def test_private_key_invalid(self):
pkv = tls.PrivKeyValidator()
for fname in self.invalid_files:
p = os.path.join(self.test_data_dir, 'invalid', fname)
with open(p, 'rb') as f:
self.cfg['ssl_key'] = f.read()
ok, err = pkv.validate(self.cfg)
self.assertFalse(ok)
self.assertIsNotNone(err)
def test_private_key_valid(self):
pkv = tls.PrivKeyValidator()
good_keys = ['priv_key.pem']
for fname in good_keys:
p = os.path.join(self.test_data_dir, 'valid', fname)
with open(p, 'r') as f:
self.cfg['ssl_key'] = f.read()
ok, err = pkv.validate(self.cfg)
self.assertTrue(ok)
self.assertIsNone(err)
def perform_action(store, csr_fields):
db_cfg = load_tls_dict(store)
pkv = tls.PrivKeyValidator()
ok, err = pkv.validate(db_cfg)
if not ok or not err is None:
raise err
key_pair = db_cfg['ssl_key']
try:
csr_txt = tls.gen_x509_csr_pem(key_pair, csr_fields, GLSettings.csr_sign_bits)
log.debug("Generated a new CSR")
return csr_txt
except Exception as e:
log.err(e)
raise errors.ValidationError('CSR gen failed')
