sslmake howto removed, and README.md added
This commit is contained in:
Denis Knauf
parent
74c181e432
commit
7951dfe477
50
sslmake
50
sslmake
|
|
@ -13,65 +13,19 @@ SIGN = $(OPENSSL) x509
|
||||||
|
|
||||||
all: help
|
all: help
|
||||||
--help -h: help
|
--help -h: help
|
||||||
--howto -H: howto
|
|
||||||
--renew -r: renew
|
--renew -r: renew
|
||||||
--build -b: build
|
--build -b: build
|
||||||
|
|
||||||
help:
|
help:
|
||||||
@echo "\
|
@echo -e "\
|
||||||
Creates SSL-keys and -certificate requests named %.key/%.csr (replace % by name)\n\
|
Creates SSL-keys and -certificate requests named %.key/%.csr (replace % by name)\n\
|
||||||
--help -h: Display this help message.\n\
|
--help -h: Display this help message.\n\
|
||||||
--howto -H: Display a short howto.\n\
|
|
||||||
--renew -r: Renews %.csr for all %.key.\n\
|
--renew -r: Renews %.csr for all %.key.\n\
|
||||||
--build -b: Builds %.csr and %.key for every %.cnf if doesn't exist.\n\
|
--build -b: Builds %.csr and %.key for every %.cnf if doesn't exist.\n\
|
||||||
%.cnf: Copies /etc/ssl/openssl.cnf to %.cnf.\n\
|
%.cnf: Copies /etc/ssl/openssl.cnf to %.cnf.\n\
|
||||||
%.key: Creates %.key.\n\
|
%.key: Creates %.key.\n\
|
||||||
%.csr: Creates %.csr and if doesn't exists %.key."
|
%.csr: Creates %.csr and if doesn't exists %.key."
|
||||||
|
|
||||||
howto:
|
|
||||||
@echo "\
|
|
||||||
Making SSL-Certificates\n\
|
|
||||||
=======================\n\
|
|
||||||
\n\
|
|
||||||
Description\n\
|
|
||||||
-----------\n\
|
|
||||||
\n\
|
|
||||||
Creates keys and certificate requests via openssl.\n\
|
|
||||||
It tries to keep files, if there exist. But if you change one file,\n\
|
|
||||||
files which depend on it, will be recreated by this program.\n\
|
|
||||||
\n\
|
|
||||||
Howto\n\
|
|
||||||
-----\n\
|
|
||||||
\n\
|
|
||||||
First use\n\
|
|
||||||
If you creates something a first time, then you are alright here.\n\
|
|
||||||
Renewing and removing will follow in 'Second use'.\n\
|
|
||||||
If you want, you can create the csr directly without creating\n\
|
|
||||||
a key or a config.\n\
|
|
||||||
\n\
|
|
||||||
Config:\n\
|
|
||||||
You can create an own configfile:\n\
|
|
||||||
# $(CALL) %.cnf\n\
|
|
||||||
\n\
|
|
||||||
This will copy /etc/ssl/openssl.cnf to local directory. Now you\n\
|
|
||||||
edit this file and you can do next step. You are allowed to create\n\
|
|
||||||
%.cnf, it isn't a must. If you didn't do it,\n\
|
|
||||||
/etc/ssl/openssl.cnf will be used.\n\
|
|
||||||
\n\
|
|
||||||
Key:\n\
|
|
||||||
Also, you can create a key without a csr:\n\
|
|
||||||
# $(CALL) %.key\n\
|
|
||||||
\n\
|
|
||||||
It will create a key-file %.key with a N bit strong rsa.\n\
|
|
||||||
N will be extracted by %.cnf\n\
|
|
||||||
\n\
|
|
||||||
CSR:\n\
|
|
||||||
Creating a csr is simple:\n\
|
|
||||||
# $(CALL) %.csr\n\
|
|
||||||
\n\
|
|
||||||
This will use %.cnf as configfile and creates a key and the csr\n\
|
|
||||||
if didn't exists. Everything in one step."
|
|
||||||
|
|
||||||
renew: $(patsubst %.key,%.csr.new,$(wildcard *.key))
|
renew: $(patsubst %.key,%.csr.new,$(wildcard *.key))
|
||||||
build: $(patsubst %.cnf,%csr,$(wildcard *.cnf))
|
build: $(patsubst %.cnf,%csr,$(wildcard *.cnf))
|
||||||
|
|
||||||
|
|
@ -97,5 +51,5 @@ build: $(patsubst %.cnf,%csr,$(wildcard *.cnf))
|
||||||
umask 177 ; cat $(^) > "$(@).bk"
|
umask 177 ; cat $(^) > "$(@).bk"
|
||||||
mv "$(@).bk" "$(@)"
|
mv "$(@).bk" "$(@)"
|
||||||
|
|
||||||
.PHONY: all help howto build renew %.new %.del
|
.PHONY: all help build renew %.new %.del
|
||||||
.PRECIOUS: %.csr %.key %.cnf %.pem
|
.PRECIOUS: %.csr %.key %.cnf %.pem
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue