Suyu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-01-05 22:19:11 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

- Added generation of all digest certificates from a single key

Browse source
This commit is contained in:
Paul Bakker 2009-07-12 11:00:06 +00:00
parent 596d504da2
commit e23166f7e8
24 changed files with 1192 additions and 332 deletions
Download patch file Download diff file Expand all files Collapse all files

31
programs/ssl/test-ca/gen_test_ca.sh
View file

@ -19,10 +19,7 @@ openssl genrsa -out server1.key 2048
openssl genrsa -out server2.key 2048
openssl genrsa -out client1.key 2048
openssl genrsa -out client2.key 2048
openssl genrsa -out cert_sha224.key 2048
openssl genrsa -out cert_sha256.key 2048
openssl genrsa -out cert_sha384.key 2048
openssl genrsa -out cert_sha512.key 2048
openssl genrsa -out cert_digest.key 2048
echo "Generating requests"
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Server 1" >> sslconf_use.txt
@ -37,17 +34,29 @@ openssl req -config sslconf_use.txt -new -key client1.key -out client1.req
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Client 2" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key client2.key -out client2.req
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert MD2" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_md2.req -md2
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert MD4" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_md4.req -md4
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert MD5" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_md5.req -md5
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert SHA1" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_sha1.req -sha1
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert SHA224" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_sha224.key -out cert_sha224.req -sha224
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_sha224.req -sha224
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert SHA256" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_sha256.key -out cert_sha256.req -sha256
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_sha256.req -sha256
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert SHA384" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_sha384.key -out cert_sha384.req -sha384
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_sha384.req -sha384
cat sslconf.txt > sslconf_use.txt;echo "CN=PolarSSL Cert SHA512" >> sslconf_use.txt
openssl req -config sslconf_use.txt -new -key cert_sha512.key -out cert_sha512.req -sha512
openssl req -config sslconf_use.txt -new -key cert_digest.key -out cert_sha512.req -sha512
echo "Signing requests"
for i in server1 server2 client1 client2;
@ -56,10 +65,10 @@ do
-batch -in $i.req
done
for i in 224 256 384 512;
for i in md2 md4 md5 sha1 sha224 sha256 sha384 sha512;
do
openssl ca -config sslconf.txt -out cert_sha$i.crt -passin pass:$PASSWORD \
-batch -in cert_sha$i.req -md sha$i
openssl ca -config sslconf.txt -out cert_$i.crt -passin pass:$PASSWORD \
-batch -in cert_$i.req -md $i
done
echo "Revoking firsts"