9fbc0e7de60ab4f6c67480dc84db69f050f38b67ac1ea11e47bf4d7cbf25d0f2d25a702be35bc653554605f858ad9eb56d6c20c74764450d0c108b
+  data.tar.gz: d78ee283d8a74445ffb368b9a9fcdfab392bddecd830c2bf2d06f32a399f60409f288045a9a1ab3e1611c07533d884701e64354c2a850e8bb217fd000df33378

data/Gemfile

@@ -1,3 +1,3 @@
-group :test do
-  gem 'rspec'
-end
+source 'https://rubygems.org'
+
+gemspec

data/Gemfile.lock

@@ -1,17 +1,36 @@
+PATH
+  remote: .
+  specs:
+    router_crypt (0.4.0)
+      slop (~> 4.4)
+
 GEM
+  remote: https://rubygems.org/
   specs:
-    diff-lcs (1.2.1)
-    rspec (2.13.0)
-      rspec-core (~> 2.13.0)
-      rspec-expectations (~> 2.13.0)
-      rspec-mocks (~> 2.13.0)
-    rspec-core (2.13.0)
-    rspec-expectations (2.13.0)
-      diff-lcs (>= 1.1.3, < 2.0)
-    rspec-mocks (2.13.0)
+    diff-lcs (1.2.5)
+    rake (10.5.0)
+    rspec (3.5.0)
+      rspec-core (~> 3.5.0)
+      rspec-expectations (~> 3.5.0)
+      rspec-mocks (~> 3.5.0)
+    rspec-core (3.5.4)
+      rspec-support (~> 3.5.0)
+    rspec-expectations (3.5.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.5.0)
+    rspec-mocks (3.5.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.5.0)
+    rspec-support (3.5.0)
+    slop (4.4.1)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
+  rake
+  router_crypt!
   rspec
+
+BUNDLED WITH
+   1.11.2

data/{rakefile → Rakefile}

@@ -1,5 +1,6 @@
 begin
   require 'bundler'
+  require 'bundler/gem_tasks'
   require 'rspec/core/rake_task'
   Bundler.setup
 rescue LoadError
@@ -9,6 +10,7 @@ end
 
 
 gemspec = eval(File.read(Dir['*.gemspec'].first))
+file    = [gemspec.name, gemspec.version].join('-') + '.gem'
 
 desc 'Validate the gemspec'
 task :gemspec do
@@ -17,20 +19,19 @@ end
 
 RSpec::Core::RakeTask.new(:spec)
 
-
-desc "Build gem locally"
-task :build => %i(spec gemspec) do
-  system "gem build #{gemspec.name}.gemspec"
-  FileUtils.mkdir_p "gems"
-  FileUtils.mv "#{gemspec.name}-#{gemspec.version}.gem", "gems"
-end
-
-desc "Install gem locally"
-task :install => :build do
-  system "sudo sh -c \'umask 022; gem20 install gems/#{gemspec.name}-#{gemspec.version}\'"
-end
-
 desc "Clean automatically generated files"
 task :clean do
   FileUtils.rm_rf "gems"
 end
+
+desc 'Tag the release'
+task :tag do
+  system "git tag #{gemspec.version}"
+  end
+
+desc 'Push to rubygems'
+task :push => :tag do
+    system "gem push pkg/#{file}"
+end
+
+task default: :spec

data/bin/rtrcrypt

@@ -1,9 +1,10 @@
 #!/usr/bin/env ruby
 
-require 'router_crypt'
+require_relative '../lib/router_crypt'
 
 begin
   p RouterCrypt::CLI.run
 rescue => e
   warn "ERROR: #{e}"
+  #raise
 end

