Class: Cryptosphere::Head

Inherits:

Object

• Object
• Cryptosphere::Head

Defined in:

lib/cryptosphere/head.rb

Instance Attribute Summary

• #read_key ⇒ Object readonly

  Returns the value of attribute read_key.

• #signing_key ⇒ Object readonly

  Returns the value of attribute signing_key.

• #timestamp ⇒ Object readonly

  Returns the value of attribute timestamp.

• #verify_key ⇒ Object readonly

  Returns the value of attribute verify_key.

Class Method Summary

• .generate ⇒ Object

Instance Method Summary

• #initialize(access_key, read_key = nil) ⇒ Head constructor

  A new instance of Head.

• #location ⇒ Object
• #move(location, timestamp = Time.now) ⇒ Object (also: #location=)
• #to_signed_message ⇒ Object
• #update(signed_message) ⇒ Object

Constructor Details

#initialize(access_key, read_key = nil) ⇒ Head

Returns a new instance of Head.

# File 'lib/cryptosphere/head.rb', line 12

def initialize(access_key, read_key = nil)
  @signing_cipher = AsymmetricCipher.new(access_key)
  @read_key      = read_key

  @id        = @signing_cipher.public_key_fingerprint
  @location  = nil
  @timestamp = nil
end

Instance Attribute Details

#read_key ⇒ Object (readonly)

Returns the value of attribute read_key.

# File 'lib/cryptosphere/head.rb', line 3

def read_key
  @read_key
end

#signing_key ⇒ Object (readonly)

Returns the value of attribute signing_key.

# File 'lib/cryptosphere/head.rb', line 3

def signing_key
  @signing_key
end

#timestamp ⇒ Object (readonly)

Returns the value of attribute timestamp.

# File 'lib/cryptosphere/head.rb', line 3

def timestamp
  @timestamp
end

#verify_key ⇒ Object (readonly)

Returns the value of attribute verify_key.

# File 'lib/cryptosphere/head.rb', line 3

def verify_key
  @verify_key
end

Class Method Details

.generate ⇒ Object

# File 'lib/cryptosphere/head.rb', line 5

def self.generate
  access_key = AsymmetricCipher.generate_key
  read_key   = Cryptosphere.random_bytes(32)

  new(verify_key.to_der, read_key, signing_key.to_der)
end

Instance Method Details

#location ⇒ Object

Raises:

• (CapabilityError)

# File 'lib/cryptosphere/head.rb', line 21

def location
  raise CapabilityError, "can't read location" unless @read_key
  @location
end

#move(location, timestamp = Time.now) ⇒ Object Also known as: location=

Raises:

• (CapabilityError)

# File 'lib/cryptosphere/head.rb', line 26

def move(location, timestamp = Time.now)
  raise CapabilityError, "don't have write capability" unless @signing_cipher.private_key?
  @location, @timestamp = location, timestamp
end

#to_signed_message ⇒ Object

# File 'lib/cryptosphere/head.rb', line 32

def to_signed_message
  cipher = Cryptosphere.block_cipher
  cipher.encrypt
  cipher.key = @read_key
  cipher.iv  = iv = cipher.random_iv

  ciphertext = cipher.update(location)
  ciphertext << cipher.final

  message   = [@timestamp.to_i, iv, ciphertext].pack("QA16A*")
  signature = @signing_cipher.private_encrypt Cryptosphere.kdf(message)

  [signature.size, signature, message].pack("nA*A*")
end

#update(signed_message) ⇒ Object

# File 'lib/cryptosphere/head.rb', line 47

def update(signed_message)
  signature_size, rest = signed_message.unpack("nA*")
  signature, message = rest.unpack("A#{signature_size}A*")

  if @signing_cipher.public_decrypt(signature) != Cryptosphere.kdf(message)
    raise InvalidSignatureError, "signature does not match message"
  end

  timestamp, iv, ciphertext = message.unpack("QA16A*")
  timestamp = Time.at(timestamp)

  if timestamp > Time.now
    raise InvalidTimestampError, "timestamp is in the future"
  elsif @timestamp && timestamp < @timestamp
    return false # we have a newer version
  end

  if @read_key
    cipher = Cryptosphere.block_cipher
    cipher.decrypt
    cipher.key = @read_key
    cipher.iv = iv

    location = cipher.update(ciphertext)
    location << cipher.final

    @location = location
  end
end