projects / certmaster.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
cut and paste error making cers not include right CA info
[certmaster.git] / certmaster / certs.py
diff --git a/certmaster/certs.py b/certmaster/certs.py
index da0942f..b59a972 100644 (file)
--- a/certmaster/certs.py
+++ b/certmaster/certs.py
@@ -142,9 +142,9 @@ def create_slave_certificate(csr, cakey, cacert, cadir, slave_cert_file=None):
     cert.set_subject(csr.get_subject())
     cert.set_pubkey(csr.get_pubkey())
     cert.set_version(2)
-    xt = crypto.X509Extension('basicConstraints', False ,'CA:False')
+    xt = crypto.X509Extension('basicConstraints', False ,'CA:FALSE')
     # FIXME - add subjectkeyidentifier and authoritykeyidentifier extensions, too)    
-    cacert.add_extensions((xt,))
+    cert.add_extensions((xt,))
     cert.sign(cakey, 'sha1')
     if slave_cert_file:
         destfo = open(slave_cert_file, 'w')
Fedora's certmaster (https://fedorahosted.org/certmaster/) with multiple CA support