version 2.1_beta1

git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@581 e7ae566f-a301-0410-adde-c780ea21d3b5
author: james <james@e7ae566f-a301-0410-adde-c780ea21d3b5> 2005-09-26 07:40:02 +0000
committer: james <james@e7ae566f-a301-0410-adde-c780ea21d3b5> 2005-09-26 07:40:02 +0000
commit: 3c7f2f553be4b3ba9412c1b3f64a258c469d78f4 (patch)
tree: 9d58836b0f1eade372de7ce15c41d6555d55ef21 /easy-rsa/1.0/revoke-full
parent: This is the start of the BETA21 branch. (diff)
download: openvpn-3c7f2f553be4b3ba9412c1b3f64a258c469d78f4.tar.xz
1 files changed, 29 insertions, 0 deletions
diff --git a/easy-rsa/1.0/revoke-full b/easy-rsa/1.0/revoke-full
new file mode 100755
index 0000000..66ea03f
--- /dev/null
+++ b/easy-rsa/1.0/revoke-full
@@ -0,0 +1,29 @@
+#!/bin/sh
+
+# revoke a certificate, regenerate CRL,
+# and verify revocation
+
+CRL=crl.pem
+RT=revoke-test.pem
+
+if test $# -ne 1; then
+        echo "usage: revoke-full <name>";
+        exit 1
+fi
+
+if test $KEY_DIR; then
+       cd $KEY_DIR
+       rm -f $RT
+
+       # revoke key and generate a new CRL
+       openssl ca -revoke $1.crt -config $KEY_CONFIG
+
+       # generate a new CRL
+       openssl ca -gencrl -out $CRL -config $KEY_CONFIG
+       cat ca.crt $CRL >$RT
+    
+       # verify the revocation
+       openssl verify -CAfile $RT -crl_check $1.crt
+else
+       echo you must define KEY_DIR
+fi
author	james <james@e7ae566f-a301-0410-adde-c780ea21d3b5>	2005-09-26 07:40:02 +0000
committer	james <james@e7ae566f-a301-0410-adde-c780ea21d3b5>	2005-09-26 07:40:02 +0000
commit	3c7f2f553be4b3ba9412c1b3f64a258c469d78f4 (patch)
tree	9d58836b0f1eade372de7ce15c41d6555d55ef21 /easy-rsa/1.0/revoke-full
parent	This is the start of the BETA21 branch. (diff)
download	openvpn-3c7f2f553be4b3ba9412c1b3f64a258c469d78f4.tar.xz