[pve-devel] [PATCH common 1/2] cert: add fingerprint helper
Fabian Grünbichler
f.gruenbichler at proxmox.com
Wed Nov 6 13:36:02 CET 2019
for usage in pve-cluster's certificate cache.
Signed-off-by: Fabian Grünbichler <f.gruenbichler at proxmox.com>
---
src/PVE/Certificate.pm | 14 ++++++++++++++
1 file changed, 14 insertions(+)
diff --git a/src/PVE/Certificate.pm b/src/PVE/Certificate.pm
index 5ab920f..2421f3f 100644
--- a/src/PVE/Certificate.pm
+++ b/src/PVE/Certificate.pm
@@ -216,6 +216,20 @@ sub convert_asn1_to_epoch {
return Date::Parse::str2time($iso_time);
}
+sub get_certificate_fingerprint {
+ my ($cert_path) = @_;
+
+ my $cert = $read_certificate->($cert_path);
+
+ my $fp = Net::SSLeay::X509_get_fingerprint($cert, 'sha256');
+ Net::SSLeay::X509_free($cert);
+
+ die "unable to get fingerprint for '$cert_path' - got empty value\n"
+ if !defined($fp) || $fp eq '';
+
+ return $fp;
+}
+
sub get_certificate_info {
my ($cert_path) = @_;
--
2.20.1
More information about the pve-devel
mailing list