25 |
[ ! -d ${CERTDIR} ] && die "${CERTDIR} directory doesn't exist!" |
[ ! -d ${CERTDIR} ] && die "${CERTDIR} directory doesn't exist!" |
26 |
[ ! -d ${KEYDIR} ] && die "${KEYDIR} directory doesn't exist!" |
[ ! -d ${KEYDIR} ] && die "${KEYDIR} directory doesn't exist!" |
27 |
[ -f ${CERTFILE} ] && die "${CERTFILE} already exists, won't overwrite!" |
[ -f ${CERTFILE} ] && die "${CERTFILE} already exists, won't overwrite!" |
28 |
[ -f ${KEYFILE} ] && die "${KEYFILE} already exists, won't overwrite!" |
if [ -f ${KEYFILE} ] |
29 |
|
then |
30 |
|
echo "Using existing KEYFILE '${KEYFILE}'" |
31 |
|
KEYOPT="-key" |
32 |
|
else |
33 |
|
echo "Creating a new KEYFILE '${KEYFILE}'" |
34 |
|
KEYOPT="-keyout" |
35 |
|
fi |
36 |
|
|
37 |
openssl req -new -x509 -nodes -config ${SSLCONFIG} -out ${CERTFILE} -keyout ${KEYFILE} -days 365 || die "Certificate request failed!" |
openssl req -new -x509 -sha1 -nodes -config ${SSLCONFIG} -out ${CERTFILE} ${KEYOPT} ${KEYFILE} -days 365 || die "Certificate request failed!" |
38 |
openssl x509 -subject -fingerprint -noout -in ${CERTFILE} || die "Fingerprint failed!" |
openssl x509 -sha1 -subject -fingerprint -noout -in ${CERTFILE} || die "Fingerprint failed!" |