opensource/filestash
1
0
Fork 0
mirror of https://github.com/mickael-kerjean/filestash.git synced 2025-10-31 01:58:11 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
filestash/server/common/ssl/generate.go
Mickael Kerjean 548b057d6a fix (selfsigned): self signed certificate issues
2022-09-15 22:38:54 +10:00

50 lines
1.1 KiB
Go
Raw Blame History

package ssl
import (
"crypto/rsa"
"crypto/tls"
"crypto/x509"
. "github.com/mickael-kerjean/filestash/server/common"
)
func GenerateSelfSigned() (tls.Certificate, *x509.CertPool, error) {
var err error
var key *rsa.PrivateKey
var root *x509.Certificate
var keyPEM []byte
var certPEM []byte
var TLSCert tls.Certificate
if key, keyPEM, err = GetPrivateKey(); err != nil {
Log.Error("[https] key_generation %v", err)
Clear()
return TLSCert, nil, err
}
if root, err = GetRoot(); err != nil {
Log.Error("[https] root_certificate %v", err)
Clear()
return TLSCert, nil, err
}
if _, certPEM, err = GetCertificate(key, root); err != nil {
Log.Error("[https] x509_certificate %v", err)
Clear()
return TLSCert, nil, err
}
if TLSCert, err = tls.X509KeyPair(certPEM, keyPEM); err != nil {
Log.Error("[https] tls_certificate %v", err)
Clear()
return TLSCert, nil, err
}
rootCAs, _ := x509.SystemCertPool()
if rootCAs == nil {
rootCAs = x509.NewCertPool()
}
if ok := rootCAs.AppendCertsFromPEM([]byte(certPEM)); ok == false {
Log.Error("[https] tls_client")
Clear()
return TLSCert, rootCAs, err
}
return TLSCert, rootCAs, nil
}
Reference in New Issue View Git Blame Copy Permalink