RubyGems - raptor-io - Versions diffs - 0.0.1 - Mend

raptor-io 0.0.1

Files changed (91) hide show

checksums.yaml +15 -0
data/LICENSE +30 -0
data/README.md +51 -0
data/lib/rack/handler/raptor-io.rb +130 -0
data/lib/raptor-io.rb +11 -0
data/lib/raptor-io/error.rb +19 -0
data/lib/raptor-io/protocol.rb +6 -0
data/lib/raptor-io/protocol/error.rb +10 -0
data/lib/raptor-io/protocol/http.rb +34 -0
data/lib/raptor-io/protocol/http/client.rb +685 -0
data/lib/raptor-io/protocol/http/error.rb +16 -0
data/lib/raptor-io/protocol/http/headers.rb +132 -0
data/lib/raptor-io/protocol/http/message.rb +67 -0
data/lib/raptor-io/protocol/http/request.rb +307 -0
data/lib/raptor-io/protocol/http/request/manipulator.rb +117 -0
data/lib/raptor-io/protocol/http/request/manipulators.rb +217 -0
data/lib/raptor-io/protocol/http/request/manipulators/authenticator.rb +110 -0
data/lib/raptor-io/protocol/http/request/manipulators/authenticators/basic.rb +36 -0
data/lib/raptor-io/protocol/http/request/manipulators/authenticators/digest.rb +135 -0
data/lib/raptor-io/protocol/http/request/manipulators/authenticators/negotiate.rb +69 -0
data/lib/raptor-io/protocol/http/request/manipulators/authenticators/ntlm.rb +29 -0
data/lib/raptor-io/protocol/http/request/manipulators/redirect_follower.rb +65 -0
data/lib/raptor-io/protocol/http/response.rb +166 -0
data/lib/raptor-io/protocol/http/server.rb +446 -0
data/lib/raptor-io/ruby.rb +4 -0
data/lib/raptor-io/ruby/hash.rb +24 -0
data/lib/raptor-io/ruby/ipaddr.rb +15 -0
data/lib/raptor-io/ruby/openssl.rb +23 -0
data/lib/raptor-io/ruby/string.rb +27 -0
data/lib/raptor-io/socket.rb +175 -0
data/lib/raptor-io/socket/comm.rb +143 -0
data/lib/raptor-io/socket/comm/local.rb +94 -0
data/lib/raptor-io/socket/comm/sapni.rb +75 -0
data/lib/raptor-io/socket/comm/socks.rb +237 -0
data/lib/raptor-io/socket/comm_chain.rb +30 -0
data/lib/raptor-io/socket/error.rb +45 -0
data/lib/raptor-io/socket/switch_board.rb +183 -0
data/lib/raptor-io/socket/switch_board/route.rb +42 -0
data/lib/raptor-io/socket/tcp.rb +231 -0
data/lib/raptor-io/socket/tcp/ssl.rb +77 -0
data/lib/raptor-io/socket/tcp_server.rb +16 -0
data/lib/raptor-io/socket/tcp_server/ssl.rb +52 -0
data/lib/raptor-io/socket/udp.rb +0 -0
data/lib/raptor-io/version.rb +6 -0
data/lib/tasks/yard.rake +26 -0
data/spec/rack/handler/raptor_spec.rb +140 -0
data/spec/raptor-io/protocol/http/client_spec.rb +671 -0
data/spec/raptor-io/protocol/http/headers_spec.rb +189 -0
data/spec/raptor-io/protocol/http/message_spec.rb +5 -0
data/spec/raptor-io/protocol/http/request/manipulators/authenticator_spec.rb +193 -0
data/spec/raptor-io/protocol/http/request/manipulators/authenticators/basic_spec.rb +32 -0
data/spec/raptor-io/protocol/http/request/manipulators/authenticators/digest_spec.rb +76 -0
data/spec/raptor-io/protocol/http/request/manipulators/authenticators/negotiate_spec.rb +52 -0
data/spec/raptor-io/protocol/http/request/manipulators/authenticators/ntlm_spec.rb +37 -0
data/spec/raptor-io/protocol/http/request/manipulators/redirect_follower_spec.rb +51 -0
data/spec/raptor-io/protocol/http/request/manipulators_spec.rb +202 -0
data/spec/raptor-io/protocol/http/request_spec.rb +965 -0
data/spec/raptor-io/protocol/http/response_spec.rb +236 -0
data/spec/raptor-io/protocol/http/server_spec.rb +345 -0
data/spec/raptor-io/ruby/hash_spec.rb +20 -0
data/spec/raptor-io/ruby/string_spec.rb +20 -0
data/spec/raptor-io/socket/comm/local_spec.rb +50 -0
data/spec/raptor-io/socket/switch_board/route_spec.rb +49 -0
data/spec/raptor-io/socket/switch_board_spec.rb +87 -0
data/spec/raptor-io/socket/tcp/ssl_spec.rb +18 -0
data/spec/raptor-io/socket/tcp_server/ssl_spec.rb +59 -0
data/spec/raptor-io/socket/tcp_server_spec.rb +19 -0
data/spec/raptor-io/socket/tcp_spec.rb +14 -0
data/spec/raptor-io/socket_spec.rb +16 -0
data/spec/raptor-io/version_spec.rb +10 -0
data/spec/spec_helper.rb +56 -0
data/spec/support/fixtures/raptor/protocol/http/request/manipulators/manifoolators/fooer.rb +25 -0
data/spec/support/fixtures/raptor/protocol/http/request/manipulators/niccolo_machiavelli.rb +20 -0
data/spec/support/fixtures/raptor/protocol/http/request/manipulators/options_validator.rb +28 -0
data/spec/support/fixtures/raptor/socket/ssl_server.crt +18 -0
data/spec/support/fixtures/raptor/socket/ssl_server.key +15 -0
data/spec/support/lib/path_helpers.rb +11 -0
data/spec/support/lib/webserver_option_parser.rb +26 -0
data/spec/support/lib/webservers.rb +120 -0
data/spec/support/shared/contexts/with_ssl_server.rb +70 -0
data/spec/support/shared/contexts/with_tcp_server.rb +58 -0
data/spec/support/shared/examples/raptor/comm_examples.rb +26 -0
data/spec/support/shared/examples/raptor/protocols/http/message.rb +106 -0
data/spec/support/shared/examples/raptor/socket_examples.rb +135 -0
data/spec/support/webservers/raptor/protocols/http/client.rb +100 -0
data/spec/support/webservers/raptor/protocols/http/client_close_connection.rb +29 -0
data/spec/support/webservers/raptor/protocols/http/client_https.rb +43 -0
data/spec/support/webservers/raptor/protocols/http/request/manipulators/authenticators/basic.rb +9 -0
data/spec/support/webservers/raptor/protocols/http/request/manipulators/authenticators/digest.rb +22 -0
data/spec/support/webservers/raptor/protocols/http/request/manipulators/redirect_follower.rb +11 -0
metadata +336 -0

