Can revoke server certificate
This commit is contained in:
parent
099fdf4db1
commit
716e1e7ccd
20
misc/CA.sh
20
misc/CA.sh
@ -146,6 +146,26 @@ case $1 in
|
|||||||
echo $ECHO_OPTS "${GREEN}Signed certificate is in server.crt${COLOR_RST}"
|
echo $ECHO_OPTS "${GREEN}Signed certificate is in server.crt${COLOR_RST}"
|
||||||
fi
|
fi
|
||||||
;;
|
;;
|
||||||
|
|
||||||
|
"-revokeserver" )
|
||||||
|
echo $ECHO_OPTS "${GREEN}Revocate server certificate${COLOR_RST}"
|
||||||
|
if ! [ -f ${TOP_DIR}/private/${CAKEY} ]; then
|
||||||
|
echo $ECHO_OPTS "${RED}Can not found the CA's key${COLOR_RST}"
|
||||||
|
exit 2
|
||||||
|
fi
|
||||||
|
openssl ca -revoke server.crt -config ${OPENSSL_CONF}\
|
||||||
|
-keyfile ${TOP_DIR}/private/${CAKEY} \
|
||||||
|
-cert ${TOP_DIR}/${CACERT} > $OUTPUT 2>&1
|
||||||
|
if [ $? -ne 0 ]; then
|
||||||
|
echo $ECHO_OPTS "${RED}Server certificate revocation failed${COLOR_RST}"
|
||||||
|
cat $OUTPUT
|
||||||
|
exit 4
|
||||||
|
fi
|
||||||
|
rm ${TOP_DIR}/server.crt ${TOP_DIR}/server.key
|
||||||
|
|
||||||
|
gen_crl
|
||||||
|
;;
|
||||||
|
|
||||||
"-newclient" )
|
"-newclient" )
|
||||||
if [ $# -ne 2 ]; then
|
if [ $# -ne 2 ]; then
|
||||||
echo "Usage: $0 -newclient NAME"
|
echo "Usage: $0 -newclient NAME"
|
||||||
|
Loading…
Reference in New Issue
Block a user