pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

handle key generation differently

Browse Source
This commit is contained in:
dandds 2018-11-06 12:06:52 -05:00
parent 99baed1516
commit fd83a01cf7
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
script/make-test-cac
View File

@ -13,20 +13,20 @@ set -e
SAN="subjectAltName=email:$2" SAN="subjectAltName=email:$2"
openssl genrsa -out $3.key 2048
CSR=$(openssl req \ CSR=$(openssl req \
-new \ -new \
-newkey rsa:4096 \
-sha256 \
-nodes \ -nodes \
-days 365 \
-subj "/CN=$1" \ -subj "/CN=$1" \
-reqexts SAN \ -reqexts SAN \
-config <(cat /etc/ssl/openssl.cnf; echo '[SAN]'; echo $SAN) \ -config <(cat /etc/ssl/openssl.cnf; echo '[SAN]'; echo $SAN) \
-keyout $3.key ) -key $3.key )
openssl x509 \ openssl x509 \
-req \ -req \
-in <(echo "$CSR") \ -in <(echo "$CSR") \
-days 365 \
-CA "ssl/client-certs/client-ca.crt" \ -CA "ssl/client-certs/client-ca.crt" \
-CAkey "ssl/client-certs/client-ca.key" \ -CAkey "ssl/client-certs/client-ca.key" \
-CAcreateserial \ -CAcreateserial \