package acme import ( "crypto/rand" "crypto/rsa" "crypto/x509" "crypto/x509/pkix" "log" "math/big" "net/http" "time" ) const tlsKeySize = 2048 type tlsSolver struct { http.Server } func NewTLSSolver(addr string) Solver { s := new(tlsSolver) s.Server = http.Server{Addr: addr} go s.ListenAndServe() return s } func (s *tlsSolver) Solve(token, keyAuth string) error { log.Println("solve tls") tlsKey, err := rsa.GenerateKey(rand.Reader, tlsKeySize) if err != nil { return err } serialMax := new(big.Int).Lsh(big.NewInt(1), 128) serial, err := rand.Int(rand.Reader, serialMax) if err != nil { return err } tmpl := x509.Certificate{ SerialNumber: serial, Subject: pkix.Name{ Organization: []string{"Acme Co"}, }, NotBefore: time.Now(), NotAfter: time.Now().Add(time.Hour), KeyUsage: x509.KeyUsageKeyEncipherment | x509.KeyUsageDigitalSignature, ExtKeyUsage: []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth}, BasicConstraintsValid: true, } _, _ = tlsKey, tmpl return errNotImplemented } func (s *tlsSolver) Solved() error { return nil }