TrueCloudLab/frostfs-dev-env
40
0
Fork 17
Code Issues 14 Pull requests 1 Releases Activity Actions

[#205] services/storage: Determine certificate presence at runtime

Browse source 
`ifeq` executes during parsing, because of this `make down clean up`
doesn't work as expected.

Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru>
This commit is contained in:
Evgenii Stratonikov 2022-08-23 17:11:03 +03:00 committed by fyrchik
parent ac34ec1f33
commit e62b223f25
1 changed files with 9 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
services/storage/artifacts.mk
View file

@ -1,6 +1,7 @@
# Create new tls certs # Create new tls certs
STORAGE_DIR=$(patsubst %/,%,$(dir $(abspath $(lastword $(MAKEFILE_LIST))))) CURRENT_DIR=$(dir $(abspath $(lastword $(MAKEFILE_LIST))))
STORAGE_DIR=$(patsubst %/,%,$(CURRENT_DIR))
SSL_CONFIG := $(shell mktemp) SSL_CONFIG := $(shell mktemp)
get.storage: get.storage:
@ -10,8 +11,10 @@ get.storage:
echo "req_extensions=san"; \ echo "req_extensions=san"; \
echo "[san]"; \ echo "[san]"; \
echo "subjectAltName=DNS:s04.${LOCAL_DOMAIN}") > ${SSL_CONFIG} echo "subjectAltName=DNS:s04.${LOCAL_DOMAIN}") > ${SSL_CONFIG}
ifeq ($(shell ! test -e ${STORAGE_DIR}/s04tls.key && echo -n yes),yes) @echo $(test -e "${STORAGE_DIR}/s04tls.key" && echo true)
@openssl req -new -newkey rsa:4096 -x509 -sha256 -days 365 -nodes \ @if [ ! -e "${STORAGE_DIR}/s04tls.key" ]; then \
openssl req -new -newkey rsa:4096 -x509 -sha256 -days 365 -nodes \
-subj "/C=RU/ST=SPB/L=St.Petersburg/O=NSPCC/OU=NSPCC/CN=s04.${LOCAL_DOMAIN}" \ -subj "/C=RU/ST=SPB/L=St.Petersburg/O=NSPCC/OU=NSPCC/CN=s04.${LOCAL_DOMAIN}" \
-keyout ${STORAGE_DIR}/s04tls.key -out ${STORAGE_DIR}/s04tls.crt -extensions san -config ${SSL_CONFIG} -keyout "${STORAGE_DIR}/s04tls.key" -out "${STORAGE_DIR}/s04tls.crt" \
endif -extensions san -config "${SSL_CONFIG}" ; \
fi