lib/Firefox/Marionette/Certificate.pm


            
              1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
—
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
              package Firefox::Marionette::Certificate;
use strict;
use warnings;
our $VERSION = '1.42';
sub _NUMBER_OF_MICROSECOND_DIGITS { return -6 }
sub new {
    my ( $class, $parameters ) = @_;
    my $self = bless { %{$parameters} }, $class;
    return $self;
}
sub issuer_name {
    my ($self) = @_;
    return $self->{issuerName};
}
sub common_name {
    my ($self) = @_;
    return $self->{commonName};
}
sub _cert_type {
    my ($self) = @_;
    if ( defined $self->{certType} ) {
        return $self->{certType};
    }
    return 0;
}
sub is_any_cert {
    my ($self) = @_;
    if ( defined $self->{ANY_CERT} ) {
        return $self->{ANY_CERT} & $self->_cert_type();
    }
    return 0;
}
sub email_address {
    my ($self) = @_;
    return $self->{emailAddress} eq '(no email address)'
      ? undef
      : $self->{emailAddress};
}
sub sha256_subject_public_key_info_digest {
    my ($self) = @_;
    return $self->{sha256SubjectPublicKeyInfoDigest};
}
sub issuer_organization {
    my ($self) = @_;
    return $self->{issuerOrganization};
}
sub db_key {
    my ($self) = @_;
    return $self->{dbKey};
}
sub is_unknown_cert {
    my ($self) = @_;
    return $self->{UNKNOWN_CERT} & $self->_cert_type();
}
sub is_built_in_root {
    my ($self) = @_;
    return $self->{isBuiltInRoot};
}
sub token_name {
    my ($self) = @_;
    return $self->{tokenName};
}
sub sha256_fingerprint {
    my ($self) = @_;
    return $self->{sha256Fingerprint};
}
sub is_server_cert {
    my ($self) = @_;
    return $self->{SERVER_CERT} & $self->_cert_type();
}
sub is_user_cert {
    my ($self) = @_;
    return $self->{USER_CERT} & $self->_cert_type();
}
sub subject_name {
    my ($self) = @_;
    return $self->{subjectName};
}
sub key_usages {
    my ($self) = @_;
    return $self->{keyUsages};
}
sub is_ca_cert {
    my ($self) = @_;
    return $self->{CA_CERT} & $self->_cert_type();
}
sub issuer_organization_unit {
    my ($self) = @_;
    return $self->{issuerOrganizationUnit};
}
sub _convert_time_to_seconds {
    my ( $self, $microseconds ) = @_;
    my $seconds = substr $microseconds, 0, _NUMBER_OF_MICROSECOND_DIGITS();
    return $seconds + 0;
}
sub not_valid_after {
    my ($self) = @_;
    return $self->_convert_time_to_seconds( $self->{validity}->{notAfter} );
}
sub not_valid_before {
    my ($self) = @_;
    return $self->_convert_time_to_seconds( $self->{validity}->{notBefore} );
}
sub serial_number {
    my ($self) = @_;
    return $self->{serialNumber};
}
sub is_email_cert {
    my ($self) = @_;
    return $self->{EMAIL_CERT} & $self->_cert_type();
}
sub issuer_common_name {
    my ($self) = @_;
    return $self->{issuerCommonName};
}
sub organization {
    my ($self) = @_;
    return $self->{organization};
}
sub nickname {
    my ($self) = @_;
    return $self->{nickname};
}
sub sha1_fingerprint {
    my ($self) = @_;
    return $self->{sha1Fingerprint};
}
sub display_name {
    my ($self) = @_;
    return $self->{displayName};
}
sub organizational_unit {
    my ($self) = @_;
    return $self->{organizationalUnit};
}
1;    # Magic true value required at end of module
__END__
=head1 NAME
Firefox::Marionette::Certificate - Represents a x509 Certificate from Firefox
=head1 VERSION
Version 1.42
=head1 SYNOPSIS
    use Firefox::Marionette();
    use v5.10;
    my $firefox = Firefox::Marionette->new();
    foreach my $certificate (sort { $a->display_name() cmp $b->display_name() } $firefox->certificates()) {
        if ($certificate->is_ca_cert()) {
            print 'PEM Encoded CA Certificate ' . "\n" . $firefox->certificate_as_pem($certificate) . "\n";
        }
        ...
    }
=head1 DESCRIPTION
This module handles the implementation of a x509 Certificate from Firefox
=head1 SUBROUTINES/METHODS
=head2 common_name
returns the common name from the certificate.  This can contain the domain name (or wildcard) attached to the certificate or a Certificate Authority name, such as 'VeriSign Class 3 Public Primary Certification Authority - G4'
=head2 db_key
returns a unique value for the certificate, such as 'AAAAAAAAAAAAAAAQAAAAzS+A/iOMDiIPSGcSKJGHrLMwgcoxCzAJBgNVBAYTAlVTMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazE6MDgGA1UECxMxKGMpIDIwMDcgVmVyaVNpZ24sIEluYy4gLSBGb3IgYXV0aG9yaXplZCB1c2Ugb25seTFFMEMGA1UEAxM8VmVyaVNpZ24gQ2xhc3MgMyBQdWJsaWMgUHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEc0'
=head2 display_name
returns the display name field, such as 'VeriSign Class 3 Public Primary Certification Authority - G4'
=head2 email_address
returns the emailAddress field if supplied, otherwise it will return undef.
