RubyGems - nokogiri-xmlsec-instructure - Versions diffs - 0.10.3 → 0.11.0 - Mend

nokogiri-xmlsec-instructure 0.10.3 → 0.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (49) hide show

checksums.yaml +4 -4
data/ext/nokogiri_ext_xmlsec/extconf.rb +8 -16
data/lib/nokogiri-xmlsec.rb +3 -1
data/lib/nokogiri_ext_xmlsec.bundle +0 -0
data/lib/xmlsec/version.rb +3 -1
data/lib/xmlsec.rb +99 -88
metadata +11 -181
data/.github/workflows/push.yml +0 -40
data/.gitignore +0 -23
data/.rspec +0 -2
data/.tool-versions +0 -1
data/Appraisals +0 -9
data/Gemfile +0 -4
data/Guardfile +0 -13
data/LICENSE.txt +0 -22
data/README.md +0 -132
data/Rakefile +0 -30
data/ext/nokogiri_ext_xmlsec/common.h +0 -13
data/ext/nokogiri_ext_xmlsec/init.c +0 -71
data/ext/nokogiri_ext_xmlsec/nokogiri_decrypt_with_key.c +0 -84
data/ext/nokogiri_ext_xmlsec/nokogiri_encrypt_with_key.c +0 -210
data/ext/nokogiri_ext_xmlsec/nokogiri_helpers_set_attribute_id.c +0 -93
data/ext/nokogiri_ext_xmlsec/nokogiri_init.c +0 -30
data/ext/nokogiri_ext_xmlsec/nokogiri_sign.c +0 -254
data/ext/nokogiri_ext_xmlsec/nokogiri_verify_with.c +0 -261
data/ext/nokogiri_ext_xmlsec/options.c +0 -166
data/ext/nokogiri_ext_xmlsec/options.h +0 -36
data/ext/nokogiri_ext_xmlsec/shutdown.c +0 -12
data/ext/nokogiri_ext_xmlsec/util.c +0 -140
data/ext/nokogiri_ext_xmlsec/util.h +0 -42
data/ext/nokogiri_ext_xmlsec/xmlsecrb.h +0 -49
data/gemfiles/nokogiri_12.5.gemfile +0 -7
data/gemfiles/nokogiri_13.10.gemfile +0 -7
data/nokogiri-xmlsec-instructure.gemspec +0 -41
data/spec/fixtures/cert/server.crt +0 -14
data/spec/fixtures/cert/server.csr +0 -11
data/spec/fixtures/cert/server.key.decrypted +0 -15
data/spec/fixtures/cert/server.key.encrypted +0 -18
data/spec/fixtures/hate.xml +0 -7
data/spec/fixtures/pwned.xml +0 -1
data/spec/fixtures/rsa.pem +0 -15
data/spec/fixtures/rsa.pub +0 -6
data/spec/fixtures/sign2-doc.xml +0 -6
data/spec/fixtures/sign2-result.xml +0 -25
data/spec/fixtures/sign3-result.xml +0 -39
data/spec/lib/nokogiri/xml/document/encryption_and_decryption_spec.rb +0 -55
data/spec/lib/nokogiri/xml/document/signing_and_verifying_spec.rb +0 -122
data/spec/lib/nokogiri/xml/document/unsafe_xml_spec.rb +0 -61
data/spec/spec_helper.rb +0 -10

