RubyGems - secure - Versions diffs - 0.0.1 → 0.0.2 - Mend

secure 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

data/Rakefile +11 -0
data/lib/secure.rb +13 -1
data/lib/secure/errors.rb +4 -0
data/lib/secure/guard_thread.rb +12 -0
data/lib/secure/response.rb +24 -0
data/lib/secure/runner.rb +26 -0
data/lib/secure/version.rb +1 -1
data/spec/secure/response_spec.rb +15 -0
data/spec/secure_spec.rb +54 -0
data/spec/spec_helper.rb +1 -0
metadata +15 -6

data/Rakefile CHANGED Viewed

@@ -1 +1,12 @@
 require 'bundler/gem_tasks'
+require 'rake'
+require 'spec/rake/spectask'
+desc "Run all examples"
+Spec::Rake::SpecTask.new('spec') do |t|
+  t.spec_opts << "--colour --format specdoc --loadby mtime --reverse"
+  t.spec_opts << "-r spec/spec_helper"
+  t.spec_files = FileList['spec/**/*.rb']
+end
+task :default => :spec

data/lib/secure.rb CHANGED Viewed

@@ -1,5 +1,17 @@
 require "secure/version"
+require "secure/response"
+require "secure/errors"
+require "secure/guard_thread"
+require "secure/runner"
 module Secure
-  # Your code goes here...
+  class << self
+    def run(opts = {})
+      Runner.new(opts).run do
+        yield
+      end
+    end
+    alias :ly :run
+  end
 end

data/lib/secure/errors.rb ADDED Viewed

@@ -0,0 +1,4 @@
+module Secure
+  class TimeoutError < StandardError
+  end
+end

data/lib/secure/guard_thread.rb ADDED Viewed

@@ -0,0 +1,12 @@
+module Secure
+  class GuardThread < Thread
+    class << self
+      def kill_thread_on_timeout(secs, thread)
+        Thread.start(secs, thread) do |s, t|
+          t.join(s)
+          t.raise(TimeoutError, "This thread has taken more than #{s} seconds")
+        end
+      end
+    end
+  end
+end

data/lib/secure/response.rb ADDED Viewed

@@ -0,0 +1,24 @@
+module Secure
+  class Response
+    attr_reader :error, :value
+    def initialize(error, value)
+      @error = error
+      @value = value
+    end
+    def success?
+      error.nil?
+    end
+    class << self
+      def success(value)
+        Response.new(nil, value)
+      end
+      def error(error)
+        Response.new(error, nil)
+      end
+    end
+  end
+end

data/lib/secure/runner.rb ADDED Viewed

@@ -0,0 +1,26 @@
+module Secure
+  class Runner
+    def initialize(opts)
+      @timeout = opts[:timeout] || 1
+    end
+    def guard_threads
+      @guard_threads || []
+    end
+    def run
+      thread = Thread.start do
+        $SAFE=3
+        Response.success(yield)
+      end
+      guard_threads << GuardThread.kill_thread_on_timeout(@timeout, thread)
+      thread.value
+    rescue StandardError => e
+      Response.error(e)
+    ensure
+      #guard_threads.each(&:exit!)
+    end
+  end
+end

data/lib/secure/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Secure
-  VERSION = "0.0.1"
+  VERSION = "0.0.2"
 end

data/spec/secure/response_spec.rb ADDED Viewed

@@ -0,0 +1,15 @@
+module Secure
+  describe Response do
+    it "knows if it is successful" do
+      response = Response.success(2)
+      response.should be_success
+      response.value.should == 2
+    end
+    it "knows if it is an error" do
+      response = Response.error(SecurityError.new)
+      response.should_not be_success
+      response.error.should be_a(SecurityError)
+    end
+  end
+end

data/spec/secure_spec.rb ADDED Viewed

@@ -0,0 +1,54 @@
+describe Secure do
+  it "should execute normal code as expected" do
+    response = Secure.ly do
+      4 + 4
+    end
+    response.should be_success
+    response.value.should == 8
+  end
+  it "should not allow an eval to be called" do
+    response = Secure.ly do
+      eval "45"
+    end
+    response.should_not be_success
+    response.error.should be_a(SecurityError)
+  end
+  it "should not allow system calls" do
+    response = Secure.ly do
+      system("echo hi")
+    end
+    response.should_not be_success
+    response.error.should be_a(SecurityError)
+  end
+  it "should have safe value set" do
+    response = Secure.ly do
+      $SAFE
+    end
+    response.should be_success
+    response.value.should == 3
+  end
+  it "should not have affected the global safe value" do
+    response = Secure.ly {}
+    response.should be_success
+    $SAFE.should == 0
+  end
+  it "should kill infinite loops" do
+    response = Secure.ly :timeout => 0.005 do
+      while true; end
+    end
+    response.should_not be_success
+    response.error.should be_a(Secure::TimeoutError)
+  end
+  it "should kill all threads after running" do
+    Secure.ly do
+      10
+    end
+    Thread.list.should have(1).things
+  end
+end

data/spec/spec_helper.rb ADDED Viewed

	@@ -0,0 +1 @@
1	+ require 'secure'

metadata CHANGED Viewed

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: secure
 version: !ruby/object:Gem::Version
-  hash: 29
+  hash: 27
   prerelease:
   segments:
   - 0
   - 0
-  - 1
-  version: 0.0.1
+  - 2
+  version: 0.0.2
 platform: ruby
 authors:
 - Tejas Dinkar
@@ -15,7 +15,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2011-08-27 00:00:00 +05:30
+date: 2011-08-28 00:00:00 +05:30
 default_executable:
 dependencies: []
@@ -33,8 +33,15 @@ files:
 - Gemfile
 - Rakefile
 - lib/secure.rb
+- lib/secure/errors.rb
+- lib/secure/guard_thread.rb
+- lib/secure/response.rb
+- lib/secure/runner.rb
 - lib/secure/version.rb
 - secure.gemspec
+- spec/secure/response_spec.rb
+- spec/secure_spec.rb
+- spec/spec_helper.rb
 has_rdoc: true
 homepage: ""
 licenses: []
@@ -69,5 +76,7 @@ rubygems_version: 1.6.2
 signing_key:
 specification_version: 3
 summary: gem to do things securely using ruby $SAFE
-test_files: []
+test_files:
+- spec/secure/response_spec.rb
+- spec/secure_spec.rb
+- spec/spec_helper.rb