aboutsummaryrefslogtreecommitdiff
path: root/lib
diff options
context:
space:
mode:
authorelijah <elijah@riseup.net>2012-11-02 19:15:21 -0700
committerelijah <elijah@riseup.net>2012-11-02 19:15:21 -0700
commit5b888c525f0a0adf7c31503c51dfd7e2d5c28777 (patch)
treebb6bae46705fb5f6e2297da523b8f2ce186bd5e1 /lib
parent6b62463c373eff46d6fa005011cabed92fce79e2 (diff)
downloadleap_cli-5b888c525f0a0adf7c31503c51dfd7e2d5c28777.tar.gz
leap_cli-5b888c525f0a0adf7c31503c51dfd7e2d5c28777.tar.bz2
explicitly set digest in server cert generation
Diffstat (limited to 'lib')
-rw-r--r--lib/leap_cli/commands/ca.rb5
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/leap_cli/commands/ca.rb b/lib/leap_cli/commands/ca.rb
index 9f1d42e..4304c0d 100644
--- a/lib/leap_cli/commands/ca.rb
+++ b/lib/leap_cli/commands/ca.rb
@@ -109,7 +109,7 @@ module LeapCli; module Commands
key = read_file!(key)
openssl_cert = OpenSSL::X509::Certificate.new(crt)
cert = CertificateAuthority::Certificate.from_openssl(openssl_cert)
- cert.key_material.private_key = OpenSSL::PKey::RSA.new(key) # second argument is password, if set
+ cert.key_material.private_key = OpenSSL::PKey::RSA.new(key, nil) # second argument is password, if set
return cert
end
@@ -133,6 +133,9 @@ module LeapCli; module Commands
#
def server_signing_profile(node)
{
+ #"digest" => "SHA512",
+ "digest" => "SHA256"
+ #"digest" => "SHA1",
"extensions" => {
"keyUsage" => {
"usage" => ["digitalSignature", "keyAgreement"]