[ClusterLabs] PCSD Certificate
emmanuel segura
emi2fast at gmail.com
Thu Jul 6 04:06:32 EDT 2017
I don't know what can happen, if the ssl expired, but looking in
/usr/lib/pcsd/ssl.rb I found the function.
def generate_cert_key_pair(server_name)
name = "/C=US/ST=MN/L=Minneapolis/O=pcsd/OU=pcsd/CN=#{server_name}"
ca = OpenSSL::X509::Name.parse(name)
key = OpenSSL::PKey::RSA.new(2048)
crt = OpenSSL::X509::Certificate.new
crt.version = 2
crt.serial = ((Time.now).to_f * 1000).to_i
crt.subject = ca
crt.issuer = ca
crt.public_key = key.public_key
crt.not_before = Time.now
crt.not_after = Time.now + 10 * 365 * 24 * 60 * 60 # 10 year
crt.sign(key, OpenSSL::Digest::SHA256.new)
return crt, key
end
2017-07-06 7:41 GMT+02:00 BUVI <buvi.giri07 at gmail.com>:
> Hi,
>
> I would like to know, why certiticate is created in pacemaker and what
> will happen if it expires ?
>
>
> Thanks and Regards,
>
>
> *Bhuvanesh Kumar .G*
> Linux and Email Administrator
>
>
>
> _______________________________________________
> Users mailing list: Users at clusterlabs.org
> http://lists.clusterlabs.org/mailman/listinfo/users
>
> Project Home: http://www.clusterlabs.org
> Getting started: http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
> Bugs: http://bugs.clusterlabs.org
>
>
--
.~.
/V\
// \\
/( )\
^`~'^
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clusterlabs.org/pipermail/users/attachments/20170706/982edc08/attachment-0003.html>
More information about the Users
mailing list