本文详细介绍了在Go 1.16中如何生成CA证书、私钥和服务器证书,包括openssl工具的使用步骤,以及注意事项。重点在于Ubuntu 16.04下openssl.cnf文件的配置。
💬
生活总是这样。
💻
最近在看 grpc tls 认证,发现使用 go1.16 版本证书的生成相较之前会麻烦挺多,证书生成参考
# 生成 ca 证书密钥
ronething at ronething-dell-ubuntu in ~/Documents/grpc-sample/tls
$ openssl genrsa -out ca.key 2048
# 生成 ca 证书公钥
ronething at ronething-dell-ubuntu in ~/Documents/grpc-sample/tls
$ openssl req -new -x509 -days 3650 -key ca.key -out ca.pem
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:CN
State or Province Name (full name) [Some-State]:GZ
Locality Name (eg,
最低0.47元/天 解锁文章
扫一扫
659
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
