sysmocom
/
asterisk
11
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge "ast_tls_cert: Allow private key size to be set on command line"

This commit is contained in:
George Joseph 2020-02-20 10:51:46 -06:00 committed by Gerrit Code Review
parent 4f1ab6404b de6919f339
commit 9f25b4aa44
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
contrib/scripts/ast_tls_cert
View File

@ -49,7 +49,7 @@ create_ca () {
create_cert () { create_cert () {
local base=${OUTPUT_DIR}/${OUTPUT_BASE} local base=${OUTPUT_DIR}/${OUTPUT_BASE}
echo "Creating certificate ${base}.key" echo "Creating certificate ${base}.key"
openssl genrsa -out ${base}.key 1024 > /dev/null openssl genrsa -out ${base}.key ${KEYBITS:-2048} > /dev/null
if [ $? -ne 0 ]; if [ $? -ne 0 ];
then then
echo "Failed" echo "Failed"
@ -87,6 +87,7 @@ OPTIONS:
-f Config filename (openssl config file format) -f Config filename (openssl config file format)
-c CA cert filename (creates new CA cert/key as ca.crt/ca.key if not passed) -c CA cert filename (creates new CA cert/key as ca.crt/ca.key if not passed)
-k CA key filename -k CA key filename
-b The desired size of the private key in bits. Default is 2048.
-C Common name (cert field) -C Common name (cert field)
This should be the fully qualified domain name or IP address for This should be the fully qualified domain name or IP address for
the client or server. Make sure your certs have unique common the client or server. Make sure your certs have unique common
@ -128,7 +129,7 @@ OUTPUT_BASE=asterisk # Our default cert basename
CERT_MODE=server CERT_MODE=server
ORG_NAME=${DEFAULT_ORG} ORG_NAME=${DEFAULT_ORG}
while getopts "hf:c:k:o:d:m:C:O:" OPTION while getopts "hf:c:k:o:d:m:C:O:b:" OPTION
do do
case ${OPTION} in case ${OPTION} in
h) h)
@ -144,6 +145,9 @@ do
k) k)
CAKEY=${OPTARG} CAKEY=${OPTARG}
;; ;;
b)
KEYBITS=${OPTARG}
;;
o) o)
OUTPUT_BASE=${OPTARG} OUTPUT_BASE=${OPTARG}
;; ;;