zotregistry.dev/zot@v1.4.4-0.20240314164342-eec277e14d20/test/scripts/gen_certs.sh

zotregistry.dev/zot@v1.4.4-0.20240314164342-eec277e14d20/test/scripts/gen_certs.sh (about)

     1  #!/usr/bin/env bash
     2  
     3  set -xe
     4  
     5  openssl req \
     6      -newkey rsa:2048 \
     7      -nodes \
     8      -days 3650 \
     9      -x509 \
    10      -keyout ca.key \
    11      -out ca.crt \
    12      -subj "/CN=*"
    13  
    14  openssl req \
    15      -newkey rsa:2048 \
    16      -nodes \
    17      -keyout server.key \
    18      -out server.csr \
    19      -subj "/OU=TestServer/CN=*"
    20  
    21  openssl x509 \
    22      -req \
    23      -days 3650 \
    24      -sha256 \
    25      -in server.csr \
    26      -CA ca.crt \
    27      -CAkey ca.key \
    28      -CAcreateserial \
    29      -out server.cert \
    30      -extfile <(echo subjectAltName = IP:127.0.0.1)
    31  
    32  openssl req \
    33      -newkey rsa:2048 \
    34      -nodes \
    35      -keyout client.key \
    36      -out client.csr \
    37      -subj "/OU=TestClient/CN=*"
    38  
    39  openssl x509 \
    40      -req \
    41      -days 3650 \
    42      -sha256 \
    43      -in client.csr \
    44      -CA ca.crt \
    45      -CAkey ca.key \
    46      -CAcreateserial \
    47      -out client.cert