ssllabs 1.11.6

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 7dbe005740a0a4669fa93ba15df1cabf5d0709ce
+  data.tar.gz: 274947be2d1c3efebe383315b954e4cadc3f2253
+SHA512:
+  metadata.gz: 5b1cb6eb7ba7bb1474c32ababce5564ec1ec7c65400a76d1acffecbad03f6b73d25fc31e383103ab970e44b70358bc0b6ecede451920945f408daa6fc4c7ec08
+  data.tar.gz: ecf13c211e3983107df9f785e8a9c7416fd51e134fb0e1029d66024cc1af1d4936c76a36ff93936a15bc806dba9dc9a5455a2087d31dce1085c5d456180c3a24

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2015 YOURNAME
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/Rakefile

@@ -0,0 +1,34 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'Ssllabs'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task default: :test
+
+import "./lib/tasks/ssllabs.rake"

data/lib/ssllabs.rb

@@ -0,0 +1,22 @@
+
+module Ssllabs
+  API_LOCATION = 'https://api.ssllabs.com/api/v2/'
+end
+
+require 'ssllabs/api'
+require 'ssllabs/api_object'
+require 'ssllabs/info'
+require 'ssllabs/key'
+require 'ssllabs/cert'
+require 'ssllabs/chain_cert'
+require 'ssllabs/chain'
+require 'ssllabs/protocol'
+require 'ssllabs/suite'
+require 'ssllabs/suites'
+require 'ssllabs/sim_client'
+require 'ssllabs/simulation'
+require 'ssllabs/sim_details'
+require 'ssllabs/endpoint_details'
+require 'ssllabs/endpoint'
+require 'ssllabs/host'
+require 'ssllabs/status_codes'

data/lib/ssllabs/api.rb

@@ -0,0 +1,65 @@
+require 'active_support/core_ext/hash'
+require 'net/http'
+
+module Ssllabs
+  class InvocationError < StandardError; end
+  class RequestRateTooHigh < StandardError; end
+  class InternalError < StandardError; end
+  class ServiceNotAvailable < StandardError; end
+  class ServiceOverloaded < StandardError; end
+
+  class Api
+    attr_reader :max_assessments, :current_assessments
+
+    def initialize
+      @max_assessments = 0
+      @current_assessments = 0
+    end
+
+    def request(name, params = {})
+      name = name.to_s.camelize(:lower)
+      uri = URI("#{API_LOCATION}#{name}?#{URI.encode_www_form(params)}")
+      r = Net::HTTP.get_response(uri)
+      if r.code.to_i == 200
+        @max_assessments = r['X-Max-Assessments']
+        @current_assessments = r['X-Current-Assessments']
+        r = JSON.load(r.body)
+        if r.key?('errors')
+          raise InvocationError, "API returned: #{r['errors']}"
+        end
+        return r
+      end
+
+      case r.code.to_i
+      when 400
+        raise InvocationError, "invalid parameters"
+      when 429
+        raise RequestRateTooHigh, "request rate is too high, please slow down"
+      when 500
+        raise InternalError, "service encountered an error, sleep 5 minutes"
+      when 503
+        raise ServiceNotAvailable, "service is not available, sleep 15 minutes"
+      when 529
+        raise ServiceOverloaded, "service is overloaded, sleep 30 minutes"
+      else
+        raise StandardError, "http error code #{r.code}"
+      end
+    end
+
+    def info
+      Info.load request(:info)
+    end
+
+    def analyse(params = {})
+      Host.load request(:analyze, params)
+    end
+
+    def get_endpoint_data(params = {})
+      Endpoint.load request(:get_endpoint_data, params)
+    end
+
+    def get_status_codes
+      StatusCodes.load request(:get_status_codes)
+    end
+  end
+end