data/lib/cli/cli.rb

@@ -1,17 +1,43 @@
+require 'slop'
+require 'pp'
+
+
 class RouterCrypt::CLI
   class << self
     def run
-      ARGV[0] or raise ArgumentError, 'no password given'
-      pw = ARGV[0].dup 
-      case pw
-      when /^\$9\$/
-        RouterCrypt::JunOS.decrypt pw
-      when /^[\dA-F]+$/
-        RouterCrypt::IOS.decrypt pw
-      else
-        #presume it's NXOS, no clear way to separate garbage and NXOS PW
-        RouterCrypt::NXOS.decrypt pw
+      opts=opts_parse.to_hash
+      #ARGV[0] or raise ArgumentError, 'no password given'
+
+      if opts[:junipercrypt]
+        pw=opts[:junipercrypt]
+	if opts[:salt]
+          RouterCrypt::JunOS.crypt(opts[:junipercrypt], opts[:salt])
+        else
+          RouterCrypt::JunOS.crypt opts[:junipercrypt]
+        end
+      elsif opts [:decrypt]
+        pw=opts[:decrypt].dup
+        case pw
+        when /^\$9\$/
+          RouterCrypt::JunOS.decrypt pw
+        when /^[\dA-F]+$/
+          RouterCrypt::IOS.decrypt pw
+        else
+          #presume it's NXOS, no clear way to separate garbage and NXOS PW
+          RouterCrypt::NXOS.decrypt pw
+        end
       end
     end
+
+    def opts_parse
+      Slop.parse do |o|
+        o.on     '-h', '--help' do puts o; exit; end
+        o.bool   '-D', '--debug',        'turn on debugging'
+        o.string '-j', '--junipercrypt', 'crypt Juniper'
+        o.string '-s', '--salt',         'salt for crypt'
+	o.string '-d', '--decrypt',      'decrypt'
+      end
+    end
+
   end
 end

data/lib/junos/common.rb

@@ -1,40 +1,77 @@
 class RouterCrypt::JunOS
   class InvalidPW < StandardError; end
-  
+
   ENCODE = [
-      [ 1,  4, 32 ],
-      [ 1, 16, 32 ],
-      [ 1,  8, 32 ],
-      [ 1, 64     ],
-      [ 1, 32     ],
-      [ 1, 4, 16, 128 ],
-      [ 1, 32, 64 ],
+    [ 1,  4, 32 ],
+    [ 1, 16, 32 ],
+    [ 1,  8, 32 ],
+    [ 1, 64     ],
+    [ 1, 32     ],
+    [ 1, 4, 16, 128 ],
+    [ 1, 32, 64 ],
   ]
   EXTRA   = {}
   KEY     = %w( QzF3n6/9CAtpu0O B1IREhcSyrleKvMW8LXx 7N-dVbwsY2g4oaJZGUDj iHkq.mPf5T )
   KEYCHAR = KEY.join.each_char.to_a
+  CHARKEY = {}
+  for q in 0..(KEYCHAR.length - 1)
+    CHARKEY[KEYCHAR[q]] = q;
+  end
   KEY.each_with_index do |key, index|
     key.each_char { |c| EXTRA[c] = 3-index }
   end
-  
+
   class << self
-  
-    private 
- 
+
+    private
+
     def nibble str, len
       nib, str[0..len-1] = str[0..len-1], ''
       nib.size == len or raise InvalidPW, 'Insufficent amont of characters'
       nib
     end
-  
+
     def gap c1, c2
-      (KEYCHAR.index(c1) - KEYCHAR.index(c2)) % KEYCHAR.size - 1 
+      (KEYCHAR.index(c1) - KEYCHAR.index(c2)) % KEYCHAR.size - 1
     end
-  
+
     def gap_decode gaps, dec
       gaps.size == dec.size or raise InvalidPW, 'gaps and dec are unequal size'
       (gaps.each_with_index.inject(0) { |num, (e, index)| num + e * dec[index] } % 256).chr
     end
-  
+
+    ## return a random number of characters from our alphabet
+    def randc cnt
+      r = ''
+      while cnt>0
+        r << KEYCHAR[(rand KEYCHAR.length).to_i]
+        cnt-=1
+      end
+      r
+    end
+
+    ## encode a plain-text character with a series of gaps,
+    ## according to the current encoder.
+    def gap_encode  pc,prev,enc
+      ord = pc.ord
+
+      crypt = ''
+      gaps=[]
+
+      enc.reverse.each do |x|
+        gaps.unshift (ord/x).to_i
+        ord %= x
+      end
+
+      gaps.each do |gap|
+        gap += CHARKEY[prev]+1
+        c = KEYCHAR[gap % KEYCHAR.length]
+        prev = c
+        crypt<<c
+      end
+
+      crypt
+    end
+
   end
 end

