owlet 0.1.1 → 0.2.0
Sign up to get free protection for your applications and to get access to all the features.
- data/Gemfile +2 -0
- data/lib/owlet/cli.rb +16 -2
- data/lib/owlet/signer.rb +10 -5
- data/lib/owlet/version.rb +1 -1
- data/spec/fixtures/first.key +15 -0
- data/spec/fixtures/first.pub +17 -0
- data/spec/fixtures/pleco.key +15 -0
- data/spec/fixtures/pleco.pub +17 -0
- data/spec/owlet/signer_spec.rb +114 -52
- metadata +22 -14
data/Gemfile
CHANGED
data/lib/owlet/cli.rb
CHANGED
|
@@ -3,11 +3,25 @@ require 'owlet'
|
|
|
3
3
|
|
|
4
4
|
module Owlet
|
|
5
5
|
class CLI < Thor
|
|
6
|
+
def self.key_opts
|
|
7
|
+
begin
|
|
8
|
+
require 'openssl'
|
|
9
|
+
if OpenSSL.const_defined?(:PKCS12)
|
|
10
|
+
method_option :key, :required => true, :description => "Private and public key to be used for signing. Must be in PKCS12 format."
|
|
11
|
+
else
|
|
12
|
+
method_option :public, :required => true, :description => "Public key to be used for signing. Must be in PEM format."
|
|
13
|
+
method_option :private, :required => true, :description => "Private key to be used for signing. Must be in PEM format."
|
|
14
|
+
end
|
|
15
|
+
rescue
|
|
16
|
+
raise "OpenSSL support is required."
|
|
17
|
+
end
|
|
18
|
+
end
|
|
19
|
+
|
|
6
20
|
# Signing operations
|
|
7
21
|
desc "sign PACKAGE", "Signs Owlet package with supplied key."
|
|
8
|
-
|
|
22
|
+
key_opts
|
|
9
23
|
def sign(package)
|
|
10
|
-
Owlet::Signer.sign_package(package, options
|
|
24
|
+
Owlet::Signer.sign_package(package, options)
|
|
11
25
|
end
|
|
12
26
|
|
|
13
27
|
desc "verify PACKAGE", "Verifies Alula extension or theme"
|
data/lib/owlet/signer.rb
CHANGED
|
@@ -33,10 +33,15 @@ module Owlet
|
|
|
33
33
|
|
|
34
34
|
# Signs given package with PKCS12 file
|
|
35
35
|
# p12 is either OpenSSL::PKCS!@ or file
|
|
36
|
-
def self.sign_package(package,
|
|
36
|
+
def self.sign_package(package, options)
|
|
37
37
|
# Get private key
|
|
38
|
-
|
|
39
|
-
p12 = OpenSSL::PKCS12.new(File.read(
|
|
38
|
+
if options['key']
|
|
39
|
+
p12 = OpenSSL::PKCS12.new(File.read(options['key']))
|
|
40
|
+
public_key = p12.certificate
|
|
41
|
+
private_key = p12.key
|
|
42
|
+
else
|
|
43
|
+
private_key = OpenSSL::PKey::RSA.new(File.read(options['private']))
|
|
44
|
+
public_key = OpenSSL::X509::Certificate.new(File.read(options['public']))
|
|
40
45
|
end
|
|
41
46
|
|
|
42
47
|
raise "Cannot find package #{package}" unless File.exists?(package)
|
|
@@ -56,10 +61,10 @@ module Owlet
|
|
|
56
61
|
next if data.nil?