data/lib/raptor-io/socket/switch_board/route.rb ADDED

@@ -0,0 +1,42 @@
+require 'ipaddr'
+require 'raptor-io/ruby/ipaddr'
+#
+# A logical switch board route.
+#
+class RaptorIO::Socket::SwitchBoard::Route
+  include Comparable
+  # @param subnet [String,IPAddr]  The network associated with this
+  #   route. If specified as a String, must be parseable by IPAddr.new
+  # @param netmask [String,IPAddr] `subnet`'s netmask. If specified as
+  #   a String, must be parseable by IPAddr.new
+  # @param comm [Comm] The endpoint where sockets for this route
+  #   should be created.
+  def initialize(subnet, netmask, comm)
+    self.netmask = IPAddr.parse(netmask)
+    self.subnet  = IPAddr.parse(subnet).mask netmask.to_s
+    self.comm    = comm
+  end
+  #
+  # For direct equality, make sure all the attributes are the same
+  #
+  def ==(other)
+    return false unless other.kind_of? RaptorIO::Socket::SwitchBoard::Route
+    netmask == other.netmask && subnet == other.subnet && comm == other.comm
+  end
+  #
+  # For comparison, sort according to netmask.
+  #
+  # This allows {Route routes} to be ordered by specificity
+  #
+  def <=>(other)
+    netmask <=> other.netmask
+  end
+  attr_reader :subnet, :netmask, :comm
+protected
+  attr_writer :subnet, :netmask, :comm
+end

