Class: Themis::ScellSealPassphrase

Make a new Secure Cell with given passphrase. The passphrase must not be empty. If the passphrase is not binary it will be encoded in UTF-8 by default, you can use optional “encoding:” argument to use a different encoding.

# File 'lib/rbthemis.rb', line 648

def initialize(passphrase, encoding: Encoding::UTF_8)
  if empty? passphrase
    raise ThemisError, "passphrase cannot be empty"
  end
  if passphrase.encoding != Encoding::BINARY
    passphrase = passphrase.encode(encoding)
  end
  @passphrase, @passphrase_length = string_to_pointer_size(passphrase)
end

Instance Method Details

#decrypt(message, context = nil) ⇒ `Object`

Decrypts message with given context. The context must be the same as the one used during encryption, or be omitted or set to nil if no context were used. Decrypted message is returned as binary data.

# File 'lib/rbthemis.rb', line 696

def decrypt(message, context = nil)
  if empty? message
    raise ThemisError, "message cannot be empty"
  end

  message_, message_length_ = string_to_pointer_size(message)
  context_, context_length_ =
    context.nil? ? [nil, 0] : string_to_pointer_size(context)

  decrypted_length = FFI::MemoryPointer.new(:uint)
  res = themis_secure_cell_decrypt_seal_with_passphrase(
    @passphrase, @passphrase_length, context_, context_length_,
    message_, message_length_, nil, decrypted_length)
  if res != BUFFER_TOO_SMALL
    raise ThemisError.new(res), "decrypt failed"
  end

  decrypted_message = FFI::MemoryPointer.new(:char, decrypted_length.read_uint)
  res = themis_secure_cell_decrypt_seal_with_passphrase(
    @passphrase, @passphrase_length, context_, context_length_,
    message_, message_length_, decrypted_message, decrypted_length)
  if res != SUCCESS
    raise ThemisError.new(res), "decrypt failed"
  end

  decrypted_message.get_bytes(0, decrypted_length.read_uint)
end

#encrypt(message, context = nil) ⇒ `Object`

Encrypts message with given optional context. The context is cryptographically combined with message but is not included into encrypted data, you will need to provide the same context for decryption. Resulting encrypted message includes authentication token. Message must not be empty, but context may be omitted. Both message and context are treated as binary data.

# File 'lib/rbthemis.rb', line 664

def encrypt(message, context = nil)
  if empty? message
    raise ThemisError, "message cannot be empty"
  end

  message_, message_length_ = string_to_pointer_size(message)
  context_, context_length_ =
    context.nil? ? [nil, 0] : string_to_pointer_size(context)

  encrypted_length = FFI::MemoryPointer.new(:uint)
  res = themis_secure_cell_encrypt_seal_with_passphrase(
    @passphrase, @passphrase_length, context_, context_length_,
    message_, message_length_, nil, encrypted_length)
  if res != BUFFER_TOO_SMALL
    raise ThemisError.new(res), "encrypt failed"
  end

  encrypted_message = FFI::MemoryPointer.new(:char, encrypted_length.read_uint)
  res = themis_secure_cell_encrypt_seal_with_passphrase(
    @passphrase, @passphrase_length, context_, context_length_,
    message_, message_length_, encrypted_message, encrypted_length)
  if res != SUCCESS
    raise ThemisError.new(res), "encrypt failed"
  end

  encrypted_message.get_bytes(0, encrypted_length.read_uint)
end

Class: Themis::ScellSealPassphrase

Overview

Constant Summary

Constants included from ThemisImport

Constants inherited from Scell

Instance Method Summary collapse

Methods included from ThemisCommon

Constructor Details

#initialize(passphrase, encoding: Encoding::UTF_8) ⇒ ScellSealPassphrase

Instance Method Details

#decrypt(message, context = nil) ⇒ Object

#encrypt(message, context = nil) ⇒ Object

#initialize(passphrase, encoding: Encoding::UTF_8) ⇒ `ScellSealPassphrase`

#decrypt(message, context = nil) ⇒ `Object`

#encrypt(message, context = nil) ⇒ `Object`