<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title> Class: R509::PrivateKey — Documentation by YARD 0.8.6.1 </title> <link rel="stylesheet" href="../css/style.css" type="text/css" charset="utf-8" /> <link rel="stylesheet" href="../css/common.css" type="text/css" charset="utf-8" /> <script type="text/javascript" charset="utf-8"> hasFrames = window.top.frames.main ? true : false; relpath = '../'; framesUrl = "../frames.html#!" + escape(window.location.href); </script> <script type="text/javascript" charset="utf-8" src="../js/jquery.js"></script> <script type="text/javascript" charset="utf-8" src="../js/app.js"></script> </head> <body> <div id="header"> <div id="menu"> <a href="../_index.html">Index (P)</a> » <span class='title'><span class='object_link'><a href="../R509.html" title="R509 (module)">R509</a></span></span> » <span class="title">PrivateKey</span> <div class="noframes"><span class="title">(</span><a href="." target="_top">no frames</a><span class="title">)</span></div> </div> <div id="search"> <a class="full_list_link" id="class_list_link" href="../class_list.html"> Class List </a> <a class="full_list_link" id="method_list_link" href="../method_list.html"> Method List </a> <a class="full_list_link" id="file_list_link" href="../file_list.html"> File List </a> </div> <div class="clear"></div> </div> <iframe id="search_frame"></iframe> <div id="content"><h1>Class: R509::PrivateKey </h1> <dl class="box"> <dt class="r1">Inherits:</dt> <dd class="r1"> <span class="inheritName">Object</span> <ul class="fullTree"> <li>Object</li> <li class="next">R509::PrivateKey</li> </ul> <a href="#" class="inheritanceTree">show all</a> </dd> <dt class="r2 last">Defined in:</dt> <dd class="r2 last">lib/r509/private_key.rb</dd> </dl> <div class="clear"></div> <h2>Overview</h2><div class="docstring"> <div class="discussion"> <p>private key management</p> </div> </div> <div class="tags"> </div> <h2>Constant Summary</h2> <dl class="constants"> <dt id="KNOWN_TYPES-constant" class="">KNOWN_TYPES = <div class="docstring"> <div class="discussion"> <p>a list of key types</p> </div> </div> <div class="tags"> </div> </dt> <dd><pre class="code"><span class='lbracket'>[</span><span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>RSA</span><span class='tstring_end'>"</span></span><span class='comma'>,</span><span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>DSA</span><span class='tstring_end'>"</span></span><span class='comma'>,</span><span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>EC</span><span class='tstring_end'>"</span></span><span class='rbracket'>]</span></pre></dd> <dt id="DEFAULT_TYPE-constant" class="">DEFAULT_TYPE = <div class="docstring"> <div class="discussion"> <p>the default type</p> </div> </div> <div class="tags"> </div> </dt> <dd><pre class="code"><span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>RSA</span><span class='tstring_end'>"</span></span></pre></dd> <dt id="DEFAULT_STRENGTH-constant" class="">DEFAULT_STRENGTH = <div class="docstring"> <div class="discussion"> <p>default bit length for DSA/RSA</p> </div> </div> <div class="tags"> </div> </dt> <dd><pre class="code"><span class='int'>2048</span></pre></dd> <dt id="DEFAULT_CURVE-constant" class="">DEFAULT_CURVE = <div class="docstring"> <div class="discussion"> <p>default curve name for EC</p> </div> </div> <div class="tags"> </div> </dt> <dd><pre class="code"><span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>secp384r1</span><span class='tstring_end'>"</span></span></pre></dd> </dl> <h2> Class Method Summary <small>(<a href="#" class="summary_toggle">collapse</a>)</small> </h2> <ul class="summary"> <li class="public "> <span class="summary_signature"> <a href="#load_from_file-class_method" title="load_from_file (class method)">+ (R509::PrivateKey) <strong>load_from_file</strong>(filename, password = nil) </a> </span> <span class="summary_desc"><div class='inline'> <p>Helper method to quickly load a private key from the filesystem.</p> </div></span> </li> </ul> <h2> Instance Method Summary <small>(<a href="#" class="summary_toggle">collapse</a>)</small> </h2> <ul class="summary"> <li class="public "> <span class="summary_signature"> <a href="#bit_length-instance_method" title="#bit_length (instance method)">- (Integer) <strong>bit_length</strong> </a> (also: #bit_strength) </span> <span class="summary_desc"><div class='inline'> <p>Returns the bit length of the key.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#curve_name-instance_method" title="#curve_name (instance method)">- (String) <strong>curve_name</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Returns the short name of the elliptic curve used to generate the private key if the key is EC.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#dsa%3F-instance_method" title="#dsa? (instance method)">- (Boolean) <strong>dsa?</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Returns whether the key is DSA.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#ec%3F-instance_method" title="#ec? (instance method)">- (Boolean) <strong>ec?