Open
Description
Description
Currently, the function to parse the encrypted private key invokes the openssl command, writes temporary files, and reads back the decrypted output. While this works, it's very inefficient.
espresso/lib/certmanager/certmanager.go:122
// Helper function to parse PKCS#8 encrypted private keys
func parseEncryptedPKCS8PrivateKey(data, password []byte) (interface{}, error)
Go's x509 and pem standard libraries already provide support for decrypting encrypted PEM blocks using x509.DecryptPEMBlock.
Benefits
- No call to external dependencies like openssl
- No writing to and reading from temp files.
I'd be happy to work on this and create a pull request.
Metadata
Metadata
Assignees
Labels
No labels