`ocsprest.console.fakessl`

fake cfssl for unit testing

Module Contents

Functions

`cligrp`(loglevel, verbose)	Fake CFSSL command for unit testing
`crl`()	generate a new Certificate Revocation List from Database
`serve`()	set up a HTTP server handles CF SSL requests
`gencert`()	generate a new key and signed certificate
`gencsr`()	generate a csr from a private key with existing CSR json specification or certificate
`ocspsign`()	signs an OCSP response for a given CA, cert, and status.
`certinfo`()	output certinfo about the given cert
`sign`()	signs a client cert with a host name by a given CA and CA key
`version`()	print out the version of CF SSL
`gencrl`()	generate a new Certificate Revocation List
`ocsprefresh`()	refreshes the ocsp_responses table
`print_defaults`()	print default configurations that can be used as a template
`revoke`()	revoke a certificate in the certificate store
`bundle`()	create a certificate bundle that contains the client cert
`ocspserve`()	set up an HTTP server that handles OCSP requests from either a file or directly from a database (see RFC 5019)
`scan`()	scan a host for issues
`genkey`()	generate a new key and CSR
`selfsign`()	generate a new self-signed key and signed certificate
`info`()	get info about a remote signer
`ocspdump`()	generates a series of concatenated OCSP responses
`fakessl_cli`()	cli entrypoint

Attributes

LOGGER[source]

cligrp(loglevel, verbose)[source]

Fake CFSSL command for unit testing

Parameters:

loglevel (int)
verbose (int)

Return type:

None

crl()[source]

generate a new Certificate Revocation List from Database

Return type:: None

serve()[source]

set up a HTTP server handles CF SSL requests

Return type:: None

gencert()[source]

generate a new key and signed certificate

Return type:: None

gencsr()[source]

generate a csr from a private key with existing CSR json specification or certificate

Return type:: None

ocspsign()[source]

signs an OCSP response for a given CA, cert, and status.

Return type:: None

certinfo()[source]

output certinfo about the given cert

Return type:: None

sign()[source]

signs a client cert with a host name by a given CA and CA key

Return type:: None

version()[source]

print out the version of CF SSL

Return type:: None

gencrl()[source]

generate a new Certificate Revocation List

Return type:: None

ocsprefresh()[source]

refreshes the ocsp_responses table

Return type:: None

print_defaults()[source]

print default configurations that can be used as a template

Return type:: None

revoke()[source]

revoke a certificate in the certificate store

Return type:: None

bundle()[source]

create a certificate bundle that contains the client cert

Return type:: None

ocspserve()[source]

set up an HTTP server that handles OCSP requests from either a file or directly from a database (see RFC 5019)

Return type:: None

scan()[source]

scan a host for issues

Return type:: None

genkey()[source]

generate a new key and CSR

Return type:: None

selfsign()[source]

generate a new self-signed key and signed certificate

Return type:: None

info()[source]

get info about a remote signer

Return type:: None

ocspdump()[source]

generates a series of concatenated OCSP responses

Return type:: None

fakessl_cli()[source]

cli entrypoint

Return type:: None