|
|
57
62
|
|
|
58
63
|
sig_data[:signatures][entry.name] ||= []
|
|
59
|
-
sig_data[:signatures][entry.name].push sign(data,
|
|
64
|
+
sig_data[:signatures][entry.name].push sign(data, private_key)
|
|
60
65
|
end
|
|
61
66
|
|
|
62
|
-
sig_data[:certificates].push
|
|
67
|
+
sig_data[:certificates].push public_key.to_pem
|
|
63
68
|
|
|
64
69
|
zip.get_output_stream("_Signature") do |io|
|
|
65
70
|
io.puts sig_data.to_yaml
|
data/lib/owlet/version.rb
CHANGED
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
-----BEGIN RSA PRIVATE KEY-----
|
|
2
|
+
MIICXgIBAAKBgQDaXLGPuAHtHJ/6nkA3iBjCpwT8/9vZehUFEdcKoGKTPjheEiYk
|
|
3
|
+
LPWdyYk7+q6FRgHqx767ttQGm+MOE5Xblco7Ki5wkoJZBt8Pw7MbfTbJwnRTUfiC
|
|
4
|
+
rkuvdNbcGAfRzhFPyDju5xZVspJWzzh8guWTCqfKU1YY0iCvX72ipWxIhQIDAQAB
|
|
5
|
+
AoGANAOefCiNtOh7pxwpGdE+bKeSRZ3AxcYR2bpNKgfYU1Cf5rCWC0n2W9aU7Qei
|
|
6
|
+
qLZrYHyiD17WlJhvdnvt13ePyyU+JKyATypHCHTpSD+BMm1GnDi9+ANpGkAvuo4T
|
|
7
|
+
Lz+rYdvXq+JACuhns0/eLPfX0z1MF38h8tPY4wOegK8zDMUCQQD7rkJWCvqrDb2F
|
|
8
|
+
yb1mjWJys2OzCD1lPtc8dErpVlxSfx7d2NQRAWM4wjmnd6dX0k7/s98ZIVbgjoor
|
|
9
|
+
7YQV09j7AkEA3hwNMttfkALugYLjtWTPF1M8rCtPWRHeQA9ZFe95NSUMkoTXpu/R
|
|
10
|
+
ZG97JK2/Tvmy6Y9EXfKr6Dpyh8QLgrGsfwJBAPTLibom86lss+ptTstwuVDXKyH3
|
|
11
|
+
4b+YX8FtW2+ZkDKtclhVje78aoXKZEl/GEVTSYNscJMA2n+QJNSVMOQKKgECQQDO
|
|
12
|
+
CQONW8aoFrAc38hPqnYY0xQDOiHfJB4hGpuvJ3gufnHNMQHDT8/T9T4sZiiDIEqB
|
|
13
|
+
Mm9fHw+s2xsHKirrT9oNAkEAyQCduSrRAaotXgzE0N+MXHw5AIzhw+lwXLf8sAko
|
|
14
|
+
MwI2ttVYmLChu5YqcLWO/FjF+qR00jQTKOQiMcWsaAKT1A==
|
|
15
|
+
-----END RSA PRIVATE KEY-----
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
-----BEGIN CERTIFICATE-----
|
|
2
|
+
MIICnTCCAYWgAwIBAgIBRDANBgkqhkiG9w0BAQUFADAvMRUwEwYDVQQKDAxPd2wg
|
|
3
|
+
Rm9yZXN0cnkxFjAUBgNVBAMMDVRFU1QgQWx1bGEgQ0EwHhcNMTEwNzA5MTE0ODIz
|
|
4
|
+
WhcNMTYwNzA3MTE0ODIzWjAxMRUwEwYDVQQKDAxPd2wgRm9yZXN0cnkxGDAWBgNV
|
|
5
|
+
BAMMD0FsdWxhIEV4dGVuc2lvbjCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA
|
|
6
|
+
2lyxj7gB7Ryf+p5AN4gYwqcE/P/b2XoVBRHXCqBikz44XhImJCz1ncmJO/quhUYB
|
|
7
|
+
6se+u7bUBpvjDhOV25XKOyoucJKCWQbfD8OzG302ycJ0U1H4gq5Lr3TW3BgH0c4R
|
|
8
|
+
T8g47ucWVbKSVs84fILlkwqnylNWGNIgr1+9oqVsSIUCAwEAAaNGMEQwHQYDVR0O
|
|
9
|
+
BBYEFC73udFlbFTvb3f8/sbTkWjdLz8XMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUE
|
|
10
|
+
DDAKBggrBgEFBQcDAzANBgkqhkiG9w0BAQUFAAOCAQEAZLFuAyqYq4Qav5Ffdmfr
|
|
11
|
+
znhQsnj+9sQIJPul4+8jPuwEWgwuib+Il6nowlPWt7Mdb7NQ+yiqkFVhbe2hGLUE
|
|
12
|
+
UCHh/IwXhqnyDH8ixm66mjIHvMDFAc/234PKTA3v5mkOjW6nWuc2L6UvSR+zzfHB
|
|
13
|
+
i0tSfUyIDyZ82NlU1wkGE0b+kcnENNpnGZvhUwl4cQATNQU5IH1llG0lQQZiMPuw