data/spec/lib/nokogiri/xml/document/signing_and_verifying_spec.rb DELETED Viewed

@@ -1,122 +0,0 @@
-require 'spec_helper'
-describe "signing and verifying signatures:" do
-  subject do
-    Nokogiri::XML(fixture('sign2-doc.xml'))
-  end
-  describe 'signing a document with an RSA key' do
-    before { subject.sign! key: fixture('rsa.pem'), name: 'test',
-             signature_alg: 'rsa-sha256', digest_alg: 'sha256'
-    }
-    it 'should produce a signed document' do
-      expect(subject.to_s).to eql(fixture('sign2-result.xml'))
-    end
-    describe 'verifying the document with a single public key' do
-      it 'should be valid' do
-        expect(subject.verify_with(key: fixture('rsa.pub'))).to be_truthy
-      end
-    end
-    describe 'verifying the document with a set of keys' do
-      it 'should be valid' do
-        expect(subject.verify_with({
-          'test' => fixture('rsa.pub')
-        })).to be_truthy
-      end
-    end
-  end
-  describe 'signing a document with an RSA key and X509 certificate' do
-    before do
-      subject.sign! key: fixture('cert/server.key.decrypted'),
-                    cert: fixture('cert/server.crt'),
-                    signature_alg: 'rsa-sha256',
-                    digest_alg: 'sha256'
-    end
-    it 'should produce a signed document' do
-      expect(subject.to_s).to eql(fixture('sign3-result.xml'))
-    end
-    describe 'verifying the document with an array of X509 certificates' do
-      specify do
-        expect(subject.verify_with(cert: [fixture('cert/server.crt')])).to be_truthy
-      end
-      it 'should verify using system certificates' do
-        pending("Testing system certs requires admin privs. Read exception message in code.")
-        unless subject.verify_signature
-          raise <<-end_error
-            Could not use system certificates to verify the signature.
-            Note that this may not be a failing spec. You should copy
-            or symlink the file `spec/fixtures/cert/server.crt` into
-            the directory shown by running `openssl version -d`. After
-            doing so, run `sudo c_rehash CERT_PATH`, where
-            CERT_PATH is the same directory you copied the certificate
-            into (/usr/lib/ssl/certs by default on Ubuntu). After doing
-            that, run this spec again and see if it passes.
-          end_error
-        end
-      end
-    end
-    describe 'verifying the document with one X509 certificate' do
-      specify do
-        expect(subject.verify_with(cert: fixture('cert/server.crt'))).to be_truthy
-      end
-    end
-  end
-  describe 'test all signature algorithms' do
-    [ 'rsa-sha1', 'rsa-sha224', 'rsa-sha256', 'rsa-sha384', 'rsa-sha512' ].each do |signature_algorithm|
-      specify "All RSA signatures work with cert signing" do
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          cert: fixture('cert/server.crt'),
-          signature_alg: signature_algorithm,
-          digest_alg: 'sha256'
-      end
-      specify "All RSA signatures work with bare key signing" do
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          name: 'test',
-          signature_alg: signature_algorithm,
-          digest_alg: 'sha256'
-      end
-    end
-    [ 'ecdsa-sha1', 'ecdsa-sha224', 'ecdsa-sha256', 'ecdsa-sha384', 'ecdsa-sha512', 'dsa-sha1', 'dsa-sha256' ].each do |signature_algorithm|
-      specify "All non-RSA signatures work with cert signing" do
-        pending("use the right key type")
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          name: 'test',
-          cert: fixture('cert/server.crt'),
-          signature_alg: signature_algorithm,
-          digest_alg: 'sha256'
-      end
-      specify "All non-RSA signatures work with bare key" do
-        pending("use the right key type")
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          name: 'test',
-          signature_alg: signature_algorithm,
-          digest_alg: 'sha256'
-      end
-    end
-  end
-  describe 'test all digest algorithms' do
-    [ 'sha1', 'sha224', 'sha256', 'sha384', 'sha512' ].each do |digest_algorithm|
-      specify "All digests with cert" do
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          name: 'test',
-          cert: fixture('cert/server.crt'),
-          signature_alg: 'rsa-sha256',
-          digest_alg: digest_algorithm
-      end
-      specify "All digests with bare key" do
-        subject.sign! key: fixture('cert/server.key.decrypted'),
-          name: 'test',
-          signature_alg: 'rsa-sha256',
-          digest_alg: digest_algorithm
-      end
-    end
-  end
-end

data/spec/lib/nokogiri/xml/document/unsafe_xml_spec.rb DELETED Viewed

@@ -1,61 +0,0 @@
-require 'spec_helper'
-describe "unsafe xml guards:" do
-  context "XML Signature URI" do
-    it "does not allow file path URIs in signing references" do
-      doc = Nokogiri::XML(fixture('hate.xml'))
-      expect{
-        doc.sign!(cert: fixture('cert/server.crt'),
-                  key: fixture('cert/server.key.decrypted'),
-                  name: 'test',
-                  signature_alg: 'rsa-sha256',
-                  digest_alg: 'sha256',
-                  uri: "#{fixture_path("pwned.xml")}")}.to raise_error(
-          XMLSec::SigningError, /error=33:invalid URI type/)
-    end
-    it "does not allow file:// URIs in signing references" do
-      doc = Nokogiri::XML(fixture('hate.xml'))
-      expect{
-        doc.sign!(cert: fixture('cert/server.crt'),
-                  key: fixture('cert/server.key.decrypted'),
-                  name: 'test',
-                  signature_alg: 'rsa-sha256',
-                  digest_alg: 'sha256',
-                  uri: "file://#{fixture_path("pwned.xml")}")}.to raise_error(
-          XMLSec::SigningError, /error=33:invalid URI type/)
-    end
-    it "does not allow network URIs in signing references" do
-      doc = Nokogiri::XML(fixture('hate.xml'))
-      expect{
-        doc.sign!(cert: fixture('cert/server.crt'),
-                  key: fixture('cert/server.key.decrypted'),
-                  name: 'test',
-                  signature_alg: 'rsa-sha256',
-                  digest_alg: 'sha256',
-                  uri: "http://www.w3.org/2001/XMLSchema.xsd")}.to raise_error(
-          XMLSec::SigningError, /error=33:invalid URI type/)
-    end
-    it "does allow empty signing references" do
-      doc = Nokogiri::XML(fixture('hate.xml'))
-      doc.sign!(cert: fixture('cert/server.crt'),
-                key: fixture('cert/server.key.decrypted'),
-                name: 'test',
-                signature_alg: 'rsa-sha256',
-                digest_alg: 'sha256',
-                uri: "")
-    end
-    it "does allow same document signing references" do
-      doc = Nokogiri::XML(fixture('hate.xml'))
-      doc.sign!(cert: fixture('cert/server.crt'),
-                key: fixture('cert/server.key.decrypted'),
-                name: 'test',
-                signature_alg: 'rsa-sha256',
-                digest_alg: 'sha256',
-                uri: "#some_frackin_id")
-    end
-  end
-end

data/spec/spec_helper.rb DELETED Viewed

@@ -1,10 +0,0 @@
-require 'rspec'
-require 'xmlsec'
-def fixture_path(filename)
-  File.join(File.expand_path('../fixtures', __FILE__), filename)
-end
-def fixture(path)
-  File.read fixture_path(path)
-end