generateTime.sh

   1 #!/bin/bash
   2
   3 . structure
   4 . commonFunctions
   5
   6 [ "$1" == "" ] && echo "Usage: $0 <year>" && exit 1
   7 year=$1
   8
   9 genTimeCA(){ #csr,ca to sign with,start,end
  10     cat <<TESTCA > timesubca.cnf
  11 basicConstraints = CA:true
  12 subjectKeyIdentifier = hash
  13 keyUsage = keyCertSign, cRLSign
  14 crlDistributionPoints=URI:http://g2.crl.cacert.org/g2/$2.crl
  15 authorityInfoAccess = OCSP;URI:http://g2.ocsp.cacert.org,caIssuers;URI:http://g2.crt.cacert.org/$2.crt
  16 TESTCA
  17     caSign $1 $2 timesubca.cnf "$3" "$4"
  18     rm timesubca.cnf
  19 }
  20
  21 mkdir -p $year/ca
  22
  23
  24 STARTDATE="${year:2}"
  25 ENDDATE="$((${year:2} + 2))"
  26
  27 for i in $TIME_IDX; do
  28     point=${points[${i}]}
  29     . CAs/env
  30     genca "/CN=$name ${year}-${i}" $year/ca/env_${year}_${i}
  31     genTimeCA $year/ca/env_${year}_${i}.ca/key env "$STARTDATE$point" "$ENDDATE$point"
  32
  33     for ca in $STRUCT_CAS; do
  34         [ "$ca" == "env" ] && continue
  35         . CAs/$ca
  36         genKey "/CN=$name ${year}-${i}" $year/ca/${ca}_${year}_${i}
  37         genTimeCA $year/ca/${ca}_${year}_${i} $ca "$STARTDATE$point" "$ENDDATE$point"
  38     done
  39 done