RubyGems - schleuder - Versions diffs - 2.2.4 → 3.2.2 - Mend

schleuder 2.2.4 → 3.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (141) hide show

checksums.yaml +5 -5
data/README.md +138 -0
data/Rakefile +136 -0
data/bin/pinentry-clearpassphrase +72 -0
data/bin/schleuder +9 -89
data/bin/schleuder-api-daemon +4 -0
data/db/migrate/20140501103532_create_lists.rb +39 -0
data/db/migrate/20140501112859_create_subscriptions.rb +21 -0
data/db/migrate/201508092100_add_language_to_lists.rb +11 -0
data/db/migrate/20150812165700_change_keywords_admin_only_defaults.rb +8 -0
data/db/migrate/20150813235800_add_forward_all_incoming_to_admins.rb +11 -0
data/db/migrate/201508141727_change_send_encrypted_only_default.rb +8 -0
data/db/migrate/201508222143_add_logfiles_to_keep_to_lists.rb +11 -0
data/db/migrate/201508261723_rename_delivery_disabled_to_delivery_enabled_and_change_default.rb +14 -0
data/db/migrate/201508261815_strip_gpg_passphrase.rb +11 -0
data/db/migrate/201508261827_remove_default_mime.rb +9 -0
data/db/migrate/20160501172700_fix_headers_to_meta_defaults.rb +8 -0
data/db/migrate/20170713215059_add_internal_footer_to_list.rb +11 -0
data/db/schema.rb +62 -0
data/etc/init.d/schleuder-api-daemon +87 -0
data/etc/list-defaults.yml +123 -0
data/etc/postfix/schleuder_sqlite.cf +28 -0
data/etc/schleuder-api-daemon.service +10 -0
data/etc/schleuder.cron.weekly +6 -0
data/etc/schleuder.yml +61 -0
data/lib/schleuder-api-daemon.rb +420 -0
data/lib/schleuder.rb +81 -47
data/lib/schleuder/cli.rb +334 -0
data/lib/schleuder/cli/cert.rb +24 -0
data/lib/schleuder/cli/schleuder_cert_manager.rb +84 -0
data/lib/schleuder/cli/subcommand_fix.rb +11 -0
data/lib/schleuder/conf.rb +131 -0
data/lib/schleuder/errors/active_model_error.rb +15 -0
data/lib/schleuder/errors/base.rb +17 -0
data/lib/schleuder/errors/decryption_failed.rb +16 -0
data/lib/schleuder/errors/fatal_error.rb +13 -0
data/lib/schleuder/errors/file_not_found.rb +14 -0
data/lib/schleuder/errors/invalid_listname.rb +13 -0
data/lib/schleuder/errors/key_adduid_failed.rb +13 -0
data/lib/schleuder/errors/key_generation_failed.rb +16 -0
data/lib/schleuder/errors/keyword_admin_only.rb +13 -0
data/lib/schleuder/errors/list_exists.rb +13 -0
data/lib/schleuder/errors/list_not_found.rb +14 -0
data/lib/schleuder/errors/list_property_missing.rb +14 -0
data/lib/schleuder/errors/listdir_problem.rb +16 -0
data/lib/schleuder/errors/loading_list_settings_failed.rb +14 -0
data/lib/schleuder/errors/message_empty.rb +14 -0
data/lib/schleuder/errors/message_not_from_admin.rb +13 -0
data/lib/schleuder/errors/message_sender_not_subscribed.rb +13 -0
data/lib/schleuder/errors/message_too_big.rb +14 -0
data/lib/schleuder/errors/message_unauthenticated.rb +13 -0
data/lib/schleuder/errors/message_unencrypted.rb +13 -0
data/lib/schleuder/errors/message_unsigned.rb +13 -0
data/lib/schleuder/errors/standard_error.rb +5 -0
data/lib/schleuder/errors/too_many_keys.rb +17 -0
data/lib/schleuder/errors/unknown_list_option.rb +14 -0
data/lib/schleuder/filters/auth_filter.rb +39 -0
data/lib/schleuder/filters/bounces_filter.rb +12 -0
data/lib/schleuder/filters/forward_filter.rb +17 -0
data/lib/schleuder/filters/forward_incoming.rb +13 -0
data/lib/schleuder/filters/hotmail_message_filter.rb +25 -0
data/lib/schleuder/filters/max_message_size.rb +14 -0
