Class: OpenSSL::X509::ExtensionFactory

Inherits:

Object

• Object
• OpenSSL::X509::ExtensionFactory

Defined in:

lib/openssl/x509.rb,
ossl_x509ext.c

Instance Method Summary

• #config=(config) ⇒ Object
• #create_ext(*args) ⇒ Object

  Array to X509_EXTENSION Structure: [“ln”, “value”, bool_critical] or [“sn”, “value”, bool_critical] or [“ln”, “critical,value”] or the same for sn [“ln”, “value”] => not critical.

• #create_ext_from_array(ary) ⇒ Object
• #create_ext_from_hash(hash) ⇒ Object
• #create_ext_from_string(str) ⇒ Object

  “oid = critical, value”.

• #create_extension(*arg) ⇒ Object
• #crl=(crl) ⇒ Object
• #initialize(*args) ⇒ Object constructor
• #issuer_certificate=(cert) ⇒ Object
• #subject_certificate=(cert) ⇒ Object
• #subject_request=(req) ⇒ Object

Constructor Details

#initialize(*args) ⇒ Object

# File 'ossl_x509ext.c', line 209

static VALUE
ossl_x509extfactory_initialize(int argc, VALUE *argv, VALUE self)
{
    /*X509V3_CTX *ctx;*/
    VALUE issuer_cert, subject_cert, subject_req, crl;

    /*GetX509ExtFactory(self, ctx);*/

    rb_scan_args(argc, argv, "04",
		 &issuer_cert, &subject_cert, &subject_req, &crl);
    if (!NIL_P(issuer_cert))
	ossl_x509extfactory_set_issuer_cert(self, issuer_cert);
    if (!NIL_P(subject_cert))
	ossl_x509extfactory_set_subject_cert(self, subject_cert);
    if (!NIL_P(subject_req))
	ossl_x509extfactory_set_subject_req(self, subject_req);
    if (!NIL_P(crl))
	ossl_x509extfactory_set_crl(self, crl);

    return self;
}

Instance Method Details

#config=(config) ⇒ Object

# File 'ossl_x509ext.c', line 192

static VALUE
ossl_x509extfactory_set_config(VALUE self, VALUE config)
{
    X509V3_CTX *ctx;
    CONF *conf;

    GetX509ExtFactory(self, ctx);
    rb_iv_set(self, "@config", config);
    conf = GetConfigPtr(config);  /* NO DUP NEEDED */
    X509V3_set_nconf(ctx, conf);

    return config;
}

#create_ext(*args) ⇒ Object

Array to X509_EXTENSION Structure:

“ln”, “value”, bool_critical

or

“sn”, “value”, bool_critical

or

“ln”, “critical,value”

or the same for sn

“ln”, “value”

> not critical

# File 'ossl_x509ext.c', line 239

static VALUE
ossl_x509extfactory_create_ext(int argc, VALUE *argv, VALUE self)
{
    X509V3_CTX *ctx;
    X509_EXTENSION *ext;
    VALUE oid, value, critical, valstr, obj;
    int nid;
#ifdef HAVE_X509V3_EXT_NCONF_NID
    VALUE rconf;
    CONF *conf;
#else
    static LHASH *empty_lhash;
#endif

    rb_scan_args(argc, argv, "21", &oid, &value, &critical);
    StringValue(oid);
    StringValue(value);
    if(NIL_P(critical)) critical = Qfalse;

    nid = OBJ_ln2nid(RSTRING_PTR(oid));
    if(!nid) nid = OBJ_sn2nid(RSTRING_PTR(oid));
    if(!nid) ossl_raise(eX509ExtError, "unknown OID `%s'", RSTRING_PTR(oid));
    valstr = rb_str_new2(RTEST(critical) ? "critical," : "");
    rb_str_append(valstr, value);
    GetX509ExtFactory(self, ctx);
    obj = NewX509Ext(cX509Ext);
#ifdef HAVE_X509V3_EXT_NCONF_NID
    rconf = rb_iv_get(self, "@config");
    conf = NIL_P(rconf) ? NULL : GetConfigPtr(rconf);
    ext = X509V3_EXT_nconf_nid(conf, ctx, nid, RSTRING_PTR(valstr));
#else
    if (!empty_lhash) empty_lhash = lh_new(NULL, NULL);
    ext = X509V3_EXT_conf_nid(empty_lhash, ctx, nid, RSTRING_PTR(valstr));
#endif
    if (!ext){
	ossl_raise(eX509ExtError, "%s = %s",
		   RSTRING_PTR(oid), RSTRING_PTR(value));
    }
    SetX509Ext(obj, ext);

    return obj;
}

#create_ext_from_array(ary) ⇒ Object

Raises:

• (ExtensionError)

# File 'lib/openssl/x509.rb', line 26

def create_ext_from_array(ary)
  raise ExtensionError, "unexpected array form" if ary.size > 3
  create_ext(ary[0], ary[1], ary[2])
end

#create_ext_from_hash(hash) ⇒ Object

# File 'lib/openssl/x509.rb', line 38

def create_ext_from_hash(hash)
  create_ext(hash["oid"], hash["value"], hash["critical"])
end

#create_ext_from_string(str) ⇒ Object

“oid = critical, value”

# File 'lib/openssl/x509.rb', line 31

def create_ext_from_string(str) # "oid = critical, value"
  oid, value = str.split(/=/, 2)
  oid.strip!
  value.strip!
  create_ext(oid, value)
end

#create_extension(*arg) ⇒ Object

# File 'lib/openssl/x509.rb', line 18

def create_extension(*arg)
  if arg.size > 1
    create_ext(*arg)
  else
    send("create_ext_from_"+arg[0].class.name.downcase, arg[0])
  end
end

#crl=(crl) ⇒ Object

# File 'ossl_x509ext.c', line 179

static VALUE
ossl_x509extfactory_set_crl(VALUE self, VALUE crl)
{
    X509V3_CTX *ctx;

    GetX509ExtFactory(self, ctx);
    rb_iv_set(self, "@crl", crl);
    ctx->crl = GetX509CRLPtr(crl); /* NO DUP NEEDED */

    return crl;
}

#issuer_certificate=(cert) ⇒ Object

# File 'ossl_x509ext.c', line 143

static VALUE
ossl_x509extfactory_set_issuer_cert(VALUE self, VALUE cert)
{
    X509V3_CTX *ctx;

    GetX509ExtFactory(self, ctx);
    rb_iv_set(self, "@issuer_certificate", cert);
    ctx->issuer_cert = GetX509CertPtr(cert); /* NO DUP NEEDED */

    return cert;
}

#subject_certificate=(cert) ⇒ Object

# File 'ossl_x509ext.c', line 155

static VALUE
ossl_x509extfactory_set_subject_cert(VALUE self, VALUE cert)
{
    X509V3_CTX *ctx;

    GetX509ExtFactory(self, ctx);
    rb_iv_set(self, "@subject_certificate", cert);
    ctx->subject_cert = GetX509CertPtr(cert); /* NO DUP NEEDED */

    return cert;
}

#subject_request=(req) ⇒ Object

# File 'ossl_x509ext.c', line 167

static VALUE
ossl_x509extfactory_set_subject_req(VALUE self, VALUE req)
{
    X509V3_CTX *ctx;

    GetX509ExtFactory(self, ctx);
    rb_iv_set(self, "@subject_request", req);
    ctx->subject_req = GetX509ReqPtr(req); /* NO DUP NEEDED */

    return req;
}