Closed mithrandi closed 1 year ago
Yes, because pyOpenSSL will hopefully move to cryptography.x509 too https://github.com/pyca/pyopenssl/pull/439 .
I’m also idling thinking about supporting stdlib by writing those files into temporary files and load them from there.
Gah. This can't work exactly as stated, because there's no way to know which cert goes with the private key until you've loaded them with something that can give you the public key...
certificateOptionsFromPEMs actually does two things at the moment:
CertificateOptions
.I'd kinda like to have 1 without 2, since
CertificateOptions
hasOpenSSL.crypto.x509
objects instead ofcryptography.x509
objects, the latter having a much more useful API. @hynek do you think it's sensible to split these up?