root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
rabbitmq-server/deps/rabbitmq_ct_helpers/tools/tls-certs/Makefile

71 lines
2.1 KiB
Makefile
Raw Permalink Blame History

ifndef DIR
$(error DIR must be specified)
endif
PASSWORD ?= changeme
HOSTNAME := $(shell if [ "$$(uname)" = Darwin ]; then hostname -s; else hostname; fi)
# Verbosity.
V ?= 0
verbose_0 = @
verbose_2 = set -x;
verbose = $(verbose_$(V))
gen_verbose_0 = @echo " GEN " $@;
gen_verbose_2 = set -x;
gen_verbose = $(gen_verbose_$(V))
openssl_output_0 = 2>/dev/null
openssl_output = $(openssl_output_$(V))
.PRECIOUS: %/testca/cacert.pem
.PHONY: all testca server client clean
all: server client
@:
testca: $(DIR)/testca/cacert.pem
server: TARGET = server
server: $(DIR)/server/cert.pem
@:
client: TARGET = client
client: $(DIR)/client/cert.pem
@:
$(DIR)/testca/cacert.pem:
$(gen_verbose) mkdir -p $(dir $@)
$(verbose) { ( cd $(dir $@) && \
mkdir -p certs private && \
chmod 700 private && \
echo 01 > serial && \
:> index.txt && \
sed -e 's/@HOSTNAME@/$(HOSTNAME)/g' $(CURDIR)/openssl.cnf.in > $(CURDIR)/openssl.cnf && \
openssl req -x509 -config $(CURDIR)/openssl.cnf -newkey rsa:2048 -days 365 \
-out cacert.pem -outform PEM -subj /CN=MyTestCA/L=$$$$/ -nodes && \
openssl x509 -in cacert.pem -out cacert.cer -outform DER ) $(openssl_output) \
|| (rm -rf $(dir $@) && false); }
$(DIR)/%/cert.pem: $(DIR)/testca/cacert.pem
$(gen_verbose) mkdir -p $(DIR)/$(TARGET)
$(verbose) { ( cd $(DIR)/$(TARGET) && \
sed -e 's/@HOSTNAME@/$(HOSTNAME)/g' $(CURDIR)/openssl.cnf.in > $(CURDIR)/openssl.cnf && \
openssl genrsa -out key.pem 2048 && \
openssl req -config $(CURDIR)/openssl.cnf -new -key key.pem -out req.pem -outform PEM \
-subj /C=UK/ST=England/CN=$(HOSTNAME)/O=$(TARGET)/L=$$$$/ -nodes && \
cd ../testca && \
openssl ca -config $(CURDIR)/openssl.cnf -in ../$(TARGET)/req.pem -out \
../$(TARGET)/cert.pem -notext -batch -extensions \
$(TARGET)_ca_extensions && \
cd ../$(TARGET) && \
openssl pkcs12 -export -out keycert.p12 -in cert.pem -inkey key.pem \
-passout pass:$(PASSWORD) ) $(openssl_output) || (rm -rf $(DIR)/$(TARGET) && false); }
clean:
rm -rf $(DIR)/testca
rm -rf $(DIR)/server
rm -rf $(DIR)/client
Reference in New Issue View Git Blame Copy Permalink