-
Notifications
You must be signed in to change notification settings - Fork 1.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
easyrsa_openssl(): makesafecnf - Copy temp-file do NOT move it
Command 'easyrsa_openssl makesafecnf' is used internally to create a safe SSL config file. (By status reports, read_db()) Once the safe SSL config file has been named as a temp-file and created, the script continues to use that temp-file as the master copy, it does not recreate a safe SSL config file for subsequent calls to easyrsa_openssl(). Therefore, the temp-file MUST be copied to the standard safe SSL file not moved. Otherwise, the named temp-file is removed. Also, move the assignment of the safe SSL temp-file to the correct place. This means that a new temp-file wiill only be assigned once. Also, verify that the safe SSL temp-file exists when it is expected to. Also, change use of '--no--safe-ssl' with LibreSSL to a FATAL error. Other changes are for error and verbose messages. Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
- Loading branch information
1 parent
e254ee4
commit 906df2d
Showing
1 changed file
with
51 additions
and
21 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters