From 457e7d1829947639ceff4f99fc9df910234d8678 Mon Sep 17 00:00:00 2001
From: fengweihao <fengweihao158@163.com>
Date: Sat, 19 Jan 2019 14:51:29 +0600
Subject: [PATCH] =?UTF-8?q?1.=E8=AF=BB=E5=8F=96CRL=E5=90=8E=E6=B7=BB?=
 =?UTF-8?q?=E5=8A=A0URI:=E8=AF=81=E4=B9=A6=E6=B7=BB=E5=8A=A0=E8=AF=86?=
 =?UTF-8?q?=E5=88=AB=E5=AD=97=E6=AE=B5=202.=E4=BF=AE=E6=94=B9=E6=9C=AC?=
 =?UTF-8?q?=E5=9C=B0maat=E4=B8=AD=E8=AF=BB=E5=8F=96table=E8=A1=A8=E4=B8=AD?=
 =?UTF-8?q?CRL=E5=AD=97=E6=AE=B5?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 conf/pxy_obj_keyring.json | 2 +-
 src/cert_session.c        | 5 ++++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/conf/pxy_obj_keyring.json b/conf/pxy_obj_keyring.json
index 6545772..baa6f9b 100644
--- a/conf/pxy_obj_keyring.json
+++ b/conf/pxy_obj_keyring.json
@@ -73,7 +73,7 @@
         {
             "table_name": "PXY_OBJ_KEYRING",
             "table_content": [
-                "1\t1\tname_01\troot\t/test/01\t/test/01\t15\trsa2048\tURI:http://www.test.com\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer",
+                "1\t1\tname_01\troot\t/test/01\t/test/01\t15\trsa2048\thttp://www.test.com\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer",
                 "2\t1\tname_02\troot\t/test/01\t/test/01\t90\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer",
                 "3\t1\tname_03\troot\t/test/01\t/test/01\t30\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer",
                 "4\t1\tname_04\troot\t/test/01\t/test/01\t30\trsa2048\tnull\t1\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.key\t/home/fengweihao/workspace/cert_store/ca/mesalab-ca-cert.cer",
diff --git a/src/cert_session.c b/src/cert_session.c
index de85b29..dc70d6a 100644
--- a/src/cert_session.c
+++ b/src/cert_session.c
@@ -586,8 +586,11 @@ x509_modify_by_cert(X509 *cacrt, EVP_PKEY *cakey, X509 *origcrt, char *pkey,
 
     if (crl != NULL && STRCMP(crl, "null")){
         mesa_runtime_log(RLOG_LV_INFO, MODULE_NAME, "Sign certificate the CRL is %s", crl);
+        /**Add URI:**/
+        char _crl[516] = {0};
+        snprintf(_crl, 516, "%s%s", "URI:", crl);
         if (ssl_x509_v3ext_add(&ctx, crt, "crlDistributionPoints",
-		                       crl) == -1) {
+		                       _crl) == -1) {
 			goto errout;
 		}
     }else{