fix: better choose CAcert if multiple are available

[cassiopeia.git] / src / crypto / X509.h

diff --git a/src/crypto/X509.h b/src/crypto/X509.h
index 04079994918f146901a6a0e44d6759a555e6ca70..71b0de1efc58306a2e9fe270482d66e9d81e63ec 100644 (file)
--- a/src/crypto/X509.h
+++ b/src/crypto/X509.h
@@ -19,7 +19,7 @@ public:
     static std::shared_ptr<X509Req> parseCSR( std::string content );
     static std::shared_ptr<X509Req> parseSPKAC( std::string content );
     int verify();
-    std::shared_ptr<EVP_PKEY> getPkey();
+    std::shared_ptr<EVP_PKEY> getPkey() const;
 };
 
 class X509Cert {
@@ -32,7 +32,7 @@ public:
     void setIssuerNameFrom( std::shared_ptr<X509> ca );
     void setPubkeyFrom( std::shared_ptr<X509Req> r );
     void setSerialNumber( BIGNUM* num );
-    void setExtensions( std::shared_ptr<X509> caCert, std::vector<std::shared_ptr<SAN>>& sans, Profile& prof );
+    void setExtensions( std::shared_ptr<X509> caCert, std::vector<std::shared_ptr<SAN>>& sans, Profile& prof, std::string crlURL, std::string crtURL );
     void setTimes( uint32_t before, uint32_t after );
     std::shared_ptr<SignedCertificate> sign( std::shared_ptr<EVP_PKEY> caKey, std::string signAlg );
 };