mumble/mumble-web2
6
0
Fork 0
Code Issues Pull Requests 5 Actions Packages Projects Releases Wiki Activity

internal gencert working

Browse Source
This commit is contained in:
Sam Sartor
2025-02-11 22:45:07 -07:00
parent a98bc825f6
commit 0b928c171f
2 changed files with 21 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files
proxy/src/main.rs
+8 -4
View File
@@ -121,10 +121,14 @@ async fn main() -> Result<()> {
(None, None) => {
info!("generating self-signed cert");
use rcgen::{CertificateParams, KeyPair, PKCS_ECDSA_P256_SHA256};
let key_pair = KeyPair::generate_for(&PKCS_ECDSA_P256_SHA256)?;
let mut cert_params = CertificateParams::new(config.cert_alt_names.clone())?;
cert_params.not_after = time::OffsetDateTime::now_utc() + time::Duration::days(12);
// FIXME: redo every <14 days
let mut dname = rcgen::DistinguishedName::new();
dname.push(rcgen::DnType::CommonName, "mumble-web self-signed");
let key_pair = rcgen::KeyPair::generate_for(&rcgen::PKCS_ECDSA_P256_SHA256)?;
let mut cert_params = rcgen::CertificateParams::new(config.cert_alt_names.clone())?;
cert_params.distinguished_name = dname;
cert_params.not_before = time::OffsetDateTime::now_utc();
cert_params.not_after = cert_params.not_before + time::Duration::days(12);
let cert = cert_params.self_signed(&key_pair)?;
let hash = hmac_sha256::Hash::hash(cert.der().as_ref());