Module: SyslogShipper::TlsWrapper

Defined in:: lib/syslog_shipper/tls_wrapper.rb

Class Attribute Summary collapse

.verified ⇒ Object

Returns the value of attribute verified.

Instance Method Summary collapse

Class Attribute Details

.verified ⇒ `Object`

Returns the value of attribute verified.



6
7
8

# File 'lib/syslog_shipper/tls_wrapper.rb', line 6

def verified
  @verified
end

Instance Method Details

#connection_completed ⇒ `Object`



22
23
24

# File 'lib/syslog_shipper/tls_wrapper.rb', line 22

def connection_completed
  puts 'connection completed' if @verbose
end

#initialize(ca_cert = nil, with_tls = false, bypass_peer_check = false, verbose = false) ⇒ `Object`

# File 'lib/syslog_shipper/tls_wrapper.rb', line 9

def initialize(ca_cert = nil, with_tls = false, bypass_peer_check = false, verbose = false)
  @ca_cert = ca_cert
  @with_tls = true
  @bypass_peer_check = bypass_peer_check
  @verbose = verbose
end

#post_init ⇒ `Object`

# File 'lib/syslog_shipper/tls_wrapper.rb', line 16

def post_init
  puts 'post init' if @verbose
  
  start_tls :verify_peer => @with_tls
end

#ssl_handshake_completed ⇒ `Object`



56
57
58

# File 'lib/syslog_shipper/tls_wrapper.rb', line 56

def ssl_handshake_completed
  puts 'ssl handshake completed' if @verbose
end

#ssl_verify_peer(cert) ⇒ `Object`

# File 'lib/syslog_shipper/tls_wrapper.rb', line 26

def ssl_verify_peer cert
  puts 'verifying peer' if @verbose
  unless defined?(@@verified)
    return true if @bypass_peer_check

    server_cert = OpenSSL::X509::Certificate.new cert
    verified = false

    if @ca_cert
      ca_cert = read_ca_cert
      verified = server_cert.verify(ca_cert.public_key)
    end

    unless verified
      puts server_cert.inspect
      print "The server certificate is not recognized, would you still like to connect? (Y/N) "
      answer = STDIN.gets.chomp
      unless ['y', 'yes'].include?(answer.downcase)
        raise OpenSSL::X509::CertificateError.new("Couldn't verify peer")
      end
    end
    
    @@verified = verified

    puts 'verified peer' if @verbose
  end

  true
end

#unbind ⇒ `Object`



60
61
62

# File 'lib/syslog_shipper/tls_wrapper.rb', line 60

def unbind
  puts 'connection unbound!' if @verbose
end

Module: SyslogShipper::TlsWrapper

Class Attribute Summary collapse

Instance Method Summary collapse

Class Attribute Details

.verified ⇒ Object

Instance Method Details

#connection_completed ⇒ Object

#initialize(ca_cert = nil, with_tls = false, bypass_peer_check = false, verbose = false) ⇒ Object

#post_init ⇒ Object

#ssl_handshake_completed ⇒ Object

#ssl_verify_peer(cert) ⇒ Object

#unbind ⇒ Object

.verified ⇒ `Object`

#connection_completed ⇒ `Object`

#initialize(ca_cert = nil, with_tls = false, bypass_peer_check = false, verbose = false) ⇒ `Object`

#post_init ⇒ `Object`

#ssl_handshake_completed ⇒ `Object`

#ssl_verify_peer(cert) ⇒ `Object`

#unbind ⇒ `Object`