From ae6cc296f850009ee4a088cf65ee971d6a501e55 Mon Sep 17 00:00:00 2001 From: Erich Eckner Date: Mon, 2 Sep 2019 10:13:27 +0200 Subject: website-run-through new --- website-run-through | 56 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 56 insertions(+) create mode 100644 website-run-through diff --git a/website-run-through b/website-run-through new file mode 100644 index 0000000..b4d2f42 --- /dev/null +++ b/website-run-through @@ -0,0 +1,56 @@ +#!/bin/bash + +mkdir -p ca/root-ca/private ca/root-ca/db crl certs +chmod 700 ca/root-ca/private + +cp /dev/null ca/root-ca/db/root-ca.db +cp /dev/null ca/root-ca/db/root-ca.db.attr +echo 01 > ca/root-ca/db/root-ca.crt.srl +echo 01 > ca/root-ca/db/root-ca.crl.srl + +openssl req -new \ + -config etc/root-ca.conf \ + -out ca/root-ca.csr \ + -keyout ca/root-ca/private/root-ca.key + +openssl ca -selfsign \ + -config etc/root-ca.conf \ + -in ca/root-ca.csr \ + -out ca/root-ca.crt \ + -extensions root_ca_ext + +mkdir -p ca/signing-ca/private ca/signing-ca/db crl certs +chmod 700 ca/signing-ca/private + +cp /dev/null ca/signing-ca/db/signing-ca.db +cp /dev/null ca/signing-ca/db/signing-ca.db.attr +echo 01 > ca/signing-ca/db/signing-ca.crt.srl +echo 01 > ca/signing-ca/db/signing-ca.crl.srl + +openssl req -new \ + -config etc/signing-ca.conf \ + -out ca/signing-ca.csr \ + -keyout ca/signing-ca/private/signing-ca.key + +openssl ca \ + -config etc/root-ca.conf \ + -in ca/signing-ca.csr \ + -out ca/signing-ca.crt \ + -extensions signing_ca_ext + +SAN=DNS:www.simple.org \ +openssl req -new \ + -config etc/server.conf \ + -out certs/simple.org.csr \ + -keyout certs/simple.org.key + +openssl ca \ + -config etc/signing-ca.conf \ + -in certs/simple.org.csr \ + -out certs/simple.org.crt \ + -extensions server_ext + +openssl ca \ + -config etc/signing-ca.conf \ + -revoke ca/signing-ca/01.pem \ + -crl_reason superseded -- cgit v1.2.3-70-g09d2