data/lib/schleuder/filters/request_filter.rb +26 -0
data/lib/schleuder/filters/send_key_filter.rb +20 -0
data/lib/schleuder/filters/strip_alternative_filter.rb +21 -0
data/lib/schleuder/filters_runner.rb +83 -0
data/lib/schleuder/gpgme/ctx.rb +274 -0
data/lib/schleuder/gpgme/import_status.rb +27 -0
data/lib/schleuder/gpgme/key.rb +212 -0
data/lib/schleuder/gpgme/sub_key.rb +13 -0
data/lib/schleuder/gpgme/user_id.rb +22 -0
data/lib/schleuder/list.rb +318 -127
data/lib/schleuder/list_builder.rb +139 -0
data/lib/schleuder/listlogger.rb +31 -0
data/lib/schleuder/logger.rb +23 -0
data/lib/schleuder/logger_notifications.rb +69 -0
data/lib/schleuder/mail/message.rb +482 -0
data/lib/schleuder/mail/parts_list.rb +9 -0
data/lib/schleuder/plugin_runners/base.rb +91 -0
data/lib/schleuder/plugin_runners/list_plugins_runner.rb +24 -0
data/lib/schleuder/plugin_runners/request_plugins_runner.rb +27 -0
data/lib/schleuder/plugins/attach_listkey.rb +17 -0
data/lib/schleuder/plugins/get_version.rb +7 -0
data/lib/schleuder/plugins/key_management.rb +113 -0
data/lib/schleuder/plugins/list_management.rb +15 -0
data/lib/schleuder/plugins/resend.rb +196 -0
data/lib/schleuder/plugins/sign_this.rb +46 -0
data/lib/schleuder/plugins/subscription_management.rb +140 -0
data/lib/schleuder/runner.rb +130 -0
data/lib/schleuder/subscription.rb +98 -0
data/lib/schleuder/validators/boolean_validator.rb +7 -0
data/lib/schleuder/validators/email_validator.rb +7 -0
data/lib/schleuder/validators/fingerprint_validator.rb +7 -0
data/lib/schleuder/validators/greater_than_zero_validator.rb +7 -0
data/lib/schleuder/validators/no_line_breaks_validator.rb +7 -0
data/lib/schleuder/version.rb +1 -1
data/locales/de.yml +179 -0
data/locales/en.yml +179 -0
metadata +305 -108
checksums.yaml.gz.sig +0 -3
data.tar.gz.sig +0 -2
data/LICENSE +0 -339
data/README +0 -32
data/bin/schleuder-fix-gem-dependencies +0 -37
data/bin/schleuder-init-setup +0 -37
data/bin/schleuder-migrate-v2.1-to-v2.2 +0 -225
data/bin/schleuder-newlist +0 -413
data/contrib/check-expired-keys.rb +0 -60
data/contrib/mutt-schleuder-colors.rc +0 -10
data/contrib/mutt-schleuder-resend.vim +0 -24
data/contrib/smtpserver.rb +0 -76
data/ext/default-list.conf +0 -149
data/ext/default-members.conf +0 -7
data/ext/list.conf.example +0 -14
data/ext/schleuder.conf +0 -64
data/lib/schleuder/archiver.rb +0 -46
data/lib/schleuder/crypt.rb +0 -210
data/lib/schleuder/errors.rb +0 -5
data/lib/schleuder/list_config.rb +0 -146
data/lib/schleuder/log/listlogger.rb +0 -57
data/lib/schleuder/log/outputter/emailoutputter.rb +0 -120
data/lib/schleuder/log/outputter/metaemailoutputter.rb +0 -50
data/lib/schleuder/log/schleuderlogger.rb +0 -34
data/lib/schleuder/mail.rb +0 -873
data/lib/schleuder/mailer.rb +0 -26
data/lib/schleuder/member.rb +0 -69
data/lib/schleuder/plugin.rb +0 -54
data/lib/schleuder/processor.rb +0 -363
data/lib/schleuder/schleuder_config.rb +0 -75
data/lib/schleuder/storage.rb +0 -84
data/lib/schleuder/utils.rb +0 -80
data/man/schleuder-newlist.8 +0 -174
data/man/schleuder.8 +0 -416
data/plugins/README +0 -20
data/plugins/manage_keys_plugin.rb +0 -113
data/plugins/manage_members_plugin.rb +0 -156
data/plugins/manage_self_plugin.rb +0 -26
data/plugins/resend_plugin.rb +0 -35
data/plugins/sign_this_plugin.rb +0 -14
data/plugins/version_plugin.rb +0 -12
metadata.gz.sig +0 -0

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: c37622657ee9683d0d006af23a4fb74d53c1c697
-  data.tar.gz: 992426df30d2c0de1e97a9d9b611fc5dbc2d1557
+SHA256:
+  metadata.gz: edc9a5383dea2704c0ea9cfaa947e657221b89a83ff693cc221c5649026711f5
+  data.tar.gz: 8c4117d91098a20ccb9d4f12146524eb8e7d701f60d9a77ce0573510b1dbeb42
 SHA512:
-  metadata.gz: 8a4fa65cbe451d2880ef8f38201565c5672c8f41ebff22f8579f1e2ce3aef44f6aeb043e3d93610a55450e7296341ed8689bcf8bfc96dd40847b5d7ce1e987f5
-  data.tar.gz: 5238664faab3274a9803bc11a9ef0a91f0c46392a825c7cfe2e040efd0cfc1b3ea2d09fa2982ac8ef9419e3ba13a0ec2a6d81bed2f484fa5846a6a5cec7c666d
+  metadata.gz: 25adeec03329d06994b3ebada2d8b0dd9f9e50ee8c83e5349496decacf9877e8388f2122656f984516f3b1d8f3872748d8b91366131cd6f21b4c2eef5caa915f
+  data.tar.gz: 83b6170572c99168c6b49471d2a34823b49e878f6d1c03ea5f65f7c9a7d999f80996c92813892942e1940822615ba17c4b8da9c864cc59c46b88f8730d5ebfed

data/README.md ADDED

@@ -0,0 +1,138 @@
+Schleuder, version 3
+======================================
+Schleuder is a gpg-enabled mailing list manager with resending-capabilities. Subscribers can communicate encrypted (and pseudonymously) among themselves, receive emails from non-subscribers and send emails to non-subscribers via the list.
+Version 3 of schleuder is a complete rewrite, which aims to be more robust, flexible, and internationalized. It
+also provides an API for the optional web interface called [schleuder-web](https://0xacab.org/schleuder/schleuder-web).
+For more details see <https://schleuder.nadir.org/docs/>.
+Requirements
+------------
+* ruby >=2.1
+* gnupg 2.0.x, or >=2.1.16
+* gpgme
+* sqlite3
+* openssl
+*If you use Debian stretch or CentOS 7, please have a look at the [installation docs](https://schleuder.nadir.org/docs/#installation). We do provide packages for those platforms, which simplify the installation a lot.*
+*🛈 A note regarding Ubuntu: All released Ubuntu versions (including 17.10) don't meet the requirements with their packaged versions of gnupg! To run Schleuder on Ubuntu you currently have to install a more recent version of gnupg manually. A sufficient version of gnupg is included in "bionic-proposed", which might make 18.04 a usable Ubuntu release.*
+On systems that base on Debian 9 ("stretch"), install the dependencies via
+    apt-get install ruby-dev gnupg2 libgpgme-dev libsqlite3-dev libssl-dev build-essential
+We **recommend** to also run a random number generator like [haveged](http://www.issihosts.com/haveged/). This ensures Schleuder won't be blocked by lacking entropy, which otherwise might happen especially during key generation.
+On Debian based systems, install it via
+    apt-get install haveged
+Additionally these **rubygems** are required (will be installed automatically unless present):
+* rake
+* active_record
+* sqlite3
+* thor
+* thin
+* mail-gpg
+* sinatra
+* sinatra-contrib
+Installing Schleuder
+------------
+1. Download [the gem](https://schleuder.nadir.org/downloads/schleuder-3.2.2.gem) and [the OpenPGP-signature](https://schleuder.nadir.org/downloads/schleuder-3.2.2.gem.sig) and verify:
+   ```
+   gpg --recv-key 0xB3D190D5235C74E1907EACFE898F2C91E2E6E1F3
+   gpg --verify schleuder-3.2.2.gem.sig
+   ```
+2. If all went well install the gem:
+   ```
+   gem install schleuder-3.2.2.gem
+   ```
+3. Set up schleuder:
+  ```
+  schleuder install
+  ```
+  This creates neccessary directories, copies example configs, etc. If you see errors about missing write permissions please follow the advice given.
+For further information on setup and configuration please read <https://schleuder.nadir.org/docs/#setup>.
+Command line usage
+-----------------
+See `schleuder help`.
+E.g.:
+    Commands:
+      schleuder check_keys                    # Check all lists for unusable or expiring keys and send the results to the list-admins. (This is supposed...
+      schleuder help [COMMAND]                # Describe available commands or one specific command
+      schleuder install                       # Set up Schleuder initially. Create folders, copy files, fill the database, etc.
+      schleuder version                       # Show version of schleuder
+      schleuder work list@hostname < message  # Run a message through a list.
+List administration
+-------------------
+Please use
+[schleuder-cli](https://0xacab.org/schleuder/schleuder-cli) to create and
+manage lists from the command line.
+Optionally consider installing
+[schleuder-web](https://0xacab.org/schleuder/schleuder-web), the web
+interface for schleuder. It enables list-admins to manage their lists through
+the web instead of using [request-keywords](https://schleuder.nadir.org/docs/#subscription-and-key-management).
+Todo
+----
+See <https://0xacab.org/schleuder/schleuder/issues>.
+Testing
+-------
+We use rspec to test our code. To setup the test environment run:
+    SCHLEUDER_ENV=test SCHLEUDER_CONFIG=spec/schleuder.yml bundle exec rake db:init
+To execute the test suite run:
+    bundle exec rspec
+We are working on extendig the test coverage.
+Contributing
+------------
+Please see [CONTRIBUTING.md](CONTRIBUTING.md).
+Code of Conduct
+---------------
+We adopted a code of conduct. Please read [CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md).
+License
+-------
+GNU GPL 3.0. Please see [LICENSE.txt](LICENSE.txt).
+Alternative Download
+--------------------
+Alternatively to the gem-files you can download the latest release as [a tarball](https://schleuder.nadir.org/downloads/schleuder-3.2.2.tar.gz) and [its OpenPGP-signature](https://schleuder.nadir.org/downloads/schleuder-3.2.2.tar.gz.sig).

data/Rakefile ADDED

@@ -0,0 +1,136 @@
+project = 'schleuder'
+require_relative "lib/#{project}.rb"
+@version = Schleuder::VERSION
+@tagname = "#{project}-#{@version}"
+@gpguid = 'schleuder@nadir.org'
+@filename_gem = "#{@tagname}.gem"
+@filename_tarball = "#{@tagname}.tar.gz"
+load "active_record/railties/databases.rake"
+# Configure ActiveRecord
+ActiveRecord::Tasks::DatabaseTasks.tap do |config|
+  config.root = File.dirname(__FILE__)
+  config.db_dir = 'db'
+  config.migrations_paths = ['db/migrate']
+  config.env = ENV['SCHLEUDER_ENV']
+  config.database_configuration = Schleuder::Conf.databases
+end
+# ActiveRecord requires this task to be present
+Rake::Task.define_task("db:environment")
+namespace :db do
+  # A shortcut.
+  task init: ['db:create', 'db:schema:load']
+end
+def edit_and_add_file(filename)
+  puts "Please edit #{filename} to refer to version #{@version}"
+  if system("gvim -f #{filename}.md")
+    `git add #{filename}.md`
+  else
+    exit 1
+  end
+end
+task :console do
+  exec "irb -r #{File.dirname(__FILE__)}/lib/schleuder.rb"
+end
+task :publish_gem => :website
+task :git_tag => :check_version
+desc "Build new version: git-tag and gem-file"
+task :new_version => [
+    :check_version,
+    :edit_readme, :edit_changelog,
+    :git_add_version,
+    :git_commit,
+    :build_gem,
+    :sign_gem,
+    :build_tarball,
+    :sign_tarball,
+    :git_tag
+  ] do
+end
+desc "Edit CHANGELOG.md"
+task :edit_changelog do
+  edit_and_add_file('CHANGELOG')
+end
+desc "Edit README"
+task :edit_readme do
+  edit_and_add_file('README')
+end
+desc 'git-tag HEAD as new version'
+task :git_tag do
+  `git tag -u #{@gpguid} -s -m "Version #{@version}" #{@tagname}`
+end
+desc "Add changed version to git-index"
+task :git_add_version do
+  `git add lib/#{project}/version.rb`
+end
+desc "Commit changes as new version"
+task :git_commit do
+  `git commit -m "Version #{@version} (README, gems, ...)"`
+end
+desc 'Build, sign and commit a gem-file.'
+task :build_gem do
+  `gem build #{project}.gemspec`
+end
+desc 'OpenPGP-sign gem and tarball'
+task :sign_tarball do
+  `gpg -u #{@gpguid} -b #{@filename_gem}`
+end
+desc 'OpenPGP-sign gem'
+task :sign_gem do
+  `gpg -u #{@gpguid} -b #{@filename_tarball}`
+end
+desc 'Publish gem-file to rubygems.org'
+task :publish_gem do
+  puts "Really push #{@filename_gem} to rubygems.org? [yN]"
+  if gets.match(/^y/i)
+    puts "Pushing..."
+    `gem push #{@filename_gem}`
+  else
+    puts "Not pushed."
+  end
+end
+desc 'Build and sign a tarball'
+task :build_tarball do
+  `git archive --format tar.gz --prefix "#{@tagname}/" -o #{@filename_tarball} master`
+end
+desc 'Describe manual release-tasks'
+task :website do
+  puts "Please update the website:
+  * Update changelog.
+  * Publish release-announcement.
+"
+end
+desc 'Check if version-tag already exists'
+task :check_version do
+  # Check if Schleuder::VERSION has been updated since last release
+  if `git tag`.match?(/^#{@tagname}$/)
+    $stderr.puts "Warning: Tag '#{@tagname}' already exists. Did you forget to update #{project}/version.rb?"
+    $stderr.print "Delete tag to continue? [yN] "
+    if $stdin.gets.match(/^y/i)
+      `git tag -d #{@tagname}`
+    else
+      exit 1
+    end
+  end
+end

data/bin/pinentry-clearpassphrase ADDED

@@ -0,0 +1,72 @@
+#!/usr/bin/env ruby
+# This file can be deleted once we cease to support gnupg 2.0.
+require 'fileutils'
+require 'cgi'
+require 'openssl'
+def respond(msg, flush=true)
+  $stdout.puts msg
+  if flush
+    $stdout.flush
+  end
+end
+def send_ok(flush=true)
+  respond 'OK', flush
+end
+def send_password
+  if File.exist?(OLDPWDSENTFILE)
+    pwd = ''
+    if File.exist?(EMPTYPWDSENTFILE1)
+      FileUtils.touch(EMPTYPWDSENTFILE2)
+    else
+      FileUtils.touch(EMPTYPWDSENTFILE1)
+    end
+  else
+    pwd = OLDPASSWD
+    FileUtils.touch(OLDPWDSENTFILE)
+  end
+  respond "D #{pwd}"
+end
+def do_exit
+  if File.exist?(EMPTYPWDSENTFILE2)
+    FileUtils.rm_rf(TMPDIR)
+  end
+  exit 0
+end
+OLDPASSWD = CGI.escape(ENV['PINENTRY_USER_DATA'].to_s)
+if OLDPASSWD.empty?
+  respond "Fatal error: passed PINENTRY_USER_DATA was empty, cannot continue"
+  exit 1
+end
+# We need a static directory name to maintain the state across invocations of
+# this file.
+TMPDIR = File.join(ENV['GNUPGHOME'], '.tmp-pinentry-clearpassphrase')
+OLDPWDSENTFILE = File.join(TMPDIR, '1')
+EMPTYPWDSENTFILE1 = File.join(TMPDIR, '2')
+EMPTYPWDSENTFILE2 = File.join(TMPDIR, '3')
+if ! Dir.exist?(TMPDIR)
+  Dir.mkdir(TMPDIR)
+end
+respond "OK - what's up?"
+while line = $stdin.gets do
+  case line
+  when /^GETPIN/
+    send_password
+    send_ok
+  when /^BYE/
+    send_ok false
+    do_exit
+  else
+    send_ok
+  end
+end