data/lib/raptor-io/socket/tcp.rb ADDED

@@ -0,0 +1,231 @@
+# TCP client socket
+class RaptorIO::Socket::TCP < RaptorIO::Socket
+  # Default configuration options.
+  DEFAULT_OPTIONS = {
+    connect_timeout: 5,
+  }
+  # Default options for SSL streams connected through this socket.
+  #
+  # @see #to_ssl
+  # @see TCP::SSL
+  DEFAULT_SSL_OPTIONS = {
+    ssl_version:         :TLSv1,
+    ssl_verify_mode:     OpenSSL::SSL::VERIFY_NONE,
+  }
+  # @!attribute socket
+  #   The underlying IO for this socket. Usually this is the
+  #   `socket` passed to {#initialize}
+  #   @return [IO]
+  attr_accessor :socket
+  # @param (see Socket#initialize)
+  def initialize(socket, options = {})
+    options = DEFAULT_OPTIONS.merge(options)
+    super
+    @plaintext_socket = @socket = socket
+  end
+  # @!method getpeername(string)
+  #   Return a Sockaddr struct for the *socket*. Note that this is the
+  #   @return [String] Sockaddr data.
+  def_delegator :@plaintext_socket, :getpeername, :getpeername
+  # @!method ungetc
+  #   Pushes back one character onto the {#socket}'s read buffer. Note
+  #   that some streams will *lose data* if this is called with a
+  #   `string` larger than one byte or called more than once between
+  #   calls to {#read}!
+  #
+  #   @param string [String] A single-byte string
+  #   @return [nil]
+  def_delegator :@socket, :ungetc, :ungetc
+  def remote_address
+    ::Addrinfo.new([ "AF_INET", options[:peer_port], options[:peer_host], options[:peer_host] ])
+  end
+  # Write `data` to the {#socket}.
+  #
+  # @param data [String,#to_s]
+  # @return [Fixnum]
+  def write(data)
+    begin
+      write_nonblock(data)
+    rescue IO::WaitWritable
+      IO.select(nil, [@socket])
+      retry
+    end
+  end
+  # Try to write `data` to the {#socket}.
+  #
+  # @param maxlen [Fixnum]
+  # @return [String]
+  def write_nonblock(data)
+    translate_errors do
+      @socket.write_nonblock(data)
+    end
+  end
+  # Read exactly `maxlen` bytes from the {#socket}. If fewer than
+  # `maxlen` bytes are available for reading, wait until enough data
+  # is sent.
+  #
+  # @note May block
+  #
+  # @param (see #read_nonblock)
+  # @return (see #read_nonblock)
+  def read(maxlen)
+    buf = ""
+    until 0 == maxlen
+      prev_length = buf.length
+      buf << readpartial(maxlen)
+      maxlen -= buf.length - prev_length
+    end
+    buf
+  end
+  # Read at most `maxlen` bytes from the {#socket}.
+  #
+  # @note May block
+  #
+  # @param (see #read_nonblock)
+  # @return (see #read_nonblock)
+  def readpartial(maxlen = nil)
+    begin
+      read_nonblock(maxlen)
+    rescue IO::WaitReadable
+      IO.select([@socket])
+      retry
+    end
+  end
+  # Read at most `maxlen` bytes from the {#socket}.
+  #
+  # @param maxlen [Fixnum]
+  # @return [String]
+  def read_nonblock(maxlen = nil)
+    translate_errors do
+      @socket.read_nonblock(maxlen)
+    end
+  end
+  # Ruby `Socket#gets` accepts:
+  #
+  # * `gets( sep = $/ )`
+  # * `gets( limit = nil )`
+  # * `gets( sep = $/, limit = nil )`
+  #
+  # `OpenSSL::SSL::SSLSocket#gets` however only supports `gets(sep=$/, limit=nil)`.
+  # This hack allows SSLSocket to behave the same as Ruby Socket.
+  #
+  # @note May block
+  def gets(*args)
+    translate_errors do
+      if args.size == 1
+        arg = args.first
+        if arg.is_a?(Numeric)
+          @socket.gets($/, arg)
+        else
+          @socket.gets(arg)
+        end
+      else
+        @socket.gets(*args)
+      end
+    end
+  end
+  # Close this socket. If this socket is an SSL stream, closes both the
+  # SSL stream and the underlying socket
+  #
+  # @return [void]
+  def close
+    begin
+      super
+    ensure
+      if (!@plaintext_socket.closed?)
+        @plaintext_socket.close
+      end
+    end
+  end
+  # Attempt to turn this into something usable by `IO.select`.
+  #
+  # @return [IO]
+  def to_io
+    IO.try_convert(@socket) || @socket
+  end
+  # Whether this socket is encrypted with SSL
+  def ssl?
+    !!(@socket.respond_to?(:context) && @socket.context)
+  end
+  # The version of SSL/TLS that was negotiated with the server.
+  #
+  # @return [String] See OpenSSL::SSL::SSLSocket#ssl_version for
+  #   possible values
+  # @return [nil] If this socket is not SSL
+  def ssl_version
+    return nil unless ssl?
+    @socket.ssl_version
+  end
+  # @return [OpenSSL::SSL::SSLContext]
+  # @return [nil] If this socket is not SSL (see {#ssl?})
+  def ssl_context
+    return nil unless ssl?
+    @socket.context
+  end
+  # @note The original socket is replaced by the newly connected
+  #   {TCP::SSL} socket
+  #
+  # Starts an SSL/TLS stream over this connection.
+  #
+  # Using this as opposed to directly instantiating {TCP::SSL} allows
+  # you to start a TLS connection after data has already been exchanged
+  # to enable things like `STARTTLS`.
+  #
+  # @note May block
+  #
+  # @param ssl_options [Hash]  Options
+  # @option ssl_options :ssl_version [Symbol] (:TLSv1)
+  # @option ssl_options :ssl_verify_mode [Constant] (OpenSSL::SSL::VERIFY_PEER)
+  #   Peer verification mode.
+  # @option ssl_config :ssl_context [OpenSSL::SSL::SSLContext] (nil)
+  #   SSL context to use.
+  #
+  # @return [RaptorIO::Socket::TCP::SSL] A new Socket with an established
+  #   SSL connection
+  def to_ssl(ssl_options = {})
+    if ssl_options[:ssl_context]
+      options[:ssl_context] = ssl_options[:ssl_context]
+    else
+      ssl_options = DEFAULT_SSL_OPTIONS.merge(ssl_options)
+      options[:ssl_context] = OpenSSL::SSL::SSLContext.new.tap do |ctx|
+        ctx.ssl_version = ssl_options[:ssl_version]
+        ctx.verify_mode = ssl_options[:ssl_verify_mode]
+      end
+    end
+    s = RaptorIO::Socket::TCP::SSL.new(@plaintext_socket, options)
+    @socket = s
+    s
+  end
+  private
+  attr_accessor :plaintext_socket
+  def translate_errors(&block)
+    yield
+  rescue Errno::ECONNRESET, Errno::EPIPE
+    raise RaptorIO::Socket::Error::BrokenPipe
+  rescue Errno::ECONNREFUSED
+    raise RaptorIO::Socket::Error::ConnectionRefused
+  end
+end

