-out flag

Question

-out flag

bootstraponline opened this issue 7 years ago · 2 comments

An -out flag as exists in openssl would be nice. Currently files need to be copied manually when the same common name is used.

etcd-release has the same issue https://github.com/cloudfoundry-incubator/etcd-release/blob/master/scripts/generate-certs

# CA
certstrap --depot-path . init --passphrase '' --common-name example.com --key-bits $SIZE
mv ./example.com.key ./ca.key
mv ./example.com.crt ./ca.crt
mv ./example.com.crl ./ca.crl

# Server
certstrap --depot-path . request-cert --passphrase '' --common-name example.com --domain 'example.com'  --key-bits $SIZE
mv ./example.com.key server.key
mv ./example.com.csr server.csr

certstrap --depot-path . sign server --CA ca
openssl pkcs8 -topk8 -nocrypt -in server.key -out server.pem

# Client
certstrap --depot-path . request-cert --passphrase '' --common-name example.com --domain 'example.com'  --key-bits $SIZE
mv ./example.com.key client.key
mv ./example.com.csr client.csr

#54

Answer 1 · 2020-05-10T01:04:22.000Z

Seems merged pull request #81 fixes this issue. @mcpherrinm. This issue could be leftover.

Answer 2 · 2020-05-28T06:54:35.000Z

yup, thanks for the reminder