4 LD_LIBRARY_PATH=../.. ../../apps/openssl $@
7 # report the openssl version
10 echo "Creating private keys and certs..."
17 -pkeyopt ec_paramgen_curve:secp521r1 \
18 -pkeyopt ec_param_enc:named_curve \
21 # root CA certificate (self-signed)
27 -subj /CN=TestRootCA \
31 # intermediate CA private key
34 -pkeyopt ec_paramgen_curve:secp384r1 \
35 -pkeyopt ec_param_enc:named_curve \
36 -out intermediate-key.pem
38 # intermediate CA certificate-signing-request
42 -key intermediate-key.pem \
43 -subj /CN=TestIntermediateCA \
44 -out intermediate-csr.pem
46 # intermediate CA certificate (signed by root CA)
53 -in intermediate-csr.pem \
54 -copy_extensions copyall \
55 -out intermediate-cert.pem
61 -pkeyopt ec_paramgen_curve:prime256v1 \
62 -pkeyopt ec_param_enc:named_curve \
65 # server certificate-signing-request
68 -extensions usr_cert \
71 -subj /CN=TestServerCA \
74 # server certificate (signed by intermediate CA)
77 -extensions usr_cert \
80 -CA intermediate-cert.pem \
81 -CAkey intermediate-key.pem \
83 -copy_extensions copyall \
87 rm -f index.txt index.txt.attr
91 -valid server-cert.pem \
92 -keyfile intermediate-key.pem \
93 -cert intermediate-cert.pem
97 cat server-cert.pem server-key.pem intermediate-cert.pem > server.pem
98 cat intermediate-cert.pem intermediate-key.pem > ocsp.pem