blob: 6fe4c79d2873e56fc05b7beef619a1407d540c05 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
"""This module provides methods for PKI operations."""
from logging import getLogger as get_logger
from cryptography.hazmat.primitives.serialization import Encoding as _cryptography_encoding
import cryptography.x509 as _x509
logger = get_logger(__name__)
DEFAULT_CERT_TYPE = "pem"
def load_pem_x509_certificate(data):
"""Load X.509 PEM certificate."""
return _x509.load_pem_x509_certificate(data)
def load_der_x509_certificate(data):
"""Load X.509 DER certificate."""
return _x509.load_der_x509_certificate(data)
def load_x509_certificate(data, cert_type="pem"):
cert_reader = _x509_loaders.get(cert_type)
if not cert_reader:
cert_reader = _x509_loaders.get("pem")
context = {
"message": "Unknown cert_type, falling back to default",
"cert_type": cert_type,
"default": DEFAULT_CERT_TYPE,
}
logger.warning(context)
cert = cert_reader(data)
return cert
def get_public_bytes_from_cert(cert):
data = cert.public_bytes(_cryptography_encoding.PEM).decode()
return data
_x509_loaders = {
"pem": load_pem_x509_certificate,
"der": load_der_x509_certificate,
}
|
