self.fail(f'Invalid cert/key pair: {e}')
-# subcommand functions
-def password_hash(args: Namespace) -> None:
- data = json.loads(sys.stdin.read())
+def _read() -> str:
+ return sys.stdin.read()
+
+
+def _load() -> Dict[str, Any]:
+ return json.loads(_read())
+
+
+def _respond(data: Dict[str, Any]) -> None:
+ json.dump(data, sys.stdout)
+
+
+def _write(content: str) -> None:
+ sys.stdout.write(content)
+ sys.stdout.flush()
+
+
+def _fail(msg: str, code: int = 0) -> Any:
+ json.dump({'error': msg}, sys.stdout)
+ sys.exit(code)
+
+def password_hash(args: Namespace) -> None:
+ data = _load()
password = data['password']
salt_password = data['salt_password']
-
- hash_str = InternalCryptoCaller().password_hash(password, salt_password)
- json.dump({'hash': hash_str}, sys.stdout)
+ hash_str = args.crypto.password_hash(password, salt_password)
+ _respond({'hash': hash_str})
def verify_password(args: Namespace) -> None:
- icc = InternalCryptoCaller()
- data = json.loads(sys.stdin.read())
+ data = _load()
password = data.get('password', '')
hashed_password = data.get('hashed_password', '')
try:
- icc.verify_password(password, hashed_password)
+ ok = args.crypto.verify_password(password, hashed_password)
except ValueError as err:
- _fail_message(str(err))
- json.dump({'ok': ok}, sys.stdout)
+ _fail(str(err))
+ _respond({'ok': ok})
+
+
+def create_private_key(args: Namespace) -> None:
+ _write(args.crypto.create_private_key())
def create_self_signed_cert(args: Namespace) -> None:
- icc = InternalCryptoCaller()
- # Generate private key
- if args.private_key:
- # create a key pair
- print(icc.create_private_key())
- return
-
- data = json.loads(sys.stdin.read())
+ data = _load()
dname = data['dname']
- print(icc.create_self_signed_cert(dname, data['private_key']))
+ private_key = data['private_key']
+ _write(args.crypto.create_self_signed_cert(dname, private_key))
def certificate_days_to_expire(args: Namespace) -> None:
- icc = InternalCryptoCaller()
- crt = sys.stdin.read()
+ crt = _read()
try:
- days_until_exp = icc.certificate_days_to_expire(crt)
+ days_until_exp = args.crypto.certificate_days_to_expire(crt)
except InternalError as err:
- print(str(err), file=sys.stderr)
- sys.exit(1)
- json.dump({'days_until_expiration': days_until_exp}, sys.stdout)
+ _fail(str(err))
+ _respond({'days_until_expiration': days_until_exp})
def get_cert_issuer_info(args: Namespace) -> None:
- crt = sys.stdin.read()
- org_name, cn = InternalCryptoCaller().get_cert_issuer_info(crt)
- json.dump({'org_name': org_name, 'cn': cn}, sys.stdout)
-
-
-def _fail_message(msg: str) -> None:
- json.dump({'error': msg}, sys.stdout)
- sys.exit(0)
+ crt = _read()
+ org_name, cn = args.crypto.get_cert_issuer_info(crt)
+ _respond({'org_name': org_name, 'cn': cn})
def verify_tls(args: Namespace) -> None:
- data = json.loads(sys.stdin.read())
-
+ data = _load()
crt = data['crt']
key = data['key']
-
try:
- InternalCryptoCaller().verify_tls(crt, key)
+ args.crypto.verify_tls(crt, key)
except ValueError as err:
- json.dump({'error': str(err)}, sys.stdout)
- json.dump({'ok': True}, sys.stdout) # need to emit something on success
+ _fail(str(err))
+ _respond({'ok': True}) # need to emit something on success
-def main():
+def main() -> None:
# create the top-level parser
parser = argparse.ArgumentParser(prog='cryptotools.py')
+ parser.set_defaults(crypto=InternalCryptoCaller())
subparsers = parser.add_subparsers(required=True)
# create the parser for the "password_hash" command
# create the parser for the "create_self_signed_cert" command
parser_cssc = subparsers.add_parser('create_self_signed_cert')
- parser_cssc.add_argument(
- '--private_key', required=False, action='store_true'
- )
- parser_cssc.add_argument(
- '--certificate', required=False, action='store_true'
- )
parser_cssc.set_defaults(func=create_self_signed_cert)
+ parser_cpk = subparsers.add_parser('create_private_key')
+ parser_cpk.set_defaults(func=create_private_key)
+
# create the parser for the "certificate_days_to_expire" command
parser_dte = subparsers.add_parser('certificate_days_to_expire')
parser_dte.set_defaults(func=certificate_days_to_expire)
projects / ceph.git / commitdiff