主页

索引

模块索引

搜索页面

验证是否与秘钥匹配

验证证书请求是否与秘钥匹配:

#!/bin/sh
if [[ "$1" = "" || "$2" = ""  ]]; then
  echo "certRequestCheck.sh  requestfile keyfile "
  exit 0;
else
  value=`openssl req -text -noout -in $1  | grep "Public Key Algorithm:" | awk  -F ':'  'BEGIN {}  {print $2} END {}'`


  if [ "$value" = " rsaEncryption" ] ; then
    echo $value

    requestModuleMd5=`openssl req -modulus -in $1 | grep Modulus | openssl md5`
    privateModuleMd5=`openssl rsa -noout -modulus -in $2 | openssl md5`

  else
    `openssl ec -in $2 -pubout -out ecpubkey.pem `
    privateModuleMd5=`cat ecpubkey.pem | openssl md5`
    requestModuleMd5=`openssl req -in $1  -pubkey  -noout | openssl md5`

  fi
  if [  "$requestModuleMd5" = "$privateModuleMd5" ] ; then
    echo "ok"
  fi

fi

验证公钥证书是否和秘钥匹配:

#!/bin/sh
if [[ "$1" = "" || "$2" = "" ]]; then
  echo "certCheck.sh  certfile keyfile"
  exit 0;
else
  #certModuleMd5=`openssl x509 -noout -modulus -in $1 | openssl md5`
  #privateModuleMd5=`openssl rsa -noout -modulus -in $2 | openssl md5`


        #if [  "$certModuleMd5" = "$privateModuleMd5" ] ; then
        #        echo "ok"
  #else
  # echo "not ok"
        #fi
        value=`openssl x509 -text -noout -in $1  | grep "Public Key Algorithm:" | awk  -F ':'  'BEGIN {}  {print $2} END {}'`

        if [ "$value" = " rsaEncryption" ] ; then
                echo $value

                requestModuleMd5=`openssl x509 -modulus -in $1 | grep Modulus | openssl md5`
                privateModuleMd5=`openssl rsa -noout -modulus -in $2 | openssl md5`

        else
                `openssl ec -in $2 -pubout -out ecpubkey.pem `
                privateModuleMd5=`cat ecpubkey.pem | openssl md5`
                requestModuleMd5=`openssl x509 -in $1  -pubkey  -noout | openssl md5`

        fi
        if [  "$requestModuleMd5" = "$privateModuleMd5" ] ; then
                echo "ok"
        fi
fi

主页

索引

模块索引

搜索页面