diff options
author | Thomas Lange <code@nerdmind.de> | 2022-11-01 14:22:29 +0100 |
---|---|---|
committer | Thomas Lange <code@nerdmind.de> | 2022-11-01 14:36:28 +0100 |
commit | c17cf529c48659d10eb3444c9f628f895e9cfead (patch) | |
tree | 082c612290634af6c3f8ea673a2d890a64ca75cb | |
parent | a4baf04d0c0345310579c63a51ff1af58ebb7b4e (diff) | |
download | painlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.tar.gz painlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.tar.xz painlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.zip |
Use PEM format for temporary CSR file
The Certificate-Signing-Request file which is passed to Certbot must be
encoded either in PEM or DER format. Because PEM is the default, we can
omit the unnecessary "-outform der" option of the openssl command.
-rwxr-xr-x | package/sbin/painless-le | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/sbin/painless-le b/package/sbin/painless-le index 124bbe8..d910db0 100755 --- a/package/sbin/painless-le +++ b/package/sbin/painless-le @@ -80,7 +80,7 @@ trap 'rm ${REQUESTFILE}' EXIT # Create Certificate-Signing-Request #=============================================================================== openssl req -config <(cat "${OPENSSLCONF}" <(printf "[SAN]\nsubjectAltName=DNS:`echo ${DNS_DOMAIN} | sed "s/ /,DNS:/g"`")) \ - -new -sha256 -key "${CONFIDENTIAL}" -out "${REQUESTFILE}" -outform der -reqexts SAN -subj "/" + -new -sha256 -key "${CONFIDENTIAL}" -out "${REQUESTFILE}" -reqexts SAN -subj "/" #=============================================================================== # Check if Certificate-Signing-Request creation failed |