Method: OpenSSL::PKCS7.encrypt

Defined in:: ossl_pkcs7.c

.encrypt(certs, data, cipher, flags = 0) ⇒ `Object`

Creates a PKCS #7 enveloped-data structure.

Before version 3.3.0, cipher was optional and defaulted to "RC2-40-CBC".

See also the man page PKCS7_encrypt(3).

# File 'ossl_pkcs7.c', line 302

static VALUE
ossl_pkcs7_s_encrypt(int argc, VALUE *argv, VALUE klass)
{
    VALUE certs, data, cipher, flags;
    STACK_OF(X509) *x509s;
    BIO *in;
    const EVP_CIPHER *ciph;
    int flg, status = 0;
    VALUE ret;
    PKCS7 *p7;

    rb_scan_args(argc, argv, "22", &certs, &data, &cipher, &flags);
    if (NIL_P(cipher)) {
        rb_raise(rb_eArgError,
                 "cipher must be specified. Before version 3.3, " \
                 "the default cipher was RC2-40-CBC.");
    }
    ciph = ossl_evp_get_cipherbyname(cipher);
    flg = NIL_P(flags) ? 0 : NUM2INT(flags);
    ret = NewPKCS7(cPKCS7);
    in = ossl_obj2bio(&data);
    x509s = ossl_protect_x509_ary2sk(certs, &status);
    if(status){
	BIO_free(in);
	rb_jump_tag(status);
    }
    if(!(p7 = PKCS7_encrypt(x509s, in, (EVP_CIPHER*)ciph, flg))){
	BIO_free(in);
	sk_X509_pop_free(x509s, X509_free);
	ossl_raise(ePKCS7Error, NULL);
    }
    BIO_free(in);
    SetPKCS7(ret, p7);
    ossl_pkcs7_set_data(ret, data);
    sk_X509_pop_free(x509s, X509_free);

    return ret;
}

Method: OpenSSL::PKCS7.encrypt

.encrypt(certs, data, cipher, flags = 0) ⇒ Object

.encrypt(certs, data, cipher, flags = 0) ⇒ `Object`