|
|
14
|
+
3vD59S01oL/d/okJ/uwi0tk0+JY1XBM/es2bwxbXqmxRK1nhW+jY7hrpH/EkYrsG
|
|
15
|
+
dBbpw009Tchf3wKJqeY01DR1Zos7NoX48M009FX02+xPsf8+xWrGhBQvETwk/Qw1
|
|
16
|
+
2A==
|
|
17
|
+
-----END CERTIFICATE-----
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
-----BEGIN RSA PRIVATE KEY-----
|
|
2
|
+
MIICXAIBAAKBgQDV8ey1Yicv+jUaywf073eemL6r+IQiw3riD0FLWL+fJTZ1y0BI
|
|
3
|
+
GtymJime1iNXMFEB+6ptEuL8gBvVI9AE6OSJ4cIczepGgnKu5Y04M4jHbddk0+j4
|
|
4
|
+
3yaDx4OQmdgrzn6D8CeCmnKfsRAcI/l8jRi+rQ/Jckn7INE1pWbHNrbhaQIDAQAB
|
|
5
|
+
AoGAGceaB005fZ1/sqfOYKROXKz5JM3AVlQJxZ2i94pNJMceJdmE+GtMNTUaBMq2
|
|
6
|
+
3XWz/TIvGg+RjG1/bRJwqXbKut4w8KD5TwX+gTndq1Qcw6CDLFFpIJMCagd6o1HK
|
|
7
|
+
YKHzjyxRAO7X5NTZYpv6WwGoMCN3T7RIeYqO94KHclK3t6UCQQDup/JXd2Rg6NSm
|
|
8
|
+
S+xYdHvo3GZlJDTOa2Vk2F2I37LcOeGN/R7xebfKgch8ZLPw/qV1vl0QPSb8gt4s
|
|
9
|
+
HJ1lANIjAkEA5X4+f9oRYr7AI5s/i1RcNJeCrTjzQrgJrJdVi2NvocUAyXENFAUj
|
|
10
|
+
Q+DpUFjgd/NE5LyGXMruCs87H/szDYUZAwJAWm43DN+HoJT45t6D+uyAezbwccir
|
|
11
|
+
XcAiFnlJz/B7tKkWB5hvHi7x7oEI9+GssVe8WIY+e0XAvRPVnb9mAHy0IwJAH/lt
|
|
12
|
+
5cxRPcvL42oe+V+glSdC6rWTlwkjN+vB3HDXPde/21En/FEW778nYq1vYOcBA0mN
|
|
13
|
+
AuK3NcRXvYX3P/v6VwJBAOUM5TEPMC5MAWUCsz/CsLKO+rcEjxCbUCXIrTWDYO+S
|
|
14
|
+
bOvELb2y8sF8dqSa1WrZ3kx5Bvz1veDgZHdtxOqriOM=
|
|
15
|
+
-----END RSA PRIVATE KEY-----
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
-----BEGIN CERTIFICATE-----
|
|
2
|
+
MIICpTCCAY2gAwIBAgIBRjANBgkqhkiG9w0BAQUFADAvMRUwEwYDVQQKDAxPd2wg
|
|
3
|
+
Rm9yZXN0cnkxFjAUBgNVBAMMDVRFU1QgQWx1bGEgQ0EwHhcNMTEwNzA5MTkwOTU4
|
|
4
|
+
WhcNMTYwNzA3MTkwOTU4WjA5MRUwEwYDVQQKDAxPd2wgRm9yZXN0cnkxIDAeBgNV
|
|
5
|
+
BAMMF0FsdWxhIFBsZWNvIC0gRXh0ZW5zaW9uMIGfMA0GCSqGSIb3DQEBAQUAA4GN
|
|
6
|
+
ADCBiQKBgQDV8ey1Yicv+jUaywf073eemL6r+IQiw3riD0FLWL+fJTZ1y0BIGtym
|
|
7
|
+
Jime1iNXMFEB+6ptEuL8gBvVI9AE6OSJ4cIczepGgnKu5Y04M4jHbddk0+j43yaD
|
|
8
|
+
x4OQmdgrzn6D8CeCmnKfsRAcI/l8jRi+rQ/Jckn7INE1pWbHNrbhaQIDAQABo0Yw
|
|
9
|
+
RDAdBgNVHQ4EFgQUGgjDyyBvObP5ahBwsN6iBi/Q4qswDgYDVR0PAQH/BAQDAgeA
|
|
10
|
+
MBMGA1UdJQQMMAoGCCsGAQUFBwMDMA0GCSqGSIb3DQEBBQUAA4IBAQDIinTx9Ljp
|
|
11
|
+
Ls0Og5sseV2v3dcFvOtjhg4lirM9HpkuXlKYi3U8HSCzp58cFhc9V8Fs66YD6Vvw
|
|
12
|
+
WJihowiVpOg3MzXLdkDYfwI3MfdCdr17QSniwHlQwleOK4YH+D/qvmy45xOM4gbx
|
|
13
|
+
E2Q3QN8/ksrGJEyOZMHRrgwLR+GFwk1tDy3zbSbprBrP0DI/pCM24IIcfvnjNxLc
|
|
14
|
+
6vtPMUASNaM8UHJRthqRSSBjqUL694Y3ZQZTazi+KpKEaSPj6pEJAxqvSbN7byO+
|
|
15
|
+
9lMXsaNr+SEqV3Z9FZSUtBbYoYfgrZdwe+z3XwMJywZATnveZw4ECOS72TDy+vn5
|
|
16
|
+
PpFQjCS+8I4w
|
|
17
|
+
-----END CERTIFICATE-----
|
data/spec/owlet/signer_spec.rb
CHANGED
|
@@ -4,14 +4,16 @@ describe Owlet::Signer do