data/lib/ssllabs/api_object.rb

@@ -0,0 +1,103 @@
+require 'active_support/inflector'
+require 'json'
+
+module Ssllabs
+  class ApiObject
+
+    class << self;
+      attr_accessor :all_attributes
+      attr_accessor :fields
+      attr_accessor :lists
+      attr_accessor :refs
+    end
+
+    def self.inherited(base)
+      base.all_attributes = []
+      base.fields = []
+      base.lists = {}
+      base.refs = {}
+    end
+
+    def self.to_api_name(name)
+      name.to_s.gsub(/\?$/,'').camelize(:lower)
+    end
+
+    def self.to_attr_name(name)
+      name.to_s.gsub(/\?$/,'').gsub(/URI/,'Uri').underscore
+    end
+
+    def self.field_methods(name)
+      is_bool = name.to_s.end_with?('?')
+      attr_name = to_attr_name(name)
+      api_name = to_api_name(name)
+      class_eval <<-EOF, __FILE__, __LINE__
+        def #{attr_name}#{'?' if is_bool}
+          @#{api_name}
+        end
+        def #{attr_name}=(value)
+          @#{api_name} = value
+        end
+      EOF
+    end
+
+    def self.has_fields(*names)
+      names.each do |name|
+        @all_attributes << to_api_name(name)
+        @fields << to_api_name(name)
+        field_methods(name)
+      end
+    end
+
+    def self.has_objects_list(name, klass)
+      @all_attributes << to_api_name(name)
+      @lists[to_api_name(name)] = klass
+      field_methods(name)
+    end
+
+    def self.has_object_ref(name, klass)
+      @all_attributes << to_api_name(name)
+      @refs[to_api_name(name)] = klass
+      field_methods(name)
+    end
+
+    def self.load(attributes = {})
+      obj = self.new
+      attributes.each do |name,value|
+        if @fields.include?(name)
+          obj.instance_variable_set("@#{name}", value)
+        elsif @lists.key?(name)
+          obj.instance_variable_set("@#{name}", value.map { |v| @lists[name].load(v) }) unless value.nil?
+        elsif @refs.key?(name)
+          obj.instance_variable_set("@#{name}", @refs[name].load(value)) unless value.nil?
+        else
+          raise ArgumentError, "#{name} is not an attribute of object #{self.name}"
+        end
+      end
+      obj
+    end
+
+    def to_hash(with_api_names: false)
+      obj = {}
+      self.class.all_attributes.each do |api_name|
+        v = instance_variable_get("@#{api_name}")
+        key_name = with_api_names ? api_name : self.class.to_attr_name(api_name)
+        obj[key_name] = to_hash_value(v, with_api_names)
+      end
+      obj
+    end
+
+    def to_hash_value(entry, with_api_names)
+      if entry.respond_to?(:to_hash)
+        entry.to_hash(with_api_names: with_api_names)
+      elsif entry.is_a?(Array)
+        entry.map { |entry| to_hash_value(entry, with_api_names) }
+      else
+        entry
+      end
+    end
+
+    def to_json(opts={})
+      to_hash(with_api_names: true).to_json
+    end
+  end
+end

data/lib/ssllabs/cert.rb

@@ -0,0 +1,33 @@
+module Ssllabs
+  class Cert < ApiObject
+    has_fields :subject,
+      :commonNames,
+      :altNames,
+      :notBefore,
+      :notAfter,
+      :issuerSubject,
+      :sigAlg,
+      :issuerLabel,
+      :revocationInfo,
+      :crlURIs,
+      :ocspURIs,
+      :revocationStatus,
+      :crlRevocationStatus,
+      :ocspRevocationStatus,
+      :sha1Hash,
+      :pinSha256,
+      :sgc?,
+      :validationType,
+      :issues,
+      :sct?,
+      :mustStaple
+
+    def valid?
+      issues == 0
+    end
+
+    def invalid?
+      !valid?
+    end
+  end
+end

data/lib/ssllabs/chain.rb

@@ -0,0 +1,14 @@
+module Ssllabs
+  class Chain < ApiObject
+    has_objects_list :certs, ChainCert
+    has_fields :issues
+
+    def valid?
+      issues == 0
+    end
+
+    def invalid?
+      !valid?
+    end
+  end
+end

data/lib/ssllabs/chain_cert.rb

@@ -0,0 +1,29 @@
+module Ssllabs
+  class ChainCert < ApiObject
+    has_fields :subject,
+      :label,
+      :notBefore,
+      :notAfter,
+      :issuerSubject,
+      :issuerLabel,
+      :sigAlg,
+      :issues,
+      :keyAlg,
+      :sha1Hash,
+      :pinSha256,
+      :keySize,
+      :keyStrength,
+      :revocationStatus,
+      :crlRevocationStatus,
+      :ocspRevocationStatus,
+      :raw
+
+    def valid?
+      issues == 0
+    end
+
+    def invalid?
+      !valid?
+    end
+  end
+end

data/lib/ssllabs/endpoint.rb

@@ -0,0 +1,18 @@
+module Ssllabs
+  class Endpoint < ApiObject
+    has_fields :ipAddress,
+      :serverName,
+      :statusMessage,
+      :statusDetails,
+      :statusDetailsMessage,
+      :grade,
+      :gradeTrustIgnored,
+      :hasWarnings?,
+      :isExceptional?,
+      :progress,
+      :duration,
+      :eta,
+      :delegation
+    has_object_ref :details, EndpointDetails
+  end
+end

