rufus-treechecker 1.0.3 → 1.0.4

metadata

@@ -1,7 +1,12 @@
 --- !ruby/object:Gem::Specification 
 name: rufus-treechecker
 version: !ruby/object:Gem::Version 
-  version: 1.0.3
+  prerelease: false
+  segments: 
+  - 1
+  - 0
+  - 4
+  version: 1.0.4
 platform: ruby
 authors: 
 - John Mettraux
@@ -9,40 +14,78 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2008-10-29 00:00:00 +09:00
+date: 2010-12-22 00:00:00 +09:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
   name: ruby_parser
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 2
+        - 0
+        - 5
+        version: 2.0.5
   type: :runtime
-  version_requirement: 
-  version_requirements: !ruby/object:Gem::Requirement 
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: rake
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
     requirements: 
     - - ">="
       - !ruby/object:Gem::Version 
+        segments: 
+        - 0
         version: "0"
-    version: 
-description: 
-email: john at openwfe dot org
+  type: :development
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 2
+        - 0
+        version: "2.0"
+  type: :development
+  version_requirements: *id003
+description: "\n    tests strings of Ruby code for unauthorized patterns (exit, eval, ...)\n  "
+email: 
+- jmettraux@gmail.com
 executables: []
 
 extensions: []
 
-extra_rdoc_files: 
-- README.txt
+extra_rdoc_files: []
+
 files: 
-- lib/rufus
+- Rakefile
+- lib/rufus/tree_checker.rb
 - lib/rufus/treechecker.rb
+- lib/rufus-tree_checker.rb
 - lib/rufus-treechecker.rb
+- spec/high_spec.rb
+- spec/low_spec.rb
+- spec/misc_spec.rb
+- spec/ruleset_spec.rb
+- spec/spec_base.rb
 - test/bm.rb
-- test/ft_0_basic.rb
-- test/ft_1_old_treechecker.rb
-- test/ft_2_clone.rb
-- test/test.rb
-- test/testmixin.rb
+- rufus-treechecker.gemspec
+- CHANGELOG.txt
+- CREDITS.txt
+- LICENSE.txt
 - README.txt
 has_rdoc: true
-homepage: http://rufus.rubyforge.org/rufus-treechecker
+homepage: http://rufus.rubyforge.org
+licenses: []
+
 post_install_message: 
 rdoc_options: []
 
@@ -52,20 +95,22 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
+      segments: 
+      - 0
       version: "0"
-  version: 
 required_rubygems_version: !ruby/object:Gem::Requirement 
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
+      segments: 
+      - 0
       version: "0"
-  version: 
-requirements: 
-- ruby_parser
+requirements: []
+
 rubyforge_project: rufus
-rubygems_version: 1.2.0
+rubygems_version: 1.3.6
 signing_key: 
-specification_version: 2
-summary: checking ruby code before eval()
-test_files: 
-- test/test.rb
+specification_version: 3
+summary: tests strings of Ruby code for unauthorized patterns (exit, eval, ...)
+test_files: []
+

data/test/ft_0_basic.rb

@@ -1,253 +0,0 @@
-
-#
-# Testing rufus-treechecker
-#
-# jmettraux at gmail.org
-#
-# Fri Aug 29 10:13:33 JST 2008
-#
-
-require 'testmixin'
-
-
-class BasicTest < Test::Unit::TestCase
-  include TestMixin
-
-
-  def test_0
-
-    tc = Rufus::TreeChecker.new do
-      exclude_vcall :abort
-      exclude_fcall :abort
-      exclude_call_to :abort
-      exclude_fvcall :exit, :exit!
-      exclude_call_to :exit
-      exclude_call_to :exit!
-    end
-
-    assert_nok(tc, 'exit')
-    assert_nok(tc, 'exit()')
-    assert_nok(tc, 'exit!')
-    assert_nok(tc, 'abort')
-    assert_nok(tc, 'abort()')
-    assert_nok(tc, 'Kernel.exit')
-    assert_nok(tc, 'Kernel.exit()')
-    assert_nok(tc, 'Kernel::exit')
-    assert_nok(tc, 'Kernel::exit()')
-    assert_nok(tc, '::Kernel.exit')
-
-    assert_ok(tc, '1 + 1')
-  end
-
-  def test_0b_vm_exiting
-
-    # TODO : implement me !
-  end
-
-  def test_1_global_vars
-
-    tc = Rufus::TreeChecker.new do
-      exclude_global_vars
-    end
-
-    assert_nok(tc, '$ENV')
-    assert_nok(tc, '$ENV = {}')
-    assert_nok(tc, "$ENV['HOME'] = 'away'")
-  end
-
-  def test_2_aliases
-
-    tc = Rufus::TreeChecker.new do
-      exclude_alias
-    end
-
-    assert_nok(tc, 'alias :a :b')
-  end
-
-  def test_3_exclude_calls_on
-
-    tc = Rufus::TreeChecker.new do
-      exclude_call_on File, FileUtils
-      exclude_call_on IO
-    end
-    #puts tc.to_s
-
-    assert_nok(tc, 'data = File.read("surf.txt")')
-    assert_nok(tc, 'f = File.new("surf.txt")')
-    assert_nok(tc, 'FileUtils.rm_f("bondzoi.txt")')
-    assert_nok(tc, 'IO.foreach("testfile") {|x| print "GOT ", x }')
-  end
-
-  def test_4_exclude_def
-
-    tc = Rufus::TreeChecker.new do
-      exclude_def
-    end
-
-    assert_nok(tc, 'def drink; "water"; end')
-    assert_nok(tc, 'class Toto; def drink; "water"; end; end')
-  end
-
-  def test_5_exclude_class_tinkering
-
-    tc = Rufus::TreeChecker.new do
-      exclude_class_tinkering
-    end
-
-    assert_nok(tc, 'class << instance; def length; 3; end; end')
-    assert_nok(tc, 'class Toto; end')
-    assert_nok(tc, 'class Alpha::Toto; end')
-  end
-
-  def test_5b_exclude_class_tinkering_with_exceptions
-
-    tc = Rufus::TreeChecker.new do
-      exclude_class_tinkering :except => [ String, Rufus::TreeChecker ]
-    end
-    #puts tc.to_s
-
-    assert_nok(tc, 'class String; def length; 3; end; end')
-
-    assert_ok(tc, 'class S2 < String; def length; 3; end; end')
-    assert_ok(tc, 'class Toto < Rufus::TreeChecker; def length; 3; end; end')
-
-    assert_nok(tc, 'class Toto; end')
-    assert_nok(tc, 'class Alpha::Toto; end')
-  end
-
-  def test_6_exclude_module_tinkering
-
-    tc = Rufus::TreeChecker.new do
-      exclude_module_tinkering
-    end
-
-    assert_nok(tc, 'module Alpha; end')
-    assert_nok(tc, 'module Momo::Alpha; end')
-  end
-
-  def test_7_exclude_eval
-
-    tc = Rufus::TreeChecker.new do
-      exclude_eval
-    end
-
-    assert_nok(tc, 'eval("code")')
-    assert_nok(tc, 'Kernel.eval("code")')
-    assert_nok(tc, 'toto.instance_eval("code")')
-    assert_nok(tc, 'Toto.module_eval("code")')
-  end
-
-  def test_8_exclude_backquotes
-
-    tc = Rufus::TreeChecker.new do
-      exclude_backquotes
-    end
-
-    assert_nok(tc, '`kill -9 whatever`')
-  end
-
-  def test_9_exclude_raise_and_throw
-
-    tc = Rufus::TreeChecker.new do
-      exclude_raise
-    end
-
-    assert_nok(tc, 'raise')
-    assert_nok(tc, 'raise "error"')
-    assert_nok(tc, 'Kernel.raise')
-    assert_nok(tc, 'Kernel.raise "error"')
-    assert_ok(tc, 'Kernel.puts "error"')
-    assert_nok(tc, 'throw')
-    assert_nok(tc, 'throw :halt')
-  end
-
-  def test_10_exclude_public
-
-    tc = Rufus::TreeChecker.new do
-      exclude_fvccall :public
-      exclude_fvccall :protected
-      exclude_fvccall :private
-    end
-
-    assert_nok(tc, 'public')
-    assert_nok(tc, 'public :surf')
-    assert_nok(tc, 'class Toto; public :car; end')
-    assert_nok(tc, 'private')
-    assert_nok(tc, 'private :surf')
-    assert_nok(tc, 'class Toto; private :car; end')
-  end
-
-  def test_11_is_not
-
-    tc = Rufus::TreeChecker.new do
-      exclude_head [ :block ]
-      exclude_head [ :lasgn ]
-      exclude_head [ :dasgn_curr ]
-    end
-
-    assert_nok(tc, 'a; b; c')
-    assert_nok(tc, 'lambda { a; b; c }')
-
-    assert_nok(tc, 'a = 2')
-    assert_nok(tc, 'lambda { a = 2 }')
-  end
-
-  def test_12_at_root
-
-    tc = Rufus::TreeChecker.new do
-      at_root do
-        exclude_head [ :block ]
-        exclude_head [ :lasgn ]
-      end
-    end
-
-    assert_nok(tc, 'a; b; c')
-    assert_ok(tc, 'lambda { a; b; c }')
-
-    assert_nok(tc, 'a = 2')
-    assert_ok(tc, 'lambda { a = 2 }')
-  end
-
-  def test_12_rebinding
-
-    tc = Rufus::TreeChecker.new do
-      exclude_call_to :class
-      exclude_rebinding Kernel, Rufus::TreeChecker
-    end
-
-    assert_nok(tc, 'k = Kernel')
-    assert_nok(tc, 'k = ::Kernel')
-    assert_nok(tc, 'c = Rufus::TreeChecker')
-    assert_nok(tc, 'c = ::Rufus::TreeChecker')
-    assert_nok(tc, 's = "".class')
-  end
-
-  def test_13_access_to
-
-    tc = Rufus::TreeChecker.new do
-      exclude_access_to File
-    end
-
-    #puts tc.to_s
-
-    assert_nok(tc, 'f = File')
-    assert_nok(tc, 'f = ::File')
-    assert_nok(tc, 'File.read "hello.txt"')
-    assert_nok(tc, '::File.read "hello.txt"')
-  end
-
-  #def test_X
-  #  tc = Rufus::TreeChecker.new do
-  #  end
-  #  #tc.ptree 'load "surf"'
-  #  tc.ptree 'class Toto; load "nada"; end'
-  #  tc.ptree 'class Toto; def m; load "nada"; end; end'
-  #  tc.ptree 'class << toto; def m; load "nada"; end; end'
-  #  #tc.ptree 'lambda { a; b; c }'
-  #  #tc.ptree 'lambda { a = c }'
-  #  #tc.ptree 'c = 0; a = c'
-  #  #tc.ptree 'c = a = 0'
-  #  tc.ptree 'a = 5 + 6; puts a'
-  #end
-end
-

