dnsruby 1.37 → 1.38

data/lib/Dnsruby/resource/DNSKEY.rb

@@ -64,7 +64,7 @@ module Dnsruby
       
       def algorithm=(a)
         if (a.instance_of?String)
-          if (a.length == 1)
+          if (a.to_i > 0)
             a = a.to_i
           end
         end
@@ -264,6 +264,8 @@ module Dnsruby
       def public_key
         if (!@public_key)
           if [Algorithms.RSASHA1,
+              Algorithms.RSASHA256,
+              Algorithms.RSASHA512,
               Algorithms.RSASHA1_NSEC3_SHA1].include?(@algorithm)
             @public_key = rsa_key
           elsif [Algorithms.DSA,

data/lib/Dnsruby/resource/RRSIG.rb

@@ -101,7 +101,7 @@ module Dnsruby
       
       def algorithm=(a)
         if (a.instance_of?String)
-          if (a.length == 1)
+          if (a.to_i > 0)
             a = a.to_i
           end
         end

data/lib/Dnsruby/resource/resource.rb

@@ -386,6 +386,8 @@ module Dnsruby
       
       if rdata
         rdata.gsub!(/\s+$/o, "")
+        rdata.gsub!("(", "")
+        rdata.gsub!(")", "")
       end
       
       # RFC3597 tweaks

data/lib/Dnsruby/single_verifier.rb

@@ -146,11 +146,11 @@ module Dnsruby
         raise VerifyError.new("RRSET should have same type as RRSIG for verification")
       end
 
-#      #Each RR in the RRset MUST have the TTL listed in the
-#      #RRSIG Original TTL Field;
-#      if (rrset.ttl  != sigrec.original_ttl)
-#        raise VerifyError.new("RRSET should have same ttl as RRSIG original_ttl for verification (should be #{sigrec.original_ttl} but was #{rrset.ttl}")
-#      end
+      #      #Each RR in the RRset MUST have the TTL listed in the
+      #      #RRSIG Original TTL Field;
+      #      if (rrset.ttl  != sigrec.original_ttl)
+      #        raise VerifyError.new("RRSET should have same ttl as RRSIG original_ttl for verification (should be #{sigrec.original_ttl} but was #{rrset.ttl}")
+      #      end
 
       # Now check that we are in the validity period for the RRSIG
       now = Time.now.to_i
@@ -240,7 +240,7 @@ module Dnsruby
       # Return true if we can verify the whole message.
 
       msg.each_section do |section|
-#        print "Checking section : #{section}\n"
+        #        print "Checking section : #{section}\n"
         ds_rrsets = section.rrsets(Types.DS)
         if ((!ds_rrsets || ds_rrsets.length == 0) && (@verifier_type == VerifierType::DLV))
           ds_rrsets = section.rrsets(Types.DLV)
@@ -374,14 +374,14 @@ module Dnsruby
       return if (msg.rcode == RCode.NOERROR && ((qtype == Types.ANY) || (qtype == Types.NSEC) || (qtype == Types.NSEC3)))
       if ((msg.rrsets('NSEC').length > 0) || (msg.rrsets('NSEC3').length > 0))
         if (msg.rcode == RCode.NXDOMAIN)
-#          print "Checking NSECs for Name Error\n"
+          #          print "Checking NSECs for Name Error\n"
           #Name error - NSEC wil prove i) no exact match for <SNAME, SCLASS>, and ii) no RRSets that could match through wildcard expansion
           #           - this may be proved in one or more NSECs (and associated RRSIGs)
           check_name_in_nsecs(msg)
           return check_no_wildcard_expansion(msg)
         elsif (msg.rcode == RCode.NOERROR)
           if (msg.answer.length > 0)
-#            print "Checking NSECs for wildcard expansion\n"
+            #            print "Checking NSECs for wildcard expansion\n"
             # wildcard expansion answer - check NSECs!
             # We want to make sure that the NSEC tells us that there is no closer match for this name
             # @TODO@ We need to make replace the RRSIG name with the wildcard name before we can verify it correctly.
@@ -395,7 +395,7 @@ module Dnsruby
             [msg.authority.rrsets('NSEC'), msg.authority.rrsets('NSEC3')].each {|nsec_rrsets|
               nsec_rrsets.each {|nsec_rrset|
                 nsec_rrset.rrs.each {|nsec|
-#                  print "Checking nsec to see if wildcard : #{nsec}\n"
+                  #                  print "Checking nsec to see if wildcard : #{nsec}\n"
                   if (nsec.name.wild? ||(nsec.name.labels.length < msg.question()[0].qname.labels.length))
                     isWildcardNoData = true
                   end
@@ -404,14 +404,14 @@ module Dnsruby
             }
 
