3 # Directory to use for storing intermediate files.
5 WORKDIR=${WORKDIR:-$(mktemp -d -u -t pmem-XXXX)}
9 # Check for cfssl utilities.
11 (command -v cfssl 2>&1 >/dev/null && command -v cfssljson 2>&1 >/dev/null) || cfssl_found=0
12 if [ $cfssl_found -eq 0 ]; then
13 echo "cfssl tools not found, Please install cfssl and cfssljson."
17 # Generate CA certificates.
18 <<EOF cfssl -loglevel=3 gencert -initca - | cfssljson -bare ca
28 # Generate server and client certificates.
29 DEFAULT_CNS="pmem-registry pmem-node-controller"
30 CNS="${DEFAULT_CNS} ${EXTRA_CNS:=""}"
31 for name in ${CNS}; do
32 <<EOF cfssl -loglevel=3 gencert -ca=ca.pem -ca-key=ca-key.pem - | cfssljson -bare $name
36 $(if [ "$name" = "pmem-registry" ]; then
37 # Some extra names needed for scheduler extender and webhook.
38 echo '"pmem-csi-scheduler", "pmem-csi-scheduler.default", "pmem-csi-scheduler.default.svc", "127.0.0.1",'
39 # And for metrics server.
40 echo '"pmem-csi-metrics", "pmem-csi-metrics.default", "pmem-csi-metrics.default.svc",'