|
|
|
4
4
|
let(:fixture_path) { fixture_path = File.expand_path(File.join(File.dirname(__FILE__), "..", "fixtures")) }
|
|
5
5
|
|
|
6
6
|
context "Helper Methods" do
|
|
7
|
-
let(:
|
|
8
|
-
let(:
|
|
7
|
+
let(:first_key) { OpenSSL::PKey::RSA.new(File.read(File.join(fixture_path, "first.key"))) }
|
|
8
|
+
let(:pleco_key) { OpenSSL::PKey::RSA.new(File.read(File.join(fixture_path, "pleco.key"))) }
|
|
9
|
+
let(:first_cert) { OpenSSL::X509::Certificate.new(File.read(File.join(fixture_path, "first.pub"))) }
|
|
10
|
+
let(:pleco_cert) { OpenSSL::X509::Certificate.new(File.read(File.join(fixture_path, "pleco.pub"))) }
|
|
9
11
|
let(:first_signature) { "lu2zFctrv7ssmcudjTVNoj9xS47GpMsYBxF8tQVhXnpOBXIM/7TuY+ZpHkxUqzgWssJdrUqLpC6t9OoUyLbUOU2HI4aNdmwOHv3XmpuIazmELEz/aCbwuCnwIAw6YtQiF14GQhUqR2A/6LE9ZB3+bKBDuxSMRY9WbRHELjoeXyg=" }
|
|
10
12
|
|
|
11
13
|
it "should sign data" do
|
|
12
14
|
# Load private key
|
|
13
15
|
data = "aaaa/bbbb/cccc"
|
|
14
|
-
signature = Owlet::Signer.sign(data,
|
|
16
|
+
signature = Owlet::Signer.sign(data, first_key)
|
|
15
17
|
|
|
16
18
|
signature.should == first_signature
|
|
17
19
|
end
|
|
@@ -19,73 +21,133 @@ describe Owlet::Signer do
|
|
|
19
21
|
it "should verify data" do
|
|
20
22
|
data = "aaaa/bbbb/cccc"
|
|
21
23
|
|
|
22
|
-
Owlet::Signer.verify(data, first_signature,
|
|
24
|
+
Owlet::Signer.verify(data, first_signature, first_cert.public_key).should be_true
|
|
23
25
|
end
|
|
24
26
|
|
|
25
27
|
it "should not verify invalid data" do
|
|
26
28
|
data = "aaaa/bbbb/cccc/dddd"
|
|
27
29
|
|
|
28
|
-
Owlet::Signer.verify(data, first_signature,
|
|
30
|
+
Owlet::Signer.verify(data, first_signature, first_cert.public_key).should be_false
|
|
29
31
|
end
|
|
30
32
|
|
|
31
33
|
it "should not verify with wrong public key" do
|
|
32
34
|
data = "aaaa/bbbb/cccc"
|
|
33
35
|
|
|
34
|
-
Owlet::Signer.verify(data, first_signature,
|
|
36
|
+
Owlet::Signer.verify(data, first_signature, pleco_cert.public_key).should be_false
|
|
35
37
|
end
|
|
36
38
|
end
|
|
37
39
|
|
|
38
40
|
context "Package" do
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
# Create package
|
|
44
|
-
File.unlink(File.join(fixture_path, "fixture.alulaextz")) if File.exists?(File.join(fixture_path, "fixture.alulaextz"))
|
|
45
|
-
@pkg = Owlet::Package.create(:source => File.join(fixture_path, "fixture.alulaextension"))
|
|
46
|
-
end
|
|
47
|
-
|
|
48
|
-
it "should have no certificates" do
|
|
49
|
-
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
50
|
-
signatures.should be_empty
|
|
51
|
-
end
|
|
52
|
