Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- from OpenSSL import crypto
- from datetime import datetime
- from socket import gethostname
- FTYPE = crypto.FILETYPE_PEM
- k = crypto.PKey()
- k.generate_key(crypto.TYPE_RSA, 2048)
- cert = crypto.X509()
- cert.get_subject().CN = gethostname()
- now = datetime.now().strftime("%Y%m%d%H%M%SZ")
- cert.add_extensions([crypto.X509Extension('basicConstraints'.encode(), True, 'CA:true'.encode())])
- cert.set_issuer(cert.get_subject())
- cert.set_pubkey(k)
- cert.sign(k, 'sha1')
- # This fails and cannot load!!!
- caCert = crypto.load_certificate(FTYPE, crypto.dump_certificate(FTYPE, cert))
Add Comment
Please, Sign In to add comment