Class: Serverspec::Type::X509PrivateKey

Inherits:

Base

• Object
• Base
• Serverspec::Type::X509PrivateKey

Defined in:

lib/serverspec/type/x509_private_key.rb

Instance Attribute Summary

Attributes inherited from Base

#name

Instance Method Summary

• #encrypted? ⇒ Boolean
• #has_matching_certificate?(cert_file) ⇒ Boolean
• #valid? ⇒ Boolean

Methods inherited from Base

#initialize, #inspect, #to_ary, #to_s

Constructor Details

This class inherits a constructor from Serverspec::Type::Base

Instance Method Details

#encrypted? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/serverspec/type/x509_private_key.rb', line 10

def encrypted?
  @runner.run_command("grep -Ewq \"^(Proc-Type.*ENCRYPTED|-----BEGIN ENCRYPTED PRIVATE KEY-----)$\" #{name}").exit_status == 0
end

#has_matching_certificate?(cert_file) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/serverspec/type/x509_private_key.rb', line 14

def has_matching_certificate?(cert_file)
  h1 = @runner.run_command("openssl x509 -noout -modulus -in #{cert_file}")
  h2 = @runner.run_command("echo | openssl rsa -noout -modulus -in #{name} -passin #{@options[:passin] || "stdin"}")
  (h1.stdout == h2.stdout) && (h1.exit_status == 0) && (h2.exit_status == 0)
end

#valid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/serverspec/type/x509_private_key.rb', line 5

def valid?
  runner_res = @runner.run_command("echo | openssl rsa -in #{name} -check -noout -passin #{@options[:passin] || "stdin"}")
  ( runner_res.exit_status == 0 && runner_res.stdout.chomp == 'RSA key ok' ) && (!@options.has_key?(:passin) || encrypted?)
end