This repository has been archived by the owner on Nov 30, 2017. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 16
/
init.go
executable file
·94 lines (77 loc) · 2.51 KB
/
init.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
/*
Copyright IBM Corp. 2016 All Rights Reserved.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package server
import (
"encoding/json"
"errors"
"io/ioutil"
"github.com/cloudflare/cfssl/cli"
"github.com/cloudflare/cfssl/csr"
"github.com/cloudflare/cfssl/initca"
"github.com/cloudflare/cfssl/log"
"github.com/hyperledger/fabric/core/crypto/bccsp/factory"
)
var initUsageText = `cop server init CSRJSON -- generates a new private key and self-signed certificate
Usage:
cop server init CSRJSON
Arguments:
CSRJSON: JSON file containing the request, use '-' for reading JSON from stdin
Flags:
`
var initFlags = []string{"remote", "u"}
// initMain creates the private key and self-signed certificate needed to start COP Server
func initMain(args []string, c cli.Config) (err error) {
csrFile, _, err := cli.PopFirstArgument(args)
if err != nil {
return errors.New(err.Error())
}
csrFileBytes, err := cli.ReadStdin(csrFile)
if err != nil {
return errors.New(err.Error())
}
req := csr.CertificateRequest{
KeyRequest: csr.NewBasicKeyRequest(),
}
err = json.Unmarshal(csrFileBytes, &req)
if err != nil {
return errors.New(err.Error())
}
bccsp, err := factory.GetDefault()
if err != nil {
return errors.New(err.Error())
}
_ = bccsp
//FIXME: replace the key generation and storage with BCCSP
c.IsCA = true
var key, cert []byte
cert, _, key, err = initca.New(&req)
if err != nil {
return errors.New(err.Error())
}
s := new(Server)
COPHome, err := s.CreateHome()
if err != nil {
return errors.New(err.Error())
}
certerr := ioutil.WriteFile(COPHome+"/server-cert.pem", cert, 0755)
if certerr != nil {
log.Fatal("Error writing server-cert.pem to $COPHome directory")
}
keyerr := ioutil.WriteFile(COPHome+"/server-key.pem", key, 0755)
if keyerr != nil {
log.Fatal("Error writing server-key.pem to $COPHome directory")
}
return nil
}
// InitServerCommand assembles the definition of Command 'genkey -initca CSRJSON'
var InitServerCommand = &cli.Command{UsageText: initUsageText, Flags: initFlags, Main: initMain}