data/lib/junos/crypt.rb

@@ -0,0 +1,26 @@
+class RouterCrypt::JunOS
+  class << self
+    # Encrypts JunOS $9$ style passwords. This is reimplementation of CPAN
+    # Crypt::Juniper (by Kevin Brintnall, <kbrint at rufus.net>)  ''juniper_crypt' function
+    #
+    # @param [String] the plaintext string
+    # @return [String] the encrypted string
+    def crypt (plaintext, *opts)
+      salt = opts[0] ? opts[0][0] : randc(1)
+      rand = randc(EXTRA[salt])
+
+      prev = salt
+      crypt="$9$"
+      crypt<<salt
+      crypt<<rand
+
+      plaintext.chars.each_with_index do |p, pos|
+        encode = ENCODE[ pos % ENCODE.length]
+        crypt<< gap_encode(p, prev, encode)
+        prev = crypt[crypt.size-1]
+      end
+
+      crypt
+    end
+  end
+end

data/lib/router_crypt.rb

@@ -1,10 +1,11 @@
 class RouterCrypt
 end
 
-require 'junos/common'
-require 'junos/decrypt'
-require 'ios/common'
-require 'ios/decrypt'
-require 'nxos/common'
-require 'nxos/decrypt'
-require 'cli/cli'
+require_relative 'junos/common'
+require_relative 'junos/decrypt'
+require_relative 'junos/crypt'
+require_relative 'ios/common'
+require_relative 'ios/decrypt'
+require_relative 'nxos/common'
+require_relative 'nxos/decrypt'
+require_relative 'cli/cli'

data/router_crypt.gemspec

@@ -1,6 +1,6 @@
 Gem::Specification.new do |s|
   s.name              = 'router_crypt'
-  s.version           = '0.3.1'
+  s.version           = '0.4.0'
   s.platform          = Gem::Platform::RUBY
   s.authors           = [ 'Saku Ytti' ]
   s.email             = %w( saku@ytti.fi )
@@ -12,4 +12,7 @@ Gem::Specification.new do |s|
   s.executables       = %w( rtrcrypt )
   s.require_path      = 'lib'
   s.required_rubygems_version = '>= 1.3.6'
+  s.add_runtime_dependency 'slop', '~> 4.4'
+  s.add_development_dependency 'rake'
+  s.add_development_dependency 'rspec'
 end

data/spec/ios/decrypt_spec.rb

@@ -4,6 +4,6 @@ require 'router_crypt'
 describe RouterCrypt::IOS, '#decrypt' do
   it 'returns correct decrypted password' do
     clear = RouterCrypt::IOS.decrypt CRYPT_IOS
-    clear.should eq CLEAR
+    expect(clear).to eq CLEAR
   end
 end

data/spec/junos/common_spec.rb

@@ -5,35 +5,35 @@ describe RouterCrypt::JunOS, '#nibble' do
   it 'returns k for 1 char out of "kakka"' do
     str = 'kakka'
     nib = RouterCrypt::JunOS.send :nibble, str, 1
-    nib.should eq 'k'
-    str.should eq 'akka'
+    expect(nib).to eq 'k'
+    expect(str).to eq 'akka'
   end
   it 'returns kak for 3 char out of "kakka"' do
     str = 'kakka'
     nib = RouterCrypt::JunOS.send :nibble, str, 3
-    nib.should eq 'kak'
-    str.should eq 'ka'
+    expect(nib).to eq 'kak'
+    expect(str).to eq 'ka'
   end
 end
 
