Alon Bar-Lev has uploaded a new change for review. Change subject: pki: renew CA for same length as enrollment ......................................................................
pki: renew CA for same length as enrollment Bug-Url: https://bugzilla.redhat.com/show_bug.cgi?id=1210486 Change-Id: If50c4f5930a6d3bde5f771ff00eb7e3400095c36 Signed-off-by: Alon Bar-Lev <alo...@redhat.com> --- M packaging/bin/pki-create-ca.sh 1 file changed, 3 insertions(+), 1 deletion(-) git pull ssh://gerrit.ovirt.org:29418/ovirt-engine refs/changes/24/40324/1 diff --git a/packaging/bin/pki-create-ca.sh b/packaging/bin/pki-create-ca.sh index 1222f4b..9e306dd 100755 --- a/packaging/bin/pki-create-ca.sh +++ b/packaging/bin/pki-create-ca.sh @@ -1,5 +1,6 @@ #!/bin/sh +CA_DAYS="3650" KEYTOOL="${JAVA_HOME:-/usr}/bin/keytool" clean_pki_dir() { @@ -78,7 +79,7 @@ -keyfile private/ca.pem \ -selfsign \ -subj "${subject}" \ - -days 3650 \ + -days "${CA_DAYS}" \ -startdate "$(date --utc --date "now -1 days" +"%y%m%d%H%M%SZ")" ) || die "Cannot enroll CA certificate" @@ -90,6 +91,7 @@ -signkey "${PKIDIR}/private/ca.pem" \ -in "${PKIDIR}/ca.pem" \ -out "${PKIDIR}/ca.pem.new" \ + -days "${CA_DAYS}" \ || die "Cannot renew CA certificate" common_backup "${PKIDIR}/ca.pem" || die "Cannot backup CA certificate" -- To view, visit https://gerrit.ovirt.org/40324 To unsubscribe, visit https://gerrit.ovirt.org/settings Gerrit-MessageType: newchange Gerrit-Change-Id: If50c4f5930a6d3bde5f771ff00eb7e3400095c36 Gerrit-PatchSet: 1 Gerrit-Project: ovirt-engine Gerrit-Branch: ovirt-engine-3.5.3 Gerrit-Owner: Alon Bar-Lev <alo...@redhat.com> _______________________________________________ Engine-patches mailing list Engine-patches@ovirt.org http://lists.ovirt.org/mailman/listinfo/engine-patches
