Update doc for OpenSSL::X509::Certificate #243

Nimesh-Msys · 2019-02-15T07:40:30Z

I think the following documentation is incomplete and should be updated.

Lines 733 to 734 in fdcda97

    
                *   raw = File.read "cert.cer" # DER- or PEM-encoded 
        
                *   certificate = OpenSSL::X509::Certificate.new raw

DER-encoded certificates are binary and read by using File.binread.
File.read gives the error:

OpenSSL::X509::CertificateError (not enough data)

Hence to avoid confusions, the document should be something like:

  *   raw = File.read "cert.cer" # PEM-encoded 
  *   # For DER-encoded: raw = File.binread "cert.cer"
  *   certificate = OpenSSL::X509::Certificate.new raw

Or may be a note to inform this.

The text was updated successfully, but these errors were encountered:

…re appropriate IO.read may mangle line separator, which will corrupt binary data including DER-encoded X.509 certificates and such. Fixes: ruby/openssl#243 ruby/openssl@93213b2730

rhenium closed this as completed in 93213b2 May 13, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update doc for OpenSSL::X509::Certificate #243

Update doc for OpenSSL::X509::Certificate #243

Nimesh-Msys commented Feb 15, 2019

Update doc for OpenSSL::X509::Certificate #243

Update doc for OpenSSL::X509::Certificate #243

Comments

Nimesh-Msys commented Feb 15, 2019