data/test/ft_1_old_treechecker.rb

@@ -1,72 +0,0 @@
-
-#
-# Testing rufus-treechecker
-#
-# jmettraux at gmail.org
-#
-# Fri Aug 29 10:13:33 JST 2008
-#
-
-require 'testmixin'
-
-module Testy
-  class Tasty
-  end
-end
-
-class OldTreeCheckerTest < Test::Unit::TestCase
-  include TestMixin
-
-
-  def test_0
-
-    tc = Rufus::TreeChecker.new do
-      exclude_fvccall :abort
-      exclude_fvccall :exit, :exit!
-      exclude_fvccall :system
-      exclude_eval
-      exclude_alias
-      exclude_global_vars
-      exclude_call_on File, FileUtils
-      exclude_class_tinkering :except => Testy::Tasty
-      exclude_module_tinkering
-
-      exclude_fvcall :public
-      exclude_fvcall :protected
-      exclude_fvcall :private
-      exclude_fcall :load
-      exclude_fcall :require
-    end
-
-    assert_nocompile tc, "def surf }"
-
-    assert_ok tc, "puts 'toto'"
-
-    assert_nok tc, "exit"
-    assert_nok tc, "puts $BATEAU"
-    assert_nok tc, "abort"
-    assert_nok tc, "abort; puts 'ok'"
-    assert_nok tc, "puts 'ok'; abort"
-
-    assert_nok tc, "exit 0"
-    assert_nok tc, "system('whatever')"
-
-    assert_nok tc, "alias :a :b"
-    assert_nok tc, "alias_method :a, :b"
-
-    assert_nok tc, "File.open('x')"
-    assert_nok tc, "FileUtils.rm('x')"
-
-    assert_nok tc, "eval 'nada'"
-    assert_nok tc, "M.module_eval 'nada'"
-    assert_nok tc, "o.instance_eval 'nada'"
-
-    assert_ok tc, "puts 'toto'"
-
-    assert_ok tc, "class Toto < Testy::Tasty\nend"
-    assert_nok tc, "class String\nend"
-    assert_nok tc, "module Whatever\nend"
-    assert_nok tc, "class << e\nend"
-  end
-end
-

data/test/ft_2_clone.rb

@@ -1,32 +0,0 @@
-
-#
-# Testing rufus-treechecker
-#
-# jmettraux at gmail.org
-#
-# Tue Sep  2 14:28:01 JST 2008
-#
-
-require 'testmixin'
-
-class CloneTest < Test::Unit::TestCase
-  include TestMixin
-
-
-  def test_0
-
-    tc0 = Rufus::TreeChecker.new do
-      exclude_fvccall :abort
-    end
-
-    tc1 = tc0.clone
-    tc1.add_rules do
-      at_root do
-        exclude_head [ :block ]
-      end
-    end
-
-    assert_not_equal tc0.object_id, tc1.object_id
-  end
-end
-

data/test/test.rb

@@ -1,5 +0,0 @@
-
-require 'ft_0_basic'
-require 'ft_1_old_treechecker'
-require 'ft_2_clone'
-

data/test/testmixin.rb

@@ -1,31 +0,0 @@
-
-#
-# Testing rufus-treechecker
-#
-# jmettraux at gmail.org
-#
-# Fri Aug 29 18:30:03 JST 2008
-#
-
-require 'test/unit'
-require 'rubygems'
-require 'rufus/treechecker'
-
-
-module TestMixin
-
-  def assert_ok (tc, rubycode)
-    tc.check(rubycode)
-  end
-  def assert_nok (tc, rubycode)
-    assert_raise Rufus::SecurityError, tc.stree(rubycode) do
-      tc.check(rubycode)
-    end
-  end
-  def assert_nocompile (tc, rubycode)
-    assert_raise Racc::ParseError do
-      tc.check(rubycode)
-    end
-  end
-end
-