forge-pfx 0.1.0

Forge is a cli tool for converting PFX/P12 certificate files to PEM format
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54

use crate::error::ConversionError;
use crate::openssl::ParsedPfx;
use openssl::pkcs12::Pkcs12;
use std::fs;
use std::path::Path;

/// Parser for PFX/P12 files
pub struct PfxParser;

impl PfxParser {
    /// Parse a PFX file from a file path
    pub fn parse_file<P: AsRef<Path>>(
        path: P,
        password: &str,
    ) -> Result<ParsedPfx, ConversionError> {
        let path = path.as_ref();

        // Check if file exists
        if !path.exists() {
            return Err(ConversionError::FileNotFound(path.display().to_string()));
        }

        // Read the file
        let pfx_data =
            fs::read(path).map_err(|e| ConversionError::FileRead(path.display().to_string(), e))?;

        Self::parse_bytes(&pfx_data, password)
    }

    /// Parse PFX data from bytes
    pub fn parse_bytes(data: &[u8], password: &str) -> Result<ParsedPfx, ConversionError> {
        // Parse the PKCS12 structure
        let pkcs12 = Pkcs12::from_der(data).map_err(|e| {
            ConversionError::InvalidFormat(format!("Failed to parse PFX structure: {}", e))
        })?;

        // Extract the contents with the provided password
        let parsed = pkcs12.parse2(password).map_err(|e| {
            if password.is_empty() {
                ConversionError::Authentication(format!(
                    "Failed to parse PFX file: {}. This file may require a password. Use --password option.",
                    e
                ))
            } else {
                ConversionError::Authentication(format!(
                    "Failed to parse PFX file with provided password: {}",
                    e
                ))
            }
        })?;

        Ok(ParsedPfx::from(parsed))
    }
}