зеркало из https://github.com/mono/mono-tls.git
90561a4767
|
||
|---|---|---|
| .. | ||
| certs | ||
| .gitignore | ||
| Hamiller-Tube-CA.key | ||
| Hamiller-Tube-CA.pem | ||
| README | ||
| certindex.txt | ||
| certindex.txt.attr | ||
| monkey.cert | ||
| monkey.key | ||
| monkey.pem | ||
| monkey.pfx | ||
| monkey.req | ||
| openssl.cnf | ||
| serial | ||
| server-cert.cert | ||
| server-cert.conf | ||
| server-cert.key | ||
| server-cert.pem | ||
| server-cert.pfx | ||
| server-cert.req | ||
| server-self.cert | ||
| server-self.key | ||
| server-self.pem | ||
| server-self.pfx | ||
README
Initialize: $ echo '100001' >serial $ touch certindex.txt $ mkdir certs Create CA: /usr/local/bin/openssl req -new -x509 -days 3650 -keyout cakey.pem -out cacert.pem Create Certificate Request: /usr/local/bin/openssl req -new -nodes -out monkey-req.pem -keyout monkey-key.pem -days 3650 Create Certificate: /usr/local/bin/openssl ca -cert cacert.pem -keyfile cakey.pem -out monkey-cert.pem -days 3650 -infiles monkey-req.pem Create .PFX: /usr/local/bin/openssl pkcs12 -export -out monkey.pfx -inkey monkey-key.pem -in monkey-cert.pem Password is 'monkey'. Create CR for the Server Certificate: openssl req -config server-cert.conf -extensions server_exts -nodes -days 3650 -newkey rsa:4096 -keyout server-cert.key -out server-cert.crt