             if (isWildcardNoData)
-#              print "Checking NSECs for wildcard no data\n"
+              #              print "Checking NSECs for wildcard no data\n"
               # Check NSECs -
               #         i) NSEC proving no RRSets matching STYPE at wildcard owner name that matched <SNAME, SCLASS> via wildcard expansion
               check_name_not_in_wildcard_nsecs(msg)
               #         ii) NSEC proving no RRSets in zone that would have been closer match for <SNAME, SCLASS>
               return check_name_in_and_type_not_in_nsecs(msg)
             else # (isNoData)
-#              print "Checking NSECs for No data\n"
+              #              print "Checking NSECs for No data\n"
               # Check NSEC types covered to make sure this type not present.
               return check_name_in_and_type_not_in_nsecs(msg)
             end
@@ -442,7 +442,7 @@ module Dnsruby
       [msg.authority.rrsets('NSEC'), msg.authority.rrsets('NSEC3')].each {|nsec_rrsets|
         nsec_rrsets.each {|nsecs|
           nsecs.rrs.each {|nsec|
-#            print "Checking NSEC : #{nsec}\n"
+            #            print "Checking NSEC : #{nsec}\n"
             next if (nsec.name.wild?)
             if (check_record_proves_no_wildcard(msg, nsec))
               proven_no_wildcards = true
@@ -451,7 +451,7 @@ module Dnsruby
         }
       }
       if (!proven_no_wildcards)
-#        print "No proof that no RRSets could match through wildcard expansion\n"
+        #        print "No proof that no RRSets could match through wildcard expansion\n"
         raise VerifyError.new("No proof that no RRSets could match through wildcard expansion")
       end
 
@@ -459,12 +459,12 @@ module Dnsruby
     
     def check_record_proves_no_wildcard(msg, nsec) # :nodoc:
       # Check that the NSEC goes from the SOA to a zone canonically after a wildcard
-#      print "Checking wildcard proof for #{nsec.name}\n"
+      #      print "Checking wildcard proof for #{nsec.name}\n"
       soa_rrset = msg.authority.rrset(nsec.name, 'SOA')
       if (soa_rrset.length > 0)
-#        print "Found SOA for #{nsec.name}\n"
+        #        print "Found SOA for #{nsec.name}\n"
         wildcard_name = Name.create("*." + nsec.name.to_s)
-#        print "Checking #{wildcard_name}\n"
+        #        print "Checking #{wildcard_name}\n"
         if (wildcard_name.canonically_before(nsec.next_domain))
           return true
         end
@@ -481,7 +481,7 @@ module Dnsruby
       [msg.authority.rrsets('NSEC'), msg.authority.rrsets('NSEC3')].each {|nsec_rrsets|
         nsec_rrsets.each {|nsecs|
           nsecs.rrs.each {|nsec|
-#            print "Checking NSEC : #{nsec}\n"
+            #            print "Checking NSEC : #{nsec}\n"
             next if (nsec.name.wild?)
             if nsec.check_name_in_range(name)
               proven_name_in_nsecs = true
@@ -491,7 +491,7 @@ module Dnsruby
                   qtype_present = true
                 end
                 if (qtype_present != expected_qtype)
-#                  print "#{nsec.type} record #{nsec} does #{expected_qtype ? 'not ' : ''} include #{qtype} type\n"
+                  #                  print "#{nsec.type} record #{nsec} does #{expected_qtype ? 'not ' : ''} include #{qtype} type\n"
                   raise VerifyError.new("#{nsec.type} record #{nsec} does #{expected_qtype ? 'not ' : ''}include #{qtype} type")
                   #              return false
                 end
@@ -502,11 +502,11 @@ module Dnsruby
         }
       }
       if (!proven_name_in_nsecs)
-#        print "No proof for non-existence for #{name}\n"
+        #        print "No proof for non-existence for #{name}\n"
         raise VerifyError.new("No proof for non-existence for #{name}")
       end
       if (qtype && !type_covered_checked)
-#        print "Tyes covered wrong for #{name}\n"
+        #        print "Tyes covered wrong for #{name}\n"
         raise VerifyError.new("Types covered wrong for #{name}")
       end
     end
@@ -522,18 +522,18 @@ module Dnsruby
       [msg.authority.rrsets('NSEC'), msg.authority.rrsets('NSEC3')].each {|nsec_rrsets|
         nsec_rrsets.each {|nsecs|
           nsecs.rrs.each {|nsec|
-#            print "Checking NSEC : #{nsec}\n"
+            #            print "Checking NSEC : #{nsec}\n"
             next if !nsec.name.wild?
             # Check the wildcard expansion
             # We want to see that the name is in the wildcard range, and that the type
             # is not in the types for the NSEC
             if nsec.check_name_in_wildcard_range(name)
-#              print "Wildcard expansion in #{nsec} includes #{name}\n"
+              #              print "Wildcard expansion in #{nsec} includes #{name}\n"
               raise VerifyError.new("Wildcard expansion in #{nsec} includes #{name}")
               #            return false
             end
             if (nsec.types.include?qtype)
-#              print "#{qtype} present in wildcard #{nsec}\n"
+              #              print "#{qtype} present in wildcard #{nsec}\n"
               raise VerifyError.new("#{qtype} present in wildcard #{nsec}")
               #            return false
             end
@@ -542,7 +542,7 @@ module Dnsruby
         }
       }
       return if done
-#      print("Expected wildcard expansion in #{msg}\n")
+      #      print("Expected wildcard expansion in #{msg}\n")
       raise VerifyError.new("Expected wildcard expansion in #{msg}")
       #      return false
     end
@@ -658,7 +658,7 @@ module Dnsruby
 
         sigrecs.each {|sig|
           if ((key.key_tag == sig.key_tag) && (key.algorithm == sig.algorithm))
-#                        print "Found key #{key.key_tag}\n"
+            #                        print "Found key #{key.key_tag}\n"
             return key, sig
           end
         }
@@ -745,8 +745,10 @@ module Dnsruby
       if [Algorithms.RSASHA1,
           Algorithms.RSASHA1_NSEC3_SHA1].include?(sigrec.algorithm)
         verified = keyrec.public_key.verify(OpenSSL::Digest::SHA1.new, sigrec.signature, sig_data)
-        #      elsif (sigrec.algorithm == Algorithms.RSASHA256)
-        #        verified = keyrec.public_key.verify(Digest::SHA256.new, sigrec.signature, sig_data)
+      elsif (sigrec.algorithm == Algorithms.RSASHA256)
+        verified = keyrec.public_key.verify(OpenSSL::Digest::SHA256.new, sigrec.signature, sig_data)
+      elsif (sigrec.algorithm == Algorithms.RSASHA512)
+        verified = keyrec.public_key.verify(OpenSSL::Digest::SHA512.new, sigrec.signature, sig_data)
       elsif [Algorithms.DSA,
           Algorithms.DSA_NSEC3_SHA1].include?(sigrec.algorithm)
         # we are ignoring T for now
@@ -770,7 +772,7 @@ module Dnsruby
       expiration_diff = (sigrec.expiration.to_i - Time.now.to_i).abs
       rrset.ttl = ([rrset.ttl, sigrec.ttl, sigrec.original_ttl,
           expiration_diff].sort)[0]
-#            print "VERIFIED OK\n"
+      #            print "VERIFIED OK\n"
       return true
     end
 
@@ -1102,7 +1104,7 @@ module Dnsruby
         if (Dnssec.default_resolver)
           return Dnssec.default_resolver
         else
-            return Resolver.new
+          return Resolver.new
         end
       end
     end
@@ -1172,22 +1174,22 @@ module Dnsruby
     end
 
