[fix] support getting password from block for PKeys

Author: kares

src/main/java/org/jruby/ext/openssl/PKey.java

@@ -48,6 +48,7 @@
 import org.jruby.RubyString;
 import org.jruby.anno.JRubyMethod;
 import org.jruby.exceptions.RaiseException;
+import org.jruby.runtime.Block;
 import org.jruby.runtime.ObjectAllocator;
 import org.jruby.runtime.ThreadContext;
 import org.jruby.runtime.builtin.IRubyObject;
@@ -203,11 +204,16 @@ public IRubyObject initialize(ThreadContext context) {
 
     public abstract RubyString to_der() ;
 
-    public abstract RubyString to_pem(final IRubyObject[] args) ;
+    public abstract RubyString to_pem(ThreadContext context, final IRubyObject[] args) ;
+
+    @Deprecated
+    public RubyString to_pem(final IRubyObject[] args) {
+        return to_pem(getRuntime().getCurrentContext(), args);
+    }
 
     @Deprecated
     public RubyString export(final IRubyObject[] args) {
-        return to_pem(args);
+        return to_pem(getRuntime().getCurrentContext(), args);
     }
 
     @JRubyMethod(name = "sign")
@@ -359,13 +365,24 @@ protected static CipherSpec cipherSpec(final IRubyObject cipher) {
         return null;
     }
 
+    @Deprecated
     protected static char[] password(final IRubyObject pass) {
         if ( pass != null && ! pass.isNil() ) {
             return pass.toString().toCharArray();
         }
         return null;
     }
 
+    protected static char[] password(final ThreadContext context, IRubyObject pass, final Block block) {
+        if (pass != null && !pass.isNil()) { // argument takes precedence (instead of block)
+            return pass.toString().toCharArray();
+        }
+        if (block != null && block.isGiven()) {
+            return password(context, block.call(context), null);
+        }
+        return null;
+    }
+
     protected static char[] passwordPrompt(final ThreadContext context) {
         return passwordPrompt(context, "Enter PEM pass phrase:");
     }
@@ -376,7 +393,7 @@ protected static char[] passwordPrompt(final ThreadContext context, final String
         Kernel.callMethod("print", context.runtime.newString(prompt));
         final RubyString gets = Kernel.callMethod(context, "gets").convertToString();
         gets.chomp_bang(context);
-        return gets.toString().toCharArray();
+        return gets.decodeString().toCharArray();
     }
 
     protected static boolean ttySTDIN(final ThreadContext context) {

src/main/java/org/jruby/ext/openssl/PKeyDH.java

@@ -288,7 +288,7 @@ public RubyBoolean private_p() {
 
     @Override
     @JRubyMethod(name = { "to_pem", "to_s" }, alias = "export", rest = true)
-    public RubyString to_pem(final IRubyObject[] args) {
+    public RubyString to_pem(ThreadContext context, final IRubyObject[] args) {
         //Arity.checkArgumentCount(getRuntime(), args, 0, 2);
 
         //CipherSpec spec = null; char[] passwd = null;

src/main/java/org/jruby/ext/openssl/PKeyDSA.java

@@ -52,6 +52,7 @@
 import org.jruby.ext.openssl.impl.CipherSpec;
 import org.jruby.ext.openssl.x509store.PEMInputOutput;
 import org.jruby.runtime.Arity;
+import org.jruby.runtime.Block;
 import org.jruby.runtime.ObjectAllocator;
 import org.jruby.runtime.builtin.IRubyObject;
 import org.jruby.runtime.ThreadContext;
@@ -172,22 +173,22 @@ static PKeyDSA newInstance(final Ruby runtime, final PublicKey publicKey) {
     }
 
     @JRubyMethod(rest = true, visibility = Visibility.PRIVATE)
-    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args) {
+    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args, final Block block) {
         final Ruby runtime = context.runtime;
 
         if ( Arity.checkArgumentCount(runtime, args, 0, 2) == 0 ) {
             this.privateKey = null; this.publicKey = null; return this;
         }
 