-
|
|
53
|
-
it "should be signed succesfully" do
|
|
54
|
-
Owlet::Signer.sign_package(@pkg, first_p12).should be_true
|
|
55
|
-
end
|
|
41
|
+
if OpenSSL.const_defined?(:PKCS12)
|
|
42
|
+
context "with PKCS12" do
|
|
43
|
+
let(:first_p12) { File.join(fixture_path, "first.p12") }#OpenSSL::PKCS12.new(File.read(File.join(fixture_path, "first.p12"))) }
|
|
44
|
+
let(:pleco_p12) { File.join(fixture_path, "pleco.p12") }#OpenSSL::PKCS12.new(File.read(File.join(fixture_path, "pleco.p12"))) }
|
|
56
45
|
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
46
|
+
before(:each) do
|
|
47
|
+
# Create package
|
|
48
|
+
File.unlink(File.join(fixture_path, "fixture.alulaextz")) if File.exists?(File.join(fixture_path, "fixture.alulaextz"))
|
|
49
|
+
@pkg = Owlet::Package.create(:source => File.join(fixture_path, "fixture.alulaextension"))
|
|
50
|
+
end
|
|
51
|
+
|
|
52
|
+
it "should have no certificates" do
|
|
53
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
54
|
+
signatures.should be_empty
|
|
55
|
+
end
|
|
56
|
+
|
|
57
|
+
it "should be signed succesfully" do
|
|
58
|
+
Owlet::Signer.sign_package(@pkg, 'key' => first_p12).should be_true
|
|
59
|
+
end
|
|
60
|
+
|
|
61
|
+
it "should have one certificate" do
|
|
62
|
+
Owlet::Signer.sign_package(@pkg, 'key' => first_p12).should be_true
|
|
63
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
64
|
+
signatures[0].should_not be_nil
|
|
65
|
+
cert = OpenSSL::X509::Certificate.new(signatures[0])
|
|
66
|
+
cert.subject.to_s.should == "/O=Owl Forestry/CN=Alula Extension"
|
|
67
|
+
signatures[1].should be_nil
|
|
68
|
+
end
|
|
69
|
+
|
|
70
|
+
it "should verify signed package" do
|
|
71
|
+
Owlet::Signer.sign_package(@pkg, 'key' => first_p12).should be_true
|
|
72
|
+
Owlet::Signer.verify_package(@pkg).should be_true
|
|
73
|
+
end
|
|
74
|
+
|
|
75
|
+
it "should signed twice" do
|
|
76
|
+
Owlet::Signer.sign_package(@pkg, 'key' => first_p12).should be_true
|
|
77
|
+
Owlet::Signer.sign_package(@pkg, 'key' => pleco_p12).should be_true
|
|
78
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
79
|
+
signatures[1].should_not be_nil
|
|
80
|
+
cert = OpenSSL::X509::Certificate.new(signatures[1])
|
|
81
|
+
cert.subject.to_s.should == "/O=Owl Forestry/CN=Alula Pleco - Extension"
|
|
82
|
+
end
|
|
83
|
+
|
|
84
|
+
it "should fail with modified package" do
|
|
85
|
+
Owlet::Signer.sign_package(@pkg, 'key' => first_p12).should be_true
|
|
86
|
+
Zip::ZipFile.open(@pkg) do |zip|
|
|
87
|
+
zip.get_output_stream("init.rb") do |io|
|
|
88
|
+
io.puts "# Fail this thanks."
