alexvanin/certificates
1
0
Fork 0
forked from TrueCloudLab/certificates
Code Pull requests Activity

Add AuthorityKeyId to root certificate.

Browse source 
Fix error string.
This commit is contained in:
Mariano Cano 2020-05-19 13:05:55 -07:00
parent 3e40cb89a7
commit 97508ca215
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
cmd/step-yubikey-init/main.go
View file

@ -187,6 +187,7 @@ func createPKI(k kms.KeyManager, c Config) error {
Subject: pkix.Name{CommonName: "YubiKey Smallstep Root"}, Subject: pkix.Name{CommonName: "YubiKey Smallstep Root"},
SerialNumber: mustSerialNumber(), SerialNumber: mustSerialNumber(),
SubjectKeyId: mustSubjectKeyID(resp.PublicKey), SubjectKeyId: mustSubjectKeyID(resp.PublicKey),
AuthorityKeyId: mustSubjectKeyID(resp.PublicKey),
} }
b, err := x509.CreateCertificate(rand.Reader, template, template, resp.PublicKey, signer) b, err := x509.CreateCertificate(rand.Reader, template, template, resp.PublicKey, signer)
@ -225,7 +226,7 @@ func createPKI(k kms.KeyManager, c Config) error {
if c.RootOnly { if c.RootOnly {
priv, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader) priv, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil { if err != nil {
return errors.Wrap(err, "error creating intermediate public key") return errors.Wrap(err, "error creating intermediate key")
} }
pass, err := ui.PromptPasswordGenerate("What do you want your password to be? [leave empty and we'll generate one]", pass, err := ui.PromptPasswordGenerate("What do you want your password to be? [leave empty and we'll generate one]",