#!/bin/bash

openssl req -x509 -newkey ED25519 -sha256 -days 999 -noenc \
  -keyout backdoor.key -out backdoor.crt -subj "/CN=${1:-$LOGNAME}"