RubyGems - rubysl-openssl - Versions diffs - 0.0.1 → 1.0.1 - Mend

rubysl-openssl 0.0.1 → 1.0.1

Files changed (88) hide show

checksums.yaml +7 -0
data/.gitignore +0 -1
data/.travis.yml +7 -0
data/README.md +2 -2
data/Rakefile +0 -1
data/ext/rubysl/openssl/extconf.h +50 -0
data/ext/rubysl/openssl/extconf.rb +144 -0
data/ext/rubysl/openssl/openssl_missing.c +343 -0
data/ext/rubysl/openssl/openssl_missing.h +191 -0
data/ext/rubysl/openssl/ossl.c +552 -0
data/ext/rubysl/openssl/ossl.h +233 -0
data/ext/rubysl/openssl/ossl_asn1.c +1160 -0
data/ext/rubysl/openssl/ossl_asn1.h +59 -0
data/ext/rubysl/openssl/ossl_bio.c +86 -0
data/ext/rubysl/openssl/ossl_bio.h +21 -0
data/ext/rubysl/openssl/ossl_bn.c +852 -0
data/ext/rubysl/openssl/ossl_bn.h +25 -0
data/ext/rubysl/openssl/ossl_cipher.c +569 -0
data/ext/rubysl/openssl/ossl_cipher.h +22 -0
data/ext/rubysl/openssl/ossl_config.c +75 -0
data/ext/rubysl/openssl/ossl_config.h +22 -0
data/ext/rubysl/openssl/ossl_digest.c +259 -0
data/ext/rubysl/openssl/ossl_digest.h +22 -0
data/ext/rubysl/openssl/ossl_engine.c +411 -0
data/ext/rubysl/openssl/ossl_engine.h +20 -0
data/ext/rubysl/openssl/ossl_hmac.c +268 -0
data/ext/rubysl/openssl/ossl_hmac.h +19 -0
data/ext/rubysl/openssl/ossl_ns_spki.c +257 -0
data/ext/rubysl/openssl/ossl_ns_spki.h +21 -0
data/ext/rubysl/openssl/ossl_ocsp.c +769 -0
data/ext/rubysl/openssl/ossl_ocsp.h +24 -0
data/ext/rubysl/openssl/ossl_pkcs12.c +210 -0
data/ext/rubysl/openssl/ossl_pkcs12.h +15 -0
data/ext/rubysl/openssl/ossl_pkcs5.c +99 -0
data/ext/rubysl/openssl/ossl_pkcs5.h +6 -0
data/ext/rubysl/openssl/ossl_pkcs7.c +1039 -0
data/ext/rubysl/openssl/ossl_pkcs7.h +22 -0
data/ext/rubysl/openssl/ossl_pkey.c +240 -0
data/ext/rubysl/openssl/ossl_pkey.h +141 -0
data/ext/rubysl/openssl/ossl_pkey_dh.c +532 -0
data/ext/rubysl/openssl/ossl_pkey_dsa.c +484 -0
data/ext/rubysl/openssl/ossl_pkey_ec.c +1593 -0
data/ext/rubysl/openssl/ossl_pkey_rsa.c +593 -0
data/ext/rubysl/openssl/ossl_rand.c +202 -0
data/ext/rubysl/openssl/ossl_rand.h +20 -0
data/ext/rubysl/openssl/ossl_ssl.c +1484 -0
data/ext/rubysl/openssl/ossl_ssl.h +36 -0
data/ext/rubysl/openssl/ossl_ssl_session.c +307 -0
data/ext/rubysl/openssl/ossl_version.h +16 -0
data/ext/rubysl/openssl/ossl_x509.c +104 -0
data/ext/rubysl/openssl/ossl_x509.h +114 -0
data/ext/rubysl/openssl/ossl_x509attr.c +274 -0
data/ext/rubysl/openssl/ossl_x509cert.c +764 -0
data/ext/rubysl/openssl/ossl_x509crl.c +535 -0
data/ext/rubysl/openssl/ossl_x509ext.c +458 -0
data/ext/rubysl/openssl/ossl_x509name.c +399 -0
data/ext/rubysl/openssl/ossl_x509req.c +466 -0
data/ext/rubysl/openssl/ossl_x509revoked.c +229 -0
data/ext/rubysl/openssl/ossl_x509store.c +625 -0
data/ext/rubysl/openssl/ruby_missing.h +41 -0
data/lib/openssl.rb +1 -0
data/lib/openssl/bn.rb +35 -0
data/lib/openssl/buffering.rb +241 -0
data/lib/openssl/cipher.rb +65 -0
data/lib/openssl/config.rb +316 -0
data/lib/openssl/digest.rb +61 -0
data/lib/openssl/net/ftptls.rb +53 -0
data/lib/openssl/net/telnets.rb +251 -0
data/lib/openssl/pkcs7.rb +25 -0
data/lib/openssl/ssl-internal.rb +187 -0
data/lib/openssl/ssl.rb +1 -0
data/lib/openssl/x509-internal.rb +153 -0
data/lib/openssl/x509.rb +1 -0
data/lib/rubysl/openssl.rb +28 -0
data/lib/rubysl/openssl/version.rb +5 -0
data/rubysl-openssl.gemspec +19 -18
data/spec/cipher_spec.rb +16 -0
data/spec/config/freeze_spec.rb +17 -0
data/spec/hmac/digest_spec.rb +15 -0
data/spec/hmac/hexdigest_spec.rb +15 -0
data/spec/random/pseudo_bytes_spec.rb +5 -0
data/spec/random/random_bytes_spec.rb +5 -0
data/spec/random/shared/random_bytes.rb +28 -0
data/spec/shared/constants.rb +11 -0
data/spec/x509/name/parse_spec.rb +47 -0
metadata +153 -89
data/lib/rubysl-openssl.rb +0 -7
data/lib/rubysl-openssl/version.rb +0 -5