data/lib/ssllabs/endpoint_details.rb

@@ -0,0 +1,60 @@
+module Ssllabs
+  class EndpointDetails < ApiObject
+    has_fields :hostStartTime
+    has_object_ref :key, Key
+    has_object_ref :cert, Cert
+    has_object_ref :chain, Chain
+    has_objects_list :protocols, Protocol
+    has_object_ref :suites, Suites
+    has_fields :serverSignature,
+      :prefixDelegation?,
+      :nonPrefixDelegation?,
+      :vulnBeast?,
+      :renegSupport,
+      :stsResponseHeader,
+      :stsMaxAge,
+      :stsSubdomains?,
+      :pkpResponseHeader,
+      :sessionResumption,
+      :compressionMethods,
+      :supportsNpn?,
+      :npnProtocols,
+      :sessionTickets,
+      :ocspStapling?,
+      :staplingRevocationStatus,
+      :staplingRevocationErrorMessage,
+      :sniRequired?,
+      :httpStatusCode,
+      :httpForwarding,
+      :supportsRc4?,
+      :stsStatus,
+      :stsPreload,
+      :hstsPolicy,
+      :hstsPreloads,
+      :hpkpPolicy,
+      :hpkpRoPolicy,
+      :rc4Only,
+      :preloadChecks,
+      :forwardSecrecy,
+      :rc4WithModern?,
+      :drownHosts,
+      :drownErrors,
+      :drownVulnerable?,
+      :openSSLLuckyMinus20,
+      :chaCha20Preference,
+      :supportsAlpn
+    has_object_ref :sims, SimDetails
+    has_fields :heartbleed?,
+      :heartbeat?,
+      :openSslCcs,
+      :poodleTls,
+      :fallbackScsv?,
+      :poodle?,
+      :freak?,
+      :hasSct,
+      :dhPrimes,
+      :dhUsesKnownPrimes,
+      :dhYsReuse?,
+      :logjam?
+  end
+end

data/lib/ssllabs/host.rb

@@ -0,0 +1,17 @@
+module Ssllabs
+  class Host < ApiObject
+    has_fields :host,
+      :port,
+      :protocol,
+      :isPublic?,
+      :status,
+      :statusMessage,
+      :startTime,
+      :testTime,
+      :engineVersion,
+      :criteriaVersion,
+      :cacheExpiryTime
+    has_objects_list :endpoints, Endpoint
+    has_fields :certHostnames
+  end
+end

data/lib/ssllabs/info.rb

@@ -0,0 +1,11 @@
+module Ssllabs
+  class Info < ApiObject
+    has_fields :engineVersion,
+      :criteriaVersion,
+      :clientMaxAssessments,
+      :maxAssessments,
+      :currentAssessments,
+      :messages,
+      :newAssessmentCoolOff
+  end
+end

data/lib/ssllabs/key.rb

@@ -0,0 +1,17 @@
+module Ssllabs
+  class Key < ApiObject
+    has_fields :size,
+      :strength,
+      :alg,
+      :debianFlaw?,
+      :q
+
+    def insecure?
+      debian_flaw? || q == 0
+    end
+
+    def secure?
+      !insecure?
+    end
+  end
+end

data/lib/ssllabs/protocol.rb

@@ -0,0 +1,17 @@
+module Ssllabs
+  class Protocol < ApiObject
+    has_fields :id,
+      :name,
+      :version,
+      :v2SuitesDisabled?,
+      :q
+
+    def insecure?
+      q == 0
+    end
+
+    def secure?
+      !insecure?
+    end
+  end
+end

data/lib/ssllabs/sim_client.rb

@@ -0,0 +1,9 @@
+module Ssllabs
+  class SimClient < ApiObject
+    has_fields :id,
+      :name,
+      :platform,
+      :version,
+      :isReference?
+  end
+end

data/lib/ssllabs/sim_details.rb

@@ -0,0 +1,5 @@
+module Ssllabs
+  class SimDetails < ApiObject
+    has_objects_list :results, Simulation
+  end
+end

data/lib/ssllabs/simulation.rb

@@ -0,0 +1,17 @@
+module Ssllabs
+  class Simulation < ApiObject
+    has_object_ref :client, SimClient
+    has_fields :errorCode,
+      :attempts,
+      :protocolId,
+      :suiteId
+
+    def success?
+      error_code == 0
+    end
+
+    def error?
+      !success?
+    end
+  end
+end

