class Pkernel::OCSP

Constants

GOOD_CERT
REVOKED_CERT
UNKNOWN_CERT

Public Class Methods

request_to_bin(req) click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 16
def self.request_to_bin(req)
  PkernelJce::OCSPRequestEngine.to_bin(req) 
end
response_to_bin(resp) click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 20
def self.response_to_bin(resp)
  PkernelJce::OCSPResponseEngine.to_bin(resp)
end
to_cert_id(cert, issuer = nil, opts = { }) click to toggle source
# File lib/pkernel_jce/ocsp.rb, line 24
def self.to_cert_id(cert, issuer = nil, opts = { })
  
  digest = org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder.new.setProvider(PkernelJce::Provider::DefProvider).build
  signHash = opts[:signHash] || :sha1
  case signHash
  when :sha1, "SHA1"
  else
    PkernelJce::GConf.instance.glog.warn "Hashing algo '#{signHash}' not yet supported by library. Adjusted to SHA1 as default"
  end

  # for this version of BC (157) this is the only option
  d = digest.get(org.bouncycastle.cert.ocsp.CertificateID::HASH_SHA1)
  
  org.bouncycastle.cert.ocsp.CertificateID.new(d,PkernelJce::Certificate.ensure_bc_cert(cert),PkernelJce::Certificate.ensure_java_cert(cert).serial_number)
end