dan
/
certifix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add basicConstraints

This commit is contained in:
Daniel Barlow 2024-10-04 23:05:48 +01:00
parent cb84c20e73
commit f3960c6b76
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
main.fnl
View File

@ -6,6 +6,7 @@
(local ctx (require :openssl.ssl.context)) (local ctx (require :openssl.ssl.context))
(local csr (require :openssl.x509.csr)) (local csr (require :openssl.x509.csr))
(local x509 (require :openssl.x509)) (local x509 (require :openssl.x509))
(local extension (require :openssl.x509.extension))
(local pkey (require :openssl.pkey)) (local pkey (require :openssl.pkey))
(local bignum (require :openssl.bignum)) (local bignum (require :openssl.bignum))
@ -93,7 +94,9 @@
(for [i 1 (csr:getRequestedExtensionCount) 1] (for [i 1 (csr:getRequestedExtensionCount) 1]
(let [ext (csr:getRequestedExtension i)] (let [ext (csr:getRequestedExtension i)]
(crt:addExtension ext))) (crt:addExtension ext)))
(doto crt (: :sign ca-key)))) (doto crt
(: :addExtension (extension.new "basicConstraints" "critical,CA:FALSE"))
(: :sign ca-key))))
(fn approve-request? [csr] (fn approve-request? [csr]
(let [challengePassword (csr:getAttribute :challengePassword)] (let [challengePassword (csr:getAttribute :challengePassword)]