|
|
89
|
+
end
|
|
90
|
+
end
|
|
91
|
+
|
|
92
|
+
lambda { Owlet::Signer.verify_package(@pkg)}.should raise_error "Signature for init.rb for certicate /O=Owl Forestry/CN=Alula Extension failed."
|
|
93
|
+
end
|
|
94
|
+
end
|
|
78
95
|
end
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
96
|
+
context "with public/private keys" do
|
|
97
|
+
let(:first_key) { File.join(fixture_path, "first.key") }
|
|
98
|
+
let(:pleco_key) { File.join(fixture_path, "pleco.key") }
|
|
99
|
+
let(:first_cert) { File.join(fixture_path, "first.pub") }
|
|
100
|
+
let(:pleco_cert) { File.join(fixture_path, "pleco.pub") }
|
|
101
|
+
|
|
102
|
+
before(:each) do
|
|
103
|
+
# Create package
|
|
104
|
+
File.unlink(File.join(fixture_path, "fixture.alulaextz")) if File.exists?(File.join(fixture_path, "fixture.alulaextz"))
|
|
105
|
+
@pkg = Owlet::Package.create(:source => File.join(fixture_path, "fixture.alulaextension"))
|
|
106
|
+
end
|
|
107
|
+
|
|
108
|
+
it "should have no certificates" do
|
|
109
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
110
|
+
signatures.should be_empty
|
|
111
|
+
end
|
|
112
|
+
|
|
113
|
+
it "should be signed succesfully" do
|
|
114
|
+
Owlet::Signer.sign_package(@pkg, 'private' => first_key, 'public' => first_cert).should be_true
|
|
115
|
+
end
|
|
116
|
+
|
|
117
|
+
it "should have one certificate" do
|
|
118
|
+
Owlet::Signer.sign_package(@pkg, 'private' => first_key, 'public' => first_cert).should be_true
|
|
119
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
120
|
+
signatures[0].should_not be_nil
|
|
121
|
+
cert = OpenSSL::X509::Certificate.new(signatures[0])
|
|
122
|
+
cert.subject.to_s.should == "/O=Owl Forestry/CN=Alula Extension"
|
|
123
|
+
signatures[1].should be_nil
|
|
124
|
+
end
|
|
125
|
+
|
|
126
|
+
it "should verify signed package" do
|
|
127
|
+
Owlet::Signer.sign_package(@pkg, 'private' => first_key, 'public' => first_cert).should be_true
|
|
128
|
+
Owlet::Signer.verify_package(@pkg).should be_true
|
|
129
|
+
end
|
|
130
|
+
|
|
131
|
+
it "should signed twice" do
|
|
132
|
+
Owlet::Signer.sign_package(@pkg, 'private' => first_key, 'public' => first_cert).should be_true
|
|
133
|
+
Owlet::Signer.sign_package(@pkg, 'private' => pleco_key, 'public' => pleco_cert).should be_true
|
|
134
|
+
signatures = Owlet::Signer.list_certificates(@pkg)
|
|
135
|
+
signatures[1].should_not be_nil
|
|
136
|
+
cert = OpenSSL::X509::Certificate.new(signatures[1])
|
|
137
|
+
cert.subject.to_s.should == "/O=Owl Forestry/CN=Alula Pleco - Extension"
|
|
138
|
+
end
|
|
139
|
+
|
|
140
|
+
it "should fail with modified package" do
|
|
141
|
+
Owlet::Signer.sign_package(@pkg, 'private' => first_key, 'public' => first_cert).should be_true
|
|
142
|
+
Zip::ZipFile.open(@pkg) do |zip|
|
|
143
|
+
zip.get_output_stream("init.rb") do |io|
|
|
144
|
+
io.puts "# Fail this thanks."
