RubyGems - howsigned - Versions diffs - 0.0.2 → 0.0.4 - Mend

howsigned 0.0.2 → 0.0.4

Files changed (8) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 77c7733a7eb4f7222794acebc50b9e614aef192c
-  data.tar.gz: dfd7b37353b73ad63700fca6cdc78d8a16b7485b
+  metadata.gz: 39da123c01e7a3a8e46966e6b8b503d72491178e
+  data.tar.gz: e804e937c4be505827b3b105a3ffa22d35d4fea2
 SHA512:
-  metadata.gz: 1f981d6e4808f0ab3eb7f4656efd9f60ac6d3c18bd836380534f181f318be36bc82ea747d33f781cf352006e6104ef034aeeb4dbc75bbb386b2cd917304ccf47
-  data.tar.gz: ecfedbb1c4a046598d671dec865251e66834ab2e5a86f7d7f14d62ad1be597c8766faa00a37e832451a6574036c07a981f65673174bcabb62eb2718da6f7ec4b
+  metadata.gz: 6027d20b39f6940b005b23ff8db9a29a48f505bbdb2e88bbd59451a4d04d430f612e267b54212d39933bb9865987aaa83eddb13ecd5ac327496fe969dd166aca
+  data.tar.gz: e88ac8a53c40c1c00c8b689c8119377e80b08c70eeadf023cfbfc536aff4246d02a46fa16992fdcebf0ad97eca5cd925403b0fea0f9ecc642c5c3134ee47f353

data/bin/howsigned CHANGED Viewed

@@ -1,45 +1,12 @@
 #!/usr/bin/env ruby
-# Heavily inspired by Shenzhen's `ipa info`
-# https://github.com/nomad/shenzhen/blob/master/lib/shenzhen/commands/info.rb
+require 'rubygems'
+require 'commander/import'
-require 'plist'
-require 'zip'
-require 'zip/filesystem'
+require 'entitlements'
+require 'profiles'
+require 'verify'
-def validate_ipa!
-files = Dir['*.ipa']
-@file ||= case files.length
-		  when 0 then nil
-		  when 1 then files.first
-		  else
-		     @file = choose "Select an .ipa", *files
-		  end
-end
-validate_ipa! unless @file = ARGV[0]
-puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
-tempdir = ::File.new(Dir.mktmpdir)
-unzip = `unzip "#{@file}" -d "#{tempdir.path}"`
-entitlements_hash = Hash.new
-# .app
-Dir.glob("#{tempdir.path}/**/*.app") do |file|
-	entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
-	plist_entitlements = Plist::parse_xml(entitlements)
-	application_identifier = plist_entitlements["application-identifier"]
-	entitlements_hash[application_identifier] = plist_entitlements
-end
-# .appex
-Dir.glob("#{tempdir.path}/**/*.appex") do |file|
-	entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
-	plist_entitlements = Plist::parse_xml(entitlements)
-	application_identifier = plist_entitlements["application-identifier"]
-	entitlements_hash[application_identifier] = plist_entitlements
-end
-puts entitlements_hash.to_plist
+program :version, '0.0.4'
+program :description, 'Utility to determine codesigning on contained binaries in an .ipa'

data/lib/entitlements.rb ADDED Viewed

@@ -0,0 +1,38 @@
+# Heavily inspired by Shenzhen's `ipa info`
+# https://github.com/nomad/shenzhen/blob/master/lib/shenzhen/commands/info.rb
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def append_entitlements(path, entitlements_hash)
+	Dir.glob(path) do |file|
+		entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
+		plist_entitlements = Plist::parse_xml(entitlements)
+		application_identifier = plist_entitlements["application-identifier"]
+		entitlements_hash[application_identifier] = plist_entitlements
+	end
+end
+command :entitlements do |c|
+  c.syntax = 'howsigned entitlements [.ipa file]'
+  c.description = 'Prints entitlements of specified .ipa in plist format'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	entitlements_hash = Hash.new
+	append_entitlements("#{tempdir.path}/**/*.app", entitlements_hash)
+	append_entitlements("#{tempdir.path}/**/*.appex", entitlements_hash)
+	puts entitlements_hash.to_plist
+  end
+end

data/lib/extract_zip.rb ADDED Viewed

@@ -0,0 +1,12 @@
+require 'zip'
+def extract_zip(file, destination)
+  FileUtils.mkdir_p(destination)
+  Zip::File.open(file) do |zip_file|
+    zip_file.each do |f|
+      fpath = File.join(destination, f.name)
+      zip_file.extract(f, fpath) unless File.exist?(fpath)
+    end
+  end
+end

data/lib/profiles.rb ADDED Viewed

@@ -0,0 +1,33 @@
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def get_profiles(path)
+	profiles = Hash.new
+	Dir.glob(path) do |file|
+		profile = `security cms -D -i "#{file}" 2>&1`
+		plist_profile = Plist::parse_xml(profile)
+		app_id = plist_profile["AppIDName"]
+		profiles[app_id] = plist_profile
+	end
+	return profiles.to_plist
+end
+command :profiles do |c|
+  c.syntax = 'howsigned profiles [.ipa file]'
+  c.description = 'Prints embedded profiles of specified .ipa in plist format'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	puts get_profiles("#{tempdir.path}/**/*.mobileprovision")
+  end
+end

data/lib/validate_ipa.rb ADDED Viewed

@@ -0,0 +1,9 @@
+def validate_ipa!
+files = Dir['*.ipa']
+@file ||= case files.length
+		  when 0 then nil
+		  when 1 then files.first
+		  else
+		     @file = choose "Select an .ipa", *files
+		  end
+end

data/lib/verify.rb ADDED Viewed

@@ -0,0 +1,40 @@
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def verify_binaries(path)
+	Dir.glob(path) do |file|
+		codesign = `codesign --verify "#{file}" 2>&1`
+		if(!codesign.to_s.empty?)
+			puts codesign
+		end
+	end
+end
+command :verify do |c|
+  c.syntax = 'howsigned verify [.ipa file]'
+  c.description = 'Verifies the code signature of all binaries contained within the .ipa, will return nothing if signed correctly'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	entitlements_hash = Hash.new
+	app_codesign = verify_binaries("#{tempdir.path}/**/*.app")
+	if(!app_codesign.to_s.empty?)
+		puts app_codesign
+	end
+	appex_codesign = verify_binaries("#{tempdir.path}/**/*.appex")
+	if(!appex_codesign.to_s.empty?)
+		puts appex_codesign
+	end
+  end
+end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: howsigned
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.4
 platform: ruby
 authors:
 - Michael MacDougall
@@ -38,6 +38,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: commander
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
 description: Utility to see how the contained binaries within an .ipa are signed
 email: mmacdougall@etsy.com
 executables:
@@ -46,6 +60,11 @@ extensions: []
 extra_rdoc_files: []
 files:
 - bin/howsigned
+- lib/entitlements.rb
+- lib/extract_zip.rb
+- lib/profiles.rb
+- lib/validate_ipa.rb
+- lib/verify.rb
 homepage: http://www.etsy.com
 licenses:
 - MIT