data/ext/rubysl/openssl/ossl_engine.h ADDED

@@ -0,0 +1,20 @@
+/*
+ * $Id: ossl_engine.h 11708 2007-02-12 23:01:19Z shyouhei $
+ * 'OpenSSL for Ruby' project
+ * Copyright (C) 2003  Michal Rokos <m.rokos@sh.cvut.cz>
+ * Copyright (C) 2003  GOTOU Yuuzou <gotoyuzo@notwork.org>
+ * All rights reserved.
+ */
+/*
+ * This program is licenced under the same licence as Ruby.
+ * (See the file 'LICENCE'.)
+ */
+#if !defined(OSSL_ENGINE_H)
+#define OSSL_ENGINE_H
+extern VALUE cEngine;
+extern VALUE eEngineError;
+void Init_ossl_engine(void);
+#endif /* OSSL_ENGINE_H */

data/ext/rubysl/openssl/ossl_hmac.c ADDED

@@ -0,0 +1,268 @@
+/*
+ * $Id: ossl_hmac.c 28004 2010-05-24 23:58:49Z shyouhei $
+ * 'OpenSSL for Ruby' project
+ * Copyright (C) 2001-2002  Michal Rokos <m.rokos@sh.cvut.cz>
+ * All rights reserved.
+ */
+/*
+ * This program is licenced under the same licence as Ruby.
+ * (See the file 'LICENCE'.)
+ */
+#if !defined(OPENSSL_NO_HMAC)
+#include "ossl.h"
+#define MakeHMAC(obj, klass, ctx) \
+    obj = Data_Make_Struct(klass, HMAC_CTX, 0, ossl_hmac_free, ctx)
+#define GetHMAC(obj, ctx) do { \
+    Data_Get_Struct(obj, HMAC_CTX, ctx); \
+    if (!ctx) { \
+	ossl_raise(rb_eRuntimeError, "HMAC wasn't initialized"); \
+    } \
+} while (0)
+#define SafeGetHMAC(obj, ctx) do { \
+    OSSL_Check_Kind(obj, cHMAC); \
+    GetHMAC(obj, ctx); \
+} while (0)
+/*
+ * Classes
+ */
+VALUE cHMAC;
+VALUE eHMACError;
+/*
+ * Public
+ */
+/*
+ * Private
+ */
+static void
+ossl_hmac_free(HMAC_CTX *ctx)
+{
+    HMAC_CTX_cleanup(ctx);
+    ruby_xfree(ctx);
+}
+static VALUE
+ossl_hmac_alloc(VALUE klass)
+{
+    HMAC_CTX *ctx;
+    VALUE obj;
+    MakeHMAC(obj, klass, ctx);
+    HMAC_CTX_init(ctx);
+    return obj;
+}
+/*
+ *  call-seq:
+ *     HMAC.new(key, digest) -> hmac
+ *
+ */
+static VALUE
+ossl_hmac_initialize(VALUE self, VALUE key, VALUE digest)
+{
+    HMAC_CTX *ctx;
+    StringValue(key);
+    GetHMAC(self, ctx);
+    HMAC_Init_ex(ctx, RSTRING_PTR(key), RSTRING_LEN(key),
+		 GetDigestPtr(digest), NULL);
+    return self;
+}
+static VALUE
+ossl_hmac_copy(VALUE self, VALUE other)
+{
+    HMAC_CTX *ctx1, *ctx2;
+    rb_check_frozen(self);
+    if (self == other) return self;
+    GetHMAC(self, ctx1);
+    SafeGetHMAC(other, ctx2);
+    HMAC_CTX_copy(ctx1, ctx2);
+    return self;
+}
+/*
+ *  call-seq:
+ *     hmac.update(string) -> self
+ *
+ */
+static VALUE
+ossl_hmac_update(VALUE self, VALUE data)
+{
+    HMAC_CTX *ctx;
+    StringValue(data);
+    GetHMAC(self, ctx);
+    HMAC_Update(ctx, RSTRING_PTR(data), RSTRING_LEN(data));
+    return self;
+}
+static void
+hmac_final(HMAC_CTX *ctx, char **buf, int *buf_len)
+{
+    HMAC_CTX final;
+    HMAC_CTX_copy(&final, ctx);
+    if (!(*buf = OPENSSL_malloc(HMAC_size(&final)))) {
+	HMAC_CTX_cleanup(&final);
+	OSSL_Debug("Allocating %d mem", HMAC_size(&final));
+	ossl_raise(eHMACError, "Cannot allocate memory for hmac");
+    }
+    HMAC_Final(&final, *buf, buf_len);
+    HMAC_CTX_cleanup(&final);
+}
+/*
+ *  call-seq:
+ *     hmac.digest -> aString
+ *
+ */
+static VALUE
+ossl_hmac_digest(VALUE self)
+{
+    HMAC_CTX *ctx;
+    char *buf;
