Sha256: e93667f214143fed10ce3a7ceb8eb4e2a4f67b41400f83d57f4e7a13089606ef
Contents?: true
Size: 930 Bytes
Versions: 315
Compression:
Stored size: 930 Bytes
Contents
# Take care of signing a certificate in a FIPS 140-2 compliant manner.
#
# @see https://projects.puppetlabs.com/issues/17295
#
# @api private
class Puppet::SSL::CertificateSigner
# @!attribute [r] digest
# @return [OpenSSL::Digest]
attr_reader :digest
def initialize
if OpenSSL::Digest.const_defined?('SHA256')
@digest = OpenSSL::Digest::SHA256
elsif OpenSSL::Digest.const_defined?('SHA1')
@digest = OpenSSL::Digest::SHA1
elsif OpenSSL::Digest.const_defined?('SHA512')
@digest = OpenSSL::Digest::SHA512
elsif OpenSSL::Digest.const_defined?('SHA384')
@digest = OpenSSL::Digest::SHA384
elsif OpenSSL::Digest.const_defined?('SHA224')
@digest = OpenSSL::Digest::SHA224
else
raise Puppet::Error,
"No FIPS 140-2 compliant digest algorithm in OpenSSL::Digest"
end
@digest
end
def sign(content, key)
content.sign(key, @digest.new)
end
end
Version data entries
315 entries across 315 versions & 2 rubygems