Commit e6a32284 authored by godog's avatar godog

remove useless -keyfile, read from config

parent e0d9a42e
......@@ -118,7 +118,6 @@ class CA(object):
openssl_wrap.run_with_config(
self.basedir, self.files.conf, self._getpw(),
'ca', '-selfsign',
'-keyfile', self.files.private_key,
'-in', csr_file,
'-out', self.files.public_key,
'-md', self.config['signature_algorithm'],
......@@ -146,8 +145,7 @@ class CA(object):
tmpf = self.files.crl + '.tmp'
openssl_wrap.run_with_config(
self.basedir, self.files.conf, self._getpw(),
'ca', '-gencrl', '-out', tmpf,
'-keyfile', self.files.private_key)
'ca', '-gencrl', '-out', tmpf)
# Convert to DER format for distribution.
openssl_wrap.run(
'crl', '-inform', 'PEM', '-outform', 'DER',
......@@ -159,8 +157,7 @@ class CA(object):
log.info('revoking certificate %s', cert.name)
openssl_wrap.run_with_config(
self.basedir, self.files.conf, self._getpw(),
'ca', '-revoke', cert.public_key_file,
'-keyfile', self.files.private_key)
'ca', '-revoke', cert.public_key_file)
self.gencrl()
def verify(self, path):
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment