Sha256: 2efd34745baaa178e5f13c13c34356370eb1d35bb2238189f902ea95f0b6e62c

Contents?: true

Size: 1.87 KB

Versions: 47

Compression:

Stored size: 1.87 KB

Contents

require "openssl"
require "inspec/utils/file_reader"

module Inspec::Resources
  class DhParams < Inspec.resource(1)
    name "dh_params"
    supports platform: "unix"
    desc '
      Use the `dh_params` InSpec audit resource to test Diffie-Hellman (DH)
      parameters.
    '

    example <<~EXAMPLE
      describe dh_params('/path/to/file.dh_pem') do
        it { should be_dh_params }
        it { should be_valid }
        its('generator') { should eq 2 }
        its('modulus') { should eq '00:91:a0:15:89:e5:bc:38:93:12:02:fc:...' }
        its('prime_length') { should eq 2048 }
        its('pem') { should eq '-----BEGIN DH PARAMETERS...' }
        its('text') { should eq 'PKCS#3 DH Parameters: (2048 bit)...' }
      end
    EXAMPLE

    include FileReader

    def initialize(filename)
      @dh_params_path = filename
      @dh_params = OpenSSL::PKey::DH.new read_file_content(@dh_params_path)
    end

    # it { should be_dh_params }
    def dh_params?
      !@dh_params.nil?
    end

    # its('generator') { should eq 2 }
    def generator
      return if @dh_params.nil?

      @dh_params.g.to_i
    end

    # its('modulus') { should eq '00:91:a0:15:89:e5:bc:38:93:12:02:fc:...' }
    def modulus
      return if @dh_params.nil?

      "00:" + @dh_params.p.to_s(16).downcase.scan(/.{2}/).join(":")
    end

    # its('pem') { should eq '-----BEGIN DH PARAMETERS...' }
    def pem
      return if @dh_params.nil?

      @dh_params.to_pem
    end

    # its('prime_length') { should be 2048 }
    def prime_length
      return if @dh_params.nil?

      @dh_params.p.num_bits
    end

    # its('text') { should eq 'human-readable-text' }
    def text
      return if @dh_params.nil?

      @dh_params.to_text
    end

    # it { should be_valid }
    def valid?
      return if @dh_params.nil?

      @dh_params.params_ok?
    end

    def to_s
      "dh_params #{@dh_params_path}"
    end
  end
end

Version data entries

47 entries across 47 versions & 2 rubygems

Version Path
inspec-4.17.11 lib/inspec/resources/dh_params.rb
inspec-core-4.17.7 lib/inspec/resources/dh_params.rb
inspec-4.17.7 lib/inspec/resources/dh_params.rb
inspec-core-4.16.0 lib/inspec/resources/dh_params.rb
inspec-4.16.0 lib/inspec/resources/dh_params.rb
inspec-core-4.12.0 lib/inspec/resources/dh_params.rb
inspec-4.12.0 lib/inspec/resources/dh_params.rb