rewrite #5
8
shellpki
8
shellpki
|
@ -222,6 +222,9 @@ create() {
|
||||||
# check if CN already exist
|
# check if CN already exist
|
||||||
[ -f "${CRTDIR}/${cn}.crt" ] && error "${cn} already used !"
|
[ -f "${CRTDIR}/${cn}.crt" ] && error "${cn} already used !"
|
||||||
|
|
||||||
|
# ask for CA passphrase
|
||||||
|
ask_ca_password 0
|
||||||
|
|
||||||
# ask for client key passphrase
|
# ask for client key passphrase
|
||||||
if [ "${with_pass}" -eq 0 ]; then
|
if [ "${with_pass}" -eq 0 ]; then
|
||||||
trap 'unset PASSWORD' 0
|
trap 'unset PASSWORD' 0
|
||||||
|
@ -232,9 +235,6 @@ create() {
|
||||||
printf "\n"
|
printf "\n"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# ask for CA passphrase
|
|
||||||
ask_ca_password 0
|
|
||||||
|
|
||||||
# generate private key
|
# generate private key
|
||||||
if [ "${with_pass}" -eq 0 ]; then
|
if [ "${with_pass}" -eq 0 ]; then
|
||||||
PASSWORD="${PASSWORD}" "$OPENSSL" genrsa \
|
PASSWORD="${PASSWORD}" "$OPENSSL" genrsa \
|
||||||
|
@ -331,7 +331,7 @@ revoke() {
|
||||||
[ ! -f "${CRTDIR}/${cn}.crt" ] && error "Unknow CN : ${cn}"
|
[ ! -f "${CRTDIR}/${cn}.crt" ] && error "Unknow CN : ${cn}"
|
||||||
|
|
||||||
# check if CRT is a valid
|
# check if CRT is a valid
|
||||||
"${OPENSSL}" x509 -noout -subject -in "${CRTDIR}/${cn}.crt" >/dev/null 2>&1 || error "${CRTDIR}/${cn}.crt is not a valid CRT, you msust delete it !"
|
"${OPENSSL}" x509 -noout -subject -in "${CRTDIR}/${cn}.crt" >/dev/null 2>&1 || error "${CRTDIR}/${cn}.crt is not a valid CRT, you must delete it !"
|
||||||
|
|
||||||
# ask for CA passphrase
|
# ask for CA passphrase
|
||||||
ask_ca_password 0
|
ask_ca_password 0
|
||||||
|
|
Loading…
Reference in a new issue