Lines Matching full:ca
10 # Wrapper around the ca to make it easier to use
18 my @OPENSSL_CMDS = ("req", "ca", "pkcs12", "x509", "verify");
29 my @CA = (@openssl, "ca", @OPENSSL_CONFIG);
275 …CA.pl -newcert | -newreq | -newreq-nodes | -xsign | -sign | -signCA | -signcert | -crl | -newca [-…
276 CA.pl -pkcs12 [certname]
277 CA.pl -verify certfile ...
278 CA.pl -revoke certfile [reason]
316 # ask user for existing CA certificate
317 print "CA certificate filename (or enter to create)\n";
325 print "Making CA certificate ...\n";
328 $RET = run(@CA, qw(-create_serial -out), "${CATOP}/$CACERT", @CADAYS,
330 @EXTENSIONS, "-infiles", "${CATOP}/$CAREQ", @{$EXTRA{ca}})
332 print "CA certificate is in ${CATOP}/$CACERT\n" if $RET == 0;
342 $RET = run(@CA, @POLICY, "-infiles", $NEWREQ, @{$EXTRA{ca}});
344 $RET = run(@CA, @POLICY, "-out", $NEWCERT,
345 "-infiles", $NEWREQ, @{$EXTRA{ca}});
348 $RET = run(@CA, @POLICY, "-out", $NEWCERT, @EXTENSIONS,
349 "-infiles", $NEWREQ, @{$EXTRA{ca}});
350 print "Signed CA certificate is in $NEWCERT\n" if $RET == 0;
354 $RET = run(@CA, @POLICY, "-out", $NEWCERT,
355 qw(-infiles tmp.pem), @{$EXTRA{ca}}) if $RET == 0;
364 $RET = run(@CA, qw(-gencrl -out), "${CATOP}/crl/$CACRL", @{$EXTRA{ca}});
375 $RET = run(@CA, "-revoke", $cname, @reason, @{$EXTRA{ca}});