aboutsummaryrefslogtreecommitdiffstats
path: root/netlib/certutils.py
diff options
context:
space:
mode:
authorPaul <paulhooijenga@gmail.com>2013-09-24 21:18:41 +0200
committerPaul <paulhooijenga@gmail.com>2013-09-24 21:18:41 +0200
commit98f765f693fc4fa7245c3179da1d791661ed502a (patch)
tree61f2ad6e3caf78ffce3f3d99d3a8a3205dd2a4dd /netlib/certutils.py
parent0fed8dc8eb2440a35b5ce95ba7e7360441ff677c (diff)
downloadmitmproxy-98f765f693fc4fa7245c3179da1d791661ed502a.tar.gz
mitmproxy-98f765f693fc4fa7245c3179da1d791661ed502a.tar.bz2
mitmproxy-98f765f693fc4fa7245c3179da1d791661ed502a.zip
Don't create a certificate request when creating a dummy cert
Diffstat (limited to 'netlib/certutils.py')
-rw-r--r--netlib/certutils.py12
1 files changed, 2 insertions, 10 deletions
diff --git a/netlib/certutils.py b/netlib/certutils.py
index 7dcb5450..60e41427 100644
--- a/netlib/certutils.py
+++ b/netlib/certutils.py
@@ -92,24 +92,16 @@ def dummy_cert(ca, commonname, sans):
ca = OpenSSL.crypto.load_certificate(OpenSSL.crypto.FILETYPE_PEM, raw)
key = OpenSSL.crypto.load_privatekey(OpenSSL.crypto.FILETYPE_PEM, raw)
- req = OpenSSL.crypto.X509Req()
- subj = req.get_subject()
- subj.CN = commonname
- req.set_pubkey(ca.get_pubkey())
- req.sign(key, "sha1")
- if ss:
- req.add_extensions([OpenSSL.crypto.X509Extension("subjectAltName", True, ss)])
-
cert = OpenSSL.crypto.X509()
cert.gmtime_adj_notBefore(-3600)
cert.gmtime_adj_notAfter(60 * 60 * 24 * 30)
cert.set_issuer(ca.get_subject())
- cert.set_subject(req.get_subject())
+ cert.get_subject().CN = commonname
cert.set_serial_number(int(time.time()*10000))
if ss:
cert.set_version(2)
cert.add_extensions([OpenSSL.crypto.X509Extension("subjectAltName", True, ss)])
- cert.set_pubkey(req.get_pubkey())
+ cert.set_pubkey(ca.get_pubkey())
cert.sign(key, "sha1")
return SSLCert(cert)
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-08 10:50:23 +0000