blob: 3d166ee647b4ab660ce8257dd7d8dff9051af944 [file] [log] [blame]
Jean-Paul Calderone897bc252008-02-18 20:50:23 -05001"""
2Create certificates and private keys for the 'simple' example.
3"""
4
5from OpenSSL import crypto
6from certgen import * # yes yes, I know, I'm lazy
Jim Shaver4ca59a12015-04-25 17:31:22 -04007cakey = createKeyPair(TYPE_RSA, 2048)
Jean-Paul Calderone897bc252008-02-18 20:50:23 -05008careq = createCertRequest(cakey, CN='Certificate Authority')
9cacert = createCertificate(careq, (careq, cakey), 0, (0, 60*60*24*365*5)) # five years
Jim Shaver4ca59a12015-04-25 17:31:22 -040010print('Creating Certificate Authority private key in \"simple/CA.pkey\"')
Jean-Paul Calderone897bc252008-02-18 20:50:23 -050011open('simple/CA.pkey', 'w').write(crypto.dump_privatekey(crypto.FILETYPE_PEM, cakey))
Jim Shaver4ca59a12015-04-25 17:31:22 -040012print('Creating Certificate Authority certificate in \"simple/CA.cert\"')
Jean-Paul Calderone897bc252008-02-18 20:50:23 -050013open('simple/CA.cert', 'w').write(crypto.dump_certificate(crypto.FILETYPE_PEM, cacert))
14for (fname, cname) in [('client', 'Simple Client'), ('server', 'Simple Server')]:
Jim Shaver4ca59a12015-04-25 17:31:22 -040015 pkey = createKeyPair(TYPE_RSA, 2048)
Jean-Paul Calderone897bc252008-02-18 20:50:23 -050016 req = createCertRequest(pkey, CN=cname)
17 cert = createCertificate(req, (cacert, cakey), 1, (0, 60*60*24*365*5)) # five years
Jim Shaver4ca59a12015-04-25 17:31:22 -040018 print('Creating Certificate %s private key in \"simple/%s.pkey\"' % (fname, fname))
Jean-Paul Calderone897bc252008-02-18 20:50:23 -050019 open('simple/%s.pkey' % (fname,), 'w').write(crypto.dump_privatekey(crypto.FILETYPE_PEM, pkey))
Jim Shaver4ca59a12015-04-25 17:31:22 -040020 print('Creating Certificate %s certificate in \"simple/%s.cert\"' % (fname, fname))
Jean-Paul Calderone897bc252008-02-18 20:50:23 -050021 open('simple/%s.cert' % (fname,), 'w').write(crypto.dump_certificate(crypto.FILETYPE_PEM, cert))