 describe RouterCrypt::JunOS, '#gap' do
   it 'returns 7 for gap between k and J' do
     gap = RouterCrypt::JunOS.send :gap, 'k', 'J'
-    gap.should eq 7
+    expect(gap).to eq 7
   end
   it 'returns 56 for gap between J and k' do
     gap = RouterCrypt::JunOS.send :gap, 'J', 'k'
-    gap.should eq 56 
+    expect(gap).to eq 56
   end
 end
 
 describe RouterCrypt::JunOS, "#gaps" do
   it 'returns ) for [gaps], [dec]' do 
     chr = RouterCrypt::JunOS.send :gap_decode, RouterCrypt::JunOS::ENCODE[1], [9, 42, 12]
-    chr.should eq ')'
+    expect(chr).to eq ')'
   end
   it 'returns n for [gaps2], [dec2]' do 
     chr = RouterCrypt::JunOS.send :gap_decode, RouterCrypt::JunOS::ENCODE[5], [42, 69, 99, 4]
-    chr.should eq 'n'
+    expect(chr).to eq 'n'
   end
 end

data/spec/junos/crypt_spec.rb

@@ -0,0 +1,10 @@
+require 'spec_helper'
+require 'router_crypt'
+
+describe RouterCrypt::JunOS, '#crypt' do
+  it 'returns correct crypted password' do
+    crypt = RouterCrypt::JunOS.crypt CLEAR
+    clear = RouterCrypt::JunOS.decrypt crypt
+    expect(clear).to eq CLEAR
+  end
+end

data/spec/junos/decrypt_spec.rb

@@ -4,6 +4,6 @@ require 'router_crypt'
 describe RouterCrypt::JunOS, '#decrypt' do
   it 'returns correct decrypted password' do
     clear = RouterCrypt::JunOS.decrypt CRYPT_JUNOS
-    clear.should eq CLEAR
+    expect(clear).to eq CLEAR
   end
 end

data/spec/nxos/decrypt_spec.rb

@@ -4,6 +4,6 @@ require 'router_crypt'
 describe RouterCrypt::NXOS, '#decrypt' do
   it 'returns correct decrypted password' do
     clear = RouterCrypt::NXOS.decrypt CRYPT_NXOS
-    clear.should eq CLEAR
+    expect(clear).to eq CLEAR
   end
 end

metadata

@@ -1,16 +1,57 @@
 --- !ruby/object:Gem::Specification
 name: router_crypt
 version: !ruby/object:Gem::Version
-  version: 0.3.1
-  prerelease: 
+  version: 0.4.0
 platform: ruby
 authors:
 - Saku Ytti
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-03-07 00:00:00.000000000 Z
-dependencies: []
+date: 2016-11-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: slop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.4'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.4'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Library and binary which decrypt (crypt unimplemented) Juniper JunOS
   $9$, Cisco IOS type 7 and Cisco NX-OS passwords
 email:
@@ -20,52 +61,50 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- .gitignore
-- .rspec
+- ".gitignore"
+- ".rspec"
 - Gemfile
 - Gemfile.lock
 - README.md
+- Rakefile
 - bin/rtrcrypt
 - lib/cli/cli.rb
 - lib/ios/common.rb
 - lib/ios/decrypt.rb
 - lib/junos/common.rb
+- lib/junos/crypt.rb
 - lib/junos/decrypt.rb
 - lib/nxos/common.rb
 - lib/nxos/decrypt.rb
 - lib/router_crypt.rb
-- rakefile
 - router_crypt.gemspec
 - spec/ios/decrypt_spec.rb
 - spec/junos/common_spec.rb
+- spec/junos/crypt_spec.rb
 - spec/junos/decrypt_spec.rb
 - spec/nxos/decrypt_spec.rb
 - spec/spec_helper.rb
 homepage: http://github.com/ytti/router_crypt
 licenses: []
+metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-      segments:
-      - 0
-      hash: -1168524170456204524
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: 1.3.6
 requirements: []
 rubyforge_project: router_crypt
-rubygems_version: 1.8.25
+rubygems_version: 2.5.2
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: Crypt library for JunOS/IOS/NX-OS passwords
 test_files: []