2010-03-11 01:38:48 +01:00
|
|
|
Index: freeradius-server-2.1.8/raddb/certs/Makefile
|
2009-10-21 00:16:10 +02:00
|
|
|
===================================================================
|
2010-03-11 01:38:48 +01:00
|
|
|
--- freeradius-server-2.1.8.orig/raddb/certs/Makefile 2010-03-09 16:00:11.000000000 +0100
|
|
|
|
+++ freeradius-server-2.1.8/raddb/certs/Makefile 2010-03-09 16:00:22.000000000 +0100
|
2009-10-21 00:16:10 +02:00
|
|
|
@@ -51,7 +51,7 @@ dh:
|
|
|
|
# Create a new self-signed CA certificate
|
|
|
|
#
|
|
|
|
######################################################################
|
|
|
|
-ca.key ca.pem: ca.cnf
|
|
|
|
+ca.key ca.pem:
|
|
|
|
openssl req -new -x509 -keyout ca.key -out ca.pem \
|
|
|
|
-days $(CA_DEFAULT_DAYS) -config ./ca.cnf
|
2010-03-11 01:38:48 +01:00
|
|
|
|
|
|
|
@@ -63,7 +63,7 @@ ca.der: ca.pem
|
2009-10-21 00:16:10 +02:00
|
|
|
# Create a new server certificate, signed by the above CA.
|
|
|
|
#
|
|
|
|
######################################################################
|
|
|
|
-server.csr server.key: server.cnf
|
|
|
|
+server.csr server.key:
|
|
|
|
openssl req -new -out server.csr -keyout server.key -config ./server.cnf
|
|
|
|
|
|
|
|
server.crt: server.csr ca.key ca.pem index.txt serial
|
2010-03-11 01:38:48 +01:00
|
|
|
@@ -85,7 +85,7 @@ server.vrfy: ca.pem
|
2009-10-21 00:16:10 +02:00
|
|
|
# certificate.
|
|
|
|
#
|
|
|
|
######################################################################
|
|
|
|
-client.csr client.key: client.cnf
|
|
|
|
+client.csr client.key:
|
|
|
|
openssl req -new -out client.csr -keyout client.key -config ./client.cnf
|
|
|
|
|
2010-03-11 01:38:48 +01:00
|
|
|
client.crt: client.csr ca.pem ca.key index.txt serial
|
|
|
|
Index: freeradius-server-2.1.8/raddb/certs/bootstrap
|
2009-10-21 00:16:10 +02:00
|
|
|
===================================================================
|
2010-03-11 01:38:48 +01:00
|
|
|
--- freeradius-server-2.1.8.orig/raddb/certs/bootstrap 2010-03-09 16:00:11.000000000 +0100
|
|
|
|
+++ freeradius-server-2.1.8/raddb/certs/bootstrap 2010-03-09 16:00:22.000000000 +0100
|
2009-10-21 00:16:10 +02:00
|
|
|
@@ -19,6 +19,7 @@ make all
|
|
|
|
#
|
|
|
|
if [ "$?" = "0" ]
|
|
|
|
then
|
|
|
|
+ chgrp radiusd *
|
|
|
|
exit 0
|
|
|
|
fi
|
|
|
|
|
|
|
|
@@ -44,3 +45,4 @@ openssl ca -batch -keyfile ca.key -cert
|
|
|
|
openssl pkcs12 -export -in server.crt -inkey server.key -out server.p12 -passin pass:`grep output_password server.cnf | sed 's/.*=//;s/^ *//'` -passout pass:`grep output_password server.cnf | sed 's/.*=//;s/^ *//'` || exit 1
|
|
|
|
openssl pkcs12 -in server.p12 -out server.pem -passin pass:`grep output_password server.cnf | sed 's/.*=//;s/^ *//'` -passout pass:`grep output_password server.cnf | sed 's/.*=//;s/^ *//'` || exit 1
|
|
|
|
openssl x509 -inform PEM -outform DER -in ca.pem -out ca.der || exit 1
|
|
|
|
+chgrp radiusd *
|