Create code signing certificate option

repleo / bounca

BounCA is a web tool to generate self-signed SSL certificates and setup a key infrastructure

www.bounca.org

Apache License 2.0

165 stars 21 forks source link

Create code signing certificate option #32

Open p0358 opened 2 years ago

p0358 commented 2 years ago

Right now only creating server, client and OCSP certificates is supported. Looking through the code, I see there's no way to create a certificate with

keyUsage = digitalSignature
extendedKeyUsage = codeSigning

and that value of extendedKeyUsage is required in order to use the certificate for code signing.

bjarnoldus commented 2 years ago

I'll add an option to create code signing certificates, see https://gitlab.com/bounca/bounca/-/issues/22