rucades 0.3.0

data/ext/rucades/rucades_tools.cpp

@@ -0,0 +1,18 @@
+// Copyright (c) 2023 Maxim [maxirmx] Samsonov (https://sw.consulting)
+// All rights reserved.
+// This file is a part of rucades
+
+#include "rucades.h"
+
+namespace rucades {
+void hr_method_check(HRESULT hr) {
+  if (hr != S_OK) {
+    CAtlStringW message = GetErrorMessage(HRESULT_FROM_WIN32(hr),
+                                          MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US));
+    wchar_t buff[14];
+    swprintf(buff, 14, L" (0x%08X)", hr);
+    message.Append(buff);
+    throw std::runtime_error(CW2A(message, CP_UTF8));
+  }
+}
+}

data/ext/rucades/rucades_version.cpp

@@ -0,0 +1,60 @@
+// Copyright (c) 2023 Maxim [maxirmx] Samsonov (https://sw.consulting)
+// All rights reserved.
+// This file is a part of rucades
+
+#include <rice/rice.hpp>
+#include <rice/stl.hpp>
+
+#include "rucades.h"
+#include "rucades_version.h"
+
+using namespace Rice;
+using namespace CryptoPro::PKI::CAdES;
+
+namespace rucades {
+pre_rb_Version::pre_rb_Version(void):
+      m_pCppCadesImpl(boost::shared_ptr<CPPVersionObject>(new CPPVersionObject())) { }
+
+pre_rb_Version::pre_rb_Version(boost::shared_ptr<CPPVersionObject> other):
+      m_pCppCadesImpl(other) { }
+
+unsigned int pre_rb_Version::major_version(void)
+{
+  unsigned int version = 0;
+  hr_method_check(m_pCppCadesImpl->get_MajorVersion(&version));
+  return version;
+}
+
+unsigned int pre_rb_Version::minor_version(void)
+{
+  unsigned int version = 0;
+  hr_method_check(m_pCppCadesImpl->get_MinorVersion(&version));
+  return version;
+}
+
+unsigned int pre_rb_Version::build_version(void)
+{
+  unsigned int version = 0;
+  hr_method_check(m_pCppCadesImpl->get_BuildVersion(&version));
+  return version;
+}
+
+std::string pre_rb_Version::to_s(void)
+{
+  CAtlString AtlVersion;
+  hr_method_check(m_pCppCadesImpl->toString(AtlVersion));
+  return AtlVersion.GetString();
+}
+
+void pre_rb_Version::define_ruby_class(VALUE module)
+{
+  Data_Type<pre_rb_Version> rb_cVersion =
+    define_class_under<pre_rb_Version>(module, "Version")
+    .define_constructor(Constructor<pre_rb_Version>())
+    .define_method("major_version", &pre_rb_Version::major_version)
+    .define_method("minor_version", &pre_rb_Version::minor_version)
+    .define_method("build_version", &pre_rb_Version::build_version)
+    .define_method("to_s", &pre_rb_Version::to_s);
+
+}
+}

data/ext/rucades/rucades_version.h

@@ -0,0 +1,24 @@
+// Copyright (c) 2023 Maxim [maxirmx] Samsonov (https://sw.consulting)
+// All rights reserved.
+// This file is a part of rucades
+
+#pragma once
+
+#include "rucades.h"
+#include "CPPVersion.h"
+
+namespace rucades {
+class pre_rb_Version {
+  protected:
+    boost::shared_ptr<CryptoPro::PKI::CAdES::CPPVersionObject> m_pCppCadesImpl;
+  public:
+    pre_rb_Version(void);
+    pre_rb_Version(boost::shared_ptr<CryptoPro::PKI::CAdES::CPPVersionObject> other);
+    unsigned int major_version(void);
+    unsigned int minor_version(void);
+    unsigned int build_version(void);
+    std::string to_s(void);
+
+    static void define_ruby_class(VALUE module);
+};
+}

