search

egberts / tls-ca-manage

Multi-level Certificate Authority Management tool, front-end tool to OpenSSL, written in bash shell.
MIT License
40 stars 8 forks source link

tls-cert-manage.sh seems to fail for "codesign" in hierarchical non-nested mode #6

Open joaocc opened 2 years ago

joaocc commented 2 years ago 
/work/bin/tls-ca-manage/tls-cert-manage.sh create -v -v --algorithm rsa --keysize 2048 --message-digest sha256 --cipher aes256 --base-dir=/work.ca-data/base22a appname-220307a codesign org22a.id.codesign
genpkey: Can't open "/work.ca-data/base22a/certs/appname-220307a.key" for writing, No such file or directory

CA in non-nested, non-traditional mode looks like this:

/
    etc/
        org22a.id.codesign-ca.cnf
        ...
        org22a.id.codesign-ca__codesign__appname-220307a__ext.cnf
        org22a.id.codesign-ca__codesign__appname-220307a__req.cnf
    crl/
    ca/
        org22a.id.codesign-ca/
            private/
            db/
            PARENT_CA
        org22a.id.codesign-ca-chain.pem
        org22a.id.codesign-ca.crt
        org22a.id.codesign-ca.csr

certs folder seems to be missing

egberts commented 2 years ago

just so you know, I use Bash Pro plugin with JetBrain PyCharm, community-edition to be able to view all that variables during debugging bash script. could not have done it without this IDE tool.