summaryrefslogtreecommitdiff
path: root/sample/sample-keys
diff options
context:
space:
mode:
authorJörg Frings-Fürst <debian@jff-webhosting.net>2017-06-27 13:56:16 +0200
committerJörg Frings-Fürst <debian@jff-webhosting.net>2017-06-27 13:56:16 +0200
commit749384a154025e268b53cf3cc79eaeddde2b3ceb (patch)
tree27baa9e6aec76635d750405d90cd461440a656d1 /sample/sample-keys
parentdb4f04c584f7d4e828b5d317cf40962b9d854ac5 (diff)
initial stretch branch release 2.4.0-6
Diffstat (limited to 'sample/sample-keys')
-rw-r--r--sample/sample-keys/.gitignore1
-rwxr-xr-xsample/sample-keys/gen-sample-keys.sh16
2 files changed, 1 insertions, 16 deletions
diff --git a/sample/sample-keys/.gitignore b/sample/sample-keys/.gitignore
new file mode 100644
index 0000000..f148752
--- /dev/null
+++ b/sample/sample-keys/.gitignore
@@ -0,0 +1 @@
+sample-ca/
diff --git a/sample/sample-keys/gen-sample-keys.sh b/sample/sample-keys/gen-sample-keys.sh
index 920513a..301cff2 100755
--- a/sample/sample-keys/gen-sample-keys.sh
+++ b/sample/sample-keys/gen-sample-keys.sh
@@ -61,22 +61,6 @@ openssl ca -batch -config openssl.cnf \
openssl ca -config openssl.cnf -revoke sample-ca/client-revoked.crt
openssl ca -config openssl.cnf -gencrl -out sample-ca/ca.crl
-# Create DSA server and client cert (signed by 'regular' RSA CA)
-openssl dsaparam -out sample-ca/dsaparams.pem 2048
-
-openssl req -new -newkey dsa:sample-ca/dsaparams.pem -nodes -config openssl.cnf \
- -extensions server \
- -keyout sample-ca/server-dsa.key -out sample-ca/server-dsa.csr \
- -subj "/C=KG/ST=NA/O=OpenVPN-TEST/CN=Test-Server-DSA/emailAddress=me@myhost.mydomain"
-openssl ca -batch -config openssl.cnf -extensions server \
- -out sample-ca/server-dsa.crt -in sample-ca/server-dsa.csr
-
-openssl req -new -newkey dsa:sample-ca/dsaparams.pem -nodes -config openssl.cnf \
- -keyout sample-ca/client-dsa.key -out sample-ca/client-dsa.csr \
- -subj "/C=KG/ST=NA/O=OpenVPN-TEST/CN=Test-Client-DSA/emailAddress=me@myhost.mydomain"
-openssl ca -batch -config openssl.cnf \
- -out sample-ca/client-dsa.crt -in sample-ca/client-dsa.csr
-
# Create EC server and client cert (signed by 'regular' RSA CA)
openssl ecparam -out sample-ca/secp256k1.pem -name secp256k1