python龙卷风中的SSL(https)

时间:2018-08-30 14:45:13

标签: python https ssl-certificate tornado

我通过以下方式创建了证书文件和密钥文件:

openssl req  -newkey rsa:2048 -nodes -keyout ho-madad.1.pem -out ho-madad.2.pem

我成功接收了两个文件。我将两个文件都放在我的Python项目的根目录中。

在PyCharm中,我有以下代码:

import os
import tornado.ioloop
import tornado.web
import tornado.httpserver
import http.server


class MainHandler(tornado.web.RequestHandler):
    def prepare(self):
    if self.request.protocol == "http":
        self.redirect("https://%s" % self.request.full_url() 
                 [len("http://"):], permanent=True)

def get(self):
    self.write("Hello, world")

application = tornado.web.Application([
    (r"/t", MainHandler),
])

http_server = tornado.httpserver.HTTPServer(application,
    ssl_options = {

    "certfile": os.path.join("ho-madad.2.pem"),
    "keyfile": os.path.join("ho-madad.1.pem"),
    }
)

if __name__ == '__main__':
    http_server.listen(443)
    tornado.ioloop.IOLoop.instance().start()

但是当我使用https://ho-madad/t从浏览器运行时 我收到此错误:

handle: <Handle BaseAsyncIOLoop._handle_events(356, 1)>
Traceback (most recent call last):
  File >"C:\Users\nisim\AppData\Local\Programs\Python\Python36\Lib\asyncio\events.py", 

line 145, in _run   self._callback(*self._args)

  File "C:\Users\nisim\Documents\EPM>ServerSideCode\EmpServerSide\venv\lib\site-ackages\tornado\platform\asyncio.py",

 line 122, in _handle_events   handler_func(fileobj, events)
  File "C:\Users\nisim\Documents\EPM >ServerSideCode\EmpServerSide\venv\lib\site-packages\tornado\stack_context.py", 
line 300, in null_wrapper   return fn(*args, **kwargs)
  File "C:\Users\nisim\Documents\EPM >ServerSideCode\EmpServerSide\venv\lib\site-packages\tornado\netutil.py", line >262, in accept_handler   callback(connection, address)
  File "C:\Users\nisim\Documents\EPM >ServerSideCode\EmpServerSide\venv\lib\site-packages\tornado\tcpserver.py", line >263, in _handle_connection do_handshake_on_connect=False)
  File "C:\Users\nisim\Documents\EPM >ServerSideCode\EmpServerSide\venv\lib\site-packages\tornado\netutil.py", line >565, in ssl_wrap_socket context = ssl_options_to_context(ssl_options)
  File "C:\Users\nisim\Documents\EPM >ServerSideCode\EmpServerSide\venv\lib\site-packages\tornado\netutil.py", line 540, in ssl_options_to_context
    context.load_cert_chain(ssl_options['certfile'], ssl_options.get('keyfile', >None))
ssl.SSLError: [SSL] PEM lib (_ssl.c:3393)

1 个答案:

答案 0 :(得分:0)

openssl req的默认输出是证书签名请求,而不是证书。添加-x509选项以生成自签名证书,或将签名请求提交给您选择的证书颁发机构以获取签名的CA。

相关问题
最新问题