Daniel Barlow
4942285f6d
x509 cert version 3
2024-10-04 23:08:19 +01:00
Daniel Barlow
c4ea32ab1e
--sign-file signs a single CSR from command line then exits
2024-10-04 23:07:48 +01:00
Daniel Barlow
f3960c6b76
add basicConstraints
2024-10-04 23:07:03 +01:00
Daniel Barlow
b52bdfc813
copy requested extensions to certificate
2024-10-04 18:14:48 +01:00
Daniel Barlow
cc3e695174
upate lusossl patch
2024-10-02 00:26:21 +01:00
Daniel Barlow
a56a9ba013
handle CSRs with no attributes
2024-09-29 10:19:07 +01:00
Daniel Barlow
e4410323cf
add error handler
2024-09-27 19:47:31 +01:00
Daniel Barlow
d98f78db85
use https
2024-09-27 19:47:11 +01:00
Daniel Barlow
42aa1d8f0a
improve method name, use ncall for server.listen
2024-09-26 22:14:45 +01:00
Daniel Barlow
9ef1947211
check io.open return
2024-09-26 22:11:37 +01:00
Daniel Barlow
ba3795e3f2
bind to address provided on command line
...
bonus: and print an error if we couldn't
2024-09-26 22:08:29 +01:00
Daniel Barlow
32099b7541
parse command-line for options instead of hardcoding
...
note port is still hardcoded
2024-09-26 22:05:13 +01:00
Daniel Barlow
e410cef1f4
inline not-found function
2024-09-26 21:34:37 +01:00
Daniel Barlow
27f2718ec5
remove newline
2024-09-25 21:31:04 +01:00
Daniel Barlow
fe98a413ee
implement policy-based signing
...
the csr will be signed iff it has a challengePassword attribute
containing a value matching the contents of the "psk" file
yeah, UX could use a little work
2024-09-25 21:14:13 +01:00
Daniel Barlow
911faaa0ef
extract method send-error
2024-09-25 12:26:34 +01:00
Daniel Barlow
ad29d9e100
extract method make-headers
2024-09-25 12:23:49 +01:00
Daniel Barlow
8a7287d552
unhardcode the certificate serial number
2024-09-25 12:00:40 +01:00
Daniel Barlow
6ddae21727
initial commit
2024-09-25 10:20:14 +01:00
Daniel Barlow