diff options
| author | elijah <elijah@riseup.net> | 2012-11-02 19:15:21 -0700 |
|---|---|---|
| committer | elijah <elijah@riseup.net> | 2012-11-02 19:15:21 -0700 |
| commit | 5b888c525f0a0adf7c31503c51dfd7e2d5c28777 (patch) | |
| tree | bb6bae46705fb5f6e2297da523b8f2ce186bd5e1 | |
| parent | 6b62463c373eff46d6fa005011cabed92fce79e2 (diff) | |
| download | leap_cli-5b888c525f0a0adf7c31503c51dfd7e2d5c28777.tar.gz leap_cli-5b888c525f0a0adf7c31503c51dfd7e2d5c28777.tar.bz2 | |
explicitly set digest in server cert generation
| -rw-r--r-- | lib/leap_cli/commands/ca.rb | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/leap_cli/commands/ca.rb b/lib/leap_cli/commands/ca.rb index 9f1d42e..4304c0d 100644 --- a/lib/leap_cli/commands/ca.rb +++ b/lib/leap_cli/commands/ca.rb @@ -109,7 +109,7 @@ module LeapCli; module Commands key = read_file!(key) openssl_cert = OpenSSL::X509::Certificate.new(crt) cert = CertificateAuthority::Certificate.from_openssl(openssl_cert) - cert.key_material.private_key = OpenSSL::PKey::RSA.new(key) # second argument is password, if set + cert.key_material.private_key = OpenSSL::PKey::RSA.new(key, nil) # second argument is password, if set return cert end @@ -133,6 +133,9 @@ module LeapCli; module Commands # def server_signing_profile(node) { + #"digest" => "SHA512", + "digest" => "SHA256" + #"digest" => "SHA1", "extensions" => { "keyUsage" => { "usage" => ["digitalSignature", "keyAgreement"] |