Mercurial > dovecot > original-hg > dovecot-1.2
annotate doc/mkcert.sh @ 665:748cbf0af0ed HEAD
Name the cert and key files as "imapd.pem" after all like they're in config
file. I'm not sure what's the standard naming in /etc/ssl though.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Mon, 25 Nov 2002 12:35:27 +0200 |
| parents | 85a888d2766e |
| children | 17598099d9ac |
| rev | line source |
|---|---|
|
657
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
1 #!/bin/sh |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
2 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
3 # Generates a self-signed certificate. |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
4 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
5 OPENSSL=${OPENSSL-openssl} |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
6 SSLDIR=${SSLDIR-/etc/ssl} |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
7 OPENSSLCONFIG=${OPENSSLCONFIG-dovecot-openssl.cnf} |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
8 |
|
665
748cbf0af0ed
Name the cert and key files as "imapd.pem" after all like they're in config
Timo Sirainen <tss@iki.fi>
parents:
657
diff
changeset
|
9 CERTFILE=$SSLDIR/certs/imapd.pem |
|
748cbf0af0ed
Name the cert and key files as "imapd.pem" after all like they're in config
Timo Sirainen <tss@iki.fi>
parents:
657
diff
changeset
|
10 KEYFILE=$SSLDIR/private/imapd.pem |
|
657
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
11 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
12 if [ ! -d $SSLDIR/certs ]; then |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
13 echo $SSLDIR/certs directory doesn't exist |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
14 fi |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
15 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
16 if [ ! -d $SSLDIR/private ]; then |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
17 echo $SSLDIR/private directory doesn't exist |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
18 fi |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
19 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
20 if [ -f $CERTFILE ]; then |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
21 echo "$CERTFILE already exists, won't overwrite" |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
22 exit 1 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
23 fi |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
24 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
25 if [ -f $KEYFILE ]; then |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
26 echo "$KEYFILE already exists, won't overwrite" |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
27 exit 1 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
28 fi |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
29 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
30 $OPENSSL req -new -x509 -nodes -config $OPENSSLCONFIG -out $CERTFILE -keyout $KEYFILE || exit 2 |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
31 chmod 0600 $KEYFILE |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
32 echo |
|
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
diff
changeset
|
33 $OPENSSL x509 -subject -fingerprint -noout -in $SSLDIR/certs/dovecot.cer || exit 2 |