Class: Lockbox::Box

Inherits:

Object

• Object
• Lockbox::Box

Defined in:

lib/lockbox/box.rb

Instance Method Summary

• #decrypt(ciphertext, associated_data: nil) ⇒ Object
• #encrypt(message, associated_data: nil) ⇒ Object
• #initialize(key, algorithm: nil) ⇒ Box constructor

  A new instance of Box.

• #inspect ⇒ Object

  protect key for xchacha20.

Constructor Details

#initialize(key, algorithm: nil) ⇒ Box

Returns a new instance of Box.

# File 'lib/lockbox/box.rb', line 3

def initialize(key, algorithm: nil)
  # decode hex key
  if key.encoding != Encoding::BINARY && key =~ /\A[0-9a-f]{64}\z/i
    key = [key].pack("H*")
  end

  algorithm ||= "aes-gcm"

  case algorithm
  when "aes-gcm"
    require "lockbox/aes_gcm"
    @box = AES_GCM.new(key)
  when "xchacha20"
    require "rbnacl"
    @box = RbNaCl::AEAD::XChaCha20Poly1305IETF.new(key)
  else
    raise ArgumentError, "Unknown algorithm: #{algorithm}"
  end
end

Instance Method Details

#decrypt(ciphertext, associated_data: nil) ⇒ Object

# File 'lib/lockbox/box.rb', line 29

def decrypt(ciphertext, associated_data: nil)
  nonce, ciphertext = extract_nonce(ciphertext)
  @box.decrypt(nonce, ciphertext, associated_data)
end

#encrypt(message, associated_data: nil) ⇒ Object

# File 'lib/lockbox/box.rb', line 23

def encrypt(message, associated_data: nil)
  nonce = generate_nonce
  ciphertext = @box.encrypt(nonce, message, associated_data)
  nonce + ciphertext
end

#inspect ⇒ Object

protect key for xchacha20

# File 'lib/lockbox/box.rb', line 35

def inspect
  to_s
end