+    int buf_len;
+    VALUE digest;
+    GetHMAC(self, ctx);
+    hmac_final(ctx, &buf, &buf_len);
+    digest = ossl_buf2str(buf, buf_len);
+    return digest;
+}
+/*
+ *  call-seq:
+ *     hmac.hexdigest -> aString
+ *
+ */
+static VALUE
+ossl_hmac_hexdigest(VALUE self)
+{
+    HMAC_CTX *ctx;
+    char *buf, *hexbuf;
+    int buf_len;
+    VALUE hexdigest;
+    GetHMAC(self, ctx);
+    hmac_final(ctx, &buf, &buf_len);
+    if (string2hex(buf, buf_len, &hexbuf, NULL) != 2 * buf_len) {
+	OPENSSL_free(buf);
+	ossl_raise(eHMACError, "Memory alloc error");
+    }
+    OPENSSL_free(buf);
+    hexdigest = ossl_buf2str(hexbuf, 2 * buf_len);
+    return hexdigest;
+}
+/*
+ *  call-seq:
+ *     hmac.reset -> self
+ *
+ */
+static VALUE
+ossl_hmac_reset(VALUE self)
+{
+    HMAC_CTX *ctx;
+    GetHMAC(self, ctx);
+    HMAC_Init_ex(ctx, NULL, 0, NULL, NULL);
+    return self;
+}
+/*
+ *  call-seq:
+ *     HMAC.digest(digest, key, data) -> aString
+ *
+ */
+static VALUE
+ossl_hmac_s_digest(VALUE klass, VALUE digest, VALUE key, VALUE data)
+{
+    char *buf;
+    int buf_len;
+    StringValue(key);
+    StringValue(data);
+    buf = HMAC(GetDigestPtr(digest), RSTRING_PTR(key), RSTRING_LEN(key),
+	       RSTRING_PTR(data), RSTRING_LEN(data), NULL, &buf_len);
+    return rb_str_new(buf, buf_len);
+}
+/*
+ *  call-seq:
+ *     HMAC.digest(digest, key, data) -> aString
+ *
+ */
+static VALUE
+ossl_hmac_s_hexdigest(VALUE klass, VALUE digest, VALUE key, VALUE data)
+{
+    char *buf, *hexbuf;
+    int buf_len;
+    VALUE hexdigest;
+    StringValue(key);
+    StringValue(data);
+    buf = HMAC(GetDigestPtr(digest), RSTRING_PTR(key), RSTRING_LEN(key),
+	       RSTRING_PTR(data), RSTRING_LEN(data), NULL, &buf_len);
+    if (string2hex(buf, buf_len, &hexbuf, NULL) != 2 * buf_len) {
+	ossl_raise(eHMACError, "Cannot convert buf to hexbuf");
+    }
+    hexdigest = ossl_buf2str(hexbuf, 2 * buf_len);
+    return hexdigest;
+}
+/*
+ * INIT
+ */
+void
+Init_ossl_hmac()
+{
+#if 0 /* let rdoc know about mOSSL */
+    mOSSL = rb_define_module("OpenSSL");
+#endif
+    eHMACError = rb_define_class_under(mOSSL, "HMACError", eOSSLError);
+    cHMAC = rb_define_class_under(mOSSL, "HMAC", rb_cObject);
+    rb_define_alloc_func(cHMAC, ossl_hmac_alloc);
+    rb_define_singleton_method(cHMAC, "digest", ossl_hmac_s_digest, 3);
+    rb_define_singleton_method(cHMAC, "hexdigest", ossl_hmac_s_hexdigest, 3);
+    rb_define_method(cHMAC, "initialize", ossl_hmac_initialize, 2);
+    rb_define_copy_func(cHMAC, ossl_hmac_copy);
+    rb_define_method(cHMAC, "reset", ossl_hmac_reset, 0);
+    rb_define_method(cHMAC, "update", ossl_hmac_update, 1);
+    rb_define_alias(cHMAC, "<<", "update");
+    rb_define_method(cHMAC, "digest", ossl_hmac_digest, 0);
+    rb_define_method(cHMAC, "hexdigest", ossl_hmac_hexdigest, 0);
+    rb_define_alias(cHMAC, "inspect", "hexdigest");
+    rb_define_alias(cHMAC, "to_s", "hexdigest");
+}
+#else /* NO_HMAC */
+#  warning >>> OpenSSL is compiled without HMAC support <<<
+void
+Init_ossl_hmac()
+{
+    rb_warning("HMAC will NOT be avaible: OpenSSL is compiled without HMAC.");
+}
+#endif /* NO_HMAC */

data/ext/rubysl/openssl/ossl_hmac.h ADDED

@@ -0,0 +1,19 @@
+/*
+ * $Id: ossl_hmac.h 11708 2007-02-12 23:01:19Z shyouhei $
+ * 'OpenSSL for Ruby' project
+ * Copyright (C) 2001-2002  Michal Rokos <m.rokos@sh.cvut.cz>
+ * All rights reserved.
+ */
+/*
+ * This program is licenced under the same licence as Ruby.
+ * (See the file 'LICENCE'.)
+ */
+#if !defined(_OSSL_HMAC_H_)
+#define _OSSL_HMAC_H_
+extern VALUE cHMAC;
+extern VALUE eHMACError;
+void Init_ossl_hmac(void);
+#endif /* _OSSL_HMAC_H_ */

data/ext/rubysl/openssl/ossl_ns_spki.c ADDED

@@ -0,0 +1,257 @@
+/*
+ * $Id$
+ * 'OpenSSL for Ruby' project
+ * Copyright (C) 2001-2002  Michal Rokos <m.rokos@sh.cvut.cz>
+ * All rights reserved.
+ */
+/*
+ * This program is licenced under the same licence as Ruby.
+ * (See the file 'LICENCE'.)
+ */
+#include "ossl.h"
+#define WrapSPKI(klass, obj, spki) do { \
+    if (!spki) { \
+	ossl_raise(rb_eRuntimeError, "SPKI wasn't initialized!"); \
+    } \
+    obj = Data_Wrap_Struct(klass, 0, NETSCAPE_SPKI_free, spki); \
+} while (0)
+#define GetSPKI(obj, spki) do { \
+    Data_Get_Struct(obj, NETSCAPE_SPKI, spki); \
+    if (!spki) { \
+	ossl_raise(rb_eRuntimeError, "SPKI wasn't initialized!"); \
+    } \
+} while (0)
+/*
+ * Classes
+ */
+VALUE mNetscape;
+VALUE cSPKI;
+VALUE eSPKIError;
+/*
+ * Public functions
+ */
+/*
+ * Private functions
+ */
+static VALUE
+ossl_spki_alloc(VALUE klass)
+{
+    NETSCAPE_SPKI *spki;
+    VALUE obj;
+    if (!(spki = NETSCAPE_SPKI_new())) {
+	ossl_raise(eSPKIError, NULL);
+    }
+    WrapSPKI(klass, obj, spki);
+    return obj;
+}
+static VALUE
+ossl_spki_initialize(int argc, VALUE *argv, VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    VALUE buffer;
+    const unsigned char *p;
+    if (rb_scan_args(argc, argv, "01", &buffer) == 0) {
+	return self;
+    }
+    StringValue(buffer);
+    if (!(spki = NETSCAPE_SPKI_b64_decode(RSTRING_PTR(buffer), -1))) {
+	p = (const unsigned char *)RSTRING_PTR(buffer);
+	if (!(spki = d2i_NETSCAPE_SPKI(NULL, &p, RSTRING_LEN(buffer)))) {
+	    ossl_raise(eSPKIError, NULL);
+	}
+    }
+    NETSCAPE_SPKI_free(DATA_PTR(self));
+    DATA_PTR(self) = spki;
+    ERR_clear_error();
+    return self;
+}
+static VALUE
+ossl_spki_to_der(VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    VALUE str;
+    long len;
+    unsigned char *p;
+    GetSPKI(self, spki);
+    if ((len = i2d_NETSCAPE_SPKI(spki, NULL)) <= 0)
+        ossl_raise(eX509CertError, NULL);
+    str = rb_str_new(0, len);
+    p = RSTRING_PTR(str);
+    if (i2d_NETSCAPE_SPKI(spki, &p) <= 0)
+        ossl_raise(eX509CertError, NULL);
+    ossl_str_adjust(str, p);
+    return str;
+}
+static VALUE
+ossl_spki_to_pem(VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    char *data;
+    VALUE str;
+    GetSPKI(self, spki);
+    if (!(data = NETSCAPE_SPKI_b64_encode(spki))) {
+	ossl_raise(eSPKIError, NULL);
+    }
+    str = ossl_buf2str(data, strlen(data));
+    return str;
+}
+static VALUE
+ossl_spki_print(VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    BIO *out;
+    BUF_MEM *buf;
+    VALUE str;
+    GetSPKI(self, spki);
+    if (!(out = BIO_new(BIO_s_mem()))) {
+	ossl_raise(eSPKIError, NULL);
+    }
