Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Purpose of the HOSTNAME argument in the cfssl selfsign command #1404

Open
borjapazr opened this issue Dec 17, 2024 · 0 comments
Open

Purpose of the HOSTNAME argument in the cfssl selfsign command #1404

borjapazr opened this issue Dec 17, 2024 · 0 comments

Comments

@borjapazr
Copy link

Hi! 👋

What is the purpose of the HOSTNAME argument of the cfssl selfsign command?

~ ❯ cfssl selfsign --help
	cfssl selfsign -- generate a new self-signed key and signed certificate

Usage of gencert:
        cfssl selfsign HOSTNAME CSRJSON

WARNING: this should ONLY be used for testing. This should never be
used in production.

WARNING: self-signed certificates are insecure; they do not provide
the authentication required for secure systems. Use these at your own
risk.

Arguments:
        HOSTNAME:   Hostname for the cert
        CSRJSON:    JSON file containing the request, use '-' for reading JSON from stdin

Flags:
  -config="": path to configuration file
  -loglevel=1: Log level (0 = DEBUG, 5 = FATAL)

In the help of this command it appears as a mandatory argument before CSRJSON, but checking the created certificate I don't see that it affects it at all. I have been reviewing the source code for this particular command and I don't see anything done with the HOSTNAMEparameter. Why is it necessary to specify it in the command?

Thank you very much!

Best regards
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@borjapazr