7x31/anylink
1
0
Fork 0
mirror of https://github.com/bjdgyc/anylink.git synced 2025-11-04 19:16:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c5acd31fbb961861ebe7009b49f4ecbd5b1eb84
anylink/docker/generate-certs.sh
bjdgyc d8eb8ab7ed 优化Dockerfile使用
2021-04-09 14:49:41 +08:00

42 lines
978 B
Bash
Raw Blame History

#!/bin/sh
mkdir -p /ssl
OUTPUT_FILENAME="vpn.xx.com"
printf "[req]
prompt = no
default_bits = 4096
default_md = sha256
encrypt_key = no
string_mask = utf8only
distinguished_name = cert_distinguished_name
req_extensions = req_x509v3_extensions
x509_extensions = req_x509v3_extensions
[ cert_distinguished_name ]
C = CN
ST = BJ
L = BJ
O = xx.com
OU = xx.com
CN = xx.com
[req_x509v3_extensions]
basicConstraints = critical,CA:true
subjectKeyIdentifier = hash
keyUsage = critical,digitalSignature,keyCertSign,cRLSign #,keyEncipherment
extendedKeyUsage = critical,serverAuth #, clientAuth
subjectAltName = @alt_names
[alt_names]
DNS.1 = xx.com
DNS.2 = *.xx.com
">/ssl/${OUTPUT_FILENAME}.conf
openssl req -x509 -newkey rsa:2048 -keyout /ssl/test_vpn_key.pem -out /ssl/test_vpn_cert.pem \
-days 3600 -nodes -config /ssl/${OUTPUT_FILENAME}.conf
Reference in New Issue View Git Blame Copy Permalink