Class: EzCrypto::Verifier

Inherits:

Object

• Object
• EzCrypto::Verifier

Defined in:

lib/ezsig.rb

Overview

The Verifier is used for verifying signatures. If you use the decode or

from_file methods you can use either raw PEM encoded public keys or certificate.

Direct Known Subclasses

Certificate

Class Method Summary

• .decode(encoded) ⇒ Object

  Decodes a PEM encoded Certificate or Public Key and returns a Verifier object.

• .from_file(filename) ⇒ Object

  Decodes a PEM encoded Certificate or Public Key from a file and returns a Verifier object.

Instance Method Summary

• #cert? ⇒ Boolean

  Is the Verifier a Certificate or not.

• #digest ⇒ Object

  Returns the SHA1 hexdigest of the DER encoded public key.

• #dsa? ⇒ Boolean

  Is this a DSA key?.

• #initialize(pub) ⇒ Verifier constructor

  Initializes a Verifier using a OpenSSL public key object.

• #public_key ⇒ Object

  Returns the OpenSSL public key object.

• #rsa? ⇒ Boolean

  Is this a RSA key?.

• #verify(sig, data) ⇒ Object

  Returns true if the public key signed the given data.

Constructor Details

#initialize(pub) ⇒ Verifier

Initializes a Verifier using a OpenSSL public key object.

# File 'lib/ezsig.rb', line 129

def initialize(pub)
  @pub=pub
end

Class Method Details

.decode(encoded) ⇒ Object

Decodes a PEM encoded Certificate or Public Key and returns a Verifier object.

# File 'lib/ezsig.rb', line 136

def self.decode(encoded)
  case encoded
  when /-----BEGIN CERTIFICATE-----/
    EzCrypto::Certificate.new(OpenSSL::X509::Certificate.new( encoded))
  else
    begin
      EzCrypto::Verifier.new(OpenSSL::PKey::RSA.new( encoded))
    rescue
      EzCrypto::Verifier.new(OpenSSL::PKey::DSA.new( encoded))
    end
  end
end

.from_file(filename) ⇒ Object

Decodes a PEM encoded Certificate or Public Key from a file and returns a Verifier object.

# File 'lib/ezsig.rb', line 152

def self.from_file(filename)
  file = File.read( filename )
  decode(file)
end

Instance Method Details

#cert? ⇒ Boolean

Is the Verifier a Certificate or not.

Returns:

• (Boolean)

# File 'lib/ezsig.rb', line 160

def cert?
  false
end

#digest ⇒ Object

Returns the SHA1 hexdigest of the DER encoded public key. This can be used as a unique key identifier.

# File 'lib/ezsig.rb', line 174

def digest
  Digest::SHA1.hexdigest(@pub.to_der)
end

#dsa? ⇒ Boolean

Is this a DSA key?

Returns:

• (Boolean)

# File 'lib/ezsig.rb', line 186

def dsa?
  @pub.is_a? OpenSSL::PKey::DSA
end

#public_key ⇒ Object

Returns the OpenSSL public key object. You would normally not need to use this.

# File 'lib/ezsig.rb', line 167

def public_key
  @pub
end

#rsa? ⇒ Boolean

Is this a RSA key?

Returns:

• (Boolean)

# File 'lib/ezsig.rb', line 180

def rsa?
  @pub.is_a? OpenSSL::PKey::RSA
end

#verify(sig, data) ⇒ Object

Returns true if the public key signed the given data.

# File 'lib/ezsig.rb', line 194

def verify(sig,data)
  if rsa?
    @pub.verify( OpenSSL::Digest::SHA1.new, sig, data )
  elsif dsa?
    @pub.verify( OpenSSL::Digest::DSS1.new, sig, data )
  else
    false
  end
end