2018-05-07 00:14:11 +00:00
|
|
|
#!/bin/bash
|
2018-12-17 00:05:33 +00:00
|
|
|
#
|
2018-05-07 00:14:11 +00:00
|
|
|
keyname=key.pem
|
|
|
|
certname=cert.pem
|
|
|
|
smallcertname=cert.der
|
|
|
|
curve=prime256v1
|
|
|
|
|
|
|
|
# generate EC private key
|
2018-10-28 20:30:55 +00:00
|
|
|
openssl ecparam -genkey -name "$curve" -out "$keyname" -rand seed.txt
|
2018-05-07 00:14:11 +00:00
|
|
|
# generate a "signing request"
|
2018-12-11 02:21:56 +00:00
|
|
|
openssl req -new -key "$keyname" -out "$keyname".csr -subj "/C=US/ST=Maryland/O=SOLO HACKER/OU=Root CA/CN=solokeys.com/emailAddress=hello@solokeys.com"
|
2018-05-07 00:14:11 +00:00
|
|
|
# self sign the request
|
2019-02-12 22:18:17 +00:00
|
|
|
openssl x509 -trustout -req -days 18250 -in "$keyname".csr -signkey "$keyname" -out "$certname" -sha256
|
2018-05-07 00:14:11 +00:00
|
|
|
|
|
|
|
# convert to smaller size format DER
|
|
|
|
openssl x509 -in $certname -outform der -out $smallcertname
|
|
|
|
|
2018-10-28 20:30:55 +00:00
|
|
|
openssl x509 -in $certname -text -noout
|