diff options
author | Rob Austein <sra@hactrn.net> | 2017-07-06 22:42:23 -0400 |
---|---|---|
committer | Rob Austein <sra@hactrn.net> | 2017-07-06 22:42:23 -0400 |
commit | 3cb262f5af1b431eb1303f349dac6f28aec24d78 (patch) | |
tree | 251ee63641569364d8bd16c17c0e3a3c42e3aaba /issue-certificates.sh | |
parent | 254bf4a64d6e3acdd47cd9e15a1e282e5fc0ec4c (diff) |
TLS example.
Diffstat (limited to 'issue-certificates.sh')
-rwxr-xr-x | issue-certificates.sh | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/issue-certificates.sh b/issue-certificates.sh index 39e64d9..1a00992 100755 --- a/issue-certificates.sh +++ b/issue-certificates.sh @@ -24,4 +24,12 @@ openssl x509 -req -engine pkcs11 -CAkeyform ENGINE -days 60 \ -CAkey label_leader -CA leader.cer \ -out boris.cer -openssl verify -verbose -CAfile leader.cer boris.cer natasha.cer +openssl req -batch -new -engine pkcs11 -keyform ENGINE \ + -subj "/GN=Hilary/SN=Pushemoff/CN=localhost" \ + -key label_boris | +openssl x509 -req -engine pkcs11 -CAkeyform ENGINE -days 60 \ + -set_serial `date +%s` -extfile $OPENSSL_CONF -extensions ext_ee \ + -CAkey label_leader -CA leader.cer \ + -out nogoodnik.cer + +openssl verify -verbose -CAfile leader.cer boris.cer natasha.cer nogoodnik.cer |