24 lines
786 B
Makefile
24 lines
786 B
Makefile
cert-renew.sh = $(CHROOT)/etc/ssl/cert-renew.sh
|
|
ca.pem = $(CHROOT)/etc/squid/ssl/ca.pem
|
|
ssl_db = $(CHROOT)/var/lib/squid/ssl_db
|
|
|
|
systemd-units: appliance/cert-renew.service appliance/cert-renew.timer
|
|
mkdir -p $(CHROOT)/usr/local/bin
|
|
cp appliance/cert-renew.service appliance/cert-renew.timer $(CHROOT)/etc/systemd/system/
|
|
|
|
$(cert-renew.sh): appliance/cert-renew.sh
|
|
mkdir -p $(CHROOT)/etc/ssl
|
|
cp $< $@
|
|
|
|
$(ca.pem):
|
|
mkdir -p $(CHROOT)/etc/squid/ssl
|
|
openssl req -new -newkey rsa:2048 -subj '/C=DE/CN=proxy.example.net' -days 3650 -nodes -x509 -keyout $@ -out $@
|
|
|
|
$(ssl_db):
|
|
RUN /usr/libexec/squid/security_file_certgen -c -s /var/lib/squid/ssl_db -M 20MB
|
|
RUN chown -R squid:squid /var/lib/squid/ssl_db
|
|
|
|
preinstall:
|
|
|
|
postinstall: systemd-units $(cert-renew.sh) $(ca.pem) $(ssl_db)
|