</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Returns whether the key is EC.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#in_hardware%3F-instance_method" title="#in_hardware? (instance method)">- (Boolean) <strong>in_hardware?</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Whether the key is resident in hardware or not.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#initialize-instance_method" title="#initialize (instance method)">- (PrivateKey) <strong>initialize</strong>(opts = {}) </a> </span> <span class="note title constructor">constructor</span> <span class="summary_desc"><div class='inline'> <p>A new instance of PrivateKey.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#key-instance_method" title="#key (instance method)">- (OpenSSL::PKey::RSA, ...) <strong>key</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>This method may return the PKey object itself or a handle to the private key in the HSM (which will not show the private key, just public).</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#public_key-instance_method" title="#public_key (instance method)">- (OpenSSL::PKey::RSA, ...) <strong>public_key</strong> </a> (also: #to_s) </span> <span class="summary_desc"><div class='inline'> <p>Public key.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#rsa%3F-instance_method" title="#rsa? (instance method)">- (Boolean) <strong>rsa?</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Returns whether the key is RSA.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#to_der-instance_method" title="#to_der (instance method)">- (String) <strong>to_der</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Converts the key into the DER format.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#to_encrypted_pem-instance_method" title="#to_encrypted_pem (instance method)">- (String) <strong>to_encrypted_pem</strong>(cipher, password) </a> </span> <span class="summary_desc"><div class='inline'> <p>Converts the key into encrypted PEM format.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#to_pem-instance_method" title="#to_pem (instance method)">- (String) <strong>to_pem</strong> </a> </span> <span class="summary_desc"><div class='inline'> <p>Converts the key into the PEM format.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#write_der-instance_method" title="#write_der (instance method)">- (Object) <strong>write_der</strong>(filename_or_io) </a> </span> <span class="summary_desc"><div class='inline'> <p>Writes the key into the DER format.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#write_encrypted_pem-instance_method" title="#write_encrypted_pem (instance method)">- (Object) <strong>write_encrypted_pem</strong>(filename_or_io, cipher, password) </a> </span> <span class="summary_desc"><div class='inline'> <p>Writes the key into encrypted PEM format with specified cipher.</p> </div></span> </li> <li class="public "> <span class="summary_signature"> <a href="#write_pem-instance_method" title="#write_pem (instance method)">- (Object) <strong>write_pem</strong>(filename_or_io) </a> </span> <span class="summary_desc"><div class='inline'> <p>Writes the key into the PEM format.</p> </div></span> </li> </ul> <div id="constructor_details" class="method_details_list"> <h2>Constructor Details</h2> <div class="method_details first"> <h3 class="signature first" id="initialize-instance_method"> - (<tt><span class='object_link'><a href="" title="R509::PrivateKey (class)">PrivateKey</a></span></tt>) <strong>initialize</strong>(opts = {}) </h3><div class="docstring"> <div class="discussion"> <p>A new instance of PrivateKey</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>opts</span> <span class='type'>(<tt>Hash</tt>)</span> <em class="default">(defaults to: <tt>{}</tt>)</em> — <div class='inline'> <p>a customizable set of options</p> </div> </li> </ul> <p class="tag_title">Options Hash (<tt>opts</tt>):</p> <ul class="option"> <li> <span class="name">:type</span> <span class="type">(<tt>Symbol</tt>)</span> <span class="default"> </span> — <div class='inline'> <p>Defaults to R509::PrivateKey::DEFAULT_TYPE. Allows R509::PrivateKey::KNOWN_TYPES.</p> </div> </li> <li> <span class="name">:curve_name</span> <span class="type">(<tt>String</tt>)</span> <span class="default"> — default: <tt>"secp384r1"</tt> </span> — <div class='inline'> <p>Only used if :type is EC</p> </div> </li> <li> <span class="name">:bit_length</span> <span class="type">(<tt>Integer</tt>)</span> <span class="default"> — default: <tt>2048</tt> </span> — <div class='inline'> <p>Only used if :type is RSA or DSA</p> </div> </li> <li> <span class="name">:bit_strength</span> <span class="type">(<tt>Integer</tt>)</span> <span class="default"> — default: <tt>2048</tt> </span> — <div class='inline'> <p>Deprecated, identical to bit_length.