diff options
| author | fengweihao <[email protected]> | 2019-01-19 14:51:29 +0600 |
|---|---|---|
| committer | fengweihao <[email protected]> | 2019-01-19 14:51:29 +0600 |
| commit | 457e7d1829947639ceff4f99fc9df910234d8678 (patch) | |
| tree | 86cb0c2d6a0f851c1200f922c6b9fa2ca8746dd6 | |
| parent | 96d7507d64a313ffa335d2067baed27362dfed29 (diff) | |
1.读取CRL后添加URI:证书添加识别字段
2.修改本地maat中读取table表中CRL字段
| -rw-r--r-- | conf/pxy_obj_keyring.json | 2 | ||||
| -rw-r--r-- | src/cert_session.c | 5 |
2 files changed, 5 insertions, 2 deletions
diff --git a/conf/pxy_obj_keyring.json b/conf/pxy_obj_keyring.json index 6545772..baa6f9b 100644 --- a/conf/pxy_obj_keyring.json +++ b/conf/pxy_obj_keyring.json @@ -73,7 +73,7 @@ { "table_name": "PXY_OBJ_KEYRING", "table_content": [ - "1\t1\tname_01\troot\t/test/01\t/test/01\t15\trsa2048\tURI:http://www.test.com\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer", + "1\t1\tname_01\troot\t/test/01\t/test/01\t15\trsa2048\thttp://www.test.com\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer", "2\t1\tname_02\troot\t/test/01\t/test/01\t90\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer", "3\t1\tname_03\troot\t/test/01\t/test/01\t30\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer", "4\t1\tname_04\troot\t/test/01\t/test/01\t30\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer", diff --git a/src/cert_session.c b/src/cert_session.c index de85b29..dc70d6a 100644 --- a/src/cert_session.c +++ b/src/cert_session.c @@ -586,8 +586,11 @@ x509_modify_by_cert(X509 *cacrt, EVP_PKEY *cakey, X509 *origcrt, char *pkey, if (crl != NULL && STRCMP(crl, "null")){ mesa_runtime_log(RLOG_LV_INFO, MODULE_NAME, "Sign certificate the CRL is %s", crl); + /**Add URI:**/ + char _crl[516] = {0}; + snprintf(_crl, 516, "%s%s", "URI:", crl); if (ssl_x509_v3ext_add(&ctx, crt, "crlDistributionPoints", - crl) == -1) { + _crl) == -1) { goto errout; } }else{ |