data/ext/rucades/stdafx.h

@@ -0,0 +1,190 @@
+// stdafx.h : include file for standard system include files,
+// or project specific include files that are used frequently, but
+// are changed infrequently
+//
+#pragma once
+
+#define CRYPT_SIGN_MESSAGE_PARA_HAS_CMS_FIELDS
+#define CMSG_SIGNER_ENCODE_INFO_HAS_CMS_FIELDS
+#define CMSG_SIGNED_ENCODE_INFO_HAS_CMS_FIELDS
+#define CERT_PARA_HAS_EXTRA_FIELDS
+
+#define WIN32_LEAN_AND_MEAN // Exclude rarely-used stuff from Windows headers
+// Windows Header Files:
+#ifdef _WIN32
+#define RETURN_ATL_STRING RETURN_ATL_STRING_W
+#define RETURN_ATL_STRINGL RETURN_ATL_STRINGL_W
+#endif
+
+
+#include "boost/shared_ptr.hpp"
+#include <iostream>
+#include <memory> //Этот хедер тут нужен что бы компилить с новыми версиями libstdc++
+                  //в них есть конфликт с __in и __out макросами которые определены в MS хедерах.
+
+#ifdef UNIX
+#include "CSP_WinDef.h"
+#include "CSP_WinError.h"
+#include <string>
+#include <stdarg.h>
+#include <atldef2.h>
+#define CADES_CLASS
+#define RETURN_ATL_STRING RETURN_ATL_STRING_A
+#define RETURN_ATL_STRINGL RETURN_ATL_STRINGL_A
+#endif //UNIX
+#include <WinCryptEx.h>
+
+#include "atltrace2.h"
+#include <atldef2.h>
+#include <atlenc.h>
+#include <atlcrypt2.h>
+
+#define _ATL_APARTMENT_THREADED
+// some CString constructors will be explicit
+#define _ATL_CSTRING_EXPLICIT_CONSTRUCTORS
+// turns off ATL's hiding of some common and often safely ignored warning messages
+#define _ATL_ALL_WARNINGS
+
+#include <atlbase.h>
+#ifdef _WIN32
+#include <atlcom.h>
+#endif //_WIN32
+#pragma warning(push)
+#pragma warning(disable : 4127)
+#include <atlstr.h>
+#pragma warning(pop)
+#include "errormsg.h"
+
+#ifndef UNIX
+#pragma warning(push)
+#pragma warning(disable : 4005)
+#endif
+
+#define RETURN_ATL_STRING_W(atlstr)                   \
+    {                                                 \
+        char *str;                                    \
+        int len = 0;                                  \
+        len = atlstr.GetLength();                     \
+        str = (char *)ecalloc(len + 1, sizeof(char)); \
+        wcstombs(str, atlstr, len);                   \
+        str[len] = '\0';                              \
+        RETURN_STRING(str, 0)                         \
+    }
+
+#define RETURN_ATL_STRINGL_W(atlstr)              \
+    {                                             \
+        char *str;                                \
+        int len = 0;                              \
+        len = atlstr.GetLength();                 \
+        str = (char *)ecalloc(len, sizeof(char)); \
+        wcstombs(str, atlstr, len);               \
+        RETURN_STRINGL(str, len, 0)               \
+    }
+
+#define RETURN_ATL_STRING_A(atlstr)                   \
+    {                                                 \
+        char *str;                                    \
+        int len = 0;                                  \
+        len = atlstr.GetLength();                     \
+        str = (char *)ecalloc(len + 1, sizeof(char)); \
+        memcpy(str, atlstr, len);                     \
+        str[len] = '\0';                              \
+        RETURN_STRING(str, 0)                         \
+    }
+
+#define RETURN_ATL_STRINGL_A(atlstr)              \
+    {                                             \
+        char *str;                                \
+        int len = 0;                              \
+        len = atlstr.GetLength();                 \
+        str = (char *)ecalloc(len, sizeof(char)); \
+        memcpy(str, atlstr, len);                 \
+        RETURN_STRINGL(str, len, 0)               \
+    }
+
+#define RETURN_PROXY_STRING(prstr)                    \
+    {                                                 \
+        char *str;                                    \
+        int len = 0;                                  \
+        len = strlen(prstr.c_str());                  \
+        str = (char *)ecalloc(len + 1, sizeof(char)); \
+        strncpy(str, prstr.c_str(), len + 1);         \
+        RETURN_STRING(str, 0)                         \
+    }
+
+#ifdef UNIX //разные макросы ибо на линуксе нет  _vscwprintf() который нужен внутри AppendFormat().
+
+#ifdef MAKELANGID
+#undef MAKELANGID
+#endif //MAKELANGID
+
+#define MAKELANGID(a, b) 0x409 //English U.S.
+
+#define RETURN_NULL_WITH_EXCEPTION(err)                                                      \
