src/mount_efs/__init__.py [3033:3074]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - def tls_paths_dictionary(mount_name, base_path=STATE_FILE_DIR): tls_dict = { "mount_dir": os.path.join(base_path, mount_name), # every mount will have its own ca mode assets due to lack of multi-threading support in openssl "database_dir": os.path.join(base_path, mount_name, "database"), "certs_dir": os.path.join(base_path, mount_name, "certs"), "index": os.path.join(base_path, mount_name, "database/index.txt"), "index_attr": os.path.join(base_path, mount_name, "database/index.txt.attr"), "serial": os.path.join(base_path, mount_name, "database/serial"), "rand": os.path.join(base_path, mount_name, "database/.rand"), } return tls_dict def get_public_key_sha1(public_key): # truncating public key to remove the header and footer '-----(BEGIN|END) PUBLIC KEY-----' with open(public_key, "r") as f: lines = f.readlines() lines = lines[1:-1] key = "".join(lines) key = bytearray(base64.b64decode(key)) # Parse the public key to pull out the actual key material by looking for the key BIT STRING # Example: # 0:d=0 hl=4 l= 418 cons: SEQUENCE # 4:d=1 hl=2 l= 13 cons: SEQUENCE # 6:d=2 hl=2 l= 9 prim: OBJECT :rsaEncryption # 17:d=2 hl=2 l= 0 prim: NULL # 19:d=1 hl=4 l= 399 prim: BIT STRING cmd = "openssl asn1parse -inform PEM -in %s" % public_key output, err = subprocess_call( cmd, "Unable to ASN1 parse public key file, %s, correctly" % public_key ) key_line = "" for line in output.splitlines(): if "BIT STRING" in line.decode("utf-8"): key_line = line.decode("utf-8") if not key_line: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - src/watchdog/__init__.py [1933:1973]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - def tls_paths_dictionary(mount_name, base_path=STATE_FILE_DIR): tls_dict = { "mount_dir": os.path.join(base_path, mount_name), "database_dir": os.path.join(base_path, mount_name, "database"), "certs_dir": os.path.join(base_path, mount_name, "certs"), "index": os.path.join(base_path, mount_name, "database/index.txt"), "index_attr": os.path.join(base_path, mount_name, "database/index.txt.attr"), "serial": os.path.join(base_path, mount_name, "database/serial"), "rand": os.path.join(base_path, mount_name, "database/.rand"), } return tls_dict def get_public_key_sha1(public_key): # truncating public key to remove the header and footer '-----(BEGIN|END) PUBLIC KEY-----' with open(public_key, "r") as f: lines = f.readlines() lines = lines[1:-1] key = "".join(lines) key = bytearray(base64.b64decode(key)) # Parse the public key to pull out the actual key material by looking for the key BIT STRING # Example: # 0:d=0 hl=4 l= 418 cons: SEQUENCE # 4:d=1 hl=2 l= 13 cons: SEQUENCE # 6:d=2 hl=2 l= 9 prim: OBJECT :rsaEncryption # 17:d=2 hl=2 l= 0 prim: NULL # 19:d=1 hl=4 l= 399 prim: BIT STRING cmd = "openssl asn1parse -inform PEM -in %s" % public_key output, err = subprocess_call( cmd, "Unable to ASN1 parse public key file, %s, correctly" % public_key ) key_line = "" for line in output.splitlines(): if "BIT STRING" in line.decode("utf-8"): key_line = line.decode("utf-8") if not key_line: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -