cef 0.6.0

data/.document

@@ -0,0 +1,5 @@
+lib/**/*.rb
+bin/*
+- 
+features/**/*.feature
+LICENSE.txt

data/.rspec

@@ -0,0 +1 @@
+--color

data/Gemfile

@@ -0,0 +1,13 @@
+source "http://rubygems.org"
+# Add dependencies required to use your gem here.
+# Example:
+#   gem "activesupport", ">= 2.3.5"
+
+# Add dependencies to develop your gem here.
+# Include everything needed to run rake, tests, features, etc.
+group :development do
+  gem "rspec", "~> 2.3.0"
+  gem "bundler", "~> 1.0.0"
+  gem "jeweler", "~> 1.5.2"
+  gem "rcov", ">= 0"
+end

data/LICENSE.txt

@@ -0,0 +1,20 @@
+Copyright (c) 2011 Ryan Breed
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,19 @@
+= cef
+
+Description goes here.
+
+== Contributing to cef
+ 
+* Check out the latest master to make sure the feature hasn't been implemented or the bug hasn't been fixed yet
+* Check out the issue tracker to make sure someone already hasn't requested it and/or contributed it
+* Fork the project
+* Start a feature/bugfix branch
+* Commit and push until you are happy with your contribution
+* Make sure to add tests for it. This is important so I don't break it in a future version unintentionally.
+* Please try not to mess with the Rakefile, version, or history. If you want to have your own version, or is otherwise necessary, that is fine, but please isolate to its own commit so I can cherry-pick around it.
+
+== Copyright
+
+Copyright (c) 2011 Ryan Breed. See LICENSE.txt for
+further details.
+

data/Rakefile

@@ -0,0 +1,57 @@
+require 'rubygems'
+require 'bundler'
+begin
+  Bundler.setup(:default, :development)
+rescue Bundler::BundlerError => e
+  $stderr.puts e.message
+  $stderr.puts "Run `bundle install` to install missing gems"
+  exit e.status_code
+end
+require 'rake'
+
+require 'jeweler'
+Jeweler::Tasks.new do |gem|
+  # gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
+  gem.name = "cef"
+  gem.homepage = "http://github.com/ryanbreed/cef"
+  gem.license = "MIT"
+  gem.summary = %Q{CEF Generation }
+  gem.description = %Q{Library and client }
+  gem.email = "opensource@breed.org"
+  gem.authors = ["Ryan Breed"]
+  # Include your dependencies below. Runtime dependencies are required when using your gem,
+  # and development dependencies are only needed for development (ie running rake tasks, tests, etc)
+  #gem.add_runtime_dependency 'escape', '~> 0.0.4'
+  gem.add_development_dependency 'rspec', '~> 2.3.0'
+  gem.files.include('VERSION')
+end
+Jeweler::RubygemsDotOrgTasks.new
+
+require 'rspec/core'
+require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new(:spec) do |spec|
+  spec.pattern = FileList['spec/**/*_spec.rb']
+end
+
+RSpec::Core::RakeTask.new(:rcov) do |spec|
+  spec.pattern = 'spec/**/*_spec.rb'
+  spec.rcov = true
+end
+
+task :default => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?('VERSION') ? File.read('VERSION') : ""
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "cef #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+task 'clean' do |t|
+  FileUtils.rm_f(Dir.glob(('{coverage,pkg}/*')))
+  FileUtils.rm_f(Dir.glob(('Gemfile.lock')))
+  %w{ coverage pkg }.each {|d| Dir.rmdir(d) if File.exists?(d)}
+end

data/VERSION

@@ -0,0 +1 @@
+0.6.0

data/bin/cef_sender

@@ -0,0 +1,77 @@
+#!/bin/env ruby
+require 'rubygems'
+require 'cef'
+require 'getoptlong'
+
+sender=CEF::Sender.new
+
+e=CEF::Event.new
+@verbose=0
+@file=nil
+opts=GetoptLong.new(
+  ["--verbose",      GetoptLong::OPTIONAL_ARGUMENT],
+  ["--help",      GetoptLong::OPTIONAL_ARGUMENT],
+  ["--schema",      GetoptLong::OPTIONAL_ARGUMENT],
+  ["--receiver",      GetoptLong::OPTIONAL_ARGUMENT],
+  ["--receiverPort",      GetoptLong::OPTIONAL_ARGUMENT],
+  ["--append-file",      GetoptLong::OPTIONAL_ARGUMENT],
+  *e.attrs.keys.collect {|o| ["--#{o}", GetoptLong::OPTIONAL_ARGUMENT]}
+)
+
+def print_usage
+        puts <<END_USAGE
+Usage: cef_sender --sourceAddress="192.168.1.1" [--eventAttribute="something"]
+
+  non-schema arguments: 
+     --help gets you here
+     --schema will dump all of the callable event attribute names
+     --receiver= syslog receiver hostname/ip
+     --receiverPort= syslog port
+
+cef_sender will send CEF-formatted syslog messages to a receiver of your choice.
+only the cef fields defined in the cef reader flex connector are supported.
+datatyping is not enforced here.
+
+END_USAGE
+
+end
+
+def print_schema(e)
+  e.attrs.keys.collect {|k| k.to_s}.sort.each {|a| puts a}
+end
+
+opts.each do |opt,arg|
+  # TODO: set up cases for startTime, receiptTime, endTime to parse
+  #       text and convert to unix time * 1000
+  case opt
+    when "--verbose"
+      @verbose+=1
+    when "--schema"
+      print_schema(e)
+      exit(0)
+    when "--receiverPort"
+      sender.receiverPort=arg
+    when "--receiver"
+      sender.receiver=arg
+    when "--help"
+      print_usage
+      exit(0)
+    when "--append-file"
+      @file=File.open(arg,"w+")
+    else
+      fieldname = opt.gsub(/-/,'')
+      value=arg
+      e.send("#{fieldname}=",value)
+  end
+end
+msg=sender.format_event(e)
+
+
+if @verbose>0
+  puts msg
+end
+if !(@file.nil?) && File.exists?(@file)
+  @file.write "%s\n" % msg.gsub(/^<\d+>/,'')
+else
+  sender.emit(e)
+end

data/cef.gemspec

@@ -0,0 +1,69 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{cef}
+  s.version = "0.6.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Ryan Breed"]
+  s.date = %q{2011-02-20}
+  s.default_executable = %q{cef_sender}
+  s.description = %q{Library and client }
+  s.email = %q{opensource@breed.org}
+  s.executables = ["cef_sender"]
+  s.extra_rdoc_files = [
+    "LICENSE.txt",
+    "README.rdoc"
+  ]
+  s.files = [
+    ".document",
+    ".rspec",
+    "Gemfile",
+    "LICENSE.txt",
+    "README.rdoc",
+    "Rakefile",
+    "VERSION",
+    "bin/cef_sender",
+    "cef.gemspec",
+    "lib/cef.rb",
+    "spec/cef_spec.rb",
+    "spec/spec_helper.rb"
+  ]
+  s.homepage = %q{http://github.com/ryanbreed/cef}
+  s.licenses = ["MIT"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.5.2}
+  s.summary = %q{CEF Generation}
+  s.test_files = [
+    "spec/cef_spec.rb",
+    "spec/spec_helper.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_development_dependency(%q<rspec>, ["~> 2.3.0"])
+      s.add_development_dependency(%q<bundler>, ["~> 1.0.0"])
+      s.add_development_dependency(%q<jeweler>, ["~> 1.5.2"])
+      s.add_development_dependency(%q<rcov>, [">= 0"])
+      s.add_development_dependency(%q<rspec>, ["~> 2.3.0"])
+    else
+      s.add_dependency(%q<rspec>, ["~> 2.3.0"])
+      s.add_dependency(%q<bundler>, ["~> 1.0.0"])
+      s.add_dependency(%q<jeweler>, ["~> 1.5.2"])
+      s.add_dependency(%q<rcov>, [">= 0"])
+      s.add_dependency(%q<rspec>, ["~> 2.3.0"])
+    end
+  else
+    s.add_dependency(%q<rspec>, ["~> 2.3.0"])
+    s.add_dependency(%q<bundler>, ["~> 1.0.0"])
+    s.add_dependency(%q<jeweler>, ["~> 1.5.2"])
+    s.add_dependency(%q<rcov>, [">= 0"])
+    s.add_dependency(%q<rspec>, ["~> 2.3.0"])
+  end
+end
+

