Contents

# Take care of signing a certificate in a FIPS 140-2 compliant manner.
#
# @see https://projects.puppetlabs.com/issues/17295
#
# @api private
class Puppet::SSL::CertificateSigner
  def initialize
    if OpenSSL::Digest.const_defined?('SHA256')
      @digest = OpenSSL::Digest::SHA256
    elsif OpenSSL::Digest.const_defined?('SHA1')
      @digest = OpenSSL::Digest::SHA1
    else
      raise Puppet::Error,
        "No FIPS 140-2 compliant digest algorithm in OpenSSL::Digest"
    end
    @digest
  end

  def sign(content, key)
    content.sign(key, @digest.new)
  end
end

Version data entries

178 entries across 178 versions & 2 rubygems

Version	Path
puppet-retrospec-1.8.0	vendor/pup410/lib/puppet/ssl/certificate_signer.rb
puppet-retrospec-1.7.0	vendor/pup410/lib/puppet/ssl/certificate_signer.rb
puppet-5.3.7	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.7-x86-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.7-x64-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.7-universal-darwin	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.12	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.12-x86-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.12-x64-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.12-universal-darwin	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.11	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.11-x86-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.11-x64-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-4.10.11-universal-darwin	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.6	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.6-x86-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.6-x64-mingw32	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.6-universal-darwin	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.5	lib/puppet/ssl/certificate_signer.rb
puppet-5.3.5-x86-mingw32	lib/puppet/ssl/certificate_signer.rb