</p> </div> </li> <li> <span class="name">:password</span> <span class="type">(<tt>String</tt>)</span> <span class="default"> </span> </li> <li> <span class="name">:key</span> <span class="type">(<tt>String</tt>, <tt>OpenSSL::PKey::RSA</tt>, <tt>OpenSSL::PKey::DSA</tt>, <tt><span class='object_link'>OpenSSL::PKey::EC</span></tt>)</span> <span class="default"> </span> </li> <li> <span class="name">:engine</span> <span class="type">(<tt>OpenSSL::Engine</tt>)</span> <span class="default"> </span> </li> <li> <span class="name">:key_name</span> <span class="type">(<tt>string</tt>)</span> <span class="default"> — default: <tt>used with engine</tt> </span> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 27 28 29 30 31 32 33 34 35 36 37 38</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 27</span> <span class='kw'>def</span> <span class='id identifier rubyid_initialize'>initialize</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='op'>=</span><span class='lbrace'>{</span><span class='rbrace'>}</span><span class='rparen'>)</span> <span class='kw'>if</span> <span class='kw'>not</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>Hash</span><span class='rparen'>)</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>ArgumentError</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Must provide a hash of options</span><span class='tstring_end'>'</span></span> <span class='kw'>end</span> <span class='id identifier rubyid_validate_engine'>validate_engine</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='rparen'>)</span> <span class='kw'>if</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:key</span><span class='rparen'>)</span> <span class='id identifier rubyid_validate_key'>validate_key</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='rparen'>)</span> <span class='kw'>else</span> <span class='id identifier rubyid_generate_key'>generate_key</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='rparen'>)</span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> </div> <div id="class_method_details" class="method_details_list"> <h2>Class Method Details</h2> <div class="method_details first"> <h3 class="signature first" id="load_from_file-class_method"> + (<tt><span class='object_link'><a href="" title="R509::PrivateKey (class)">R509::PrivateKey</a></span></tt>) <strong>load_from_file</strong>(filename, password = nil) </h3><div class="docstring"> <div class="discussion"> <p>Helper method to quickly load a private key from the filesystem</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>filename</span> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>Path to file you want to load</p> </div> </li> </ul> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt><span class='object_link'><a href="" title="R509::PrivateKey (class)">R509::PrivateKey</a></span></tt>)</span> — <div class='inline'> <p>PrivateKey object</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 44 45 46</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 44</span> <span class='kw'>def</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_load_from_file'>load_from_file</span><span class='lparen'>(</span> <span class='id identifier rubyid_filename'>filename</span><span class='comma'>,</span> <span class='id identifier rubyid_password'>password</span> <span class='op'>=</span> <span class='kw'>nil</span> <span class='rparen'>)</span> <span class='kw'>return</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>PrivateKey</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span><span class='symbol'>:key</span> <span class='op'>=></span> <span class='const'>IOHelpers</span><span class='period'>.</span><span class='id identifier rubyid_read_data'>read_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename'>filename</span><span class='rparen'>)</span><span class='comma'>,</span> <span class='symbol'>:password</span> <span class='op'>=></span> <span class='id identifier rubyid_password'>password</span> <span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> </div> <div id="instance_method_details" class="method_details_list"> <h2>Instance Method Details</h2> <div class="method_details first"> <h3 class="signature first" id="bit_length-instance_method"> - (<tt>Integer</tt>) <strong>bit_length</strong> <span class="aliases">Also known as: <span class="names"><span id='bit_strength-instance_method'>bit_strength</span></span> </span> </h3><div class="docstring"> <div class="discussion"> <p>Returns the bit length of the key</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>Integer</tt>)</span> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 52 53 54 55 56 57 58 59 60</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 52</span> <span class='kw'>def</span> <span class='id identifier rubyid_bit_length'>bit_length</span> <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_rsa?'>rsa?</span> <span class='kw'>return</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_n'>n</span><span class='period'>.</span><span class='id identifier rubyid_num_bits'>num_bits</span> <span class='kw'>elsif</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_dsa?'>dsa?</span> <span class='kw'>return</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_p'>p</span><span class='period'>.