Deduplicate Issuer construction

djc · djc · commit aff6f7411ee7 · 2025-04-27T13:29:53.000Z
diff --git a/rcgen/src/certificate.rs b/rcgen/src/certificate.rs
@@ -143,13 +143,7 @@ impl CertificateParams {
 		issuer: &CertificateParams,
 		issuer_key: &impl SigningKey,
 	) -> Result<Certificate, Error> {
-		let issuer = Issuer {
-			distinguished_name: &issuer.distinguished_name,
-			key_identifier_method: &issuer.key_identifier_method,
-			key_usages: &issuer.key_usages,
-			key_pair: issuer_key,
-		};
-
+		let issuer = Issuer::new(&issuer, issuer_key);
 		Ok(Certificate {
 			der: self.serialize_der_with_signer(public_key, issuer)?,
 		})
@@ -160,13 +154,7 @@ impl CertificateParams {
 	/// The returned [`Certificate`] may be serialized using [`Certificate::der`] and
 	/// [`Certificate::pem`].
 	pub fn self_signed(&self, key_pair: &impl SigningKey) -> Result<Certificate, Error> {
-		let issuer = Issuer {
-			distinguished_name: &self.distinguished_name,
-			key_identifier_method: &self.key_identifier_method,
-			key_usages: &self.key_usages,
-			key_pair,
-		};
-
+		let issuer = Issuer::new(self, key_pair);
 		Ok(Certificate {
 			der: self.serialize_der_with_signer(key_pair, issuer)?,
 		})
diff --git a/rcgen/src/crl.rs b/rcgen/src/crl.rs
@@ -193,13 +193,7 @@ impl CertificateRevocationListParams {
 			return Err(Error::InvalidCrlNextUpdate);
 		}
 
-		let issuer = Issuer {
-			distinguished_name: &issuer.distinguished_name,
-			key_identifier_method: &issuer.key_identifier_method,
-			key_usages: &issuer.key_usages,
-			key_pair: issuer_key,
-		};
-
+		let issuer = Issuer::new(issuer, issuer_key);
 		if !issuer.key_usages.is_empty() && !issuer.key_usages.contains(&KeyUsagePurpose::CrlSign) {
 			return Err(Error::IssuerNotCrlSigner);
 		}
diff --git a/rcgen/src/csr.rs b/rcgen/src/csr.rs
@@ -205,13 +205,7 @@ impl CertificateSigningRequestParams {
 		issuer: &CertificateParams,
 		issuer_key: &impl SigningKey,
 	) -> Result<Certificate, Error> {
-		let issuer = Issuer {
-			distinguished_name: &issuer.distinguished_name,
-			key_identifier_method: &issuer.key_identifier_method,
-			key_usages: &issuer.key_usages,
-			key_pair: issuer_key,
-		};
-
+		let issuer = Issuer::new(issuer, issuer_key);
 		Ok(Certificate {
 			der: self
 				.params
diff --git a/rcgen/src/lib.rs b/rcgen/src/lib.rs
@@ -139,6 +139,17 @@ struct Issuer<'a, S> {
 	key_pair: &'a S,
 }
 
+impl<'a, S: SigningKey> Issuer<'a, S> {
+	fn new(params: &'a CertificateParams, key_pair: &'a S) -> Self {
+		Self {
+			distinguished_name: &params.distinguished_name,
+			key_identifier_method: &params.key_identifier_method,
+			key_usages: &params.key_usages,
+			key_pair,
+		}
+	}
+}
+
 // https://tools.ietf.org/html/rfc5280#section-4.1.1
 
 // Example certs usable as reference:

Original file line number	Diff line number	Diff line change
`@@ -193,13 +193,7 @@ impl CertificateRevocationListParams {`
`193`	`193`	`return Err(Error::InvalidCrlNextUpdate);`
`194`	`194`	`}`
`195`	`195`
`196`		`- let issuer = Issuer {`
`197`		`- distinguished_name: &issuer.distinguished_name,`
`198`		`- key_identifier_method: &issuer.key_identifier_method,`
`199`		`- key_usages: &issuer.key_usages,`
`200`		`- key_pair: issuer_key,`
`201`		`- };`
`202`		`-`
	`196`	`+ let issuer = Issuer::new(issuer, issuer_key);`
`203`	`197`	`if !issuer.key_usages.is_empty() && !issuer.key_usages.contains(&KeyUsagePurpose::CrlSign) {`
`204`	`198`	`return Err(Error::IssuerNotCrlSigner);`
`205`	`199`	`}`