Skip to content

Commit

Permalink
feat: add PrivateKeyUsagePeriod extension
Browse files Browse the repository at this point in the history
  • Loading branch information
@HamdaanAliQuatil
HamdaanAliQuatil committed Jul 10, 2024
1 parent 6169c6f commit 6edf169
Show file tree
Hide file tree
Showing 2 changed files with 63 additions and 0 deletions.
1 change: 1 addition & 0 deletions src/cryptography/hazmat/_oid.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ class ExtensionOID:
SUBJECT_DIRECTORY_ATTRIBUTES = ObjectIdentifier("2.5.29.9")
SUBJECT_KEY_IDENTIFIER = ObjectIdentifier("2.5.29.14")
KEY_USAGE = ObjectIdentifier("2.5.29.15")
PRIVATE_KEY_USAGE_PERIOD = ObjectIdentifier("2.5.29.16")
SUBJECT_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.17")
ISSUER_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.18")
BASIC_CONSTRAINTS = ObjectIdentifier("2.5.29.19")
Expand Down
62 changes: 62 additions & 0 deletions src/cryptography/x509/extensions.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1275,6 +1275,68 @@ def public_bytes(self) -> bytes:
return rust_x509.encode_extension_value(self)


class PrivateKeyUsagePeriod(ExtensionType):
oid = ExtensionOID.PRIVATE_KEY_USAGE_PERIOD

def __init__(
self,
not_before: datetime.datetime | None = None,
not_after: datetime.datetime | None = None,
) -> None:
if not isinstance(not_before, datetime.datetime) and not_before is not None:
raise TypeError(
"not_before must be a datetime.datetime or None"
)

if not isinstance(not_after, datetime.datetime) and not_after is not None:
raise TypeError(
"not_after must be a datetime.datetime or None"
)

if not_before is None and not_after is None:
raise ValueError(
"At least one of not_before and not_after must not be None"
)

if not_before is not None and not_after is not None and not_before > not_after:
raise ValueError(
"not_before must be before not_after"
)

self._not_before = not_before
self._not_after = not_after

@property
def not_before(self) -> datetime.datetime | None:
return self._not_before

@property
def not_after(self) -> datetime.datetime | None:
return self._not_after

def __repr__(self) -> str:
return (
f"<PrivateKeyUsagePeriod(not_before={self.not_before}, "
f"not_after={self.not_after})>"
)

def __eq__(self, other: object) -> bool:
if not isinstance(other, PrivateKeyUsagePeriod):
return NotImplemented

return self.not_before == other.not_before and self.not_after == other.not_after

def __hash__(self) -> int:
return hash(
(
self.not_before,
self.not_after
)
)

def public_bytes(self) -> bytes:
return rust_x509.encode_extension_value(self)

class NameConstraints(ExtensionType):
oid = ExtensionOID.NAME_CONSTRAINTS

Expand Down

0 comments on commit 6edf169

Please sign in to comment.