summaryrefslogtreecommitdiffstats
path: root/binarysign/scripts/generate-keys.sh
diff options
context:
space:
mode:
Diffstat (limited to 'binarysign/scripts/generate-keys.sh')
-rw-r--r--binarysign/scripts/generate-keys.sh29
1 files changed, 29 insertions, 0 deletions
diff --git a/binarysign/scripts/generate-keys.sh b/binarysign/scripts/generate-keys.sh
new file mode 100644
index 000000000..2d4f19c32
--- /dev/null
+++ b/binarysign/scripts/generate-keys.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+
+if [ -z "$1" ]; then
+ echo "Usage: generate-keys.sh certname"
+ exit 1
+fi
+
+NAME=$1
+
+echo Creating RSA key...
+
+openssl genrsa -out $NAME-rsaprivkey.pem 1024
+openssl rsa -in $NAME-rsaprivkey.pem -pubout -outform DER -out $NAME-rsapubkey.der
+openssl pkcs8 -topk8 -inform PEM -outform DER -in $NAME-rsaprivkey.pem -out $NAME-rsaprivkey.der -nocrypt
+
+echo Creating DSA key...
+
+openssl dsaparam -out $NAME-dsaparam.pem 1024
+openssl gendsa -out $NAME-dsaprivkey.pem $NAME-dsaparam.pem
+
+openssl dsa -in $NAME-dsaprivkey.pem -outform DER -pubout -out $NAME-dsapubkey.der
+openssl pkcs8 -topk8 -inform PEM -outform DER -in $NAME-dsaprivkey.pem -out $NAME-dsaprivkey.der -nocrypt
+
+echo Creating X.509 Certificate...
+
+openssl genrsa -des3 -out $NAME-ca.key 4096
+openssl req -new -x509 -days 365 -key $NAME-ca.key -outform DER -out $NAME-ca.cer
+openssl req -new -x509 -days 365 -key $NAME-ca.key -out $NAME-ca.crt
+openssl crl2pkcs7 -nocrl -certfile $NAME-ca.cer -out $NAME-ca.p7b -certfile $NAME-ca.crt
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-07 10:37:49 +0000