class TLSPretense::InitRunner

Public Class Methods

new(args, stdin, stdout) click to toggle source

# File lib/tlspretense/init_runner.rb, line 7
def initialize(args, stdin, stdout)
  @args = args
  @stdin = stdin
  @stdout = stdout
end

Public Instance Methods

check_environment() click to toggle source

# File lib/tlspretense/init_runner.rb, line 23
    def check_environment
      @stdout.puts "Ruby and OpenSSL compatibility check..."
      # Ruby check:
      # TODO: detect non-MRI versions of Ruby such as jruby, ironruby
      if ruby_version[:major] < 1 or ruby_version[:minor] < 9 or ruby_version[:patch] < 3
        @stdout.puts "          Warning: You are running TLSPretense on an unsupported version of Ruby:

              RUBY_DESCRIPTION: #{RUBY_DESCRIPTION}

          Use it at your own risk! TLSPretense was developed and tested on MRI Ruby
          1.9.3. However, bug reports are welcome for Ruby 1.8.7 and later to try and
          improve compatibility.

".gsub(%r^          /,'')
      end
      unless openssl_supports_sni?
        @stdout.puts "
          Warning: Your version of Ruby and/or OpenSSL does not have the ability to set
          the SNI hostname on outgoing SSL/TLS connections.

          Testing might work fine, but if the client being tested sends the SNI TLS
          extension to request the certificate for a certain hostname, TLSPretense will
          be unable to request the correct certificate from the destination, which may
          adversely affect testing.

".gsub(%r^          /,'')
      end
    end

init_project(path) click to toggle source

# File lib/tlspretense/init_runner.rb, line 69
    def init_project(path)
      @stdout.print "Creating #{path}... "
      raise InitError, "#{path} already exists!" if File.exist? path
      mkdir_p path
      @stdout.puts "Done"

      @stdout.puts "Populating #{path}... "
      skeldir = File.join(File.dirname(__FILE__), 'skel')
      @stdout.print '    ' ; cp_r Dir.glob(File.join(skeldir,'*')), path, :verbose => true
      @stdout.puts "Done"

      @stdout.puts "        Finished!

        Now cd to #{path} and edit config.yml to suit your needs.

        If you have an existing CA certificate and key you would like to use, you
        should copy the PEM encoded certificate to:

            #{path}/ca/goodcacert.pem

        And you should copy the PEM encoded private key to:

            #{path}/ca/goodcakey.pem

        Otherwise you can use the preinstalled CA certificate or delete the ca
        directory and run:

            tlspretense ca

        to generate a new CA (which you will then need to install so that the software
        you are testing will trust it).

        Refer to the guides on http://isecpartners.github.com/tlspretense/ for more
        information on configuring your host to run TLSPretense.
".gsub(%r^        /,'')
    end

openssl_supports_sni?() click to toggle source

# File lib/tlspretense/init_runner.rb, line 65
def openssl_supports_sni?
  OpenSSL::SSL::SSLSocket.public_instance_methods.include? :hostname=
end

ruby_version() click to toggle source

# File lib/tlspretense/init_runner.rb, line 54
def ruby_version
  @ruby_version ||= (
    v = {}
    m = %r^(.+)\.(.+)\.(.+)$/.match(RUBY_VERSION)
    v[:major] = m[1].to_i
    v[:minor] = m[2].to_i
    v[:patch] = m[3].to_i
    v
  )
end

run() click to toggle source

# File lib/tlspretense/init_runner.rb, line 13
def run
  if @args.length != 1
    usage
    return
  end
  path = @args[0]
  check_environment
  init_project(path)
end

usage() click to toggle source

# File lib/tlspretense/init_runner.rb, line 107
    def usage
      @stdout.puts "        Usage: #{0} init PATH

        Creates a new TLSPretense working directory at PATH.
".gsub(%r^        /,'')
    end