+    do                                                                                       \
+    {                                                                                        \
+        CAtlStringW message = GetErrorMessage(HRESULT_FROM_WIN32(err),                       \
+                                              MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US)); \
+        wchar_t buff[14];                                                                    \
+        swprintf(buff, 14, L" (0x%08X)", err);                                               \
+        message.Append(buff);                                                                \
+        PyErr_SetString(PyExc_Exception, CW2A(message, CP_UTF8));                            \
+        return NULL;                                                                         \
+    } while (0)
+
+#define RETURN_MINUS_1_WITH_EXCEPTION(err)                                                   \
+    do                                                                                       \
+    {                                                                                        \
+        CAtlStringW message = GetErrorMessage(HRESULT_FROM_WIN32(err),                       \
+                                              MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US)); \
+        wchar_t buff[14];                                                                    \
+        swprintf(buff, 14, L" (0x%08X)", err);                                               \
+        message.Append(buff);                                                                \
+        PyErr_SetString(PyExc_Exception, CW2A(message, CP_UTF8));                            \
+        return -1;                                                                           \
+    } while (0)
+
+#else
+#define RETURN_NULL_WITH_EXCEPTION(err)                                                      \
+    do                                                                                       \
+    {                                                                                        \
+        CAtlStringW message = GetErrorMessage(HRESULT_FROM_WIN32(err),                       \
+                                              MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US)); \
+        message.AppendFormat(L" (0x%08X)", err);                                             \
+        PyErr_SetString(PyExc_Exception, CW2A(message, CP_UTF8));                            \
+        return NULL;                                                                         \
+    } while (0)
+
+#define RETURN_MINUS_1_WITH_EXCEPTION(err)                                                   \
+    do                                                                                       \
+    {                                                                                        \
+        CAtlStringW message = GetErrorMessage(HRESULT_FROM_WIN32(err),                       \
+                                              MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US)); \
+        message.AppendFormat(L" (0x%08X)", err);                                             \
+        PyErr_SetString(PyExc_Exception, CW2A(message, CP_UTF8));                            \
+        return -1;                                                                           \
+    } while (0)
+
+#endif //UNIX
+
+#define HR_SETTER_ERRORCHECK_RETURN(expr)             \
+    __pragma(warning(push))                           \
+        __pragma(warning(disable : 4127)) do          \
+    {                                                 \
+        HRESULT stdafx_hr = (expr);                   \
+        if (stdafx_hr != S_OK)                        \
+        {                                             \
+            RETURN_MINUS_1_WITH_EXCEPTION(stdafx_hr); \
+        }                                             \
+    } while (0)
+
+#define HR_METHOD_ERRORCHECK_RETURN(expr)          \
+    __pragma(warning(push))                        \
+        __pragma(warning(disable : 4127)) do       \
+    {                                              \
+        HRESULT stdafx_hr = (expr);                \
+        if (stdafx_hr != S_OK)                     \
+        {                                          \
+            RETURN_NULL_WITH_EXCEPTION(stdafx_hr); \
+        }                                          \
+    } while (0)

