cvs commit: jakarta-tomcat-connectors/jni/examples mkcerts

Thu, 07 Jul 2005 02:14:28 -0700 

mturk       2005/07/07 02:14:14

  Modified:    jni/examples mkcerts
  Log:
  Update mkcerts to create a cabundle.crt file in the form of the original
  ca-bundle.crt file, that will have only our ca.crt.
  This can be used a CAfile for our demo Root CA.
  
  Revision  Changes    Path
  1.2       +13 -0     jakarta-tomcat-connectors/jni/examples/mkcerts
  
  Index: mkcerts
  ===================================================================
  RCS file: /home/cvs/jakarta-tomcat-connectors/jni/examples/mkcerts,v
  retrieving revision 1.1
  retrieving revision 1.2
  diff -u -r1.1 -r1.2
  --- mkcerts   5 Jul 2005 16:14:16 -0000       1.1
  +++ mkcerts   7 Jul 2005 09:14:14 -0000       1.2
  @@ -25,7 +25,10 @@
   if [ -z "$OPENSSL" ]; then OPENSSL=openssl; fi
   
   PASSPHRASE="pass:secret"
  +# Encrypt all keys
   GENRSA="$OPENSSL genrsa -des3"
  +# Uncomment for no key encryption
  +# GENRSA="$OPENSSL genrsa"
   REQ="$OPENSSL req -new"
   CA="$OPENSSL ca"
   X509="$OPENSSL x509"
  @@ -112,6 +115,16 @@
   
   $REQ -x509 -days 3650 -batch -config ca.cfg -key ca.key -out ca.crt
   
  +# Create cabundle.crt that can be used for CAfile
  +cat >cabundle.crt <<EOT
  +Tomcat Demo Root CA
  +=========================================
  +`$X509 -noout -fingerprint -in ca.crt`
  +PEM Data:
  +`$X509 -in ca.crt`
  +`$X509 -noout -text -in ca.crt`
  +EOT
  +
   $GENRSA -passout $PASSPHRASE -out localhost.key  -rand .rnd 1024
   
   cat >localhost.cfg <<EOT
  
  
  

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to