diff options
author | Seth Forshee <seth.forshee@canonical.com> | 2017-10-22 22:52:43 -0500 |
---|---|---|
committer | Seth Forshee <seth.forshee@canonical.com> | 2017-10-22 22:52:43 -0500 |
commit | df928b8f8e619961b8d997c4baa046909c8f7bbe (patch) | |
tree | 7e3876983a3b1173c7c5fcfd417e55ae6745a171 | |
parent | 1effe2cee6d4667384c85786c8d1c96e023600e1 (diff) | |
download | wireless-regdb-pubkey.tar.gz |
wireless-regdb: Better support for generating public certificatespubkey
The current makefile rule for the public certificate calls for an
openssl config file which is not provided. Let's put the pubcert
generation into a script named gen-pubcert.sh and embed the
openssl configuration file there.
Signed-off-by: Seth Forshee <seth.forshee@canonical.com>
-rw-r--r-- | Makefile | 4 | ||||
-rwxr-xr-x | gen-pubcert.sh | 18 |
2 files changed, 19 insertions, 3 deletions
@@ -79,9 +79,7 @@ $(REGDB_PUBKEY): $(REGDB_PRIVKEY) $(REGDB_PUBCERT): $(REGDB_PRIVKEY) @echo "Generating certificate for $(REGDB_AUTHOR)..." - @openssl req -config regulatory.openssl.conf \ - -key $(REGDB_PRIVKEY) -days 36500 -utf8 -nodes -batch \ - -x509 -outform PEM -out $(REGDB_PUBCERT) + ./gen-pubcert.sh $(REGDB_PRIVKEY) $(REGDB_PUBCERT) @echo $(REGDB_PUBKEY) > .custom diff --git a/gen-pubcert.sh b/gen-pubcert.sh new file mode 100755 index 0000000..1a4d579 --- /dev/null +++ b/gen-pubcert.sh @@ -0,0 +1,18 @@ +#!/bin/bash + +if [[ $# -ne 2 ]]; then + echo "Usage: $0 priv-key out-file" + exit 1 +fi + +openssl req -new -key "$1" -days 36500 -utf8 -nodes -batch \ + -x509 -outform PEM -out "$2" \ + -config <(cat <<-EOF + [ req ] + distinguished_name = req_distinguished_name + string_mask = utf8only + prompt = no + [ req_distinguished_name ] + commonName = sforshee + EOF + ) |