aboutsummaryrefslogtreecommitdiffstats
path: root/package/sbin
diff options
context:
space:
mode:
authorThomas Lange <code@nerdmind.de>2022-11-01 14:22:29 +0100
committerThomas Lange <code@nerdmind.de>2022-11-01 14:36:28 +0100
commitc17cf529c48659d10eb3444c9f628f895e9cfead (patch)
tree082c612290634af6c3f8ea673a2d890a64ca75cb /package/sbin
parenta4baf04d0c0345310579c63a51ff1af58ebb7b4e (diff)
downloadpainlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.tar.gz
painlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.tar.xz
painlessle-c17cf529c48659d10eb3444c9f628f895e9cfead.zip
Use PEM format for temporary CSR file
The Certificate-Signing-Request file which is passed to Certbot must be encoded either in PEM or DER format. Because PEM is the default, we can omit the unnecessary "-outform der" option of the openssl command.
Diffstat (limited to 'package/sbin')
-rwxr-xr-xpackage/sbin/painless-le2
1 files changed, 1 insertions, 1 deletions
diff --git a/package/sbin/painless-le b/package/sbin/painless-le
index 124bbe8..d910db0 100755
--- a/package/sbin/painless-le
+++ b/package/sbin/painless-le
@@ -80,7 +80,7 @@ trap 'rm ${REQUESTFILE}' EXIT
# Create Certificate-Signing-Request
#===============================================================================
openssl req -config <(cat "${OPENSSLCONF}" <(printf "[SAN]\nsubjectAltName=DNS:`echo ${DNS_DOMAIN} | sed "s/ /,DNS:/g"`")) \
- -new -sha256 -key "${CONFIDENTIAL}" -out "${REQUESTFILE}" -outform der -reqexts SAN -subj "/"
+ -new -sha256 -key "${CONFIDENTIAL}" -out "${REQUESTFILE}" -reqexts SAN -subj "/"
#===============================================================================
# Check if Certificate-Signing-Request creation failed