]> git.proxmox.com Git - pve-manager.git/commit
projects / pve-manager.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6159470) | patch
renew pve-ssl.pem when it nearly expires
authorDominik Csapak <d.csapak@proxmox.com>
Tue, 26 Nov 2019 10:01:22 +0000 (11:01 +0100)
committerThomas Lamprecht <t.lamprecht@proxmox.com>
Tue, 26 Nov 2019 12:13:04 +0000 (13:13 +0100)
commit784a50cca0ca406504ff8a692735317084b1dbe1
tree6305cfa1615961ccd1b9053c0ba43fdc5a2e8aectree
parent6159470e4dad8aa96cc495215fe7f87cb31f1c76commit | diff
renew pve-ssl.pem when it nearly expires

but only if the cert is issued by the ca in /etc/pve/pve-root-ca.pem
(by checking the issuer and openssl verify)

this way we can reduce the lifetime of the certs without having
to worry that they ran out

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
PVE/CertHelpers.pm diff | blob | blame | history
bin/pveupdate diff | blob | blame | history
The Proxmox VE Management API and Web UI