- A small refactor of error handling.

b1aca711 · nimrod · 82ff83a0 · b1aca711
Commit b1aca711 authored 7 years ago by nimrod
--- a/ssl-ca
+++ b/ssl-ca
 #!/bin/sh
 set -eu
-which openssl >/dev/null || ( echo "Can't find openssl." >&2; exit 1)
+die () {
+    echo "$@" >&2
+    exit 1
+}
+which openssl >/dev/null || die "Can't find openssl."
 #seed="$(hexdump -n10 -e '10/1 "%02o" "\n"' /dev/urandom)"
 config=\
 "[ ca ]
@@ -106,19 +111,16 @@ sign_key () {
    local csr cn
    if [ $# -lt 1 ] || [ "$1" = "" ]
    then
-        echo "No host specified." >&2
+        die "No host specified."
-        exit 1
    fi
    if [ ! -f CA.crt ] || [ ! -f CA.key ] || [ ! -d keys ] || [ ! -d certs ] ||
        [ ! -f openssl.cnf ]
    then
-        echo "CA isn't initialized properly." >&2
+        die "CA isn't initialized properly."
-        exit 1
    fi
    if [ ! -f "keys/$1" ]
    then
-        echo "Can't find key to sign." >&2
+        die "Can't find key to sign."
-        exit 1
    fi
    csr="$(mktemp -t ssl-ca-XXXXXXXXX)"
    cn="$1.$(basename "$PWD")"
@@ -145,18 +147,15 @@ sign_key () {
 gen_key () {
    if [ $# -lt 1 ] || [ "$1" = "" ]
    then
-        echo "No host specified." >&2
+        die "No host specified."
-        exit 1
    fi
    if [ ! -d keys ]
    then
-        echo "keys directory doesn't exists, run ssl-ca init to rectify." >&2
+        die "keys directory doesn't exists, run ssl-ca init to rectify."
-        exit 1
    fi
    if [ -e "keys/$1" ]
    then
-        echo "Key already exists." >&2
+        die "Key already exists."
-        exit 1
    fi
    openssl genrsa -out "keys/$1" 2048
 }