-
Notifications
You must be signed in to change notification settings - Fork 3
/
parser.go
82 lines (69 loc) · 1.64 KB
/
parser.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
package pemparser
import (
"crypto"
"crypto/x509"
"encoding/pem"
"errors"
)
func ForeachPemBlock(pemText []byte, f func(*pem.Block) error) error {
for len(pemText) > 0 {
var block *pem.Block
block, pemText = pem.Decode(pemText)
if block == nil {
break
}
if err := f(block); err != nil {
return err
}
}
return nil
}
func ParseCertificates(pemText []byte) ([]*x509.Certificate, error) {
var certs []*x509.Certificate
if err := ForeachPemBlock(pemText, func(block *pem.Block) error {
cert, err := x509.ParseCertificate(block.Bytes)
if err != nil {
return err
}
certs = append(certs, cert)
return nil
}); err != nil {
return nil, err
}
if len(certs) == 0 {
return nil, errors.New("No certificate was found.")
}
return certs, nil
}
func parseSinglePrivateKeyBlock(block *pem.Block) (crypto.PrivateKey, error) {
der := block.Bytes
if k, err := x509.ParsePKCS1PrivateKey(der); err == nil {
return k, nil
}
if k, err := x509.ParsePKCS8PrivateKey(der); err == nil {
return k, nil
}
if k, err := x509.ParseECPrivateKey(der); err == nil {
return k, nil
}
return nil, errors.New("Failed to parse private key.")
}
func ParsePrivateKey(pemText []byte) (crypto.PrivateKey, error) {
var priv crypto.PrivateKey
if err := ForeachPemBlock(pemText, func(block *pem.Block) error {
newpriv, err := parseSinglePrivateKeyBlock(block)
if err == nil {
if priv != nil {
return errors.New("More than one private key found in given pemText.")
}
priv = newpriv
}
return nil
}); err != nil {
return nil, err
}
if priv == nil {
return nil, errors.New("Failed to parse private key.")
}
return priv, nil
}