=head2 is_any_cert
returns a boolean value to determine if the certificate is a certificate.  This can return false for old browsers that do not support this attribute (such as Firefox 31.1.0esr).
=head2 is_built_in_root
returns a boolean value to determine if the certificate is a built in root certificate.
=head2 is_ca_cert
returns a boolean value to determine if the certificate is a certificate authority certificate
=head2 is_email_cert
returns a boolean value to determine if the certificate is an email certificate.
=head2 is_server_cert
returns a boolean value to determine if the certificate is a server certificate.
=head2 is_unknown_cert
returns a boolean value to determine if the certificate type is unknown.
=head2 is_user_cert
returns a boolean value to determine if the certificate is a user certificate.
=head2 issuer_common_name
returns the L<issuer common name|https://datatracker.ietf.org/doc/html/rfc5280#section-5.1.2.3> from the certificate, such as 'VeriSign Class 3 Public Primary Certification Authority - G4'
=head2 issuer_name
returns the L<issuer name|https://datatracker.ietf.org/doc/html/rfc5280#section-5.1.2.3> from the certificate, such as 'CN=VeriSign Class 3 Public Primary Certification Authority - G4,OU="(c) 2007 VeriSign, Inc. - For authorized use only",OU=VeriSign Trust Network,O="VeriSign, Inc.",C=US'
=head2 issuer_organization
returns the L<issuer organisation|https://datatracker.ietf.org/doc/html/rfc5280#section-5.1.2.3> from the certificate, such as 'VeriSign, Inc.'
=head2 issuer_organization_unit
returns the L<issuer organization unit|https://datatracker.ietf.org/doc/html/rfc5280#section-5.1.2.3> from the certificate, such as 'VeriSign Trust Network'
=head2 key_usages
returns a string describing the intended usages of the certificate, such as 'Certificate Signer'
=head2 new
This method is intended for use exclusively by the L<Firefox::Marionette|Firefox::Marionette> module.  You should not need to call this method from your code.
=head2 nickname
returns the nickname field, such as 'Builtin Object Token:VeriSign Class 3 Public Primary Certification Authority - G4'
=head2 not_valid_after
returns the L<not valid after|https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.5> time in seconds since the UNIX epoch.
=head2 not_valid_before
returns the L<not valid before|https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.5> time in seconds since the UNIX epoch.
=head2 organization
returns the organization field, such as 'VeriSign, Inc.'
=head2 organizational_unit
returns the organization unit field, such as 'VeriSign Trust Network'
=head2 serial_number
returns the L<serial number|https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.2> of the certificate, such as '2F:80:FE:23:8C:0E:22:0F:48:67:12:28:91:87:AC:B3'
=head2 sha1_fingerprint
returns the sha1Fingerprint field, such as '22:D5:D8:DF:8F:02:31:D1:8D:F7:9D:B7:CF:8A:2D:64:C9:3F:6C:3A'
=head2 sha256_fingerprint
returns the sha256Fingerprint field, such as '69:DD:D7:EA:90:BB:57:C9:3E:13:5D:C8:5E:A6:FC:D5:48:0B:60:32:39:BD:C4:54:FC:75:8B:2A:26:CF:7F:79'
=head2 sha256_subject_public_key_info_digest
returns the base64 encoded sha256 digest of the L<subject public key info|https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.7> field, such as 'UZJDjsNp1+4M5x9cbbdflB779y5YRBcV6Z6rBMLIrO4='
=head2 subject_name
returns the name from the L<subject|https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.6> field, such as 'CN=VeriSign Class 3 Public Primary Certification Authority - G4,OU="(c) 2007 VeriSign, Inc. - For authorized use only",OU=VeriSign Trust Network,O="VeriSign, Inc.",C=US'
=head2 token_name
returns a string describing the type of certificate, such as 'Builtin Object Token'
=head1 DIAGNOSTICS
None.
=head1 CONFIGURATION AND ENVIRONMENT
Firefox::Marionette::Certificate requires no configuration files or environment variables.
=head1 DEPENDENCIES
None.
=head1 INCOMPATIBILITIES
None reported.
=head1 BUGS AND LIMITATIONS
To report a bug, or view the current list of bugs, please visit L<https://github.com/david-dick/firefox-marionette/issues>
=head1 AUTHOR
David Dick  C<< <ddick@cpan.org> >>
=head1 LICENSE AND COPYRIGHT
Copyright (c) 2023, David Dick C<< <ddick@cpan.org> >>. All rights reserved.
This module is free software; you can redistribute it and/or
modify it under the same terms as Perl itself. See L<perlartistic/perlartistic>.
=head1 DISCLAIMER OF WARRANTY
BECAUSE THIS SOFTWARE IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
FOR THE SOFTWARE, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN
OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
PROVIDE THE SOFTWARE "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER
EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE
ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE SOFTWARE IS WITH
YOU. SHOULD THE SOFTWARE PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL
NECESSARY SERVICING, REPAIR, OR CORRECTION.
IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
REDISTRIBUTE THE SOFTWARE AS PERMITTED BY THE ABOVE LICENCE, BE
LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL,
OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE
THE SOFTWARE (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING
RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A
FAILURE OF THE SOFTWARE TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF
SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
SUCH DAMAGES.
	Global
`s`	Focus search bar
`?`	Bring up this help dialog
	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)
	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse
	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)