Mercurial > dovecot > core-2.2

annotate doc/mkcert.sh @ 2351:080ac35855d5 HEAD

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Make certificate valid for one year
author Timo Sirainen <tss@iki.fi>
date Fri, 23 Jul 2004 03:05:58 +0300
parents 3f85a4b7880e
children b668848fff11
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
1 #!/bin/sh
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
2
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
3 # Generates a self-signed certificate.
1242
4c5f325df4ac comment update
Timo Sirainen <tss@iki.fi>
parents: 756
diff changeset
4 # Edit dovecot-openssl.cnf before running this.
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
5
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
6 OPENSSL=${OPENSSL-openssl}
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
7 SSLDIR=${SSLDIR-/etc/ssl}
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
8 OPENSSLCONFIG=${OPENSSLCONFIG-dovecot-openssl.cnf}
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
9
1893
3f85a4b7880e write dovecot.pem, not imapd.pem files.
Timo Sirainen <tss@iki.fi>
parents: 1621
diff changeset
10 CERTFILE=$SSLDIR/certs/dovecot.pem
3f85a4b7880e write dovecot.pem, not imapd.pem files.
Timo Sirainen <tss@iki.fi>
parents: 1621
diff changeset
11 KEYFILE=$SSLDIR/private/dovecot.pem
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
12
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
13 if [ ! -d $SSLDIR/certs ]; then
1621
401f0c3a3aa2 Quotes around echo
Timo Sirainen <tss@iki.fi>
parents: 1242
diff changeset
14 echo "$SSLDIR/certs directory doesn't exist"
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
15 fi
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
16
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
17 if [ ! -d $SSLDIR/private ]; then
1621
401f0c3a3aa2 Quotes around echo
Timo Sirainen <tss@iki.fi>
parents: 1242
diff changeset
18 echo "$SSLDIR/private directory doesn't exist"
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
19 fi
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
20
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
21 if [ -f $CERTFILE ]; then
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
22 echo "$CERTFILE already exists, won't overwrite"
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
23 exit 1
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
24 fi
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
25
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
26 if [ -f $KEYFILE ]; then
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
27 echo "$KEYFILE already exists, won't overwrite"
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
28 exit 1
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
29 fi
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
30
2351
080ac35855d5 Make certificate valid for one year
Timo Sirainen <tss@iki.fi>
parents: 1893
diff changeset
31 $OPENSSL req -new -x509 -nodes -config $OPENSSLCONFIG -out $CERTFILE -keyout $KEYFILE -days 365 || exit 2
657
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
32 chmod 0600 $KEYFILE
85a888d2766e Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
33 echo
756
17598099d9ac Subject printing used wrong certificate file.
Timo Sirainen <tss@iki.fi>
parents: 665
diff changeset
34 $OPENSSL x509 -subject -fingerprint -noout -in $CERTFILE || exit 2