-        IRubyObject arg = args[0]; IRubyObject pass = null;
-        if ( args.length > 1 ) pass = args[1];
+        IRubyObject arg = args[0];
+        IRubyObject arg1 = args.length > 1 ? args[1] : null; // password (String)
 
         if ( arg instanceof RubyFixnum ) {
             int keySize = RubyNumeric.fix2int((RubyFixnum) arg);
             return dsaGenerate(context.runtime, this, keySize);
         }
 
-        final char[] passwd = password(pass);
+        final char[] passwd = password(context, arg1, block);
         final RubyString str = readInitArg(context, arg);
         final String strJava = str.toString();
 
@@ -343,13 +344,13 @@ public PKeyDSA public_key() {
 
     @Override
     @JRubyMethod(name = { "to_pem", "to_s" }, alias = "export", rest = true)
-    public RubyString to_pem(final IRubyObject[] args) {
-        Arity.checkArgumentCount(getRuntime(), args, 0, 2);
+    public RubyString to_pem(final ThreadContext context, final IRubyObject[] args) {
+        Arity.checkArgumentCount(context.runtime, args, 0, 2);
 
         CipherSpec spec = null; char[] passwd = null;
         if ( args.length > 0 ) {
             spec = cipherSpec( args[0] );
-            if ( args.length > 1 ) passwd = password(args[1]);
+            if ( args.length > 1 ) passwd = password(context, args[1], null);
         }
 
         try {
@@ -360,13 +361,13 @@ public RubyString to_pem(final IRubyObject[] args) {
             else {
                 PEMInputOutput.writeDSAPublicKey(writer, publicKey);
             }
-            return RubyString.newString(getRuntime(), writer.getBuffer());
+            return RubyString.newString(context.runtime, writer.getBuffer());
         }
         catch (NoClassDefFoundError ncdfe) {
-            throw newDSAError(getRuntime(), bcExceptionMessage(ncdfe));
+            throw newDSAError(context.runtime, bcExceptionMessage(ncdfe));
         }
         catch (IOException e) {
-            throw newDSAError(getRuntime(), e.getMessage(), e);
+            throw newDSAError(context.runtime, e.getMessage(), e);
         }
     }
 

src/main/java/org/jruby/ext/openssl/PKeyEC.java

@@ -59,6 +59,7 @@
 import org.jruby.anno.JRubyMethod;
 import org.jruby.exceptions.RaiseException;
 import org.jruby.runtime.Arity;
+import org.jruby.runtime.Block;
 import org.jruby.runtime.ObjectAllocator;
 import org.jruby.runtime.ThreadContext;
 import org.jruby.runtime.Visibility;
@@ -222,7 +223,7 @@ public PKeyEC(Ruby runtime, RubyClass type) {
     public String getAlgorithm() { return "EC"; }
 
     @JRubyMethod(rest = true, visibility = Visibility.PRIVATE)
-    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args) {
+    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args, Block block) {
         final Ruby runtime = context.runtime;
 
         privateKey = null; publicKey = null;
@@ -241,7 +242,7 @@ public IRubyObject initialize(final ThreadContext context, final IRubyObject[] a
 
         IRubyObject pass = null;
         if ( args.length > 1 ) pass = args[1];
-        final char[] passwd = password(pass);
+        final char[] passwd = password(context, pass, block);
         final RubyString str = readInitArg(context, arg);
         final String strJava = str.toString();
 
@@ -597,13 +598,13 @@ private byte[] toDER() throws IOException {
 
     @Override
     @JRubyMethod(name = "to_pem", alias = "export", rest = true)
-    public RubyString to_pem(final IRubyObject[] args) {
-        Arity.checkArgumentCount(getRuntime(), args, 0, 2);
+    public RubyString to_pem(ThreadContext context, final IRubyObject[] args) {
+        Arity.checkArgumentCount(context.runtime, args, 0, 2);
 
         CipherSpec spec = null; char[] passwd = null;
         if ( args.length > 0 ) {
             spec = cipherSpec( args[0] );
-            if ( args.length > 1 ) passwd = password( args[1] );
+            if ( args.length > 1 ) passwd = password(context, args[1], null);
         }
 
         try {
@@ -614,10 +615,10 @@ public RubyString to_pem(final IRubyObject[] args) {
             else {
                 PEMInputOutput.writeECPublicKey(writer, publicKey);
             }
-            return RubyString.newString(getRuntime(), writer.getBuffer());
+            return RubyString.newString(context.runtime, writer.getBuffer());
         }
         catch (IOException ex) {
-            throw newECError(getRuntime(), ex.getMessage());
+            throw newECError(context.runtime, ex.getMessage());
         }
     }
 
