database/mariadb-connector-c
1
0
Fork 0
mirror of https://github.com/mariadb-corporation/mariadb-connector-c.git synced 2025-08-05 15:55:58 +03:00
Code Activity

CONC-413: Add test for checking IP in peer cert SAN

Browse Source
This commit is contained in:
Georg Richter
2024-12-09 13:13:22 +01:00
parent a7802f7979
commit 80ec04f116
2 changed files with 36 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
unittest/libmariadb/tls_server.py
View File

@@ -42,6 +42,7 @@ class TlsServer():
create_crl=False,
emailAddress="emailAddress",
commonName="commonName",
SAN=None,
countryName="NT",
localityName="localityName",
stateOrProvinceName="stateOrProvinceName",
@@ -76,6 +77,13 @@ class TlsServer():
cert.gmtime_adj_notBefore(validityStartInSeconds)
cert.gmtime_adj_notAfter(validityEndInSeconds)
cert.set_issuer(cert.get_subject())
if SAN:
print(SAN)
san_list= [SAN,]
cert.add_extensions([
crypto.X509Extension(
b"subjectAltName", False, "," . join(san_list).encode()
)])
cert.set_pubkey(k)
cert.sign(k, 'sha512')
with open(CERT_FILE, "wt") as f: