Overview
| Comment: | Added Makefile to generate certs for federal CA chain |
|---|---|
| Downloads: | Tarball | ZIP archive | SQL archive |
| Timelines: | family | ancestors | descendants | both | piv |
| Files: | files | file ages | folders |
| SHA1: |
69e6931bb8e17824eb2c44c141990bbd |
| User & Date: | rkeene on 2013-01-10 05:02:10 |
| Other Links: | branch diff | manifest | tags |
Context
|
2013-01-10
| ||
| 05:07 | Added Makefile to download DoD Root CAs check-in: d97a4f9c8a user: rkeene tags: piv | |
| 05:02 | Added Makefile to generate certs for federal CA chain check-in: 69e6931bb8 user: rkeene tags: piv | |
| 05:00 | Cleaned up debug messages check-in: cfa10c1ef8 user: rkeene tags: piv | |
Changes
Added build/certs/federal/Makefile version [f3527cc8d2].
> > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 |
all: cert-1.crt CPCA_TRCA.crt
CPCA_TRCA.crt:
wget -O - --no-check-certificate https://pki.treas.gov/CPCA_TRCA.cer | openssl x509 -text > "$@.new"
mv "$@.new" "$@"
caCertsIssuedTofcpca.p7c:
wget -O "$@.new" http://http.fpki.gov/fcpca/caCertsIssuedTofcpca.p7c
mv "$@.new" "$@"
root_sia.p7b:
wget -O "$@.new" --no-check-certificate https://pki.treas.gov/root_sia.p7b
mv "$@.new" "$@"
cert-%.crt: root_sia.p7b caCertsIssuedTofcpca.p7c
idx=0; \
( \
openssl pkcs7 -in root_sia.p7b -inform DER -print_certs -text; \
openssl pkcs7 -in caCertsIssuedTofcpca.p7c -inform DER -print_certs -text; \
) | while IFS='' read -r line; do \
if [ -z "$${line}" ]; then \
continue; \
fi; \
echo "$${line}" >> "cert-$${idx}.crt"; \
if [ "$${line}" == "-----END CERTIFICATE-----" ]; then \
idx=$$[$$idx + 1]; \
fi; \
done
grep -l 'Subject: C=US, O=U.S. Government, OU=Department of the Treasury, OU=Certification Authorities, OU=US Treasury Root CA' cert-*.crt | xargs rm -f
clean:
rm -f cert-*.crt
rm -f CPCA_TRCA.crt.new root_sia.p7b.new caCertsIssuedTofcpca.p7c.new
distclean: clean
rm -f CPCA_TRCA.crt root_sia.p7b caCertsIssuedTofcpca.p7c
|