class Pkernel::OCSP
Constants
- GOOD_CERT
- REVOKED_CERT
- UNKNOWN_CERT
Public Class Methods
request_to_bin(req)
click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 16 def self.request_to_bin(req) PkernelJce::OCSPRequestEngine.to_bin(req) end
response_to_bin(resp)
click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 20 def self.response_to_bin(resp) PkernelJce::OCSPResponseEngine.to_bin(resp) end
to_cert_id(cert, issuer = nil, opts = { })
click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 24 def self.to_cert_id(cert, issuer = nil, opts = { }) digest = org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder.new.setProvider(PkernelJce::Provider::DefProvider).build signHash = opts[:signHash] || :sha1 case signHash when :sha1, "SHA1" else PkernelJce::GConf.instance.glog.warn "Hashing algo '#{signHash}' not yet supported by library. Adjusted to SHA1 as default" end # for this version of BC (157) this is the only option d = digest.get(org.bouncycastle.cert.ocsp.CertificateID::HASH_SHA1) org.bouncycastle.cert.ocsp.CertificateID.new(d,PkernelJce::Certificate.ensure_bc_cert(cert),PkernelJce::Certificate.ensure_java_cert(cert).serial_number) end