planix.org/actube
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
3b7af3d47e
actube/ssl/mkcert.sh
7u83@mail.ru eeaa84b9fe Fixed missing certificate chain in cisco certs. 
FossilOrigin-Name: 3f22f82b9b04cc181f7c0c124cf7642ce07f404a62bbced1922b7f681e198865
2015-01-24 16:07:20 +00:00

68 lines
1.2 KiB
Bash
Executable File
Raw Blame History

#!/bin/sh
KEYSIZE=2048
#set -x
NAME=$1
PREF=$2
#if [ ! -z $2 ]
#then
# PREF=""
#fi
SUBJ="/C=DE/ST=Berlin/L=Berlin/O=Cauwersin/CN=7u83.cauwersin.com/emailAddress=7u83@mail.ru"
if [ "$PREF" = "cisco" ]
then
PREF="$2-"
SUBJ="/C=US/ST=California/L=San Jose/O=Cisco Virtual Wireless LAN Controller/CN=DEVICE-AC-TUBE/emailAddress=7u83@mail.ru"
fi
DIR=./certs
ROOT_CA_DIR=./root-ca
INT_CA_DIR=./intermediate-ca
echo $NAME
if [ ! -e $DIR ]
then
mkdir $DIR
fi
openssl req -nodes -newkey rsa:$KEYSIZE -keyout $DIR/$NAME.key -out $DIR/$NAME.req \
-subj "$SUBJ"
if [ "$PREF" = "simple" ]
then
openssl ca -config openssl-simple.cnf \
-keyfile $ROOT_CA_DIR/${PREF}-root-ca.key \
-cert $ROOT_CA_DIR/${PREF}-root-ca.crt \
-batch \
-out $DIR/$NAME.crt -infiles $DIR/$NAME.req
openssl x509 -in $DIR/$NAME.crt -out $DIR/$NAME.pem
else
openssl ca -config openssl-int.cnf \
-keyfile $INT_CA_DIR/${PREF}int-ca.key \
-cert $INT_CA_DIR/${PREF}int-ca.crt \
-batch \
-out $DIR/$NAME.crt -infiles $DIR/$NAME.req
openssl x509 -in $DIR/$NAME.crt -out $DIR/$NAME.pem
cat $INT_CA_DIR/${PREF}int-ca.crt >> $DIR/$NAME.pem
cat $ROOT_CA_DIR/${PREF}root-ca.crt >> $DIR/$NAME.pem
fi
Reference in New Issue View Git Blame Copy Permalink