aoki.tests.cmp_clientΒΆ
AOKI Client for testing AOKI via CMP.
Please run from /rootdir/trustpoint with βuv run -m aoki.tests.cmp_clientβ for paths and imports to work. This only works if your system OpenSSL version is 3.x.
AttributesΒΆ
ExceptionsΒΆ
Exception raised when the provided Owner ID certificate is invalid or not corresponding to the IDevID. |
|
Exception raised when a certificate could not be loaded from the provided path. |
ClassesΒΆ
AOKI-CMP Client for testing purposes. |
Module ContentsΒΆ
- exception aoki.tests.cmp_client.AokiClientOwnerIdCertVerificationError[source]ΒΆ
Bases:
ExceptionException raised when the provided Owner ID certificate is invalid or not corresponding to the IDevID.
- exception aoki.tests.cmp_client.AokiClientCertLoadError[source]ΒΆ
Bases:
ExceptionException raised when a certificate could not be loaded from the provided path.
- class aoki.tests.cmp_client.AokiCmpClient(server_url, cert_file, key_file, owner_truststore_file, idevid_truststore_file, *args, **kwargs)[source]ΒΆ
AOKI-CMP Client for testing purposes.
- Parameters:
server_url (str)
cert_file (str)
key_file (str)
owner_truststore_file (str)
idevid_truststore_file (str)
args (str)
kwargs (str)
- static _load_certificate(cert_path)[source]ΒΆ
- Parameters:
cert_path (pathlib.Path)
- Return type:
cryptography.x509.Certificate
- static _load_certificates(cert_path)[source]ΒΆ
- Parameters:
cert_path (pathlib.Path)
- Return type:
list[cryptography.x509.Certificate]
- _get_idevid_owner_san_uri(idevid_cert)[source]ΒΆ
Get the Owner ID SAN URI corresponding to a IDevID certificate.
Formatted as βdev-owner:<idevid_subj_sn>.<idevid_x509_sn>.<idevid_sha256_fingerprint>β
- Parameters:
idevid_cert (cryptography.x509.Certificate)
- Return type:
str