@ -12,6 +12,7 @@ CRT_DAYS?= 365
CRT_EXT := v3_crt
CONFIG := x509v3ca.cnf
PASSWORD := test
DIGEST := -$( shell echo test | openssl dgst -sha256 2>/dev/null | grep -q f2ca1bb6c7e907d06dafe4687e579fce76b37e4e93b7605022da52e6ccc26fd2 && echo sha256 || echo sha1)
all : rsa dsa ec targets server pwd
@ -59,7 +60,7 @@ ec.key:
$( OPENSSL) ecparam -out $@ -name prime192v1 -genkey
%.crt : %.key $( CONFIG )
$( OPENSSL) req -new -nodes -x509 -sha1 -out $@ -key $< \
$( OPENSSL) req -new -nodes -x509 $( DIGEST) -out $@ -key $< \
-config $( CONFIG) -extensions $( CA_EXT) \
-subj $( CA_SUBJECT) \
-set_serial 0 -days $( CA_DAYS)
@ -68,7 +69,7 @@ server.key:
$( OPENSSL) genrsa -out $@ 1024
server.crt : server .key $( CONFIG )
$( OPENSSL) req -new -nodes -x509 -sha1 -out $@ -key $< \
$( OPENSSL) req -new -nodes -x509 $( DIGEST) -out $@ -key $< \
-config $( CONFIG) -extensions $( CRT_EXT) \
-subj $( CRT_SUBJECT) \
-set_serial 42 -days $( CRT_DAYS)
@ -82,10 +83,10 @@ targets: targets/daniel.roe.ch.pem targets/wildcard.roe.ch.pem
targets/daniel.roe.ch.pem : rsa .crt
$( MKDIR) -p targets
$( OPENSSL) genrsa -out targets/daniel.roe.ch.key 1024
$( OPENSSL) req -new -sha1 -subj '/C=CH/CN=daniel.roe.ch/' \
$( OPENSSL) req -new $( DIGEST) -subj '/C=CH/CN=daniel.roe.ch/' \
-key targets/daniel.roe.ch.key \
-out targets/daniel.roe.ch.csr
$( OPENSSL) x509 -req -sha1 -CAcreateserial -days 365 \
$( OPENSSL) x509 -req $( DIGEST) -CAcreateserial -days 365 \
-CA rsa.crt -CAkey rsa.key \
-in targets/daniel.roe.ch.csr \
-out targets/daniel.roe.ch.crt
@ -97,10 +98,10 @@ targets/daniel.roe.ch.pem: rsa.crt
targets/wildcard.roe.ch.pem : rsa .crt
$( MKDIR) -p targets
$( OPENSSL) genrsa -out targets/wildcard.roe.ch.key 1024
$( OPENSSL) req -new -sha1 -subj '/C=CH/CN=*.roe.ch/' \
$( OPENSSL) req -new $( DIGEST) -subj '/C=CH/CN=*.roe.ch/' \
-key targets/wildcard.roe.ch.key \
-out targets/wildcard.roe.ch.csr
$( OPENSSL) x509 -req -sha1 -CAcreateserial -days 365 \
$( OPENSSL) x509 -req $( DIGEST) -CAcreateserial -days 365 \
-CA rsa.crt -CAkey rsa.key \
-in targets/wildcard.roe.ch.csr \
-out targets/wildcard.roe.ch.crt