x509: Make certificates represented as objects

https://pagure.io/freeipa/issue/4985

Reviewed-By: Fraser Tweedale <ftweedal@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Martin Basti <mbasti@redhat.com>

ipaserver/install/dsinstance.py

@@ -234,7 +234,7 @@ class DsInstance(service.Service):
         self.pkcs12_info = None
         self.cacert_name = None
         self.ca_is_configured = True
-        self.dercert = None
+        self.cert = None
         self.idstart = None
         self.idmax = None
         self.ca_subject = None
@@ -791,7 +791,7 @@ class DsInstance(service.Service):
 
             # We only handle one server cert
             self.nickname = server_certs[0][0]
-            self.dercert = dsdb.get_cert_from_db(self.nickname, pem=False)
+            self.cert = dsdb.get_cert_from_db(self.nickname)
 
             if self.ca_is_configured:
                 dsdb.track_server_cert(
@@ -834,7 +834,7 @@ class DsInstance(service.Service):
             api.Backend.ldap2.disconnect()
             api.Backend.ldap2.connect()
 
-            self.dercert = dsdb.get_cert_from_db(self.nickname, pem=False)
+            self.cert = dsdb.get_cert_from_db(self.nickname)
 
             if prev_helper is not None:
                 self.add_cert_to_service()
@@ -888,12 +888,12 @@ class DsInstance(service.Service):
 
         nicknames = dsdb.find_root_cert(self.cacert_name)[:-1]
         for nickname in nicknames:
-            cert = dsdb.get_cert_from_db(nickname, pem=False)
+            cert = dsdb.get_cert_from_db(nickname)
             certstore.put_ca_cert_nss(conn, self.suffix, cert, nickname,
                                       trust_flags[nickname])
 
         nickname = self.cacert_name
-        cert = dsdb.get_cert_from_db(nickname, pem=False)
+        cert = dsdb.get_cert_from_db(nickname)
         cacert_flags = trust_flags[nickname]
         if self.setup_pkinit:
             cacert_flags = TrustFlags(