RubyGems - howsigned - Versions diffs - 0.0.2 → 0.0.4 - Mend

howsigned 0.0.2 → 0.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 77c7733a7eb4f7222794acebc50b9e614aef192c
-  data.tar.gz: dfd7b37353b73ad63700fca6cdc78d8a16b7485b
+  metadata.gz: 39da123c01e7a3a8e46966e6b8b503d72491178e
+  data.tar.gz: e804e937c4be505827b3b105a3ffa22d35d4fea2
 SHA512:
-  metadata.gz: 1f981d6e4808f0ab3eb7f4656efd9f60ac6d3c18bd836380534f181f318be36bc82ea747d33f781cf352006e6104ef034aeeb4dbc75bbb386b2cd917304ccf47
-  data.tar.gz: ecfedbb1c4a046598d671dec865251e66834ab2e5a86f7d7f14d62ad1be597c8766faa00a37e832451a6574036c07a981f65673174bcabb62eb2718da6f7ec4b
+  metadata.gz: 6027d20b39f6940b005b23ff8db9a29a48f505bbdb2e88bbd59451a4d04d430f612e267b54212d39933bb9865987aaa83eddb13ecd5ac327496fe969dd166aca
+  data.tar.gz: e88ac8a53c40c1c00c8b689c8119377e80b08c70eeadf023cfbfc536aff4246d02a46fa16992fdcebf0ad97eca5cd925403b0fea0f9ecc642c5c3134ee47f353

data/bin/howsigned CHANGED Viewed

@@ -1,45 +1,12 @@
 #!/usr/bin/env ruby
-# Heavily inspired by Shenzhen's `ipa info`
-# https://github.com/nomad/shenzhen/blob/master/lib/shenzhen/commands/info.rb
+require 'rubygems'
+require 'commander/import'
-require 'plist'
-require 'zip'
-require 'zip/filesystem'
+require 'entitlements'
+require 'profiles'
+require 'verify'
-def validate_ipa!
-files = Dir['*.ipa']
-@file ||= case files.length
-		  when 0 then nil
-		  when 1 then files.first
-		  else
-		     @file = choose "Select an .ipa", *files
-		  end
-end
-validate_ipa! unless @file = ARGV[0]
-puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
-tempdir = ::File.new(Dir.mktmpdir)
-unzip = `unzip "#{@file}" -d "#{tempdir.path}"`
-entitlements_hash = Hash.new
-# .app
-Dir.glob("#{tempdir.path}/**/*.app") do |file|
-	entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
-	plist_entitlements = Plist::parse_xml(entitlements)
-	application_identifier = plist_entitlements["application-identifier"]
-	entitlements_hash[application_identifier] = plist_entitlements
-end
-# .appex
-Dir.glob("#{tempdir.path}/**/*.appex") do |file|
-	entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
-	plist_entitlements = Plist::parse_xml(entitlements)
-	application_identifier = plist_entitlements["application-identifier"]
-	entitlements_hash[application_identifier] = plist_entitlements
-end
-puts entitlements_hash.to_plist
+program :version, '0.0.4'
+program :description, 'Utility to determine codesigning on contained binaries in an .ipa'

data/lib/entitlements.rb ADDED Viewed

@@ -0,0 +1,38 @@
+# Heavily inspired by Shenzhen's `ipa info`
+# https://github.com/nomad/shenzhen/blob/master/lib/shenzhen/commands/info.rb
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def append_entitlements(path, entitlements_hash)
+	Dir.glob(path) do |file|
+		entitlements = `codesign -d --entitlements :- "#{file}" 2>&1`
+		plist_entitlements = Plist::parse_xml(entitlements)
+		application_identifier = plist_entitlements["application-identifier"]
+		entitlements_hash[application_identifier] = plist_entitlements
+	end
+end
+command :entitlements do |c|
+  c.syntax = 'howsigned entitlements [.ipa file]'
+  c.description = 'Prints entitlements of specified .ipa in plist format'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	entitlements_hash = Hash.new
+	append_entitlements("#{tempdir.path}/**/*.app", entitlements_hash)
+	append_entitlements("#{tempdir.path}/**/*.appex", entitlements_hash)
+	puts entitlements_hash.to_plist
+  end
+end

data/lib/extract_zip.rb ADDED Viewed

@@ -0,0 +1,12 @@
+require 'zip'
+def extract_zip(file, destination)
+  FileUtils.mkdir_p(destination)
+  Zip::File.open(file) do |zip_file|
+    zip_file.each do |f|
+      fpath = File.join(destination, f.name)
+      zip_file.extract(f, fpath) unless File.exist?(fpath)
+    end
+  end
+end

data/lib/profiles.rb ADDED Viewed

@@ -0,0 +1,33 @@
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def get_profiles(path)
+	profiles = Hash.new
+	Dir.glob(path) do |file|
+		profile = `security cms -D -i "#{file}" 2>&1`
+		plist_profile = Plist::parse_xml(profile)
+		app_id = plist_profile["AppIDName"]
+		profiles[app_id] = plist_profile
+	end
+	return profiles.to_plist
+end
+command :profiles do |c|
+  c.syntax = 'howsigned profiles [.ipa file]'
+  c.description = 'Prints embedded profiles of specified .ipa in plist format'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	puts get_profiles("#{tempdir.path}/**/*.mobileprovision")
+  end
+end

data/lib/validate_ipa.rb ADDED Viewed

@@ -0,0 +1,9 @@
+def validate_ipa!
+files = Dir['*.ipa']
+@file ||= case files.length
+		  when 0 then nil
+		  when 1 then files.first
+		  else
+		     @file = choose "Select an .ipa", *files
+		  end
+end

data/lib/verify.rb ADDED Viewed

@@ -0,0 +1,40 @@
+require 'plist'
+require 'zip'
+require 'zip/filesystem'
+require 'validate_ipa'
+require 'extract_zip'
+def verify_binaries(path)
+	Dir.glob(path) do |file|
+		codesign = `codesign --verify "#{file}" 2>&1`
+		if(!codesign.to_s.empty?)
+			puts codesign
+		end
+	end
+end
+command :verify do |c|
+  c.syntax = 'howsigned verify [.ipa file]'
+  c.description = 'Verifies the code signature of all binaries contained within the .ipa, will return nothing if signed correctly'
+  c.action do |args, options|
+  	validate_ipa! unless @file = args.pop
+	puts "Missing or unspecified .ipa file" and abort unless @file and ::File.exist?(@file)
+	tempdir = ::File.new(Dir.mktmpdir)
+	extract_zip(@file, tempdir)
+	entitlements_hash = Hash.new
+	app_codesign = verify_binaries("#{tempdir.path}/**/*.app")
+	if(!app_codesign.to_s.empty?)
+		puts app_codesign
+	end
+	appex_codesign = verify_binaries("#{tempdir.path}/**/*.appex")
+	if(!appex_codesign.to_s.empty?)
+		puts appex_codesign
+	end
+  end
+end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: howsigned
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.4
 platform: ruby
 authors:
 - Michael MacDougall
@@ -38,6 +38,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: commander
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
 description: Utility to see how the contained binaries within an .ipa are signed
 email: mmacdougall@etsy.com
 executables:
@@ -46,6 +60,11 @@ extensions: []
 extra_rdoc_files: []
 files:
 - bin/howsigned
+- lib/entitlements.rb
+- lib/extract_zip.rb
+- lib/profiles.rb
+- lib/validate_ipa.rb
+- lib/verify.rb
 homepage: http://www.etsy.com
 licenses:
 - MIT