subprocess - Automate stdin with Python using stdin.write() -

-

i trying automate setup of generating self-signed ssl certificate. code:

#!/usr/bin/env python    import subprocess  pass_phrase = 'example' common_name = 'example.com' webmaster_email = 'webmaster@example.com'  proc = subprocess.popen(['openssl', 'req', '-x509', '-newkey', 'rsa:2048', '-rand', '/dev/urandom', '-keyout', '/etc/pki/tls/private/server.key', '-out', '/etc/pki/tls/certs/server.crt', '-days', '180'], stdout=subprocess.pipe, stdin=subprocess.pipe, stderr=subprocess.pipe)  in range(2):     proc.stdin.write(pass_phrase) in range(5):     proc.stdin.write('.') proc.stdin.write(common_name) proc.stdin.write(webmaster_email) proc.stdin.flush()  stdout, stderr = proc.communicate()

when run it, still prompts me pem passphrase, returns error:

country name (2 letter code) [xx]:weird input :-( problems making certificate request

it should feed in passphrase above , not prompt me anything. ideas what's going wrong?

ps. know pexpect. please don't suggest me.

edit: upon further investigation, i've figured out. if don't specify -nodes, private key encrypted. so, openssl prompt pem passphrase immediately. means order of stdin.write() gets messed up. guess alternative use -nodes , encrypt private key later.

there several errors in code e.g., no newlines sent child process.

the main issue openssl expects pass phrase directly terminal (like getpass.getpass() in python). see first reason in why not use pipe (popen())?:

first application may bypass stdout , print directly controlling tty. ssh when asks password. why cannot redirect password prompt because not go through stdout or stderr.

pexpect provides pseudo-tty works fine in case:

#!/usr/bin/env python import sys pexpect import spawn, eof  pass_phrase = "dummy pass phr6se" common_name = "example.com" email = "username@example.com" keyname, certname = 'server.key', 'server.crt'  cmd = 'openssl req -x509 -newkey rsa:2048 -rand /dev/urandom '.split() cmd += ['-keyout', keyname, '-out', certname, '-days', '180']  child = spawn(cmd[0], cmd[1:], timeout=10)     child.logfile_read = sys.stdout # show openssl output debugging  _ in range(2):     child.expect('pass phrase:')     child.sendline(pass_phrase) _ in range(5):     child.sendline('.') child.sendline(common_name) child.sendline(email) child.expect(eof) child.close() sys.exit(child.status)

an alternative try use -passin option instruct openssl pass phrase different source (stdin, file, pipe, envvar, command-line). don't know whether works openssl req command.


Comments

Post a Comment

Popular posts from this blog

How to access named pipes using JavaScript in Firefox add-on? -

-
i'm trying access named pipe in firefox add-on. code, based on solution 2 this codeproject question, is: var file = components.classes["@mozilla.org/file/local;1"].createinstance(components.interfaces.nsilocalfile); file.initwithpath("\\\\.\\pipe\\test"); var text = "some text written"; var writer = components.classes["@mozilla.org/network/file-output-stream;1"].createinstance(components.interfaces.nsifileoutputstream); // open file read/write access, , create if not exist. writer.init (file, 0x04 | 0x08, -1, 0); writer.write (text, text.length); writer.flush (); writer.close (); when run firefox scratchpad, get: /* exception: component returned failure code: 0x80520012 (ns_error_file_not_found) [nsifileoutputstream.init] @6 */ line 6 line call writer.init. i've played passing different flags writer.init, no luck. i'm able write normal file path code, not named pipe path. i've been searching more information of da...
Read more

multithreading - OPAL (Open Phone Abstraction Library) Transport not terminated when reattaching thread? -

-
i in process of writing application using opal makes h323 calls. have looked online number of working examples , have managed put resembles should like, @ present able call external ip via application when accept call craps out , dies. leaving me with: 0:12.949 setupcall:8752 sert.cxx(259) assertion fail: transport not terminated when reattaching thread , file d:\voip\software\opal\src\opal\transports.cxx, line 1021 passertfunc(0xde3f88, 0xffffffffd228226f, 0, 0) + 0x82 passertfunc(0x10d6e5f8, 0x3fd, 0, 0x10d6eb98) + 0x15b opaltransport::attachthread(0xde5870, 0xffffffffd22fc76b, 0, 0) + 0x96 h323connection::setupconnection(0xffffffffd22fc713, 0, 0, 0xde6ea8) + 0x196 asynchcallsetup(0x10d3572c, 0, 0, 0xdd0108) + 0x7c pthread1arg<psafeptr<opalconnection,psafeptrbase> >::main(0xffffffffd2282faf from have deduced, perhaps incorrectly if there thread lock issue caused (possibly arising fact application sending expected h323 call, throwing in c...
Read more

node.js - req param returns an empty array -

-
i using node.js , mongodb geolocation app , req param returns empty array exports.findpressure = function(req, res) { var queryobject = req.param('q'); console.log(queryobject); db.collection('pressure', function(err, collection) { collection.find( { loc: { $near :[ req.param('q') ] , $maxdistance : 5 }},{"value" : 1, _id : 0}) .sort({_id : -1}).limit(1).toarray(function(err, items) { res.send(items); }); }); }; the longitude , latitude values displayed in console listening on port 3000... connected 'weather' database 8.9068256,52.019347499999995 /pressure?q=8.9068256,52.019347499999995 200 27ms - 2b the url follows http://localhost:3000/pressure?q=8.9068256,52.019347499999995 if use values 8.9068256,52.019347499999995 getting value database if use req.param('q') returning empty array you seem passing values part of query string. req.query.q should contain comma-s...
Read more