Mercurial > hg > freeDiameter
comparison contrib/OpenWRT/packages/freeDiameter/Makefile @ 509:f82bf741cd10
Improved the postinst script to generate a CSR also
author | Sebastien Decugis <sdecugis@nict.go.jp> |
---|---|
date | Fri, 20 Aug 2010 11:45:40 +0900 |
parents | f31f2b5038b6 |
children | 48d306c0db29 |
comparison
equal
deleted
inserted
replaced
508:f31f2b5038b6 | 509:f82bf741cd10 |
---|---|
168 echo "country = net" >>/tmp/template.cnf | 168 echo "country = net" >>/tmp/template.cnf |
169 echo "cn = $$localid" >>/tmp/template.cnf | 169 echo "cn = $$localid" >>/tmp/template.cnf |
170 echo "expiration_days = 3650" >>/tmp/template.cnf | 170 echo "expiration_days = 3650" >>/tmp/template.cnf |
171 echo "signing_key" >>/tmp/template.cnf | 171 echo "signing_key" >>/tmp/template.cnf |
172 echo "encryption_key" >>/tmp/template.cnf | 172 echo "encryption_key" >>/tmp/template.cnf |
173 certtool -q --load-privkey /etc/freeDiameter/freeDiameter.key \ | |
174 --outfile /etc/freeDiameter/freeDiameter.csr \ | |
175 --template /tmp/template.cnf | |
173 certtool -s --load-privkey /etc/freeDiameter/freeDiameter.key \ | 176 certtool -s --load-privkey /etc/freeDiameter/freeDiameter.key \ |
174 --outfile /etc/freeDiameter/freeDiameter.pem \ | 177 --outfile /etc/freeDiameter/freeDiameter.pem \ |
175 --template /tmp/template.cnf | 178 --template /tmp/template.cnf |
176 rm -f /tmp/template.cnf | 179 rm -f /tmp/template.cnf |
177 echo "Done." | 180 echo "Done." |
178 echo "============================================================" | 181 echo "========================================================================" |
179 echo "To enable TLS communication, you should either:" | 182 echo "To enable TLS communication, you should either:" |
180 echo " - use a real certificate signed by your server's CA" | 183 echo " - use a real certificate signed by your server's CA" |
181 echo " - or, copy the two peers certificates in a ca.pem file and " | 184 echo " (CSR provided in /etc/freeDiameter/freeDiameter.csr)" |
182 echo " add this file in freeDiameter configuration." | 185 echo " - or, copy the two certificates (client & server) in a ca.pem file and " |
183 echo "============================================================" | 186 echo " add this file in both freeDiameter configurations (as TLS_CA)." |
187 echo "========================================================================" | |
184 fi | 188 fi |
185 endef | 189 endef |
186 | 190 |
187 $(eval $(call BuildPackage,freeDiameter)) | 191 $(eval $(call BuildPackage,freeDiameter)) |