From 7544098b30985f30c907a4cb78a0276c5b429c9e Mon Sep 17 00:00:00 2001 From: Filippo Valsorda Date: Thu, 28 Jun 2018 01:03:31 -0400 Subject: [PATCH] Make private keys writeable Read-only is too much hassle for expendable dev keys --- cert.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/cert.go b/cert.go index af034d9..44c06b0 100644 --- a/cert.go +++ b/cert.go @@ -67,7 +67,7 @@ func (m *mkcert) makeCert(hosts []string) { privDER, err := x509.MarshalPKCS8PrivateKey(priv) fatalIfErr(err, "failed to encode certificate key") err = ioutil.WriteFile(filename+"-key.pem", pem.EncodeToMemory( - &pem.Block{Type: "PRIVATE KEY", Bytes: privDER}), 0400) + &pem.Block{Type: "PRIVATE KEY", Bytes: privDER}), 0600) fatalIfErr(err, "failed to save certificate key") err = ioutil.WriteFile(filename+".pem", pem.EncodeToMemory(