ruby--ruby/lib/rubygems/security/policies.rb

# frozen_string_literal: true
module Gem::Security

  ##
  # No security policy: all package signature checks are disabled.

  NoSecurity = Policy.new(
    'No Security',
    :verify_data      => false,
    :verify_signer    => false,
    :verify_chain     => false,
    :verify_root      => false,
    :only_trusted     => false,
    :only_signed      => false
  )

  ##
  # AlmostNo security policy: only verify that the signing certificate is the
  # one that actually signed the data.  Make no attempt to verify the signing
  # certificate chain.
  #
  # This policy is basically useless. better than nothing, but can still be
  # easily spoofed, and is not recommended.

  AlmostNoSecurity = Policy.new(
    'Almost No Security',
    :verify_data      => true,
    :verify_signer    => false,
    :verify_chain     => false,
    :verify_root      => false,
    :only_trusted     => false,
    :only_signed      => false
  )

  ##
  # Low security policy: only verify that the signing certificate is actually
  # the gem signer, and that the signing certificate is valid.
  #
  # This policy is better than nothing, but can still be easily spoofed, and
  # is not recommended.

  LowSecurity = Policy.new(
    'Low Security',
    :verify_data      => true,
    :verify_signer    => true,
    :verify_chain     => false,
    :verify_root      => false,
    :only_trusted     => false,
    :only_signed      => false
  )

  ##
  # Medium security policy: verify the signing certificate, verify the signing
  # certificate chain all the way to the root certificate, and only trust root
  # certificates that we have explicitly allowed trust for.
  #
  # This security policy is reasonable, but it allows unsigned packages, so a
  # malicious person could simply delete the package signature and pass the
  # gem off as unsigned.

  MediumSecurity = Policy.new(
    'Medium Security',
    :verify_data      => true,
    :verify_signer    => true,
    :verify_chain     => true,
    :verify_root      => true,
    :only_trusted     => true,
    :only_signed      => false
  )

  ##
  # High security policy: only allow signed gems to be installed, verify the
  # signing certificate, verify the signing certificate chain all the way to
  # the root certificate, and only trust root certificates that we have
  # explicitly allowed trust for.
  #
  # This security policy is significantly more difficult to bypass, and offers
  # a reasonable guarantee that the contents of the gem have not been altered.

  HighSecurity = Policy.new(
    'High Security',
    :verify_data      => true,
    :verify_signer    => true,
    :verify_chain     => true,
    :verify_root      => true,
    :only_trusted     => true,
    :only_signed      => true
  )

  ##
  # Policy used to verify a certificate and key when signing a gem

  SigningPolicy = Policy.new(
    'Signing Policy',
    :verify_data      => false,
    :verify_signer    => true,
    :verify_chain     => true,
    :verify_root      => true,
    :only_trusted     => false,
    :only_signed      => false
  )

  ##
  # Hash of configured security policies

  Policies = {
    'NoSecurity'       => NoSecurity,
    'AlmostNoSecurity' => AlmostNoSecurity,
    'LowSecurity'      => LowSecurity,
    'MediumSecurity'   => MediumSecurity,
    'HighSecurity'     => HighSecurity,
    # SigningPolicy is not intended for use by `gem -P` so do not list it
  }

end
* lib/rubygems.rb, lib/rubygems/, test/rubygems/: Update rubygems-2.5.2. It supports to enable frozen string literal and add `--norc` option for disable to `.gemrc` configuration. See 2.5.2 release notes for other fixes and enhancements. https://github.com/rubygems/rubygems/blob/a8aa3bac723f045c52471c7b9328310a048561e0/History.txt#L3 git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@53707 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2016-02-01 07:43:26 -05:00			`# frozen_string_literal: true`
* lib/rubygems: Updated to RubyGems 2.0 test/rubygems: ditto. common.mk (prelude): Updated for RubyGems 2.0 source rearrangement. * tool/change_maker.rb: Allow invalid UTF-8 characters in source files. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@37976 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2012-11-29 01:52:18 -05:00			`module Gem::Security`

			`##`
			`# No security policy: all package signature checks are disabled.`

			`NoSecurity = Policy.new(`
			`'No Security',`
			`:verify_data => false,`
			`:verify_signer => false,`
			`:verify_chain => false,`
			`:verify_root => false,`
			`:only_trusted => false,`
			`:only_signed => false`
			`)`

			`##`
			`# AlmostNo security policy: only verify that the signing certificate is the`
			`# one that actually signed the data. Make no attempt to verify the signing`
			`# certificate chain.`
			`#`
			`# This policy is basically useless. better than nothing, but can still be`
			`# easily spoofed, and is not recommended.`

			`AlmostNoSecurity = Policy.new(`
			`'Almost No Security',`
			`:verify_data => true,`
			`:verify_signer => false,`
			`:verify_chain => false,`
			`:verify_root => false,`
			`:only_trusted => false,`
			`:only_signed => false`
			`)`

			`##`
			`# Low security policy: only verify that the signing certificate is actually`
			`# the gem signer, and that the signing certificate is valid.`
			`#`
			`# This policy is better than nothing, but can still be easily spoofed, and`
			`# is not recommended.`

			`LowSecurity = Policy.new(`
			`'Low Security',`
			`:verify_data => true,`
			`:verify_signer => true,`
			`:verify_chain => false,`
			`:verify_root => false,`
			`:only_trusted => false,`
			`:only_signed => false`
			`)`

			`##`
			`# Medium security policy: verify the signing certificate, verify the signing`
			`# certificate chain all the way to the root certificate, and only trust root`
			`# certificates that we have explicitly allowed trust for.`
			`#`
			`# This security policy is reasonable, but it allows unsigned packages, so a`
			`# malicious person could simply delete the package signature and pass the`
			`# gem off as unsigned.`

			`MediumSecurity = Policy.new(`
			`'Medium Security',`
			`:verify_data => true,`
			`:verify_signer => true,`
			`:verify_chain => true,`
			`:verify_root => true,`
			`:only_trusted => true,`
			`:only_signed => false`
			`)`

			`##`
			`# High security policy: only allow signed gems to be installed, verify the`
			`# signing certificate, verify the signing certificate chain all the way to`
			`# the root certificate, and only trust root certificates that we have`
			`# explicitly allowed trust for.`
			`#`
			`# This security policy is significantly more difficult to bypass, and offers`
			`# a reasonable guarantee that the contents of the gem have not been altered.`

			`HighSecurity = Policy.new(`
			`'High Security',`
			`:verify_data => true,`
			`:verify_signer => true,`
			`:verify_chain => true,`
			`:verify_root => true,`
			`:only_trusted => true,`
			`:only_signed => true`
			`)`

			`##`
			`# Policy used to verify a certificate and key when signing a gem`

			`SigningPolicy = Policy.new(`
			`'Signing Policy',`
			`:verify_data => false,`
			`:verify_signer => true,`
			`:verify_chain => true,`
			`:verify_root => true,`
			`:only_trusted => false,`
			`:only_signed => false`
			`)`

			`##`
			`# Hash of configured security policies`

			`Policies = {`
			`'NoSecurity' => NoSecurity,`
			`'AlmostNoSecurity' => AlmostNoSecurity,`
			`'LowSecurity' => LowSecurity,`
			`'MediumSecurity' => MediumSecurity,`
			`'HighSecurity' => HighSecurity,`
			# SigningPolicy is not intended for use by `gem -P` so do not list it
			`}`

			`end`