Sākums Izpētīt Palīdzība
Pierakstīties
svi
/
gostore
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: f81fe7cac9
Atzari Tagi
gostore
/
vendor
/
github.com
/
valyala
/
fasthttp
/
tls.go

tls.go 1.4 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. package fasthttp
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/rand"
    5. 

  5. 	"crypto/rsa"
    6. 

  6. 	"crypto/x509"
    7. 

  7. 	"crypto/x509/pkix"
    8. 

  8. 	"encoding/pem"
    9. 

  9. 	"math/big"
    10. 

  10. 	"time"
    11. 

  11. )
    12. 

  12. 

  13. // GenerateTestCertificate generates a test certificate and private key based on the given host.
    14. 

  14. func GenerateTestCertificate(host string) ([]byte, []byte, error) {
    15. 

  15. 	priv, err := rsa.GenerateKey(rand.Reader, 2048)
    16. 

  16. 	if err != nil {
    17. 

  17. 		return nil, nil, err
    18. 

  18. 	}
    19. 

  19. 

  20. 	serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
    21. 

  21. 	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
    22. 

  22. 	if err != nil {
    23. 

  23. 		return nil, nil, err
    24. 

  24. 	}
    25. 

  25. 

  26. 	cert := &x509.Certificate{
    27. 

  27. 		SerialNumber: serialNumber,
    28. 

  28. 		Subject: pkix.Name{
    29. 

  29. 			Organization: []string{"fasthttp test"},
    30. 

  30. 		},
    31. 

  31. 		NotBefore:             time.Now(),
    32. 

  32. 		NotAfter:              time.Now().Add(365 * 24 * time.Hour),
    33. 

  33. 		KeyUsage:              x509.KeyUsageCertSign | x509.KeyUsageDigitalSignature,
    34. 

  34. 		ExtKeyUsage:           []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth, x509.ExtKeyUsageClientAuth},
    35. 

  35. 		SignatureAlgorithm:    x509.SHA256WithRSA,
    36. 

  36. 		DNSNames:              []string{host},
    37. 

  37. 		BasicConstraintsValid: true,
    38. 

  38. 		IsCA:                  true,
    39. 

  39. 	}
    40. 

  40. 

  41. 	certBytes, err := x509.CreateCertificate(
    42. 

  42. 		rand.Reader, cert, cert, &priv.PublicKey, priv,
    43. 

  43. 	)
    44. 

  44. 

  45. 	p := pem.EncodeToMemory(
    46. 

  46. 		&pem.Block{
    47. 

  47. 			Type:  "PRIVATE KEY",
    48. 

  48. 			Bytes: x509.MarshalPKCS1PrivateKey(priv),
    49. 

  49. 		},
    50. 

  50. 	)
    51. 

  51. 

  52. 	b := pem.EncodeToMemory(
    53. 

  53. 		&pem.Block{
    54. 

  54. 			Type:  "CERTIFICATE",
    55. 

  55. 			Bytes: certBytes,
    56. 

  56. 		},
    57. 

  57. 	)
    58. 

  58. 

  59. 	return b, p, err
    60. 

  60. }
    61.