Maintenance of Ruby 2.0.0 ended on February 24, 2016. Read more
Returns the path to the trusted certificate
# File rubygems/security/trust_dir.rb, line 20 def cert_path certificate name_path certificate.subject end
Enumerates trusted certificates.
# File rubygems/security/trust_dir.rb, line 27 def each_certificate return enum_for __method__ unless block_given? glob = File.join @dir, '*.pem' Dir[glob].each do |certificate_file| begin certificate = load_certificate certificate_file yield certificate, certificate_file rescue OpenSSL::X509::CertificateError next # HACK warn end end end
Returns the issuer certificate of the given certificate
if it
exists in the trust directory.
# File rubygems/security/trust_dir.rb, line 47 def issuer_of certificate path = name_path certificate.issuer return unless File.exist? path load_certificate path end
Loads the given certificate_file
# File rubygems/security/trust_dir.rb, line 67 def load_certificate certificate_file pem = File.read certificate_file OpenSSL::X509::Certificate.new pem end
Returns the path to the trusted certificate with the given ASN.1
name
# File rubygems/security/trust_dir.rb, line 58 def name_path name digest = @digester.hexdigest name.to_s File.join @dir, "cert-#{digest}.pem" end
Add a certificate to trusted certificate list.
# File rubygems/security/trust_dir.rb, line 76 def trust_cert certificate verify destination = cert_path certificate open destination, 'wb', @permissions[:trusted_cert] do |io| io.write certificate.to_pem end end
Make sure the trust directory exists. If it does exist, make sure it's actually a directory. If not, then create it with the appropriate permissions.
# File rubygems/security/trust_dir.rb, line 91 def verify if File.exist? @dir then raise Gem::Security::Exception, "trust directory #{@dir} is not a directory" unless File.directory? @dir FileUtils.chmod 0700, @dir else FileUtils.mkdir_p @dir, :mode => @permissions[:trust_dir] end end