data/lib/rucades/version.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+# Copyright (c) 2023 Maxim [maxirmx] Samsonov (https://sw.consulting)
+# All rights reserved.
+# This file is a part of rucades
+
+module Rucades
+  VERSION = "0.3.0"
+end

data/lib/rucades.rb

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+# Copyright (c) 2023 Maxim [maxirmx] Samsonov (https://sw.consulting)
+# All rights reserved.
+# This file is a part of rucades
+
+require_relative "rucades/version"
+require_relative "rucades/rucades"
+
+# Rucades module
+# Some staff on top of C++ bindings
+module Rucades
+  # Polyfill for Certificates.find
+  class Certificates
+    def find(type, *args)
+      return find_no_query(type) if args.empty?
+
+      valid_only = (args.length == 1 ? 0 : -1)
+      return internal_find_query_string(type, args[1], valid_only) if args[1].is_a?(String)
+
+      internal_find_query_long(type, args[1], valid_only)
+    end
+
+    private
+
+    def find_no_query(type)
+      if type != Rucades::CAPICOM_CERTIFICATE_FIND_TIME_VALID &&
+         type != Rucades::CAPICOM_CERTIFICATE_FIND_TIME_NOT_YET_VALID &&
+         type != Rucades::CAPICOM_CERTIFICATE_FIND_TIME_EXPIRED
+        raise ArgumentError, "Missing query"
+      end
+
+      internal_find_query_string(type, "", 0)
+    end
+  end
+end

data/samples/encrypt_decrypt.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+require "rucades"
+
+store = Rucades::Store.new
+store.open(Rucades::CADESCOM_CONTAINER_STORE, Rucades::CAPICOM_MY_STORE,
+           Rucades::CAPICOM_STORE_OPEN_MAXIMUM_ALLOWED)
+certs = store.certificates
+
+raise "Certificates with private key not found" unless certs.any?
+
+signer = Rucades::Signer.new
+signer.certificate = certs[1]
+signer.check_certificate = true
+
+signed_data = Rucades::SignedData.new
+signed_data.content = "Test content to be signed"
+signature = signed_data.sign_cades(signer, Rucades::CADESCOM_CADES_BES)
+puts "============= Signature ============="
+puts signature
+puts "====================================="
+
+signed_data2 = Rucades::SignedData.new
+signed_data2.verify_cades(signature, Rucades::CADESCOM_CADES_BES)
+puts "******* Verified successfully ******"

data/samples/sign_verify.rb

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require "rucades"
+
+store = Rucades::Store.new
+store.open(Rucades::CADESCOM_CONTAINER_STORE, Rucades::CAPICOM_MY_STORE,
+           Rucades::CAPICOM_STORE_OPEN_MAXIMUM_ALLOWED)
+certs = store.certificates
+
+raise "Certificates with private key not found" unless certs.any?
+
+# hashed_data = Rucades::HashedData.new
+
+enveloped_data = Rucades::EnvelopedData.new
+enveloped_data.content = "Message to encrypt с русскими буквами"
+enveloped_data.recipients.add(certs[1])
+encrypted_message = enveloped_data.encrypt(Rucades::CADESCOM_ENCODE_BASE64)
+puts "============= Encrypted Message ============="
+puts encrypted_message
+puts "============================================="
+
+enveloped_data_dec = Rucades::EnvelopedData.new
+enveloped_data_dec.decrypt(encrypted_message)
+content = enveloped_data_dec.content
+
+raise "Incorrect value of EnvelopedData.decrypt result" unless content == "Message to encrypt с русскими буквами"
+
+puts "=========== Decrypted successfully =========="

data/samples/sign_verify_hash.rb

@@ -0,0 +1,30 @@
+# frozen_string_literal: true
+
+require "rucades"
+
+store = Rucades::Store.new
+store.open(Rucades::CADESCOM_CONTAINER_STORE, Rucades::CAPICOM_MY_STORE,
+           Rucades::CAPICOM_STORE_OPEN_MAXIMUM_ALLOWED)
+certs = store.certificates
+
+raise "Certificates with private key not found" unless certs.any?
+
+signer = Rucades::Signer.new
+signer.certificate = certs[1]
+signer.check_certificate = true
+
+hashed_data = Rucades::HashedData.new
+hashed_data.algorithm = Rucades::CADESCOM_HASH_ALGORITHM_CP_GOST_3411_2012_256
+hashed_data.hash("test data")
+
+signed_data = Rucades::SignedData.new
+signature = signed_data.sign_hash(hashed_data, signer, Rucades::CADESCOM_CADES_BES)
+
+puts "============= Encrypted Message ============="
+puts signature
+puts "============================================="
+
+signed_data_dec = Rucades::SignedData.new
+signed_data_dec.verify_hash(hashed_data, signature, Rucades::CADESCOM_CADES_BES)
+
+puts "=========== Verified successfully ==========="

data/samples/sign_verify_xml.rb

@@ -0,0 +1,44 @@
+# frozen_string_literal: true
+
+require "rucades"
+
+store = Rucades::Store.new
+store.open(Rucades::CADESCOM_CONTAINER_STORE, Rucades::CAPICOM_MY_STORE,
+           Rucades::CAPICOM_STORE_OPEN_MAXIMUM_ALLOWED)
+certs = store.certificates
+
+raise "Certificates with private key not found" unless certs.any?
+
+signer = Rucades::Signer.new
+signer.certificate = certs[1]
+
+content_to_sign = <<~XML
+  <?xml version="1.0" encoding="UTF-8"?>
+      <!--
+          "XML Security Library example: Original XML doc file for sign2 example. "
+      -->
+          <Envelope xmlns="urn:envelope">
+              <Data>
+                  Hello, World!
+              </Data>
+              <Node xml:id="nodeID">
+              	Hello, Node!
+              </Node>
+          </Envelope>
+XML
+
+signed_xml = Rucades::SignedXML.new
+signed_xml.content = content_to_sign
+signed_xml.signature_type = Rucades::CADESCOM_XML_SIGNATURE_TYPE_ENVELOPED | Rucades::CADESCOM_XADES_BES
+signature = signed_xml.sign(signer)
+
+puts "============= Encrypted Message ============="
+puts signature
+puts "============================================="
+
+signed_xml_dec = Rucades::SignedXML.new
+signed_xml_dec.verify(signature)
+
+raise "Incorrect value of SignedXML.verify result" unless signed_xml.content == content_to_sign
+
+puts "=========== Verified successfully ==========="

data/sig/rucades.rbs

@@ -0,0 +1,4 @@
+module Rucades
+  VERSION: String
+  # See the writing guide of rbs: https://github.com/ruby/rbs#guides
+end

