def execute(self):
text, binary = self._readFileTextAndBinary(self.argRemainder[0])
fileType = None
try:
if text:
decoder = PEMDecoder(text)
if decoder.containsEncoded("TACK PRIVATE KEY"):
fileType = "Private Key"
kf = TackKeyFile.createFromPem(text, None)
sys.stdout.write(str(kf))
return
elif decoder.containsEncoded("TACK"):
fileType = "Tack"
tack = Tack.createFromPem(text)
sys.stdout.write(str(tack))
return
elif decoder.containsEncoded("TACK EXTENSION"):
fileType = "TACK Extension"
tackExt = TackExtension.createFromPem(text, True)
sys.stdout.write(str(tackExt))
return
elif decoder.containsEncoded( "CERTIFICATE"):
fileType = "Certificate"
sslc = TlsCertificate.createFromPem(text)
sys.stdout.write(str(sslc))
return
# Is it a certificate?
try:
sslc = TlsCertificate(binary)
sys.stdout.write(str(sslc))
except SyntaxError:
self.printError("Unrecognized file type")
except SyntaxError as e:
self.printError("Error parsing %s: %s" % (fileType, e))
def execute(self):
if self.inputTack is not None:
tackExtension = TackExtension.createFromParameters(
self.inputTack, self.breakSignatures, TackActivation.DISABLED
)
tlsCertificate = TlsCertificate()
tlsCertificate.create(tackExtension)
self.outputFile.write(tlsCertificate.writePem())
if self.isVerbose():
sys.stderr.write(str(tackExtension) + "\n")
elif self.inputCertificate is not None:
if self.breakSignatures is not None:
self.printError("Invalid arguments: break sigs with TACK cert.")
s = ""
if self.inputCertificate.tackExt:
if self.inputCertificate.tackExt.tack:
s += self.inputCertificate.tackExt.tack.serializeAsPem()
if self.inputCertificate.tackExt.break_sigs:
for bs in self.inputCertificate.tackExt.break_sigs:
s += bs.serializeAsPem()
self.outputFile.write(s)
if self.isVerbose():
sys.stderr.write(self.inputCertificate.writeText() + "\n")
def execute(self):
if self.inputTack is not None:
tackExtension = TackExtension.createFromParameters(
self.inputTack, self.breakSignatures, TackActivation.DISABLED)
tlsCertificate = TlsCertificate()
tlsCertificate.create(tackExtension)
self.outputFile.write(tlsCertificate.writePem())
if self.isVerbose():
sys.stderr.write(str(tackExtension) + "\n")
elif self.inputCertificate is not None:
if self.breakSignatures is not None:
self.printError(
"Invalid arguments: break sigs with TACK cert.")
s = ""
if self.inputCertificate.tackExt:
if self.inputCertificate.tackExt.tack:
s += self.inputCertificate.tackExt.tack.serializeAsPem()
if self.inputCertificate.tackExt.break_sigs:
for bs in self.inputCertificate.tackExt.break_sigs:
s += bs.serializeAsPem()
self.outputFile.write(s)
if self.isVerbose():
sys.stderr.write(self.inputCertificate.writeText() + "\n")
def test_Certificate(self):
s = """
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----"""
sslc = TlsCertificate.createFromPem(s)
assert (sslc.key_sha256 == a2b_hex(
"ffd30bcb84dbbc211a510875694354c58863d84fb7fc5853dfe36f4be2eb2e50")
)
assert (sslc.cert_sha256 == a2b_hex(
"1a50e3de3a153f33b314b67c1aacc2f59fc99c49b8449c33dcc3665663e2bff1")
)
assert (Time.posixTimeToStr(sslc.notAfter,
True) == "2012-07-08T00:19:57Z")
# Write to binary and re-parse it, then check again
b = sslc.serialize()
sslc2 = TlsCertificate(b)
assert (sslc2.key_sha256 == a2b_hex(
"ffd30bcb84dbbc211a510875694354c58863d84fb7fc5853dfe36f4be2eb2e50")
)
assert (sslc2.cert_sha256 == a2b_hex(
"1a50e3de3a153f33b314b67c1aacc2f59fc99c49b8449c33dcc3665663e2bff1")
)
assert (Time.posixTimeToStr(sslc2.notAfter,
True) == "2012-07-08T00:19:57Z")
return 1
def _getInputCertificate(self):
contents = self._getInputFileContents()
if contents is None:
return None
if PEMDecoder(contents).containsEncoded("CERTIFICATE"):
certificate = TlsCertificate()
certificate.open(self._getOptionValue("-i"))
return certificate
def _getInputCertificate(self):
contents = self._getInputFileContents()
if contents is None:
return None
if PEMDecoder(contents).containsEncoded("CERTIFICATE"):
certificate = TlsCertificate()
certificate.open(self._getOptionValue("-i"))
return certificate
def _getCertificate(self):
certificateFile = self._getOptionValue("-c")
if not certificateFile:
self.printError("-c missing (Certificate)")
try:
inCert = TlsCertificate()
inCert.open(certificateFile)
return inCert
except SyntaxError:
self.printError("SSL certificate malformed: %s" % certificateFile)
except IOError:
self.printError("Error opening SSL certificate: %s" % certificateFile)
def _getCertificate(self):
certificateFile = self._getOptionValue("-c")
if not certificateFile:
self.printError("-c missing (Certificate)")
try:
inCert = TlsCertificate()
inCert.open(certificateFile)
return inCert
except SyntaxError:
self.printError("SSL certificate malformed: %s" % certificateFile)
except IOError:
self.printError("Error opening SSL certificate: %s" %
certificateFile)
def execute(self):
text, binary = self._readFile(self.argv)
fileType = None
try:
if text:
decoder = PEMDecoder(text)
if decoder.containsEncoded("TACK PRIVATE KEY"):
fileType = "Private Key"
kf = TackKeyFile.createFromPem(text, None)
print(str(kf))
return
elif decoder.containsEncoded("TACK"):
fileType = "TACK"
tack = Tack.createFromPem(text)
print(str(tack))
return
elif decoder.containsEncoded("TACK BREAK SIG"):
fileType = "Break Sig"
tbsList = TackBreakSig.createFromPemList(text)
s = ""
for tbs in tbsList:
s += str(tbs)
print(s)
return
elif decoder.containsEncoded("CERTIFICATE"):
fileType = "Certificate"
sslc = TlsCertificate()
sslc.parsePem(text)
print(sslc.writeText())
