diff options
Diffstat (limited to 'common')
| -rw-r--r-- | common/userpref.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/common/userpref.c b/common/userpref.c index 3ae503a..f496fee 100644 --- a/common/userpref.c +++ b/common/userpref.c | |||
| @@ -603,7 +603,7 @@ userpref_error_t pair_record_generate_keys_and_certs(plist_t pair_record, key_da | |||
| 603 | gnutls_x509_crt_set_ca_status(root_cert, 1); | 603 | gnutls_x509_crt_set_ca_status(root_cert, 1); |
| 604 | gnutls_x509_crt_set_activation_time(root_cert, time(NULL)); | 604 | gnutls_x509_crt_set_activation_time(root_cert, time(NULL)); |
| 605 | gnutls_x509_crt_set_expiration_time(root_cert, time(NULL) + (60 * 60 * 24 * 365 * 10)); | 605 | gnutls_x509_crt_set_expiration_time(root_cert, time(NULL) + (60 * 60 * 24 * 365 * 10)); |
| 606 | gnutls_x509_crt_sign(root_cert, root_cert, root_privkey); | 606 | gnutls_x509_crt_sign2(root_cert, root_cert, root_privkey, GNUTLS_DIG_SHA1, 0); |
| 607 | 607 | ||
| 608 | gnutls_x509_crt_set_key(host_cert, host_privkey); | 608 | gnutls_x509_crt_set_key(host_cert, host_privkey); |
| 609 | gnutls_x509_crt_set_serial(host_cert, "\x00", 1); | 609 | gnutls_x509_crt_set_serial(host_cert, "\x00", 1); |
| @@ -612,7 +612,7 @@ userpref_error_t pair_record_generate_keys_and_certs(plist_t pair_record, key_da | |||
| 612 | gnutls_x509_crt_set_key_usage(host_cert, GNUTLS_KEY_KEY_ENCIPHERMENT | GNUTLS_KEY_DIGITAL_SIGNATURE); | 612 | gnutls_x509_crt_set_key_usage(host_cert, GNUTLS_KEY_KEY_ENCIPHERMENT | GNUTLS_KEY_DIGITAL_SIGNATURE); |
| 613 | gnutls_x509_crt_set_activation_time(host_cert, time(NULL)); | 613 | gnutls_x509_crt_set_activation_time(host_cert, time(NULL)); |
| 614 | gnutls_x509_crt_set_expiration_time(host_cert, time(NULL) + (60 * 60 * 24 * 365 * 10)); | 614 | gnutls_x509_crt_set_expiration_time(host_cert, time(NULL) + (60 * 60 * 24 * 365 * 10)); |
| 615 | gnutls_x509_crt_sign(host_cert, root_cert, root_privkey); | 615 | gnutls_x509_crt_sign2(host_cert, root_cert, root_privkey, GNUTLS_DIG_SHA1, 0); |
| 616 | 616 | ||
| 617 | /* export to PEM format */ | 617 | /* export to PEM format */ |
| 618 | size_t root_key_export_size = 0; | 618 | size_t root_key_export_size = 0; |
| @@ -720,7 +720,7 @@ userpref_error_t pair_record_generate_keys_and_certs(plist_t pair_record, key_da | |||
| 720 | } | 720 | } |
| 721 | 721 | ||
| 722 | gnutls_x509_crt_set_key_usage(dev_cert, GNUTLS_KEY_DIGITAL_SIGNATURE | GNUTLS_KEY_KEY_ENCIPHERMENT); | 722 | gnutls_x509_crt_set_key_usage(dev_cert, GNUTLS_KEY_DIGITAL_SIGNATURE | GNUTLS_KEY_KEY_ENCIPHERMENT); |
| 723 | gnutls_error = gnutls_x509_crt_sign(dev_cert, root_cert, root_privkey); | 723 | gnutls_error = gnutls_x509_crt_sign2(dev_cert, root_cert, root_privkey, GNUTLS_DIG_SHA1, 0); |
| 724 | if (GNUTLS_E_SUCCESS == gnutls_error) { | 724 | if (GNUTLS_E_SUCCESS == gnutls_error) { |
| 725 | /* if everything went well, export in PEM format */ | 725 | /* if everything went well, export in PEM format */ |
| 726 | size_t export_size = 0; | 726 | size_t export_size = 0; |