UNPKG

catproxy

Version:

a node proxy or host change tools

github.com/jianxcao/catproxy

jianxcao/catproxy

107 lines (94 loc) 2.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); exports.createSelfCert = exports.createRootCert = undefined; var _nodeForge = require('node-forge'); var attrs = [{ name: 'countryName', value: 'CN' }, { shortName: 'ST', value: 'CP' }, { name: 'localityName', value: 'BJ' }, { name: 'organizationName', value: 'catproxy' }, { shortName: 'OU', value: 'CP' }]; var rootAttrs = attrs.slice(0); rootAttrs.push({ name: 'commonName', value: 'catproxy' }); var createKeyandCert = function createKeyandCert() { // generate a keypair and create an X.509v3 certificate var keys = _nodeForge.pki.rsa.generateKeyPair(1024); var cert = _nodeForge.pki.createCertificate(); var today = new Date().getTime(); var tenYearMin = 10 * 365 * 24 * 60 * 60 * 1000; cert.publicKey = keys.publicKey; cert.serialNumber = '' + new Date().getTime(); cert.validity.notBefore = new Date(today - tenYearMin); cert.validity.notAfter = new Date(today + tenYearMin); return { cert: cert, keys: keys }; }; var createRootCert = function createRootCert() { var _createKeyandCert = createKeyandCert(); var cert = _createKeyandCert.cert; var keys = _createKeyandCert.keys; cert.setSubject(rootAttrs); // alternatively set subject from a csr // cert.setSubject(csr.subject.attributes); cert.setIssuer(rootAttrs); cert.setExtensions([{ name: 'basicConstraints', cA: true }]); cert.sign(keys.privateKey, _nodeForge.md.sha256.create()); // console.log(cert.subject.attributes); return { cert: _nodeForge.pki.certificateToPem(cert), privateKey: _nodeForge.pki.privateKeyToPem(keys.privateKey), publicKey: _nodeForge.pki.publicKeyToPem(keys.publicKey) }; }; var createSelfCert = function createSelfCert(domains, rootOpt) { if (!domains) { return {}; } if (typeof domains === 'string') { domains = [domains]; } var rootKey = _nodeForge.pki.privateKeyFromPem(rootOpt.privateKey); var _createKeyandCert2 = createKeyandCert(); var cert = _createKeyandCert2.cert; var keys = _createKeyandCert2.keys; // rootCert.subject.attributes cert.setIssuer(rootAttrs); // ,{ // name: 'subjectAltName', // altNames: domains.map(function(host) { // if (host.match(/^[\d\.]+$/)) { // return {type: 7, ip: host}; // } // return {type: 2, value: host}; // }) // } cert.setSubject(attrs.concat([{ name: 'commonName', value: domains[0] }])); cert.sign(rootKey, _nodeForge.md.sha256.create()); return { cert: _nodeForge.pki.certificateToPem(cert), privateKey: _nodeForge.pki.privateKeyToPem(keys.privateKey), publicKey: _nodeForge.pki.publicKeyToPem(keys.publicKey) }; }; exports.createRootCert = createRootCert; exports.createSelfCert = createSelfCert;