|
|
145
|
+
end
|
|
85
146
|
end
|
|
147
|
+
|
|
148
|
+
lambda { Owlet::Signer.verify_package(@pkg)}.should raise_error "Signature for init.rb for certicate /O=Owl Forestry/CN=Alula Extension failed."
|
|
86
149
|
end
|
|
87
|
-
|
|
88
|
-
lambda { Owlet::Signer.verify_package(@pkg)}.should raise_error "Signature for init.rb for certicate /O=Owl Forestry/CN=Alula Extension failed."
|
|
89
150
|
end
|
|
151
|
+
|
|
90
152
|
end
|
|
91
153
|
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: owlet
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.2.0
|
|
5
5
|
prerelease:
|
|
6
6
|
platform: ruby
|
|
7
7
|
authors:
|
|
@@ -9,11 +9,11 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2011-08-
|
|
12
|
+
date: 2011-08-13 00:00:00.000000000 Z
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: thor
|
|
16
|
-
requirement: &
|
|
16
|
+
requirement: &70348029127600 !ruby/object:Gem::Requirement
|
|
17
17
|
none: false
|
|
18
18
|
requirements:
|
|
19
19
|
- - ! '>='
|
|
@@ -21,10 +21,10 @@ dependencies:
|
|
|
21
21
|
version: '0'
|
|
22
22
|
type: :runtime
|
|
23
23
|
prerelease: false
|
|
24
|
-
version_requirements: *
|
|
24
|
+
version_requirements: *70348029127600
|
|
25
25
|
- !ruby/object:Gem::Dependency
|
|
26
26
|
name: rubyzip
|
|
27
|
-
requirement: &
|
|
27
|
+
requirement: &70348029127120 !ruby/object:Gem::Requirement
|
|
28
28
|
none: false
|
|
29
29
|
requirements:
|
|
30
30
|
- - ! '>='
|
|
@@ -32,10 +32,10 @@ dependencies:
|
|
|
32
32
|
version: '0'
|
|
33
33
|
type: :runtime
|
|
34
34
|
prerelease: false
|
|
35
|
-
version_requirements: *
|
|
35
|
+
version_requirements: *70348029127120
|
|
36
36
|
- !ruby/object:Gem::Dependency
|
|
37
37
|
name: rake
|
|
38
|
-
requirement: &
|
|
38
|
+
requirement: &70348029126660 !ruby/object:Gem::Requirement
|
|
39
39
|
none: false
|
|
40
40
|
requirements:
|
|
41
41
|
- - ! '>='
|
|
@@ -43,10 +43,10 @@ dependencies:
|
|
|
43
43
|
version: '0'
|
|
44
44
|
type: :development
|
|
45
45
|
prerelease: false
|
|
46
|
-
version_requirements: *
|
|
46
|
+
version_requirements: *70348029126660
|
|
47
47
|
- !ruby/object:Gem::Dependency
|
|
48
48
|
name: rspec
|
|
49
|
-
requirement: &
|
|
49
|
+
requirement: &70348029126140 !ruby/object:Gem::Requirement
|
|
50
50
|
none: false
|
|
51
51
|
requirements:
|
|
52
52
|
- - ! '>='
|
|
@@ -54,10 +54,10 @@ dependencies:
|
|
|
54
54
|
version: '0'
|
|
55
55
|
type: :development
|
|
56
56
|
prerelease: false
|
|
57
|
-
version_requirements: *
|
|
57
|
+
version_requirements: *70348029126140
|
|
58
58
|
- !ruby/object:Gem::Dependency
|
|
59
59
|
name: guard-rspec
