Serial number randomization with improved portability.

No exception handling required this time.
2026-06-03 13:59:02 -04:00 · 2016-05-11 17:06:29 -04:00 · 2016-05-11 17:06:29 -04:00 · f7b10bb83e
commit f7b10bb83e
parent 4759bc9034
1 changed files with 2 additions and 5 deletions
--- a/acme/acme/crypto_util.py
+++ b/acme/acme/crypto_util.py
@ -1,4 +1,5 @@
 """Crypto utilities."""
+import binascii
 import contextlib
 import logging
 import re
@ -203,11 +204,7 @@ def gen_ss_cert(key, domains, not_before=None,
    """
    assert domains, "Must provide one or more hostnames for the cert."
    cert = OpenSSL.crypto.X509()
-    try:
-        cert.set_serial_number(int(OpenSSL.rand.bytes(16).encode("hex"), 16))
-    except AttributeError:
-        # pylint: disable=E1101
-        cert.set_serial_number(int.from_bytes(OpenSSL.rand.bytes(16), 'big'))
+    cert.set_serial_number(int(binascii.hexlify(OpenSSL.rand.bytes(16)), 16))
    cert.set_version(2)

    extensions = [