metadata

@@ -0,0 +1,156 @@
+--- !ruby/object:Gem::Specification
+name: rucades
+version: !ruby/object:Gem::Version
+  version: 0.3.0
+platform: ruby
+authors:
+- Maxim [maxirmx] Samsonov
+bindir: exe
+cert_chain: []
+date: 1980-01-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: fiddle
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+- !ruby/object:Gem::Dependency
+  name: rice
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.1'
+description: Ruby CaDes bindings
+email:
+- maxirmx@sw.consulting
+executables: []
+extensions:
+- ext/rucades/extconf.rb
+extra_rdoc_files: []
+files:
+- ".rspec"
+- ".rubocop.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- ext/rucades/cplib/Blob.h
+- ext/rucades/cplib/DateTime.h
+- ext/rucades/cplib/StringProxy.h
+- ext/rucades/cpstldll.h
+- ext/rucades/errormsg.cpp
+- ext/rucades/errormsg.h
+- ext/rucades/extconf.rb
+- ext/rucades/rucades.cpp
+- ext/rucades/rucades.h
+- ext/rucades/rucades_about.cpp
+- ext/rucades/rucades_about.h
+- ext/rucades/rucades_algorithm.cpp
+- ext/rucades/rucades_algorithm.h
+- ext/rucades/rucades_attribute.cpp
+- ext/rucades/rucades_attribute.h
+- ext/rucades/rucades_attributes.cpp
+- ext/rucades/rucades_attributes.h
+- ext/rucades/rucades_basic_constraints.cpp
+- ext/rucades/rucades_basic_constraints.h
+- ext/rucades/rucades_blobs.cpp
+- ext/rucades/rucades_blobs.h
+- ext/rucades/rucades_certificate.cpp
+- ext/rucades/rucades_certificate.h
+- ext/rucades/rucades_certificate_status.cpp
+- ext/rucades/rucades_certificate_status.h
+- ext/rucades/rucades_certificates.cpp
+- ext/rucades/rucades_certificates.h
+- ext/rucades/rucades_const.cpp
+- ext/rucades/rucades_crl.cpp
+- ext/rucades/rucades_crl.h
+- ext/rucades/rucades_eku.cpp
+- ext/rucades/rucades_eku.h
+- ext/rucades/rucades_ekus.cpp
+- ext/rucades/rucades_ekus.h
+- ext/rucades/rucades_encoded_data.cpp
+- ext/rucades/rucades_encoded_data.h
+- ext/rucades/rucades_enveloped_data.cpp
+- ext/rucades/rucades_enveloped_data.h
+- ext/rucades/rucades_extended_key_usage.cpp
+- ext/rucades/rucades_extended_key_usage.h
+- ext/rucades/rucades_hashed_data.cpp
+- ext/rucades/rucades_hashed_data.h
+- ext/rucades/rucades_key_usage.cpp
+- ext/rucades/rucades_key_usage.h
+- ext/rucades/rucades_oid.cpp
+- ext/rucades/rucades_oid.h
+- ext/rucades/rucades_private_key.cpp
+- ext/rucades/rucades_private_key.h
+- ext/rucades/rucades_public_key.cpp
+- ext/rucades/rucades_public_key.h
+- ext/rucades/rucades_raw_signature.cpp
+- ext/rucades/rucades_raw_signature.h
+- ext/rucades/rucades_recipients.cpp
+- ext/rucades/rucades_recipients.h
+- ext/rucades/rucades_signature_status.cpp
+- ext/rucades/rucades_signature_status.h
+- ext/rucades/rucades_signed_data.cpp
+- ext/rucades/rucades_signed_data.h
+- ext/rucades/rucades_signed_xml.cpp
+- ext/rucades/rucades_signed_xml.h
+- ext/rucades/rucades_signer.cpp
+- ext/rucades/rucades_signer.h
+- ext/rucades/rucades_signers.cpp
+- ext/rucades/rucades_signers.h
+- ext/rucades/rucades_store.cpp
+- ext/rucades/rucades_store.h
+- ext/rucades/rucades_symmetric_algorithm.cpp
+- ext/rucades/rucades_symmetric_algorithm.h
+- ext/rucades/rucades_tools.cpp
+- ext/rucades/rucades_version.cpp
+- ext/rucades/rucades_version.h
+- ext/rucades/stdafx.h
+- lib/rucades.rb
+- lib/rucades/version.rb
+- samples/encrypt_decrypt.rb
+- samples/sign_verify.rb
+- samples/sign_verify_hash.rb
+- samples/sign_verify_xml.rb
+- sig/rucades.rbs
+homepage: https://github.com/maxirmx/rucades
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/maxirmx/rucades
+  source_code_uri: https://github.com/maxirmx/rucades
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.8
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.6.9
+specification_version: 4
+summary: https://github.com/maxirmx/rucades
+test_files: []