diff options
author | Jan Cholasta <jcholast@redhat.com> | 2014-03-12 11:41:02 +0100 |
---|---|---|
committer | Petr Viktorin <pviktori@redhat.com> | 2014-07-30 16:04:21 +0200 |
commit | ee96533aab8481c1b18ccf895c8a8f8c604e8841 (patch) | |
tree | 3df03d477e9813d5930e3b39f5cd50dd7a709b0c | |
parent | 410da23aeccbf932493af86a9150d4fb02c01a01 (diff) | |
download | freeipa-ee96533aab8481c1b18ccf895c8a8f8c604e8841.tar.gz freeipa-ee96533aab8481c1b18ccf895c8a8f8c604e8841.tar.xz freeipa-ee96533aab8481c1b18ccf895c8a8f8c604e8841.zip |
Add function for checking if certificate is self-signed to ipalib.x509.
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
-rw-r--r-- | ipalib/x509.py | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/ipalib/x509.py b/ipalib/x509.py index 790f425cb..2d38261f6 100644 --- a/ipalib/x509.py +++ b/ipalib/x509.py @@ -165,6 +165,12 @@ def get_serial_number(certificate, datatype=PEM, dbdir=None): del(nsscert) return serial_number +def is_self_signed(certificate, datatype=PEM, dbdir=None): + nsscert = load_certificate(certificate, datatype, dbdir) + self_signed = (nsscert.issuer == nsscert.subject) + del nsscert + return self_signed + def make_pem(data): """ Convert a raw base64-encoded blob into something that looks like a PE |