</span><span class='id identifier rubyid_num_bits'>num_bits</span> <span class='kw'>elsif</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_ec?'>ec?</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Bit length is not available for EC at this time.</span><span class='tstring_end'>'</span></span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="curve_name-instance_method"> - (<tt>String</tt>) <strong>curve_name</strong> </h3><div class="docstring"> <div class="discussion"> <p>Returns the short name of the elliptic curve used to generate the private key if the key is EC. If not, raises an error.</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>elliptic curve name</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 67 68 69 70 71 72 73</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 67</span> <span class='kw'>def</span> <span class='id identifier rubyid_curve_name'>curve_name</span> <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_ec?'>ec?</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_group'>group</span><span class='period'>.</span><span class='id identifier rubyid_curve_name'>curve_name</span> <span class='kw'>else</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Curve name is only available with EC private keys</span><span class='tstring_end'>'</span></span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="dsa?-instance_method"> - (<tt>Boolean</tt>) <strong>dsa?</strong> </h3><div class="docstring"> <div class="discussion"> <p>Returns whether the key is DSA</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>Boolean</tt>)</span> — <div class='inline'> <p>true if the key is DSA, false otherwise</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 187 188 189</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 187</span> <span class='kw'>def</span> <span class='id identifier rubyid_dsa?'>dsa?</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>DSA</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="ec?-instance_method"> - (<tt>Boolean</tt>) <strong>ec?</strong> </h3><div class="docstring"> <div class="discussion"> <p>Returns whether the key is EC</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>Boolean</tt>)</span> — <div class='inline'> <p>true if the key is EC, false otherwise</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 194 195 196</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 194</span> <span class='kw'>def</span> <span class='id identifier rubyid_ec?'>ec?</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>EC</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="in_hardware?-instance_method"> - (<tt>Boolean</tt>) <strong>in_hardware?</strong> </h3><div class="docstring"> <div class="discussion"> <p>Whether the key is resident in hardware or not</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>Boolean</tt>)</span> — <div class='inline'> <p>whether the key is resident in hardware or not</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 85 86 87 88 89 90 91</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 85</span> <span class='kw'>def</span> <span class='id identifier rubyid_in_hardware?'>in_hardware?</span> <span class='kw'>if</span> <span class='kw'>not</span> <span class='ivar'>@engine</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span> <span class='kw'>true</span> <span class='kw'>else</span> <span class='kw'>false</span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="key-instance_method"> - (<tt>OpenSSL::PKey::RSA</tt>, ...) <strong>key</strong> </h3><div class="docstring"> <div class="discussion"> <p>This method may return the PKey object itself or a handle to the private key in the HSM (which will not show the private key, just public)</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>OpenSSL::PKey::RSA</tt>, <tt>OpenSSL::PKey::DSA</tt>, <tt>OpenSSL::Engine pkey</tt>)</span> — <div class='inline'> <p>this method may return the PKey object itself or a handle to the private key in the HSM (which will not show the private key, just public)</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 76 77 78 79 80 81 82</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 76</span> <span class='kw'>def</span> <span class='id identifier rubyid_key'>key</span> <span class='kw'>if</span> <span class='id identifier rubyid_in_hardware?'>in_hardware?</span> <span class='ivar'>@engine</span><span class='period'>.</span><span class='id identifier rubyid_load_private_key'>load_private_key</span><span class='lparen'>(</span><span class='ivar'>@key_name</span><span class='rparen'>)</span> <span class='kw'>else</span> <span class='ivar'>@key</span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="public_key-instance_method"> - (<tt>OpenSSL::PKey::RSA</tt>, ...) <strong>public_key</strong> <span class="aliases">Also known as: <span class="names"><span id='to_s-instance_method'>to_s</span></span> </span> </h3><div class="docstring"> <div class="discussion"> <p>Public key</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>OpenSSL::PKey::RSA</tt>, <tt>OpenSSL::PKey::DSA</tt>, <tt><span class='object_link'>OpenSSL::PKey::EC</span></tt>)</span> — <div class='inline'> <p>public key</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 94 95 96 97 98 99 100 101 102 103 104 105 106 107</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 94</span> <span class='kw'>def</span> <span class='id identifier rubyid_public_key'>public_key</span> <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_ec?'>ec?</span> <span class='comment'># OpenSSL::PKey::EC.public_key returns an OpenSSL::PKey::EC::Point, which isn't consistent </span> <span class='comment'># with the way OpenSSL::PKey::RSA/DSA do it. We could return the original PKey::EC object </span> <span class='comment'># but if we do that then it has the private_key as well. Here's a ghetto workaround. </span> <span class='comment'># We have to supply the curve name to the temporary key object or else #public_key= fails </span> <span class='id identifier rubyid_curve_name'>curve_name</span> <span class='op'>=</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_group'>group</span><span class='period'>.</span><span class='id identifier rubyid_curve_name'>curve_name</span> <span class='id identifier rubyid_temp_key'>temp_key</span> <span class='op'>=</span> <span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>EC</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span><span class='id identifier rubyid_curve_name'>curve_name</span><span class='rparen'>)</span> <span class='id identifier rubyid_temp_key'>temp_key</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='op'>=</span><span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span> <span class='id identifier rubyid_temp_key'>temp_key</span> <span class='kw'>else</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span> <span class='kw'>end</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="rsa?-instance_method"> - (<tt>Boolean</tt>) <strong>rsa?</strong> </h3><div class="docstring"> <div class="discussion"> <p>Returns whether the key is RSA</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>Boolean</tt>)</span> — <div class='inline'> <p>true if the key is RSA, false otherwise</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 180 181 182</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 180</span> <span class='kw'>def</span> <span class='id identifier rubyid_rsa?'>rsa?</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>RSA</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="to_der-instance_method"> - (<tt>String</tt>) <strong>to_der</strong> </h3><div class="docstring"> <div class="discussion"> <p>Converts the key into the DER format</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>the key converted into DER format.</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 140 141 142 143 144 145</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 140</span> <span class='kw'>def</span> <span class='id identifier rubyid_to_der'>to_der</span> <span class='kw'>if</span> <span class='id identifier rubyid_in_hardware?'>in_hardware?</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>This method cannot be called when using keys in hardware</span><span class='tstring_end'>"</span></span> <span class='kw'>end</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="to_encrypted_pem-instance_method"> - (<tt>String</tt>) <strong>to_encrypted_pem</strong>(cipher, password) </h3><div class="docstring"> <div class="discussion"> <p>Converts the key into encrypted PEM format</p> <p>full list of available ciphers can be obtained with OpenSSL::Cipher.ciphers (common ones are des3, aes256, aes128)</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>cipher</span> <span class='type'>(<tt>String</tt>, <tt>OpenSSL::Cipher</tt>)</span> — <div class='inline'> <p>to use for encryption</p> </div> </li> <li> <span class='name'>password</span> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>password</p> </div> </li> </ul> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>the key converted into encrypted PEM format.</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 128 129 130 131 132 133 134</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 128</span> <span class='kw'>def</span> <span class='id identifier rubyid_to_encrypted_pem'>to_encrypted_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_cipher'>cipher</span><span class='comma'>,</span><span class='id identifier rubyid_password'>password</span><span class='rparen'>)</span> <span class='kw'>if</span> <span class='id identifier rubyid_in_hardware?'>in_hardware?</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>This method cannot be called when using keys in hardware</span><span class='tstring_end'>"</span></span> <span class='kw'>end</span> <span class='id identifier rubyid_cipher'>cipher</span> <span class='op'>=</span> <span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>Cipher</span><span class='op'>::</span><span class='const'>Cipher</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span><span class='id identifier rubyid_cipher'>cipher</span><span class='rparen'>)</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_to_pem'>to_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_cipher'>cipher</span><span class='comma'>,</span><span class='id identifier rubyid_password'>password</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="to_pem-instance_method"> - (<tt>String</tt>) <strong>to_pem</strong> </h3><div class="docstring"> <div class="discussion"> <p>Converts the key into the PEM format</p> </div> </div> <div class="tags"> <p class="tag_title">Returns:</p> <ul class="return"> <li> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>the key converted into PEM format.