2026-01-13 15:38:22 +00:00
|
|
|
use std::sync::OnceLock;
|
|
|
|
|
use log::info;
|
|
|
|
|
use crate::certificate_factory::generate_certificate;
|
|
|
|
|
|
|
|
|
|
/// The certificate used for the runtime API server.
|
|
|
|
|
pub static CERTIFICATE: OnceLock<Vec<u8>> = OnceLock::new();
|
|
|
|
|
|
|
|
|
|
/// The private key used for the certificate of the runtime API server.
|
|
|
|
|
pub static CERTIFICATE_PRIVATE_KEY: OnceLock<Vec<u8>> = OnceLock::new();
|
|
|
|
|
|
|
|
|
|
/// The fingerprint of the certificate used for the runtime API server.
|
|
|
|
|
pub static CERTIFICATE_FINGERPRINT: OnceLock<String> = OnceLock::new();
|
|
|
|
|
|
|
|
|
|
/// Generates a TLS certificate for the runtime API server.
|
|
|
|
|
pub fn generate_runtime_certificate() {
|
|
|
|
|
|
|
|
|
|
info!("Try to generate a TLS certificate for the runtime API server...");
|
|
|
|
|
|
2026-01-16 19:48:09 +00:00
|
|
|
let cert = generate_certificate();
|
2026-01-13 15:38:22 +00:00
|
|
|
|
2026-01-16 19:48:09 +00:00
|
|
|
CERTIFICATE_FINGERPRINT.set(cert.fingerprint).expect("Could not set the certificate fingerprint.");
|
|
|
|
|
CERTIFICATE.set(cert.certificate).expect("Could not set the certificate.");
|
|
|
|
|
CERTIFICATE_PRIVATE_KEY.set(cert.private_key).expect("Could not set the private key.");
|
2026-01-13 15:38:22 +00:00
|
|
|
|
|
|
|
|
info!("Done generating certificate for the runtime API server.");
|
|
|
|
|
}
|