data/lib/raptor-io/socket/tcp/ssl.rb ADDED

@@ -0,0 +1,77 @@
+# TCP client with SSL encryption.
+#
+# @author Tasos Laskos <tasos_laskos@rapid7.com>
+class RaptorIO::Socket::TCP::SSL < RaptorIO::Socket::TCP
+  # Create a new {SSL} from an already-connected
+  # `OpenSSL::SSL::SSLSocket`.
+  #
+  # @example
+  #   tcp_server = ::TCPServer.new()
+  #   ssl_server = OpenSSL::SSL::SSLServer.new(tcp_server)
+  #   RaptorIO::Socket::TCP::SSL.from_openssl(ssl_server.accept)
+  #
+  # @see TCPServer::SSL
+  # @param openssl_socket [OpenSSL::SSL::SSLSocket]
+  # @return [SSL]
+  def self.from_openssl(openssl_socket)
+    raptor = self.allocate
+    raptor.__send__(:socket=, openssl_socket)
+    raptor.__send__(:plaintext_socket=, openssl_socket.to_io)
+    raptor.options = {}
+    raptor.options[:ssl_context] = openssl_socket.context
+    raptor
+  end
+  # @!method ssl_context
+  #   The SSL context for this encrypted stream.
+  #
+  #   @return [OpenSSL::SSL::Context]
+  def_delegator :@socket, :ssl_context, :context
+  # @!method verify_mode
+  #   @return [Fixnum] One of the `OpenSSL::SSL::VERIFY_*` constants
+  def_delegator :@socket, :ssl_verify_mode, :verify_mode
+  # @!method version
+  #   @return [Symbol]  SSL version.
+  def_delegator :@socket, :ssl_version, :version
+  # @param  socket  [RaptorIO::Socket]
+  # @param  options [Hash]  Options
+  # @option (see TCP#to_ssl)
+  def initialize( socket, options = {} )
+    options = DEFAULT_SSL_OPTIONS.merge( options )
+    super
+    @context = options[:context] || options[:ssl_context]
+    if @context.nil?
+      @context = OpenSSL::SSL::SSLContext.new( options[:ssl_version] )
+      @context.verify_mode = options[:ssl_verify_mode]
+    end
+    @socket = OpenSSL::SSL::SSLSocket.new(socket.to_io, @context)
+    begin
+      #$stderr.puts("#{self.class}#initialize connecting")
+      @socket.connect_nonblock
+    rescue IO::WaitReadable, IO::WaitWritable => e
+      #$stderr.puts("Wait*able #{e}, #{options[:connect_timeout].inspect}")
+      if e.kind_of? IO::WaitReadable
+        r,w,_ = IO.select([@socket], nil, nil, options[:connect_timeout])
+      else
+        r,w,_ = IO.select(nil, [@socket], nil, options[:connect_timeout])
+      end
+      if r.nil? && w.nil?
+        #$stderr.puts("timeout")
+        raise RaptorIO::Socket::Error::ConnectionTimeout.new(e.to_s)
+      end
+      retry
+    end
+  end
+end

data/lib/raptor-io/socket/tcp_server.rb ADDED

@@ -0,0 +1,16 @@
+# A listening TCP socket
+class RaptorIO::Socket::TCPServer < RaptorIO::Socket
+  # @!method accept
+  def_delegator :@socket, :accept, :accept
+  # @!method accept_nonblock
+  def_delegator :@socket, :accept_nonblock, :accept_nonblock
+  # @!method bind
+  def_delegator :@socket, :bind, :bind
+  # @!method listen
+  def_delegator :@socket, :listen, :listen
+end

data/lib/raptor-io/socket/tcp_server/ssl.rb ADDED

@@ -0,0 +1,52 @@
+# TCP server with SSL encryption.
+#
+# @author Tasos Laskos <tasos_laskos@rapid7.com>
+class RaptorIO::Socket::TCPServer::SSL < RaptorIO::Socket::TCPServer
+  def initialize( socket, options = {} )
+    #p options[:context].frozen?
+    super
+    #p options[:context].frozen?
+    @context = options[:context]
+    if @context.nil?
+      @context = OpenSSL::SSL::SSLContext.new( options[:ssl_version] )
+      @context.verify_mode = options[:verify_mode]
+    end
+    @plaintext_socket = socket
+    @socket = OpenSSL::SSL::SSLServer.new( socket, @context )
+  end
+  # Accepts a client connection.
+  #
+  # @see Socket::TCP::SSL.from_openssl
+  # @return [RaptorIO::Socket::TCP::SSL]
+  def accept
+    RaptorIO::Socket::TCP::SSL.from_openssl(@socket.accept)
+  end
+  # Accepts a client connection without blocking.
+  #
+  # @see Socket::TCP::SSL.from_openssl
+  # @return [RaptorIO::Socket::TCP::SSL]
+  # @raise [IO::WaitWritable]
+  def accept_nonblock
+    RaptorIO::Socket::TCP::SSL.from_openssl(@socket.accept_nonblock)
+  end
+  # Close this SSL stream and the underlying socket
+  #
+  # @return [void]
+  def close
+    begin
+      @socket.close
+    ensure
+      if (!@plaintext_socket.closed?)
+        @plaintext_socket.close
+      end
+    end
+  end
+end

data/lib/raptor-io/socket/udp.rb ADDED

File without changes

data/lib/raptor-io/version.rb ADDED

@@ -0,0 +1,6 @@
+module RaptorIO
+  # Version number.
+  VERSION = '0.0.1'
+end

data/lib/tasks/yard.rake ADDED

@@ -0,0 +1,26 @@
+# @note All options not specific to any given rake task should go in the .yardopts file so they are available to both
+#   the below rake tasks and when invoking `yard` from the command line
+if defined? YARD
+  namespace :yard do
+    YARD::Rake::YardocTask.new(:doc) do |t|
+      # --no-stats here as 'stats' task called after will print fuller stats
+      t.options = ['--no-stats']
+      t.after = Proc.new {
+        Rake::Task['yard:stats'].execute
+      }
+    end
+    desc "Shows stats for YARD Documentation including listing undocumented modules, classes, constants, and methods"
+    task :stats => :environment do
+      stats = YARD::CLI::Stats.new
+      stats.run('--compact', '--list-undoc')
+    end
+  end
+  # @todo Figure out how to just clone description from yard:doc
+  desc "Generate YARD documentation"
+  # allow calling namespace to as a task that goes to default task for namespace
+  task :yard => ['yard:doc']
+end