Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2024-11-10 07:04:15 +00:00
Code Issues Projects Releases Packages Wiki Activity

CFINSPEC-84: Clean code and add comments

Browse source 
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
This commit is contained in:
Sonu Saha 2022-04-26 14:33:38 +05:30
parent 24fa858ca5
commit 13f30b2f63
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
lib/inspec/resources/x509_private_key.rb
View file

@ -30,6 +30,7 @@ module Inspec::Resources
# Resource initialization.
attr_reader :secret_key_path, :passphrase, :openssl_utility
def initialize(secret_key_path, passphrase = nil)
@openssl_utility = check_openssl_or_error
@secret_key_path = secret_key_path
@ -43,9 +44,12 @@ module Inspec::Resources
# Matcher to check if the given key is valid.
def valid?
# If passphrase is provided append it to check_key_validity_cmd with passin argument.
# Below is the command to check if the key is valid.
openssl_key_validity_cmd = "#{openssl_utility} rsa -in #{secret_key_path} -check -noout"
# Additionally, if key is password protected, passphrase needs to be given with -passin argument
openssl_key_validity_cmd.concat(" -passin pass:#{passphrase}") if passphrase
openssl_key_validity = inspec.command(openssl_key_validity_cmd)
openssl_key_validity.exit_status.to_i == 0
end