openssl 2.1.2 → 3.0.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CONTRIBUTING.md +35 -45
- data/History.md +232 -0
- data/README.md +2 -2
- data/ext/openssl/extconf.rb +61 -46
- data/ext/openssl/openssl_missing.c +0 -66
- data/ext/openssl/openssl_missing.h +60 -44
- data/ext/openssl/ossl.c +112 -66
- data/ext/openssl/ossl.h +28 -11
- data/ext/openssl/ossl_asn1.c +42 -5
- data/ext/openssl/ossl_bn.c +276 -146
- data/ext/openssl/ossl_bn.h +2 -1
- data/ext/openssl/ossl_cipher.c +38 -29
- data/ext/openssl/ossl_config.c +412 -41
- data/ext/openssl/ossl_config.h +4 -7
- data/ext/openssl/ossl_digest.c +31 -62
- data/ext/openssl/ossl_engine.c +18 -27
- data/ext/openssl/ossl_hmac.c +52 -145
- data/ext/openssl/ossl_kdf.c +11 -19
- data/ext/openssl/ossl_ns_spki.c +1 -1
- data/ext/openssl/ossl_ocsp.c +9 -62
- data/ext/openssl/ossl_ocsp.h +3 -3
- data/ext/openssl/ossl_pkcs12.c +21 -3
- data/ext/openssl/ossl_pkcs7.c +45 -78
- data/ext/openssl/ossl_pkcs7.h +16 -0
- data/ext/openssl/ossl_pkey.c +1255 -178
- data/ext/openssl/ossl_pkey.h +40 -77
- data/ext/openssl/ossl_pkey_dh.c +125 -335
- data/ext/openssl/ossl_pkey_dsa.c +93 -398
- data/ext/openssl/ossl_pkey_ec.c +155 -318
- data/ext/openssl/ossl_pkey_rsa.c +105 -484
- data/ext/openssl/ossl_rand.c +2 -40
- data/ext/openssl/ossl_ssl.c +395 -364
- data/ext/openssl/ossl_ssl_session.c +24 -29
- data/ext/openssl/ossl_ts.c +1539 -0
- data/ext/openssl/ossl_ts.h +16 -0
- data/ext/openssl/ossl_x509.c +86 -1
- data/ext/openssl/ossl_x509cert.c +166 -10
- data/ext/openssl/ossl_x509crl.c +10 -7
- data/ext/openssl/ossl_x509ext.c +15 -2
- data/ext/openssl/ossl_x509name.c +16 -5
- data/ext/openssl/ossl_x509req.c +10 -7
- data/ext/openssl/ossl_x509store.c +193 -92
- data/lib/openssl/bn.rb +1 -1
- data/lib/openssl/buffering.rb +42 -17
- data/lib/openssl/cipher.rb +1 -1
- data/lib/openssl/digest.rb +10 -12
- data/lib/openssl/hmac.rb +78 -0
- data/lib/openssl/marshal.rb +30 -0
- data/lib/openssl/pkcs5.rb +1 -1
- data/lib/openssl/pkey.rb +435 -1
- data/lib/openssl/ssl.rb +53 -14
- data/lib/openssl/version.rb +5 -0
- data/lib/openssl/x509.rb +177 -1
- data/lib/openssl.rb +24 -9
- metadata +13 -69
- data/ext/openssl/deprecation.rb +0 -23
- data/ext/openssl/ossl_version.h +0 -15
- data/ext/openssl/ruby_missing.h +0 -24
- data/lib/openssl/config.rb +0 -474
data/ext/openssl/ossl_asn1.c
CHANGED
|
@@ -69,6 +69,12 @@ asn1time_to_time(const ASN1_TIME *time)
|
|
|
69
69
|
return rb_funcall2(rb_cTime, rb_intern("utc"), 6, argv);
|
|
70
70
|
}
|
|
71
71
|
|
|
72
|
+
static VALUE
|
|
73
|
+
asn1time_to_time_i(VALUE arg)
|
|
74
|
+
{
|
|
75
|
+
return asn1time_to_time((ASN1_TIME *)arg);
|
|
76
|
+
}
|
|
77
|
+
|
|
72
78
|
void
|
|
73
79
|
ossl_time_split(VALUE time, time_t *sec, int *days)
|
|
74
80
|
{
|
|
@@ -136,6 +142,12 @@ num_to_asn1integer(VALUE obj, ASN1_INTEGER *ai)
|
|
|
136
142
|
return ai;
|
|
137
143
|
}
|
|
138
144
|
|
|
145
|
+
static VALUE
|
|
146
|
+
asn1integer_to_num_i(VALUE arg)
|
|
147
|
+
{
|
|
148
|
+
return asn1integer_to_num((ASN1_INTEGER *)arg);
|
|
149
|
+
}
|
|
150
|
+
|
|
139
151
|
/********/
|
|
140
152
|
/*
|
|
141
153
|
* ASN1 module
|
|
@@ -325,7 +337,7 @@ decode_int(unsigned char* der, long length)
|
|
|
325
337
|
p = der;
|
|
326
338
|
if(!(ai = d2i_ASN1_INTEGER(NULL, &p, length)))
|
|
327
339
|
ossl_raise(eASN1Error, NULL);
|
|
328
|
-
ret = rb_protect(
|
|
340
|
+
ret = rb_protect(asn1integer_to_num_i,
|
|
329
341
|
(VALUE)ai, &status);
|
|
330
342
|
ASN1_INTEGER_free(ai);
|
|
331
343
|
if(status) rb_jump_tag(status);
|
|
@@ -365,7 +377,7 @@ decode_enum(unsigned char* der, long length)
|
|
|
365
377
|
p = der;
|
|
366
378
|
if(!(ai = d2i_ASN1_ENUMERATED(NULL, &p, length)))
|
|
367
379
|
ossl_raise(eASN1Error, NULL);
|
|
368
|
-
ret = rb_protect(
|
|
380
|
+
ret = rb_protect(asn1integer_to_num_i,
|
|
369
381
|
(VALUE)ai, &status);
|
|
370
382
|
ASN1_ENUMERATED_free(ai);
|
|
371
383
|
if(status) rb_jump_tag(status);
|
|
@@ -427,7 +439,7 @@ decode_time(unsigned char* der, long length)
|
|
|
427
439
|
p = der;
|
|
428
440
|
if(!(time = d2i_ASN1_TIME(NULL, &p, length)))
|
|
429
441
|
ossl_raise(eASN1Error, NULL);
|
|
430
|
-
ret = rb_protect(
|
|
442
|
+
ret = rb_protect(asn1time_to_time_i,
|
|
431
443
|
(VALUE)time, &status);
|
|
432
444
|
ASN1_TIME_free(time);
|
|
433
445
|
if(status) rb_jump_tag(status);
|
|
@@ -1285,6 +1297,30 @@ ossl_asn1obj_get_ln(VALUE self)
|
|
|
1285
1297
|
return ret;
|
|
1286
1298
|
}
|
|
1287
1299
|
|
|
1300
|
+
/*
|
|
1301
|
+
* call-seq:
|
|
1302
|
+
* oid == other_oid => true or false
|
|
1303
|
+
*
|
|
1304
|
+
* Returns +true+ if _other_oid_ is the same as _oid_
|
|
1305
|
+
*/
|
|
1306
|
+
static VALUE
|
|
1307
|
+
ossl_asn1obj_eq(VALUE self, VALUE other)
|
|
1308
|
+
{
|
|
1309
|
+
VALUE valSelf, valOther;
|
|
1310
|
+
int nidSelf, nidOther;
|
|
1311
|
+
|
|
1312
|
+
valSelf = ossl_asn1_get_value(self);
|
|
1313
