Merge "Address verifier DeprecationWarning"

commit: 31abad406269d988fca89f009d3a4e3b4a6ecfa8 [log] [tgz]
author: Zuul <zuul@review.openstack.org> Wed Mar 07 08:21:14 2018 +0000
committer: Gerrit Code Review <review@openstack.org> Wed Mar 07 08:21:14 2018 +0000
tree: f01615c4dadfc41514c28c97a33c750c75dbcbb5
parent: 6700d9a3f6645c57331330d51cbc22340d302d05 [diff]
parent: ce8eb052675df867f6124ebcb9bd7c1e900a6217 [diff]
diff --git a/barbican_tempest_plugin/tests/scenario/barbican_manager.py b/barbican_tempest_plugin/tests/scenario/barbican_manager.py
index a98d2cc..2cf7a7f 100644
--- a/barbican_tempest_plugin/tests/scenario/barbican_manager.py
+++ b/barbican_tempest_plugin/tests/scenario/barbican_manager.py

@@ -21,6 +21,7 @@
 from cryptography.hazmat.backends import default_backend
 from cryptography.hazmat.primitives.asymmetric import padding
 from cryptography.hazmat.primitives.asymmetric import rsa
+from cryptography.hazmat.primitives.asymmetric import utils
 from cryptography.hazmat.primitives import hashes
 from cryptography.hazmat.primitives import serialization
 from cryptography import x509
@@ -131,20 +132,22 @@
 
     def _sign_image(self, image_file):
         LOG.debug("Creating signature for image data")
-        signer = self.private_key.signer(
-            padding.PSS(
-                mgf=padding.MGF1(hashes.SHA256()),
-                salt_length=padding.PSS.MAX_LENGTH
-            ),
-            hashes.SHA256()
-        )
+        hasher = hashes.Hash(hashes.SHA256(), default_backend())
         chunk_bytes = 8192
         with open(image_file, 'rb') as f:
             chunk = f.read(chunk_bytes)
             while len(chunk) > 0:
-                signer.update(chunk)
+                hasher.update(chunk)
                 chunk = f.read(chunk_bytes)
-        signature = signer.finalize()
+        digest = hasher.finalize()
+        signature = self.private_key.sign(
+            digest,
+            padding.PSS(
+                mgf=padding.MGF1(hashes.SHA256()),
+                salt_length=padding.PSS.MAX_LENGTH
+            ),
+            utils.Prehashed(hashes.SHA256())
+        )
         signature_b64 = base64.b64encode(signature)
         return signature_b64
commit	31abad406269d988fca89f009d3a4e3b4a6ecfa8	[log] [tgz]
author	Zuul <zuul@review.openstack.org>	Wed Mar 07 08:21:14 2018 +0000
committer	Gerrit Code Review <review@openstack.org>	Wed Mar 07 08:21:14 2018 +0000
tree	f01615c4dadfc41514c28c97a33c750c75dbcbb5
parent	6700d9a3f6645c57331330d51cbc22340d302d05 [diff]
parent	ce8eb052675df867f6124ebcb9bd7c1e900a6217 [diff]