data/lib/cef.rb

@@ -0,0 +1,274 @@
+module CEF
+  require 'socket'
+  require 'parsedate'
+  PREFIX_FORMAT="<%d>%s %s CEF:0|%s|%s"
+  VERSION=File.read(File.join(File.expand_path(File.dirname(__FILE__)),'..','VERSION'))
+
+  
+  # CEF Dictionary
+  # CEF Prefix attributes
+  PREFIX_ATTRIBUTES = {
+    :deviceVendor       => "deviceVendor",
+    :deviceVersion      => "deviceVersion", 
+    :deviceProduct      => "deviceProduct", 
+    :name               => "name", 
+    :deviceSeverity     => "deviceSeverity", 
+    :deviceEventClassId => "deviceEventClassId"
+  }
+ 
+  # these are the basic extension attributes. implementing others is as
+  # simple as adding :symbolRepresentingMethodName => "cefkeyname", but
+  # i am supremely lazy to type in the whole dictionary right now. perhaps
+  # this should be a .yaml config file. Extension attributes are formatted
+  # differently than core attributes.
+  EXTENSION_ATTRIBUTES = { 
+    :applicationProtocol          => "app",
+    :baseEventCount               => "cnt",
+    :bytesIn                      => "in",
+    :bytesOut                     => "out",
+    :deviceAction                 => "act",
+    :deviceHostNam                => "dvc",
+    :deviceNtDomain               => "deviceNtDomain",
+    :deviceDnsDomain              => "deviceDnsDomain",
+    :deviceTranslatedAddress      => "deviceTranslatedAddress",
+    :deviceMacAddress             => "deviceMacAddress",
+    :deviceCustomNumber1          => "cn1",
+    :deviceCustomNumber2          => "cn2",
+    :deviceCustomNumber3          => "cn3",
+    :deviceCustomNumber1Label     => "cn1Label",
+    :deviceCustomNumber2Label     => "cn2Label",
+    :deviceCustomNumber3Label     => "cn3Label",
+    :deviceCustomString1          => "cs1",
+    :deviceCustomString2          => "cs2",
+    :deviceCustomString3          => "cs3",
+    :deviceCustomString4          => "cs4",
+    :deviceCustomString5          => "cs5",
+    :deviceCustomString6          => "cs6",
+    :deviceCustomString1Label     => "cs1Label",
+    :deviceCustomString2Label     => "cs2Label",
+    :deviceCustomString3Label     => "cs3Label",
+    :deviceCustomString4Label     => "cs4Label",
+    :deviceCustomString5Label     => "cs5Label",
+    :deviceCustomString6Label     => "cs6Label",
+    :deviceCustomDate1            => "deviceCustomDate1",
+    :deviceCustomDate2            => "deviceCustomDate2",
+    :deviceCustomDate1Label       => "deviceCustomDate1Label",
+    :deviceCustomDate2Label       => "deviceCustomDate2Label",
+    :deviceEventCategory          => "cat",
+    :destinationAddress           => "dst",
+    :destinationDnsDomain         => "destinationDnsDomain",
+    :destinationNtDomain          => "dntdom",
+    :destinationHostName          => "dhost",
+    :destinationMacAddress        => "dmac",
+    :destinationPort              => "dpt",
+    :destinationProcessName       => "dproc",
+    :destinationServiceName       => "destinationServiceName",
+    :destinationUserId            => "duid",
+    :destinationUserPrivileges    => "dpriv",
+    :destinationUserName          => "duser",
+    :destinationTranslatedAddress => "destinationTranslatedAddress",
+    :destinationTranslatedPort    => "destinationTranslatedPort",
+    :deviceDirection              => "deviceDirection",
+    :deviceExternalId             => "deviceExternalId",
+    :deviceFacility               => "deviceFacility",
+    :deviceInboundInterface       => "deviceInboundInterface",
+    :deviceOutboundInterface      => "deviceOutboundInterface",
+    :deviceProcessName            => "deviceProcessName",
+    :externalId                   => "externalId",
+    :fileHash                     => "fileHash",
+    :fileId                       => "fileId",
+    :fileName                     => "fname",
+    :filePath                     => "filePath",
+    :filePermission               => "filePermission",
+    :fsize                        => "fsize",
+    :fileType                     => "fileType",
+    :message                      => "msg",
+    :oldfileHash                  => "oldfileHash",
+    :oldfileId                    => "oldfileId",
+    :oldFilename                  => "oldFilename",
+    :oldfilePath                  => "oldfilePath",
+    :oldfilePermission            => "oldfilePermission",
+    :oldfsize                     => "oldfsize",
+    :oldfileType                  => "oldfileType",
+    :requestURL                   => "request",
+    :requestClientApplication     => "requestClientApplication",
+    :requestCookies               => "requestCookies",
+    :requestMethod                => "requestMethod",
+    :sourceAddress                => "src",
+    :sourceDnsDomain              => "sourceDnsDomain",
+    :sourceHostName               => "shost",
+    :sourceMacAddress             => "smac",
+    :sourceNtDomain               => "sntdom",
+    :sourcePort                   => "spt",
+    :sourceServiceName            => "sourceServiceName",
+    :sourceTranslatedAddress      => "sourceTranslatedAddress",
+    :sourceTranslatedPort         => "sourceTranslatedPort",
+    :sourceUserPrivileges         => "spriv",
+    :sourceUserId                 => "suid",
+    :sourceUserName               => "suser",
+    :transportProtocol            => "proto"
+  }
+
+  # these are tracked separately so they can be normalized during formatting
+  TIME_ATTRIBUTES={
+    :fileCreateTime          => "fileCreateTime",
+    :fileModificationTime    => "fileModificationTime",
+    :oldfileCreateTime       => "oldfileCreateTime",
+    :oldfileModificationTime => "oldfileModificationTime",
+    :receiptTime             => "rt",
+    :startTime               => "start",
+    :endTime                 => "end"
+  }
+
+  ATTRIBUTES=PREFIX_ATTRIBUTES.merge EXTENSION_ATTRIBUTES.merge TIME_ATTRIBUTES
+
+  # this class will formats and sends the cef event objects. you can use senders to set
+  # default values for any event attribute, and you can send cef event objects to multiple
+  # senders if you wish. 
+  class Sender
+    attr_accessor :receiver, :receiverPort, :eventDefaults
+    attr_reader   :sock
+  
+    # you can pass in a hash of options to be run to set parameters
+    def initialize(*params)
+      Hash[*params].each {|k,v| self.send("%s="%k,v) }
+      @sock=nil
+    end
+  
+    def socksetup
+      @sock=UDPSocket.new
+      receiver= self.receiver || "127.0.0.1"
+      port= self.receiverPort || 514
+      @sock.connect(receiver,port)
+    end
+  
+    # formats a CEFEvent 
+    def format_event( event )
+      #HELL yeah it's hard-coded. What are you going to do about it?
+      #syslog_pri= Syslog::LOG_LOCAL0 | Syslog::LOG_NOTICE
+      syslog_pri=131
+  
+      # process eventDefaults - we are expecting a hash here. These will 
+      # override any values in the events passed to us. i know. brutal.
+      unless self.eventDefaults.nil?
+        self.eventDefaults.each do |k,v|
+	  event.send("#{k}=",v)
+        end
+      end
+      
+      cef_message=PREFIX_FORMAT % [
+        syslog_pri.to_s,
+        Socket::gethostname,
+	      Time.new.strftime("%b %d %Y %H:%M:%S"),
+        event.prefix,
+        event.extension
+      ]
+      cef_message
+    end
+  
+    #fire the message off
+    def emit(event)
+      self.socksetup if self.sock.nil?
+      self.sock.send self.format_event(event), 0
+    end
+  end
+  
+  class Event
+    #%#
+    # set up accessors for all of the event attributes. ruby meta magic.
+    ATTRIBUTES.each do |k,v|
+      self.instance_eval do
+        attr_accessor k
+      end
+    end
+
+    def attrs
+      ATTRIBUTES
+    end
+  
+    # so we can CEFEvent.new(:foo=>"bar")
+    def initialize( *params )
+      Hash[*params].each { |k,v| self.send("%s="%k,v) }
+    end
+  
+    # escape only pipes and backslashes in the prefix. you bet your sweet 
+    # ass there's a lot of backslashes in the substitution. you can thank
+    # the three levels of lexical analysis/substitution in the ruby interpreter
+    # for that.
+    def prefix_escape(val)
+      val.gsub(/(\||\\)/,'\\\\\&')
+    end
+  
+    # only equals signs need to be escaped in the extension. i think.
+    # TODO: something in the spec about \n and some others.
+    def extension_escape(val)
+      val.gsub(/=/,'\=')
+    end
+  
+    # make a guess as to how the time was set. parse strings and convert
+    # them to epoch milliseconds, or leave it alone if it looks like a number
+    # bigger than epoch milliseconds when i wrote this.
+    def time_convert(val)
+      converted=nil
+      #puts "converting time for #{val.class.to_s}/#{val}"
+      case val.class.to_s
+        when "String"
+          begin
+            converted=val.to_i
+          rescue
+            res=ParseDate.parsedate(val)
+            converted=Time.local(*res).to_i * 1000
+          end
+        when "Integer","Bignum" 
+      	  if val < 1232589621000 #Wed Jan 21 20:00:21 -0600 2009
+            converted=val * 1000
+          else
+            converted=val
+          end
+        end
+      converted
+    end
+  
+    # returns a pipe-delimeted list of prefix attributes
+    def prefix
+      vendor=  self.deviceVendor       || "Breed"
+      product= self.deviceProduct      || "CEF Sender"
+      version= self.deviceVersion      || CEF::VERSION
+      declid=  self.deviceEventClassId || "generic:0"
+      name=    self.name               || "Generic Event"
+      sev=     self.deviceSeverity     || "1"
+      cef_prefix="%s|%s|%s|%s|%s|%s" % [
+        prefix_escape(vendor),
+        prefix_escape(product),
+        prefix_escape(version),
+        prefix_escape(declid),
+        prefix_escape(name),
+        prefix_escape(sev),
+      ]
+    end
+  
+    # returns a space-delimeted list of attribute=value pairs for all optionals
+    def extension
+      avpairs=[]
+      EXTENSION_ATTRIBUTES.each do |attribute,shortname|
+        unless self.send(attribute).nil?
+          avpairs.push( 
+            "%s=%s" % [ shortname, extension_escape(self.send(attribute)) ]
+          )
+        end
+      end
+  
+      # make sure time comes out as milliseconds since epoch
+      TIME_ATTRIBUTES.each do |attribute,shortname|
+        unless self.send(attribute).nil?
+          avpairs.push(
+            "%s=%s" % [ shortname, time_convert(self.send(attribute)) ]
+          )
+        end
+      end
+      avpairs.join(" ")
+    end
+  end
+end
+
+

