export CN=$2
flags=$3
validity=$4
+ bits=${5:-1024}
+
echo "Creating a cert for '$CN' in files named $filebase.(cert|priv)"
echo " with $flags flags and $validity days validity time"
return
fi
+ if [ $flags == "bigclient" ]; then
+ flags="client"
+ fi
+
# if we are in a state where we are generating proxies (${CA_DIR}/serial_proxy.txt exists)
# then let's transfer the serial number of the last proxy to the serial.txt file for the
# next new certificate...
- CMD="openssl req -out $filebase.req -newkey rsa:1024 -new -keyout $filebase.priv -config $REQ_CONFIG_FILE"
+ CMD="openssl req -out $filebase.req -newkey rsa:$bits -new -keyout $filebase.priv -config $REQ_CONFIG_FILE"
echo $CMD; $CMD;
case $flags in
# cat ${CA_DIR}/serial_proxy.txt
# some minor cleanup
- rm $filebase.req
+# rm $filebase.req
create_p12 $filebase
}
# let "i += 1"; echo "State : $i"; cat ${CA_DIR}/serial_proxy.txt; echo;
create_cert_proxy_proxy $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" proxy_proxy_exp "expired proxy" -1 proxy_exp
+ TYPE="bigclient"
+ CTYPE="bigclient"
+
+ create_cert $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" ${TYPE} $DAYS 4096
+
+ create_cert_proxy $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" proxy "proxy" 1
+ create_cert_proxy $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" proxy_exp "expired proxy" -1
+
+ create_cert_proxy_proxy $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" proxy_proxy "proxy" 1 proxy
+ create_cert_proxy_proxy $CERT_DIR/${catype}_${TYPE} "$catype ${CTYPE}" proxy_proxy_exp "expired proxy" -1 proxy_exp
+
TYPE="server"
CTYPE="server"
git://scientific.zcu.cz / glite-security-test-utils.git / commitdiff