1#!/bin/bash 2 3CERT_EXPIRE_DAYS="$(( 365 * 15 ))" 4DIR="$(dirname "$0")" 5 6 7if [[ "$PWD" != *tdir ]] 8then 9 echo "You should run this script with a .tdir directory" 10 exit 1 11fi 12 13for i in 1 2 14do 15 # Ephemeral key 16 rm -f "${i}.key" 17 dnscrypt-wrapper --gen-crypt-keypair \ 18 --crypt-secretkey-file="${i}.key" \ 19 --provider-publickey-file="${DIR}/keys${i}/public.key" \ 20 --provider-secretkey-file="${DIR}/keys${i}/secret.key" 21 # Cert file 22 for cipher in salsa chacha 23 do 24 rm -f "${i}_${cipher}.cert" 25 extraarg="" 26 if [ "${cipher}" == "chacha" ] 27 then 28 extraarg="-x" 29 fi 30 31 dnscrypt-wrapper ${extraarg} --gen-cert-file \ 32 --provider-cert-file="${i}_${cipher}.cert" \ 33 --crypt-secretkey-file="${i}.key" \ 34 --provider-publickey-file="${DIR}/keys${i}/public.key" \ 35 --provider-secretkey-file="${DIR}/keys${i}/secret.key" \ 36 --cert-file-expire-days="${CERT_EXPIRE_DAYS}" 37 done 38done 39