data/lib/ssllabs/status_codes.rb

@@ -0,0 +1,9 @@
+module Ssllabs
+  class StatusCodes < ApiObject
+    has_fields :statusDetails
+
+    def [](name)
+      status_details[name]
+    end
+  end
+end

data/lib/ssllabs/suite.rb

@@ -0,0 +1,22 @@
+module Ssllabs
+  class Suite < ApiObject
+    has_fields :id,
+      :name,
+      :cipherStrength,
+      :dhStrength,
+      :dhP,
+      :dhG,
+      :dhYs,
+      :ecdhBits,
+      :ecdhStrength,
+      :q
+
+    def insecure?
+      q == 0
+    end
+
+    def secure?
+      !insecure?
+    end
+  end
+end

data/lib/ssllabs/suites.rb

@@ -0,0 +1,6 @@
+module Ssllabs
+  class Suites < ApiObject
+    has_objects_list :list, Suite
+    has_fields :preference?
+  end
+end

data/lib/ssllabs/version.rb

@@ -0,0 +1,3 @@
+module Ssllabs
+  VERSION = "1.11.6"
+end

data/lib/tasks/ssllabs.rake

@@ -0,0 +1,43 @@
+require 'ssllabs'
+
+namespace :ssllabs do
+  desc "Retrieve API information"
+  task :info do
+    api = Ssllabs::Api.new
+    puts api.info.to_json
+    puts "Running assessments: #{api.current_assessments}/#{api.max_assessments}"
+  end
+
+  desc "Retrieve error messages"
+  task :status_codes do
+    api = Ssllabs::Api.new
+    puts api.get_status_codes.to_json
+    puts "Running assessments: #{api.current_assessments}/#{api.max_assessments}"
+  end
+
+  desc "Start analysis for a host"
+  task :analyze do
+    unless ENV['HOST']
+      puts "Specify HOST=... as environment variable"
+      next
+    end
+    api = Ssllabs::Api.new
+    r = api.analyse(host: ENV['HOST'],
+        publish: 'off', startNew: 'on', all: 'done')
+    puts JSON.generate(r)
+    puts "Running assessments: #{api.current_assessments}/#{api.max_assessments}"
+  end
+
+  desc "Retrieve endpoint data from cache"
+  task :endpoint_data do
+    unless ENV['HOST'] && ENV['IP']
+      puts "Specify HOST=... and IP=... as environment variable"
+      next
+    end
+    api = Ssllabs::Api.new
+    r = api.get_endpoint_data(host: ENV['HOST'],
+        s: ENV['IP'], fromCache: 'on')
+    puts JSON.generate(r)
+    puts "Running assessments: #{api.current_assessments}/#{api.max_assessments}"
+  end
+end

metadata

@@ -0,0 +1,109 @@
+--- !ruby/object:Gem::Specification
+name: ssllabs
+version: !ruby/object:Gem::Version
+  version: 1.11.6
+platform: ruby
+authors:
+- Francois Chagnon
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-08-31 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: net
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0'
+description: This is a ruby API to interact with Qualys SSL Labs API. API Documentation
+  is available at https://github.com/ssllabs/ssllabs-scan/blob/master/ssllabs-api-docs.md
+email:
+- francois.chagnon@shopify.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- Rakefile
+- lib/ssllabs.rb
+- lib/ssllabs/api.rb
+- lib/ssllabs/api_object.rb
+- lib/ssllabs/cert.rb
+- lib/ssllabs/chain.rb
+- lib/ssllabs/chain_cert.rb
+- lib/ssllabs/endpoint.rb
+- lib/ssllabs/endpoint_details.rb
+- lib/ssllabs/host.rb
+- lib/ssllabs/info.rb
+- lib/ssllabs/key.rb
+- lib/ssllabs/protocol.rb
+- lib/ssllabs/sim_client.rb
+- lib/ssllabs/sim_details.rb
+- lib/ssllabs/simulation.rb
+- lib/ssllabs/status_codes.rb
+- lib/ssllabs/suite.rb
+- lib/ssllabs/suites.rb
+- lib/ssllabs/version.rb
+- lib/tasks/ssllabs.rake
+homepage: https://github.com/Shopify/ssllabs.rb/
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.5.1
+signing_key: 
+specification_version: 4
+summary: Ruby API for Qualys SSL Labs scanner.
+test_files: []