|
+
valOther = ossl_asn1_get_value(other);
|
|
1314
|
+
|
|
1315
|
+
if ((nidSelf = OBJ_txt2nid(StringValueCStr(valSelf))) == NID_undef)
|
|
1316
|
+
ossl_raise(eASN1Error, "OBJ_txt2nid");
|
|
1317
|
+
|
|
1318
|
+
if ((nidOther = OBJ_txt2nid(StringValueCStr(valOther))) == NID_undef)
|
|
1319
|
+
ossl_raise(eASN1Error, "OBJ_txt2nid");
|
|
1320
|
+
|
|
1321
|
+
return nidSelf == nidOther ? Qtrue : Qfalse;
|
|
1322
|
+
}
|
|
1323
|
+
|
|
1288
1324
|
static VALUE
|
|
1289
1325
|
asn1obj_get_oid_i(VALUE vobj)
|
|
1290
1326
|
{
|
|
@@ -1486,7 +1522,7 @@ Init_ossl_asn1(void)
|
|
|
1486
1522
|
*
|
|
1487
1523
|
* An Array that stores the name of a given tag number. These names are
|
|
1488
1524
|
* the same as the name of the tag constant that is additionally defined,
|
|
1489
|
-
* e.g. UNIVERSAL_TAG_NAME[2] = "INTEGER" and OpenSSL::ASN1::INTEGER = 2
|
|
1525
|
+
* e.g. +UNIVERSAL_TAG_NAME[2] = "INTEGER"+ and +OpenSSL::ASN1::INTEGER = 2+.
|
|
1490
1526
|
*
|
|
1491
1527
|
* == Example usage
|
|
1492
1528
|
*
|
|
@@ -1818,12 +1854,14 @@ do{\
|
|
|
1818
1854
|
rb_define_method(cASN1ObjectId, "oid", ossl_asn1obj_get_oid, 0);
|
|
1819
1855
|
rb_define_alias(cASN1ObjectId, "short_name", "sn");
|
|
1820
1856
|
rb_define_alias(cASN1ObjectId, "long_name", "ln");
|
|
1857
|
+
rb_define_method(cASN1ObjectId, "==", ossl_asn1obj_eq, 1);
|
|
1821
1858
|
rb_attr(cASN1BitString, rb_intern("unused_bits"), 1, 1, 0);
|
|
1822
1859
|
|
|
1823
1860
|
rb_define_method(cASN1EndOfContent, "initialize", ossl_asn1eoc_initialize, 0);
|
|
1824
1861
|
rb_define_method(cASN1EndOfContent, "to_der", ossl_asn1eoc_to_der, 0);
|
|
1825
1862
|
|
|
1826
1863
|
class_tag_map = rb_hash_new();
|
|
1864
|
+
rb_gc_register_mark_object(class_tag_map);
|
|
1827
1865
|
rb_hash_aset(class_tag_map, cASN1EndOfContent, INT2NUM(V_ASN1_EOC));
|
|
1828
1866
|
rb_hash_aset(class_tag_map, cASN1Boolean, INT2NUM(V_ASN1_BOOLEAN));
|
|
1829
1867
|
rb_hash_aset(class_tag_map, cASN1Integer, INT2NUM(V_ASN1_INTEGER));
|
|
@@ -1847,7 +1885,6 @@ do{\
|
|
|
1847
1885
|
rb_hash_aset(class_tag_map, cASN1GeneralString, INT2NUM(V_ASN1_GENERALSTRING));
|
|
1848
1886
|
rb_hash_aset(class_tag_map, cASN1UniversalString, INT2NUM(V_ASN1_UNIVERSALSTRING));
|
|
1849
1887
|
rb_hash_aset(class_tag_map, cASN1BMPString, INT2NUM(V_ASN1_BMPSTRING));
|
|
1850
|
-
rb_global_variable(&class_tag_map);
|
|
1851
1888
|
|
|
1852
1889
|
id_each = rb_intern_const("each");
|
|
1853
1890
|
}
|