return
# Is it an SSL certificate?
try:
sslc = TlsCertificate()
sslc.parse(binary)
print(sslc.writeText())
except SyntaxError:
self.printError("Unrecognized file type")
except SyntaxError as e:
self.printError("Error parsing %s: %s" % (fileType, e))
def test_Certificate(self):
s = """
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----"""
sslc = TlsCertificate()
sslc.parsePem(s)
assert(sslc.key_sha256 == a2b_hex("ffd30bcb84dbbc211a510875694354c58863d84fb7fc5853dfe36f4be2eb2e50"))
assert(sslc.cert_sha256 == a2b_hex("1a50e3de3a153f33b314b67c1aacc2f59fc99c49b8449c33dcc3665663e2bff1"))
assert(Time.posixTimeToStr(sslc.notAfter, True) == "2012-07-08T00:19:57Z")
assert(isinstance(sslc.writeText(), str))
return 1
def getCertificate(self):
certificateFile = self.argRemainder[1]
try:
if certificateFile == "-":
# Read as binary
certificateBytes = readStdinBinary()
else:
certificateBytes = bytearray(
open(certificateFile, "rb").read())
return TlsCertificate.createFromBytes(certificateBytes)
except SyntaxError as e:
self.printError("Certificate malformed: %s\n%s" %
(certificateFile, e))
except IOError as e:
self.printError("Error opening certificate: %s\n%s" %
(certificateFile, e))
def _getCertificate(self):
certificateFile = self._getOptionValue("-c")
if not certificateFile:
self.printError("-c missing (Certificate)")
try:
if certificateFile == "-":
# Read as binary
certificateBytes = readStdinBinary()
else:
certificateBytes = bytearray(open(certificateFile, "rb").read())
return TlsCertificate.createFromBytes(certificateBytes)
except SyntaxError:
self.printError("Certificate malformed: %s" % certificateFile)
except IOError:
self.printError("Error opening certificate: %s" % certificateFile)
def execute(self):
text, binary = self._readFile(self.argv)
fileType = None
try:
if text:
decoder = PEMDecoder(text)
if decoder.containsEncoded("TACK PRIVATE KEY"):
fileType = "Private Key"
kf = TackKeyFile.createFromPem(text, None)
print(str(kf))
return
elif decoder.containsEncoded("TACK"):
fileType = "TACK"
tack = Tack.createFromPem(text)
print(str(tack))
return
elif decoder.containsEncoded("TACK BREAK SIG"):
fileType = "Break Sig"
tbsList = TackBreakSig.createFromPemList(text)
s = ""
for tbs in tbsList:
s += str(tbs)
print(s)
return
elif decoder.containsEncoded("CERTIFICATE"):
fileType = "Certificate"
sslc = TlsCertificate()
sslc.parsePem(text)
print(sslc.writeText())
return
# Is it an SSL certificate?
try:
sslc = TlsCertificate()
sslc.parse(binary)
print(sslc.writeText())
except SyntaxError:
self.printError("Unrecognized file type")
except SyntaxError as e:
self.printError("Error parsing %s: %s" % (fileType, e))
def getCertificate(self, mandatory):
certificateFile = self._getOptionValue("-c")
if not certificateFile:
if mandatory:
self.printError("-c missing (Certificate)")
else:
return None
try:
if certificateFile == "-":
# Read as binary
certificateBytes = readStdinBinary()
else:
certificateBytes = bytearray(open(certificateFile, "rb").read())
return TlsCertificate.createFromBytes(certificateBytes)
except SyntaxError:
self.printError("Certificate malformed: %s" % certificateFile)
except IOError:
self.printError("Error opening certificate: %s" % certificateFile)
def _getInputFile(self):
fileName = self._getOptionValue("-i")
if fileName is None:
self.printError("-i missing (Certificate or TACK)")
try:
text, binary = self._readFileTextAndBinary(fileName)
if text:
pem = PEMDecoder(text)
if pem.containsEncoded("TACK"):
return (Tack.createFromPem(text), None)
elif pem.containsEncoded("CERTIFICATE"):
return (None, TlsCertificate.createFromPem(text))
else:
self.printError("Unrecognized input file: %s" % fileName)
else:
return (None, TlsCertificate(binary))
except IOError:
self.printError("Error opening input file: %s" % fileName)
except SyntaxError:
self.printError("Error parsing input file: %s" % fileName)
