From 922a15c7009f853accd86c0a8270fb18f0a6ead9 Mon Sep 17 00:00:00 2001 From: ale Date: Thu, 7 Dec 2006 09:39:27 +0000 Subject: [PATCH 1/1] dropped -selfsign option; revoke certificates that are re-generated but not expired; fixes --- lib/cfg.pyc | Bin 616 -> 769 bytes lib/gen.py | 4 ++++ lib/newca.py | 2 +- lib/utils.pyc | Bin 3313 -> 2719 bytes 4 files changed, 5 insertions(+), 1 deletion(-) diff --git a/lib/cfg.pyc b/lib/cfg.pyc index a86d8be09231f8e663eaf626974b146876801f10..ad590facc51ef2f472318779e4e27e62cf8b4355 100644 GIT binary patch literal 769 zcmZ8e&5qMB5FRJ}OWLx#MOq0?zMw`Nx)Lw2NC?3Rt-_viiQL#p&8Be`PgnHZH{iq@ z@jmbZ%sAyj6o39^#xwprv;VzJfBbp=Si$8R(f*#6|3#qb7oa21F*GA6$Q;3wfP$Pv zA}A^9KTvywstZi$`gTmdHOpq5D-dX~{3Bhp6|0J3|?u;DlW3SM0Yqxh)dviF2+1+z_e@n26 URw5D8C=)M5GQNoxVkxe~UmXdc5&!@I literal 616 zcmZutO;5r=5PjPZ3Khg~^B*)GAo1!!6FnOfJ@wKo>{3@MC7o)*nSbG*^1paBCeAF7 zV5Hg3%)Xg@^JcET2I=?D=iLmuFJgbgKYg${ zF%}V?YzP-(1LQHRg6qH~`=ARO!1Z7{INvZwf(>(|urb^TYzhXI?aQ5;N^anDr!ZZZ zo=1k#@i9w9W5{MUFDVhPi>W3{fsg4-T)mvTvY5Nd7AxI8-)D+Z5_93$fI4ipRX!}M zda5gu9W-^_W^@-Y(p^vZ>_7gB_d6@q_+=VYPa-! z#x+a*YCWi%^8KjXtq!XVb(w_8E{&VD`vGP4(zb`QXHxe^?|wnMrN~uuAMWel3{uN8 o9$R3>DR|>YA5SVbov^U+YVEgrEpPqHQ7}?Hl>~j2seu}*Ut21F3IG5A diff --git a/lib/gen.py b/lib/gen.py index 526e52f..42795fe 100644 --- a/lib/gen.py +++ b/lib/gen.py @@ -33,6 +33,10 @@ def gen(tag): ans = raw_input('This certificate seems to exist already (in %s).\nAre you really sure that you want to re-create it? [y/N] ' % crt_file) if not ans or ans[0].lower() != 'y': sys.exit(0) + print 'Revoking previous certificate...' + openssl('ca', '-config', conf_file, + '-revoke', public_crt_file) + # create custom config file template(conf_file, diff --git a/lib/newca.py b/lib/newca.py index f036552..7519b31 100644 --- a/lib/newca.py +++ b/lib/newca.py @@ -47,7 +47,7 @@ def newca(): openssl('ca', '-config', conf_file, '-batch', '-keyfile', ca_key_file, - '-extensions', 'v3_ca', '-selfsign', + '-extensions', 'v3_ca', '-out', ca_file, '-infiles', ca_csr_file) openssl('ca', diff --git a/lib/utils.pyc b/lib/utils.pyc index fe39ff82da3c9c592cfcde2a8f0c79a9a90d4593..dbfbb2426da2013cedb5402f3355048a20204393 100644 GIT binary patch literal 2719 zcmaJ@ZF3Yw5bnLZB)54ZFBm{U7v$hj6C}PP7AhcASsqn$Dtd~kV|VYe^YZvJ*%LJ}@fMfhUZrbl?x8CLKIAD=$Slcy>+=>@cqe z_E}J)F3F-Ap(H2Nn3ZHnjXCascN(Y_y&i z#h#1S35m4}@X8DKRnMj67tM`#t{_eXeG;niC~728W^!+wraGerBEZV3uyHmkm-sD2Bsso>+wtkRgE4o^yOvp&ON{K5x@*8E@{z)<}@vcSLPJw=+1ddBpFk^5_66SAF=5-4361^aKMneud+!A)vI_;RR!>8 zI3?f|7z0izxr${8z%g*j^QgVs8PlhRGze?Uz6VN;s<)sf3BqkJ zK`b$pAPkmdK3F^^EHk^sb!K&NZp;&;1g4_)Bq|1LckeyOSEYt1AJ0lLBLO}+mVZi) zN&FWQu>?IXQ}l@>LNi48MR^ciZrIDd6k1P0smY8q$@}d)Wm%M-<>#?BnFRgcgN&1? z21~&LlVEaOd2N zISGcm`W0|&U72^0?81G3R1RrZCG$YIXHz8KjomBqV0R7FV~1xJt!5qCyw0r&8hWa> z(qz+rUGr=@M<=pLd8K!QS?7>N@GeKIhKGJKK_>DkWZWvlU_quK^K6wY809F@vlt*V zv;dwKZJ0E)_key$y;4u%`o;Z<9B^R33-HXhg~J9( z^bZ@P(kQZgC69+fmF}l8?whwu(G8MAYz2`Xj(^hmn|%sdSY!@H^=yd|sdMZ`9p&V|_P6nMg$8xXE2C Zufy~85L64RVHi$_b;wLO70%38{{^j0h^GJm literal 3313 zcmb_eZEqVz5T3K0*iM}Em9+f;x|X_ifuytuQQD&NQrdpOkuXp&RFQjocCWGToZAa^ zq?Rx3-{3d#OZdW9gv9gA-q}t?ELFnE?#TGMVd; zuX2)c7+X7R2OgNp7!{1KFzg$^m!2d)h?i9)g54fJZQ$FBl4MnhU@y2z z^0Fi^um;{s;9ZeuRX8{JDT1|S$}tu4f#~c-;>DhL2tx;v>9m${YTKU2oNMM!KK}4i ze=~~xru8@DB-zjWO?8W116Q16U-Yvu{j9b1-WBKy#ZO~uKK7f&Z$7x${N`q}<2Qfu zo81WCrL|6$5~jpj+B)uKPb^OjCy~vpb7-3F^rK1MpdHr2DCJtrYMGO65>pAA^{|5b6S2_vc}# zNbHv!7|W8?Btp&sjDQ-zsHjX%hzD>2j1GXEy>5=XN^UCS(YEhnUWB{3Ec7>QJJ}qu-$#MA-^CZ6?uVA_(y0ea(nNbJOt^| zpX#++#E0syRgK?_B^FWWw0uP2Sd(Q}=U-b?Xv(gl=9r9QavK(-RQ;Bh z)=QMRf=Rr(cU&6Y`Yf$@oU6G_J9)2;F ze>ALnG_M`~30v(3$RG_-xs8un4&{^dz`xwIms=WGrU;4`k9EbK4jQXFwmV;^X_C5h z)X$4eoXYqBB69o6-f?e@_E9As$fw%31p>jHTIRy&;)@9KHt-PFXqoZ%)GX@SR%bt( zMO8D5lC{QC&AwXmEJa|IIn(I((t$HG7$!D!#vj@?$EH#i8_ReWcj8B&^RjcyJK=!L zDm0DdHkloemt=B_5Qg1@5>ULU*uF^o;wFTt1+dG+HX!|ciSWL?cSRoVZ2;WG-9{bT zEvhjCH=T_(SYshaBn)Zcr@m7$SU4 zmN6Q00$m6uLxdTFFh!=1N^{15k81`FC$V_ApfmvAZn_wp=R=`bHhm(;QEdS{)MK!FvG&r zB#IS}y)haxqnmbqzV>LA2lU0nm9>#k<4^+>3kMdco@Iw-4ZR(JkCv+(-M$zO^iZz* zmmu@>xB)n{w6oy)&Q5PQ+}SzY7%`Yoh7a^YJW^Yn*V|a`FWOeF&D}0e-W#>CJf@w* zNA$C<&10$sMf>(&>J;Wok)u`gC?(0|D(<1o(LK523Mc5vg*|*J3eU_v&TET9!l>OL bqh+6TzE(#@*30#JeYsx4sMeS2)kgVWHJo)n -- 2.20.1