data/spec/cef_spec.rb

@@ -0,0 +1,19 @@
+require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
+
+describe "CEF Event Format" do
+  it "should output a preamble" do
+    test_prefix_vals={
+      :deviceVendor       => "breed",
+      :deviceProduct      => "CEF Sender",
+      :deviceVersion      => "0.1",
+      :deviceEventClassId => "0:debug",
+      :name               => "test",
+      :deviceSeverity     => "1"
+    }
+    e=CEF::Event.new
+    test_prefix_vals.each {|k,v| e.send("%s="%k,v) }
+    s=CEF::Sender.new
+    formatted=CEF::PREFIX_FORMAT % [ 131, *test_prefix_vals.values ]
+    s.format_event(e) ==formatted
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,12 @@
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+require 'rspec'
+require 'cef'
+
+# Requires supporting files with custom matchers and macros, etc,
+# in ./support/ and its subdirectories.
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each {|f| require f}
+
+RSpec.configure do |config|
+  
+end

metadata

@@ -0,0 +1,157 @@
+--- !ruby/object:Gem::Specification 
+name: cef
+version: !ruby/object:Gem::Version 
+  hash: 7
+  prerelease: 
+  segments: 
+  - 0
+  - 6
+  - 0
+  version: 0.6.0
+platform: ruby
+authors: 
+- Ryan Breed
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-02-20 00:00:00 -06:00
+default_executable: cef_sender
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  version_requirements: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 2
+        - 3
+        - 0
+        version: 2.3.0
+  prerelease: false
+  type: :development
+  requirement: *id001
+- !ruby/object:Gem::Dependency 
+  name: bundler
+  version_requirements: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 23
+        segments: 
+        - 1
+        - 0
+        - 0
+        version: 1.0.0
+  prerelease: false
+  type: :development
+  requirement: *id002
+- !ruby/object:Gem::Dependency 
+  name: jeweler
+  version_requirements: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 1
+        - 5
+        - 2
+        version: 1.5.2
+  prerelease: false
+  type: :development
+  requirement: *id003
+- !ruby/object:Gem::Dependency 
+  name: rcov
+  version_requirements: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  prerelease: false
+  type: :development
+  requirement: *id004
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  version_requirements: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 2
+        - 3
+        - 0
+        version: 2.3.0
+  prerelease: false
+  type: :development
+  requirement: *id005
+description: "Library and client "
+email: opensource@breed.org
+executables: 
+- cef_sender
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE.txt
+- README.rdoc
+files: 
+- .document
+- .rspec
+- Gemfile
+- LICENSE.txt
+- README.rdoc
+- Rakefile
+- VERSION
+- bin/cef_sender
+- cef.gemspec
+- lib/cef.rb
+- spec/cef_spec.rb
+- spec/spec_helper.rb
+has_rdoc: true
+homepage: http://github.com/ryanbreed/cef
+licenses: 
+- MIT
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.5.2
+signing_key: 
+specification_version: 3
+summary: CEF Generation
+test_files: 
+- spec/cef_spec.rb
+- spec/spec_helper.rb