File: M000506.html

package info (click to toggle)
libopenid-ruby 2.1.8debian-1%2Bsqueeze1
  • links: PTS, VCS
  • area: main
  • in suites: squeeze
  • size: 5,300 kB
  • ctags: 3,346
  • sloc: ruby: 17,403; xml: 219; sh: 78; python: 30; makefile: 15
file content (41 lines) | stat: -rw-r--r-- 5,071 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
 
<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html 
     PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
     "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html>
<head>
  <title>post_connection_check (Net::HTTP)</title>
  <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
  <link rel="stylesheet" href="../../.././rdoc-style.css" type="text/css" media="screen" />
</head>
<body class="standalone-code">
  <pre><span class="ruby-comment cmt"># File lib/openid/fetchers.rb, line 17</span>
    <span class="ruby-keyword kw">def</span> <span class="ruby-identifier">post_connection_check</span>(<span class="ruby-identifier">hostname</span>)
      <span class="ruby-identifier">check_common_name</span> = <span class="ruby-keyword kw">true</span>
      <span class="ruby-identifier">cert</span> = <span class="ruby-ivar">@socket</span>.<span class="ruby-identifier">io</span>.<span class="ruby-identifier">peer_cert</span>
      <span class="ruby-identifier">cert</span>.<span class="ruby-identifier">extensions</span>.<span class="ruby-identifier">each</span> { <span class="ruby-operator">|</span><span class="ruby-identifier">ext</span><span class="ruby-operator">|</span>
        <span class="ruby-keyword kw">next</span> <span class="ruby-keyword kw">if</span> <span class="ruby-identifier">ext</span>.<span class="ruby-identifier">oid</span> <span class="ruby-operator">!=</span> <span class="ruby-value str">&quot;subjectAltName&quot;</span>
        <span class="ruby-identifier">ext</span>.<span class="ruby-identifier">value</span>.<span class="ruby-identifier">split</span>(<span class="ruby-regexp re">/,\s+/</span>).<span class="ruby-identifier">each</span>{ <span class="ruby-operator">|</span><span class="ruby-identifier">general_name</span><span class="ruby-operator">|</span>
          <span class="ruby-keyword kw">if</span> <span class="ruby-regexp re">/\ADNS:(.*)/</span> <span class="ruby-operator">=~</span> <span class="ruby-identifier">general_name</span>
            <span class="ruby-identifier">check_common_name</span> = <span class="ruby-keyword kw">false</span>
            <span class="ruby-identifier">reg</span> = <span class="ruby-constant">Regexp</span>.<span class="ruby-identifier">escape</span>(<span class="ruby-identifier">$1</span>).<span class="ruby-identifier">gsub</span>(<span class="ruby-regexp re">/\\\*/</span>, <span class="ruby-value str">&quot;[^.]+&quot;</span>)
            <span class="ruby-keyword kw">return</span> <span class="ruby-keyword kw">true</span> <span class="ruby-keyword kw">if</span> <span class="ruby-node">/\A#{reg}\z/i</span> <span class="ruby-operator">=~</span> <span class="ruby-identifier">hostname</span>
          <span class="ruby-keyword kw">elsif</span> <span class="ruby-regexp re">/\AIP Address:(.*)/</span> <span class="ruby-operator">=~</span> <span class="ruby-identifier">general_name</span>
            <span class="ruby-identifier">check_common_name</span> = <span class="ruby-keyword kw">false</span>
            <span class="ruby-keyword kw">return</span> <span class="ruby-keyword kw">true</span> <span class="ruby-keyword kw">if</span> <span class="ruby-identifier">$1</span> <span class="ruby-operator">==</span> <span class="ruby-identifier">hostname</span>
          <span class="ruby-keyword kw">end</span>
        }
      }
      <span class="ruby-keyword kw">if</span> <span class="ruby-identifier">check_common_name</span>
        <span class="ruby-identifier">cert</span>.<span class="ruby-identifier">subject</span>.<span class="ruby-identifier">to_a</span>.<span class="ruby-identifier">each</span>{ <span class="ruby-operator">|</span><span class="ruby-identifier">oid</span>, <span class="ruby-identifier">value</span><span class="ruby-operator">|</span>
          <span class="ruby-keyword kw">if</span> <span class="ruby-identifier">oid</span> <span class="ruby-operator">==</span> <span class="ruby-value str">&quot;CN&quot;</span>
            <span class="ruby-identifier">reg</span> = <span class="ruby-constant">Regexp</span>.<span class="ruby-identifier">escape</span>(<span class="ruby-identifier">value</span>).<span class="ruby-identifier">gsub</span>(<span class="ruby-regexp re">/\\\*/</span>, <span class="ruby-value str">&quot;[^.]+&quot;</span>)
            <span class="ruby-keyword kw">return</span> <span class="ruby-keyword kw">true</span> <span class="ruby-keyword kw">if</span> <span class="ruby-node">/\A#{reg}\z/i</span> <span class="ruby-operator">=~</span> <span class="ruby-identifier">hostname</span>
          <span class="ruby-keyword kw">end</span>
        }
      <span class="ruby-keyword kw">end</span>
      <span class="ruby-identifier">raise</span> <span class="ruby-constant">OpenSSL</span><span class="ruby-operator">::</span><span class="ruby-constant">SSL</span><span class="ruby-operator">::</span><span class="ruby-constant">SSLError</span>, <span class="ruby-value str">&quot;hostname does not match&quot;</span>
    <span class="ruby-keyword kw">end</span></pre>
</body>
</html>