mirror of
https://github.com/ncarlier/webhookd.git
synced 2025-04-06 18:10:16 +00:00
f2054d2dc4
- add ed5519 HTTP signature support - refactor truststore package - add P12 trust store support close #72
32 lines
609 B
Go
32 lines
609 B
Go
package truststore
|
|
|
|
import (
|
|
"crypto"
|
|
"io/ioutil"
|
|
|
|
"github.com/ncarlier/webhookd/pkg/logger"
|
|
"golang.org/x/crypto/pkcs12"
|
|
)
|
|
|
|
func newP12TrustStore(filename string) (TrustStore, error) {
|
|
data, err := ioutil.ReadFile(filename)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
_, cert, err := pkcs12.Decode(data, "test")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
result := &InMemoryTrustStore{
|
|
Keys: make(map[string]crypto.PublicKey),
|
|
}
|
|
|
|
keyID := string(cert.Subject.CommonName)
|
|
result.Keys[keyID] = cert.PublicKey
|
|
logger.Debug.Printf("certificate \"%s\" loaded into the trustore", keyID)
|
|
|
|
return result, nil
|
|
}
|