mirror of
https://github.com/certbot/certbot.git
synced 2026-06-19 05:29:23 -04:00
afa7e3fb82
* Revert "Revert "switch signature verification to use pure cryptography (#6000)" (#6074)"
This reverts commit
|
||
|---|---|---|
| .. | ||
| sample-archive | ||
| cert-5sans_512.pem | ||
| cert-nosans_nistp256.pem | ||
| cert-san_512.pem | ||
| cert_512.pem | ||
| cert_512_bad.pem | ||
| cert_2048.pem | ||
| cert_fullchain_2048.pem | ||
| cli.ini | ||
| csr-6sans_512.conf | ||
| csr-6sans_512.pem | ||
| csr-nonames_512.pem | ||
| csr-nosans_512.conf | ||
| csr-nosans_512.pem | ||
| csr-nosans_nistp256.pem | ||
| csr-san_512.pem | ||
| csr_512.der | ||
| csr_512.pem | ||
| nistp256_key.pem | ||
| os-release | ||
| README | ||
| rsa256_key.pem | ||
| rsa512_key.pem | ||
| rsa2048_key.pem | ||
| sample-renewal-ancient.conf | ||
| sample-renewal.conf | ||
| webrootconftest.ini | ||
The following command has been used to generate test keys:
for x in 256 512 2048; do openssl genrsa -out rsa${k}_key.pem $k; done
and for the CSR PEM (Certificate Signing Request):
openssl req -new -out csr-Xsans_X.pem -key rsa512_key.pem [-config csr-Xsans_X.conf | -subj '/CN=example.com'] [-outform DER > csr_X.der]
and for the certificate:
openssl req -new -out cert_X.pem -key rsaX_key.pem -subj '/CN=example.com' -x509 [-outform DER > cert_X.der]