     def validate_no_rrsigs(msg) # :nodoc:
-#      print "Validating unsigned response\n"
+      #      print "Validating unsigned response\n"
       # WHAT IF THERE ARE NO RRSIGS IN MSG?
       # Then we need to check that we do not expect any RRSIGs
       if (!msg.question()[0] && msg.answer.length == 0)
-#        print "Returning Message insecure OK\n"
+        #        print "Returning Message insecure OK\n"
         msg.security_level = Message::SecurityLevel.INSECURE
         return true
       end
       qname = msg.question()[0].qname
       closest_anchor = find_closest_anchor_for(qname)
-#      print "Found closest anchor :#{closest_anchor}\n"
+      #      print "Found closest anchor :#{closest_anchor}\n"
       if (closest_anchor)
         actual_anchor = follow_chain(closest_anchor, qname)
-#        print "Actual anchor : #{actual_anchor}\n"
+        #        print "Actual anchor : #{actual_anchor}\n"
         if (actual_anchor)
-#          print("Anchor exists for #{qname}, but no signatures in #{msg}\n")
+          #          print("Anchor exists for #{qname}, but no signatures in #{msg}\n")
           TheLog.error("Anchor exists for #{qname}, but no signatures in #{msg}")
           msg.security_level = Message::SecurityLevel.BOGUS
           return false
@@ -1196,14 +1198,14 @@ module Dnsruby
       if ((@verifier_type == VerifierType::DLV) &&
             @added_dlv_key)
         # Remember to check DLV registry as well (if appropriate!)
-#        print "Checking DLV for closest anchor\n"
+        #        print "Checking DLV for closest anchor\n"
         dlv_anchor = find_closest_dlv_anchor_for(qname)
-#        print "Found DLV closest anchor :#{dlv_anchor}\n"
+        #        print "Found DLV closest anchor :#{dlv_anchor}\n"
         if (dlv_anchor)
           actual_anchor = follow_chain(dlv_anchor, qname)
-#          print "Actual anchor : #{actual_anchor}\n"
+          #          print "Actual anchor : #{actual_anchor}\n"
           if (actual_anchor)
-#            print("DLV Anchor exists for #{qname}, but no signatures in #{msg}\n")
+            #            print("DLV Anchor exists for #{qname}, but no signatures in #{msg}\n")
             TheLog.error("DLV Anchor exists for #{qname}, but no signatures in #{msg}")
             msg.security_level = Message::SecurityLevel.BOGUS
             return false
@@ -1211,7 +1213,7 @@ module Dnsruby
 
         end
       end
-#      print "Returning Message insecure OK\n"
+      #      print "Returning Message insecure OK\n"
       msg.security_level = Message::SecurityLevel.INSECURE
       return true
     end

data/lib/dnsruby.rb

@@ -377,7 +377,8 @@ module Dnsruby
     DSA        = 3
     ECC        = 4
     RSASHA1    = 5
-    #    RSASHA256  = 
+    RSASHA256  = 8
+    RSASHA512  = 10
     INDIRECT   = 252
     PRIVATEDNS = 253
     PRIVATEOID = 254

data/test/tc_verifier.rb

@@ -18,12 +18,92 @@ require 'test/unit'
 require 'dnsruby'
 
 class VerifierTest < Test::Unit::TestCase
+
+  def test_sha256
+    key256 = Dnsruby::RR.create("example.net.     3600  IN  DNSKEY  (256 3 8 AwEAAcFcGsaxxdgiuuGmCkVI
+                    my4h99CqT7jwY3pexPGcnUFtR2Fh36BponcwtkZ4cAgtvd4Qs8P
+                    kxUdp6p/DlUmObdk= );{id = 9033 (zsk), size = 512b}")
+    a = Dnsruby::RR.create("www.example.net. 3600  IN  A  192.0.2.91")
+    sig = Dnsruby::RR.create("www.example.net. 3600  IN  RRSIG  (A 8 3 3600 20300101000000
+                    20000101000000 9033 example.net. kRCOH6u7l0QGy9qpC9
+                    l1sLncJcOKFLJ7GhiUOibu4teYp5VE9RncriShZNz85mwlMgNEa
+                    cFYK/lPtPiVYP4bwg==) ;{id = 9033}")
+    rrset = Dnsruby::RRSet.new(a)
+    rrset.add(sig)
+    verifier = Dnsruby::SingleVerifier.new(nil)
+    verifier.verify_rrset(rrset, key256)
+  end
+
+  def test_sha512
+    key512 = Dnsruby::RR.create("example.net.    3600  IN  DNSKEY  (256 3 10 AwEAAdHoNTOW+et86KuJOWRD
+                   p1pndvwb6Y83nSVXXyLA3DLroROUkN6X0O6pnWnjJQujX/AyhqFD
+                   xj13tOnD9u/1kTg7cV6rklMrZDtJCQ5PCl/D7QNPsgVsMu1J2Q8g
+                   pMpztNFLpPBz1bWXjDtaR7ZQBlZ3PFY12ZTSncorffcGmhOL
+                   );{id = 3740 (zsk), size = 1024b}")
+    a = Dnsruby::RR.create("www.example.net. 3600  IN  A  192.0.2.91")
+    sig =  Dnsruby::RR.create("www.example.net. 3600  IN  RRSIG  (A 10 3 3600 20300101000000
+                    20000101000000 3740 example.net. tsb4wnjRUDnB1BUi+t
+                    6TMTXThjVnG+eCkWqjvvjhzQL1d0YRoOe0CbxrVDYd0xDtsuJRa
+                    eUw1ep94PzEWzr0iGYgZBWm/zpq+9fOuagYJRfDqfReKBzMweOL
+                    DiNa8iP5g9vMhpuv6OPlvpXwm9Sa9ZXIbNl1MBGk0fthPgxdDLw
+                    =);{id = 3740}")
+    rrset = Dnsruby::RRSet.new(a)
+    rrset.add(sig)
+    verifier = Dnsruby::SingleVerifier.new(nil)
+    verifier.verify_rrset(rrset, key512)
+  end
+
+  def test_sha2_zone
+    key1 = Dnsruby::RR.create("example.com.    3600    IN      DNSKEY  256 3 8 AwEAAeTXG9RkEnPqrs1gTA
++7R2YdovW5HrObuMcsgIjfgAupTXX7NHBVUVX0oF2x8fJIeYt9pTuogTuUhw9/
+kJrCI43VWa7xbsMkTbyj1/
+wrfZB25nZnt4DQiqpYm8AZ3XmRBilibsGubVvrzWiQLC1gGXKUJ7JyQyL98G9ODUH2bmnb
+  ;{id = 43938 (zsk), size = 1024b}")
+    key2 = Dnsruby::RR.create("example.com.    3600    IN      DNSKEY  257 3 8
+AwEAAeLAE37+XYbieMtOqPRMbimhCjcyc/bSTbMQtKioxzjzgBPu/gVgHTeITJa
++IBFOD763HkzmG6ZIEcNAagCLg6+xeTnp017CBWWgnU+ksXdjgQ5KLfM/g4d2TL/Xf/BZJP
++JcIYqx3BNDT//bJpuwXqk6WkMtHGDSfSugel26TvgxG9X9xTaJh0u/
+QMFpm9H4IyQ8557cYAG04z8Yx3PszE5niE6JGho7Qpv2YhpsuLh7dneUTtdqFajdyqU0lZ3iDHnrfm7ve75LorIMPB0FqIo8Q
++hqV/U44QB/gTuXiBPjxje6D6WLWJdisIKflYZjUBD0FxuOXZQ5+RFVMV5RSc= ;{id =
+18976 (ksk), size = 2048b}")
+    rrset = Dnsruby::RRSet.new(key1)
+    rrset.add(key2)
+    sig2 = Dnsruby::RR.create("example.com.    3600    IN      RRSIG   DNSKEY 8 2 3600 20091109083537
+20091012083537 18976 example.com. 0S/8cNh9otTenbcqQ2C5fxglGLrkI/EHp/
+8Y3NDbJ5M50xUzrXd91wjDCE2X/z7UNGeBtyFRqm2ZeId4MygBIBsFaqOr98X8qQo3qpZ/
+ZtudmSSlk8X77bnKzsBxdLQgtE/REiT6j556zJJ9LtQ/
+yHgdMmJa5BNPYbQDpJdzJGIYLe1Gx8edOqcPt0LAc3FmjB096Gmlt7JpIWJXrh2Q82eDTkLiEpv7ePAimduKh14
++ERi6mLKFDaQjnfkwZ7/zjw6Ekp3a7L9Pa4S/OKUis/TarEQJf
++w9yAVKKL8HCIFKOXfn1rOWZ8LIEzlmUmOVOV03F1Paww+9fJaG+WDhpQ== ;{id =
+18976}")
+    rrset.add(sig2)
+    verifier = Dnsruby::SingleVerifier.new(nil)
+    verifier.verify_rrset(rrset, key2)
+    sig = Dnsruby::RR.create("example.com.    3600    IN      RRSIG   DNSKEY 8 2 3600 20091109083537  
+20091012083537 43938 example.com. TXaNGZ4QklUIlPtXaGhNegER 
++uwJAvM9fSmnSt55FiMrMgkJDb6b/ 
+GTyOF6INgKopO1wZRZI0iWaPUI0SRow6 
++X8Idpk05uG7Two5R9uMGX0hu8PWc8BzuAxgeyawCYkXwXQ6Ah0PF9xkc/ 
+Xlieo6T34XsoeHmKjmjMWs1KdFkU= ;{id = 43938}")
+    rrset.add(sig)
+    verifier.verify_rrset(rrset, key1)
+    txt = Dnsruby::RR.create('example.com.    86400   IN      TXT     "v=spf1 -all"')
+    rrset = Dnsruby::RRSet.new(txt)
+    txt_sig = Dnsruby::RR.create("example.com.    86400   IN      RRSIG   TXT 8 2 86400 20091109083536
+20091012083536 43938 example.com. rZcuxDZ7QO1oBSqwlV
++1ar7RTvwWOCYpgZy6oxXQMWkxONXnHVQO32yl
++3WzROW4tYHfFpsdyvo1BCT1PRRXLcLFGJd/
+T3Y6ciiq5ZzsesfYV0aChOUhseX7MnMjsaLGbmDDVmGqW78nsoBjv9g
++0YshQa7E1ctz2aQ2sorWN+E= ;{id = 43938}")
+    rrset.add(txt_sig)
+    verifier.verify_rrset(rrset, key1)
+  end
   
