[pyOpenSSL] Arbitrary extension to X.509 certificate
philip.kershaw at stfc.ac.uk
philip.kershaw at stfc.ac.uk
Thu Aug 23 12:39:54 CEST 2012
Hi all,
I'd like to find out if pyOpenSSL supports the addition of arbitrary certificate extensions. I see here that you can add extensions:
http://stackoverflow.com/questions/7279282/extract-the-value-of-a-x-509-certificate-custom-extension-using-pyopenssl
But if I try this I get:
>>> from OpenSSL import crypto
>>> ext = crypto.X509Extension('1.2.3.4', 0, 'myextension')
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
OpenSSL.crypto.Error: [('X509 V3 routines', 'DO_EXT_NCONF', 'unknown extension name'), ('X509 V3 routines', 'X509V3_EXT_nconf', 'error in extension')]
If it is not currently possible is there some means that the relevant OpenSSL API calls needed could be exposed through pyOpenSSL?
Thanks,
Phil
--
Scanned by iCritical.
More information about the pyopenssl-users
mailing list