@@ -742,7 +743,7 @@ public RubyString to_pem(final ThreadContext context, final IRubyObject[] args)
             CipherSpec spec = null; char[] passwd = null;
             if ( args.length > 0 ) {
                 spec = cipherSpec( args[0] );
-                if ( args.length > 1 ) passwd = password(args[1]);
+                if ( args.length > 1 ) passwd = password(context, args[1], null);
             }
 
             try {

src/main/java/org/jruby/ext/openssl/PKeyRSA.java

@@ -62,6 +62,7 @@
 import org.jruby.anno.JRubyMethod;
 import org.jruby.exceptions.RaiseException;
 import org.jruby.runtime.Arity;
+import org.jruby.runtime.Block;
 import org.jruby.runtime.ObjectAllocator;
 import org.jruby.runtime.ThreadContext;
 import org.jruby.runtime.builtin.IRubyObject;
@@ -218,26 +219,26 @@ static PKeyRSA newInstance(final Ruby runtime, final PublicKey publicKey) {
     }
 
     @JRubyMethod(rest = true, visibility = Visibility.PRIVATE)
-    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args) {
+    public IRubyObject initialize(final ThreadContext context, final IRubyObject[] args, final Block block) {
         final Ruby runtime = context.runtime;
 
         if ( Arity.checkArgumentCount(runtime, args, 0, 2) == 0 ) {
             privateKey = null; publicKey = null; return this;
         }
 
-        IRubyObject arg = args[0]; IRubyObject pass = null;
-        if ( args.length > 1 ) pass = args[1];
+        IRubyObject arg = args[0];
+        IRubyObject arg1 = args.length > 1 ? args[1] : null; // exponent (Fixnum) or password (String)
 
         if ( arg instanceof RubyFixnum ) {
             int keySize = RubyNumeric.fix2int((RubyFixnum) arg);
             BigInteger exp = RSAKeyGenParameterSpec.F4;
-            if ( pass != null && ! pass.isNil() ) {
-                exp = BigInteger.valueOf(RubyNumeric.num2long(pass));
+            if (arg1 != null && !arg1.isNil()) {
+                exp = BigInteger.valueOf(RubyNumeric.num2long(arg1));
             }
             return rsaGenerate(runtime, this, keySize, exp);
         }
 
-        final char[] passwd = password(pass);
+        final char[] passwd = password(context, arg1, block);
         final RubyString str = readInitArg(context, arg);
         final String strJava = str.toString();
 
@@ -434,13 +435,13 @@ public RubyString to_text() {
 
     @Override
     @JRubyMethod(name = { "to_pem", "to_s" }, alias = "export", rest = true)
-    public RubyString to_pem(final IRubyObject[] args) {
-        Arity.checkArgumentCount(getRuntime(), args, 0, 2);
+    public RubyString to_pem(ThreadContext context, final IRubyObject[] args) {
+        Arity.checkArgumentCount(context.runtime, args, 0, 2);
 
         CipherSpec spec = null; char[] passwd = null;
         if ( args.length > 0 ) {
             spec = cipherSpec( args[0] );
-            if ( args.length > 1 ) passwd = password(args[1]);
+            if ( args.length > 1 ) passwd = password(context, args[1], null);
         }
 
         try {
@@ -451,13 +452,13 @@ public RubyString to_pem(final IRubyObject[] args) {
             else {
                 PEMInputOutput.writeRSAPublicKey(writer, publicKey);
             }
-            return RubyString.newString(getRuntime(), writer.getBuffer());
+            return RubyString.newString(context.runtime, writer.getBuffer());
         }
         catch (NoClassDefFoundError ncdfe) {
-            throw newRSAError(getRuntime(), bcExceptionMessage(ncdfe));
+            throw newRSAError(context.runtime, bcExceptionMessage(ncdfe));
         }
         catch (IOException ioe) {
-            throw newRSAError(getRuntime(), ioe.getMessage());
+            throw newRSAError(context.runtime, ioe.getMessage());
         }
     }