You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Since pyOpenSSL's Extensions are now deprecated, I'm trying to migrate Certbot to cryptography's, but there's still pyOpenSSL public API that only accepts/returns the deprecated extension type:
I noticed that some work was done to add support for cryptography's CRL types in #1252, and was hoping similar work could be done for extensions. Happy to help implement this if it's desired.
The text was updated successfully, but these errors were encountered:
wgreenberg
changed the title
Support for cryptography.X509.Extensions in pyopenssl.X509.add_extensions?
Support for cryptography.X509.Extensions in pyopenssl.X509.add_extensions etc?
Feb 27, 2024
The easiest thing is likely to migrate your entire X.509 usage to cryptography's, rather than doing it piecemeal. -- pyOpenSSL's X509 type has to_cryptography and from_cryptography methods for that purpose.
There's some technical barriers that would make it difficult to do for extensions in an efficient way.
The easiest thing is likely to migrate your entire X.509 usage to cryptography's, rather than doing it piecemeal. -- pyOpenSSL's X509 type has to_cryptography and from_cryptography methods for that purpose.
+1. We're doing this (to_cryptography/from_cryptography) for mitmproxy and it works really well.
Since pyOpenSSL's Extensions are now deprecated, I'm trying to migrate Certbot to
cryptography
's, but there's still pyOpenSSL public API that only accepts/returns the deprecated extension type:pyopenssl/src/OpenSSL/crypto.py
Lines 1079 to 1130 in a972ea4
pyopenssl/src/OpenSSL/crypto.py
Lines 1638 to 1659 in a972ea4
I noticed that some work was done to add support for
cryptography
's CRL types in #1252, and was hoping similar work could be done for extensions. Happy to help implement this if it's desired.The text was updated successfully, but these errors were encountered: