libsec: restore old behaviour for generating self signed cert
This commit is contained in:
parent
e9aed242cc
commit
0339e9ac44
|
@ -2658,6 +2658,10 @@ mkextensions(char *alts, int req)
|
||||||
mkel(mkoid((Ints*)&oid_extensionRequest),
|
mkel(mkoid((Ints*)&oid_extensionRequest),
|
||||||
mkel(mkset(xl), nil))), nil);
|
mkel(mkset(xl), nil))), nil);
|
||||||
}
|
}
|
||||||
|
if(req)
|
||||||
|
xl = mkel(mkcont(0, xl), nil);
|
||||||
|
else if(xl != nil)
|
||||||
|
xl = mkel(mkcont(3, xl), nil);
|
||||||
return xl;
|
return xl;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -2777,7 +2781,7 @@ X509rsagen(RSApriv *priv, char *subj, ulong valid[2], int *certlen)
|
||||||
mkel(mkalg(ALG_rsaEncryption),
|
mkel(mkalg(ALG_rsaEncryption),
|
||||||
mkel(mkbits(pkbytes->data, pkbytes->len),
|
mkel(mkbits(pkbytes->data, pkbytes->len),
|
||||||
nil))),
|
nil))),
|
||||||
mkel(mkcont(3, mkextensions(alts, 0)), nil)))))))));
|
mkextensions(alts, 0)))))))));
|
||||||
freebytes(pkbytes);
|
freebytes(pkbytes);
|
||||||
if(encode(e, &certinfobytes) != ASN_OK)
|
if(encode(e, &certinfobytes) != ASN_OK)
|
||||||
goto errret;
|
goto errret;
|
||||||
|
@ -2843,7 +2847,7 @@ X509rsareq(RSApriv *priv, char *subj, int *certlen)
|
||||||
mkel(mkalg(ALG_rsaEncryption),
|
mkel(mkalg(ALG_rsaEncryption),
|
||||||
mkel(mkbits(pkbytes->data, pkbytes->len),
|
mkel(mkbits(pkbytes->data, pkbytes->len),
|
||||||
nil))),
|
nil))),
|
||||||
mkel(mkcont(0, mkextensions(alts, 1)), nil)))));
|
mkextensions(alts, 1)))));
|
||||||
freebytes(pkbytes);
|
freebytes(pkbytes);
|
||||||
if(encode(e, &certinfobytes) != ASN_OK)
|
if(encode(e, &certinfobytes) != ASN_OK)
|
||||||
goto errret;
|
goto errret;
|
||||||
|
|
Loading…
Reference in a new issue