data/bin/schleuder CHANGED

@@ -1,96 +1,16 @@
 #!/usr/bin/env ruby
-# Don't show warnings, $stdout is being watched by the MTA.
-$VERBOSE = nil
+# Don't emit any warnings, they would be sent back to the email-sender as an
+# error-message.
+$VERBOSE=nil
-# TODO:
-# - make code comments rdoc-compatible.
-# - check sanity of listconfig-value like 'myaddr', 'default_mime' etc.
-#   We need them to be properly set to process properly.
-# - primary setup-check / is there a valid list-config?/admin?/
-#   admin-key?
+trap("INT") { exit 1 }
-def usage
-  puts "Usage:
-#{File.basename($0)} [-c baseconfig] listname < email
-#{File.basename($0)} [-c baseconfig] -test [listname]"
-  exit 1
-end
-def process_test(arg)
-    usage unless STDIN.tty?
-    listname = ARGV.shift
-    if listname
-      Schleuder.log.debug "Calling Processor.test(#{listname})"
-      Schleuder::Processor.test listname
-    else
-      Schleuder.log.debug "Calling Processor.test"
-      Schleuder::Processor.test
-    end
-end
-def process_list(listname)
-  usage if STDIN.tty? or ! listname
-  Schleuder.log.debug "Running for list #{listname}"
-  Schleuder.log.debug 'Reading STDIN'
-  # TODO: check for valid IO
-  msg = STDIN.read
-  Schleuder.log.debug 'Handing over to Processor.run'
-  Schleuder::Processor.run listname, msg
-end
-$:.unshift File.dirname(__FILE__) + '/../lib'
-require 'schleuder'
-begin
-  arg = ARGV.shift
-  if arg == '-c'
-    Schleuder.config(ARGV.shift)
-    arg = ARGV.shift
-  end
-  Schleuder.log.debug "I've been called, starting up..."
-  case arg
-  when '-test'
-    process_test(ARGV)
-  when /(-h|--help)/
-    usage
-  when /[A-Za-z0-9]+/
-    process_list(arg.gsub(/-(sendkey|bounces|request|owner)(@|$)/, '\2'))
-  else
-    usage
-  end
-rescue SystemExit => e
-  exit e.status
-rescue Errno::EACCES => e
-  msg = [e.message, e.backtrace].flatten.join("\n")
-  $stderr.puts "File permission error: %s" % msg
-  begin
-    Schleuder.log.fatal e
-  rescue
-    begin
-      Log4r::Logger['log4r'].error e
-    rescue
-    end
-  end
-  exit 1
-rescue Exception => e
-  begin
-    # Log4r mutes all outputters on first exception so if this rescues from a
-    # Log4r-error we can't expect the raise of a second exception here.
-    # Unfortunately there's no direct way to identify exceptions from Log4r
-    # because it throws StandardErrors and we're subclassing.
-    callerfile = e.backtrace.first.split(':').first.split('/').last rescue ''
-    if e.class == StandardError &&
-          ['listlogger.rb', 'schleuderlogger.rb'].include?(callerfile)
-      raise e
-    else
-      Schleuder.log.fatal e
-    end
-  rescue => f
-    msg1 = "Logger exception: #{f}\n#{f.backtrace.join("\n")}"
-    msg2 = "...while trying to log this exception: #{e}\n#{f.backtrace.join("\n")}"
-    Log4r::Logger['log4r'].error { "#{msg1}\n\n#{msg2}" }
-    $stderr.puts(f.message) if $stderr.tty?
-  end
-  $stderr.puts "A serious error occurred, please notify the administrators of this list or server!"
+begin
+  require_relative '../lib/schleuder/cli'
+  Schleuder::Cli.start
+rescue => exc
+  $stderr.puts "Technical Error: #{exc}\n#{exc.backtrace.first}"
   exit 1
 end