|
|
60
|
-
requirement: &
|
|
60
|
+
requirement: &70348029125620 !ruby/object:Gem::Requirement
|
|
61
61
|
none: false
|
|
62
62
|
requirements:
|
|
63
63
|
- - ! '>='
|
|
@@ -65,10 +65,10 @@ dependencies:
|
|
|
65
65
|
version: '0'
|
|
66
66
|
type: :development
|
|
67
67
|
prerelease: false
|
|
68
|
-
version_requirements: *
|
|
68
|
+
version_requirements: *70348029125620
|
|
69
69
|
- !ruby/object:Gem::Dependency
|
|
70
70
|
name: ci_reporter
|
|
71
|
-
requirement: &
|
|
71
|
+
requirement: &70348029124980 !ruby/object:Gem::Requirement
|
|
72
72
|
none: false
|
|
73
73
|
requirements:
|
|
74
74
|
- - ! '>='
|
|
@@ -76,7 +76,7 @@ dependencies:
|
|
|
76
76
|
version: '0'
|
|
77
77
|
type: :development
|
|
78
78
|
prerelease: false
|
|
79
|
-
version_requirements: *
|
|
79
|
+
version_requirements: *70348029124980
|
|
80
80
|
description: Use Owlet library to create and alter and gather information about owlets.
|
|
81
81
|
email:
|
|
82
82
|
- mikko@mikian.com
|
|
@@ -97,12 +97,16 @@ files:
|
|
|
97
97
|
- lib/owlet/signer.rb
|
|
98
98
|
- lib/owlet/version.rb
|
|
99
99
|
- owlet.gemspec
|
|
100
|
+
- spec/fixtures/first.key
|
|
100
101
|
- spec/fixtures/first.p12
|
|
102
|
+
- spec/fixtures/first.pub
|
|
101
103
|
- spec/fixtures/fixture.alulaextension/init.rb
|
|
102
104
|
- spec/fixtures/fixture.alulatheme/init.rb
|
|
103
105
|
- spec/fixtures/fixture.alulatheme/javascripts/application.js.coffeescript
|
|
104
106
|
- spec/fixtures/fixture.alulatheme/stylesheets/application.css.scss
|
|
107
|
+
- spec/fixtures/pleco.key
|
|
105
108
|
- spec/fixtures/pleco.p12
|
|
109
|
+
- spec/fixtures/pleco.pub
|
|
106
110
|
- spec/owlet/cli_spec.rb
|
|
107
111
|
- spec/owlet/package_spec.rb
|
|
108
112
|
- spec/owlet/signer_spec.rb
|
|
@@ -133,12 +137,16 @@ specification_version: 3
|
|
|
133
137
|
summary: Owlet is a packaging system for distributing extensions and themes for Alula
|
|
134
138
|
Engine
|
|
135
139
|
test_files:
|
|
140
|
+
- spec/fixtures/first.key
|
|
136
141
|
- spec/fixtures/first.p12
|
|
142
|
+
- spec/fixtures/first.pub
|
|
137
143
|
- spec/fixtures/fixture.alulaextension/init.rb
|
|
138
144
|
- spec/fixtures/fixture.alulatheme/init.rb
|
|
139
145
|
- spec/fixtures/fixture.alulatheme/javascripts/application.js.coffeescript
|
|
140
146
|
- spec/fixtures/fixture.alulatheme/stylesheets/application.css.scss
|
|
147
|
+
- spec/fixtures/pleco.key
|
|
141
148
|
- spec/fixtures/pleco.p12
|
|
149
|
+
- spec/fixtures/pleco.pub
|
|
142
150
|
- spec/owlet/cli_spec.rb
|
|
143
151
|
- spec/owlet/package_spec.rb
|
|
144
152
|
- spec/owlet/signer_spec.rb
|