+    if (!NETSCAPE_SPKI_print(out, spki)) {
+	BIO_free(out);
+	ossl_raise(eSPKIError, NULL);
+    }
+    BIO_get_mem_ptr(out, &buf);
+    str = rb_str_new(buf->data, buf->length);
+    BIO_free(out);
+    return str;
+}
+static VALUE
+ossl_spki_get_public_key(VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    EVP_PKEY *pkey;
+    GetSPKI(self, spki);
+    if (!(pkey = NETSCAPE_SPKI_get_pubkey(spki))) { /* adds an reference */
+	ossl_raise(eSPKIError, NULL);
+    }
+    return ossl_pkey_new(pkey); /* NO DUP - OK */
+}
+static VALUE
+ossl_spki_set_public_key(VALUE self, VALUE key)
+{
+    NETSCAPE_SPKI *spki;
+    GetSPKI(self, spki);
+    if (!NETSCAPE_SPKI_set_pubkey(spki, GetPKeyPtr(key))) { /* NO NEED TO DUP */
+	ossl_raise(eSPKIError, NULL);
+    }
+    return key;
+}
+static VALUE
+ossl_spki_get_challenge(VALUE self)
+{
+    NETSCAPE_SPKI *spki;
+    GetSPKI(self, spki);
+    if (spki->spkac->challenge->length <= 0) {
+	OSSL_Debug("Challenge.length <= 0?");
+	return rb_str_new(0, 0);
+    }
+    return rb_str_new(spki->spkac->challenge->data,
+		      spki->spkac->challenge->length);
+}
+static VALUE
+ossl_spki_set_challenge(VALUE self, VALUE str)
+{
+    NETSCAPE_SPKI *spki;
+    StringValue(str);
+    GetSPKI(self, spki);
+    if (!ASN1_STRING_set(spki->spkac->challenge, RSTRING_PTR(str),
+			 RSTRING_LEN(str))) {
+	ossl_raise(eSPKIError, NULL);
+    }
+    return str;
+}
+static VALUE
+ossl_spki_sign(VALUE self, VALUE key, VALUE digest)
+{
+    NETSCAPE_SPKI *spki;
+    EVP_PKEY *pkey;
+    const EVP_MD *md;
+    pkey = GetPrivPKeyPtr(key); /* NO NEED TO DUP */
+    md = GetDigestPtr(digest);
+    GetSPKI(self, spki);
+    if (!NETSCAPE_SPKI_sign(spki, pkey, md)) {
+	ossl_raise(eSPKIError, NULL);
+    }
+    return self;
+}
+/*
+ * Checks that cert signature is made with PRIVversion of this PUBLIC 'key'
+ */
+static VALUE
+ossl_spki_verify(VALUE self, VALUE key)
+{
+    NETSCAPE_SPKI *spki;
+    GetSPKI(self, spki);
+    switch (NETSCAPE_SPKI_verify(spki, GetPKeyPtr(key))) { /* NO NEED TO DUP */
+    case 0:
+	return Qfalse;
+    case 1:
+	return Qtrue;
+    default:
+	ossl_raise(eSPKIError, NULL);
+    }
+    return Qnil; /* dummy */
+}
+/*
+ * NETSCAPE_SPKI init
+ */
+void
+Init_ossl_ns_spki()
+{
+    mNetscape = rb_define_module_under(mOSSL, "Netscape");
+    eSPKIError = rb_define_class_under(mNetscape, "SPKIError", eOSSLError);
+    cSPKI = rb_define_class_under(mNetscape, "SPKI", rb_cObject);
+    rb_define_alloc_func(cSPKI, ossl_spki_alloc);
+    rb_define_method(cSPKI, "initialize", ossl_spki_initialize, -1);
+    rb_define_method(cSPKI, "to_der", ossl_spki_to_der, 0);
+    rb_define_method(cSPKI, "to_pem", ossl_spki_to_pem, 0);
+    rb_define_alias(cSPKI, "to_s", "to_pem");
+    rb_define_method(cSPKI, "to_text", ossl_spki_print, 0);
+    rb_define_method(cSPKI, "public_key", ossl_spki_get_public_key, 0);
+    rb_define_method(cSPKI, "public_key=", ossl_spki_set_public_key, 1);
+    rb_define_method(cSPKI, "sign", ossl_spki_sign, 2);
+    rb_define_method(cSPKI, "verify", ossl_spki_verify, 1);
+    rb_define_method(cSPKI, "challenge", ossl_spki_get_challenge, 0);
+    rb_define_method(cSPKI, "challenge=", ossl_spki_set_challenge, 1);
+}