</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 114 115 116 117 118 119</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 114</span> <span class='kw'>def</span> <span class='id identifier rubyid_to_pem'>to_pem</span> <span class='kw'>if</span> <span class='id identifier rubyid_in_hardware?'>in_hardware?</span> <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>"</span><span class='tstring_content'>This method cannot be called when using keys in hardware</span><span class='tstring_end'>"</span></span> <span class='kw'>end</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='period'>.</span><span class='id identifier rubyid_to_pem'>to_pem</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="write_der-instance_method"> - (<tt>Object</tt>) <strong>write_der</strong>(filename_or_io) </h3><div class="docstring"> <div class="discussion"> <p>Writes the key into the DER format</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>filename_or_io</span> <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span> — <div class='inline'> <p>Either a string of the path for the file that you'd like to write, or an IO-like object.</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 172 173 174</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 172</span> <span class='kw'>def</span> <span class='id identifier rubyid_write_der'>write_der</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='rparen'>)</span> <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="write_encrypted_pem-instance_method"> - (<tt>Object</tt>) <strong>write_encrypted_pem</strong>(filename_or_io, cipher, password) </h3><div class="docstring"> <div class="discussion"> <p>Writes the key into encrypted PEM format with specified cipher</p> <p>full list of available ciphers can be obtained with OpenSSL::Cipher.ciphers (common ones are des3, aes256, aes128)</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>filename_or_io</span> <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span> — <div class='inline'> <p>Either a string of the path for the file that you'd like to write, or an IO-like object.</p> </div> </li> <li> <span class='name'>cipher</span> <span class='type'>(<tt>String</tt>, <tt>OpenSSL::Cipher</tt>)</span> — <div class='inline'> <p>to use for encryption</p> </div> </li> <li> <span class='name'>password</span> <span class='type'>(<tt>String</tt>)</span> — <div class='inline'> <p>password</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 164 165 166</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 164</span> <span class='kw'>def</span> <span class='id identifier rubyid_write_encrypted_pem'>write_encrypted_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span><span class='id identifier rubyid_cipher'>cipher</span><span class='comma'>,</span><span class='id identifier rubyid_password'>password</span><span class='rparen'>)</span> <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='id identifier rubyid_to_encrypted_pem'>to_encrypted_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_cipher'>cipher</span><span class='comma'>,</span><span class='id identifier rubyid_password'>password</span><span class='rparen'>)</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> <div class="method_details "> <h3 class="signature " id="write_pem-instance_method"> - (<tt>Object</tt>) <strong>write_pem</strong>(filename_or_io) </h3><div class="docstring"> <div class="discussion"> <p>Writes the key into the PEM format</p> </div> </div> <div class="tags"> <p class="tag_title">Parameters:</p> <ul class="param"> <li> <span class='name'>filename_or_io</span> <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span> — <div class='inline'> <p>Either a string of the path for the file that you'd like to write, or an IO-like object.</p> </div> </li> </ul> </div><table class="source_code"> <tr> <td> <pre class="lines"> 151 152 153</pre> </td> <td> <pre class="code"><span class="info file"># File 'lib/r509/private_key.rb', line 151</span> <span class='kw'>def</span> <span class='id identifier rubyid_write_pem'>write_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='rparen'>)</span> <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_to_pem'>to_pem</span><span class='rparen'>)</span> <span class='kw'>end</span></pre> </td> </tr> </table> </div> </div> </div> <div id="footer"> Generated on Sun Jan 26 13:37:27 2014 by <a href="http://yardoc.org" title="Yay! A Ruby Documentation Tool" target="_parent">yard</a> 0.8.6.1 (ruby-2.0.0). </div> </body> </html>