   def test_se_query
     # Run some queries on the .se zone
     Dnsruby::Dnssec.clear_trusted_keys
     Dnsruby::Dnssec.clear_trust_anchors
-    res = Dnsruby::Resolver.new("a.ns.se")
+    res = Dnsruby::Resolver.new(Dnsruby::Resolv.getaddress("a.ns.se"))
     res.dnssec = true
     r = res.query("se", Dnsruby::Types.ANY)
     # See comment below
@@ -36,7 +116,7 @@ class VerifierTest < Test::Unit::TestCase
   def test_verify_message
     Dnsruby::Dnssec.clear_trusted_keys
     Dnsruby::Dnssec.clear_trust_anchors
-    res = Dnsruby::Resolver.new("a.ns.se")
+    res = Dnsruby::Resolver.new(Dnsruby::Resolv.getaddress("a.ns.se"))
     res.udp_size = 5000
     r = res.query("se", Dnsruby::Types.DNSKEY)
     # This shouldn't be in the code - but the key is rotated by the .se registry

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification 
 name: dnsruby
 version: !ruby/object:Gem::Version 
-  version: "1.37"
+  version: "1.38"
 platform: ruby
 authors: 
 - AlexD
@@ -9,7 +9,7 @@ autorequire: dnsruby
 bindir: bin
 cert_chain: []
 
-date: 2009-09-10 00:00:00 +01:00
+date: 2009-10-12 00:00:00 +01:00
 default_executable: 
 dependencies: []
 
@@ -27,7 +27,6 @@ extra_rdoc_files:
 files: 
 - test/custom.txt
 - test/resolv.conf
-- test/tc_auth.rb
 - test/tc_axfr.rb
 - test/tc_cache.rb
 - test/tc_dlv.rb
@@ -71,7 +70,6 @@ files:
 - test/ts_dnsruby.rb
 - test/ts_offline.rb
 - test/ts_online.rb
-- test/ts_queue.rb
 - lib/Dnsruby
 - lib/Dnsruby/Cache.rb
 - lib/Dnsruby/code_mapper.rb
@@ -93,7 +91,6 @@ files:
 - lib/Dnsruby/resource/AAAA.rb
 - lib/Dnsruby/resource/AFSDB.rb
 - lib/Dnsruby/resource/CERT.rb
-- lib/Dnsruby/resource/delete_me.rhtml
 - lib/Dnsruby/resource/DLV.rb
 - lib/Dnsruby/resource/DNSKEY.rb
 - lib/Dnsruby/resource/domain_name.rb
@@ -124,7 +121,6 @@ files:
 - lib/Dnsruby/resource/TXT.rb
 - lib/Dnsruby/resource/X25.rb
 - lib/Dnsruby/select_thread.rb
-- lib/Dnsruby/select_thread.rb.michael.rb
 - lib/Dnsruby/single_verifier.rb
 - lib/Dnsruby/SingleResolver.rb
 - lib/Dnsruby/TheLog.rb
@@ -132,19 +128,11 @@ files:
 - lib/Dnsruby/validator_thread.rb
 - lib/Dnsruby/zone_transfer.rb
 - lib/dnsruby.rb
-- html/classes
-- html/created.rid
-- html/files
-- html/fr_class_index.html
-- html/fr_file_index.html
-- html/fr_method_index.html
-- html/index.html
 - demo/axfr.rb
 - demo/check_soa.rb
 - demo/check_zone.rb
 - demo/digdlv.rb
 - demo/digitar.rb
-- demo/digroot.rb
 - demo/example_recurse.rb
 - demo/mresolv.rb
 - demo/mx.rb
@@ -177,7 +165,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
 requirements: []
 
 rubyforge_project: dnsruby
-rubygems_version: 1.0.1
+rubygems_version: 1.3.1
 signing_key: 
 specification_version: 2
 summary: Ruby DNS implementation