Using no-admin mode WARNING: openssl isn't in your system PATH. The openssl binary must be available in the PATH, defined in the 'vars' file, or defined in a named environment variable. See README-Windows.txt for more info. Welcome to the EasyRSA 3 Shell for Windows. Easy-RSA 3 is available under a GNU GPLv2 license. Invoke 'easyrsa' to call the program. Without commands, help is displayed. Using directory: C://Users/lev/easy-rsa BusyBox v1.37.0.git (2023-02-08 03:50:15 GMT) built-in shell (ash) Enter 'help' for a list of built-in commands. EasyRSA Shell # easyrsa --pki=erut-w11 + EASYRSA_version='~VER~' + NL=' ' + print 'DEBUG: EasyRSA: Windows protected write access' + printf '%s\n' 'DEBUG: EasyRSA: Windows protected write access' DEBUG: EasyRSA: Windows protected write access + '[' ] + umask 077 + trap 'cleanup $?' EXIT + trap 'exit 1' 1 + trap 'exit 2' 2 + trap 'exit 3' 3 + trap 'exit 6' 6 + trap 'exit 15' 15 + detect_host + unset -v easyrsa_ver_test easyrsa_host_os easyrsa_host_test easyrsa_win_git_bash + '[' Windows_NT ] + easyrsa_host_test=Windows_NT + easyrsa_ksh='@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' + '[' '=' '@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' ] + unset -v easyrsa_ksh + '[' Windows_NT ] + easyrsa_host_os=win + easyrsa_uname=Windows_NT + easyrsa_shell=/bin/sh + '[' ] + easyrsa_ver_test= + '[' ] + host_out='Host: dev' + host_out='Host: dev | win | Windows_NT | /bin/sh' + host_out='Host: dev | win | Windows_NT | /bin/sh' + unset -v easyrsa_ver_test easyrsa_host_test + unset -v verify_ssl_lib_ok secured_session working_safe_ssl_conf working_safe_org_conf makesafeconf alias_days prohibit_no_pass invalid_vars do_build_full error_build_full_cleanup internal_batch mv_temp_error easyrsa_exit_with_error error_info legacy_file_over_write + prompt_restore=0 + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--pki + val=erut-w11 + '[' --pki '=' erut-w11 ] + '[' erut-w11 ] + export 'EASYRSA_PKI=erut-w11' + '[' ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt= + val= + '[' '=' ] + is_empty=1 + '[' ] + is_empty=1 + break + cmd= + '[' ] + unset -v require_pki require_ca quiet_vars + quiet_vars=1 + select_vars + '[' ] + '[' erut-w11 ] + '[' -e erut-w11/vars ] + '[' ] + '[' -e C:/Users/lev/easy-rsa/pki/vars ] + '[' -e C:/Users/lev/easy-rsa/vars ] + '[' -z ] + verbose 'select_vars: No vars' + '[' ] + return 0 + return 1 + verbose 'No Easy-RSA '"'"'vars'"'"' configuration file exists!' + '[' ] + return 0 + default_vars + set_var EASYRSA C:/Users/lev/easy-rsa + '[' -z 'EASYRSA C:/Users/lev/easy-rsa' ] + '[' -z ] + eval 'export "EASYRSA"="${EASYRSA-C:/Users/lev/easy-rsa}"' + export 'EASYRSA=C:/Users/lev/easy-rsa' + return + set_var EASYRSA_OPENSSL openssl + '[' -z 'EASYRSA_OPENSSL openssl' ] + '[' -z ] + eval 'export "EASYRSA_OPENSSL"="${EASYRSA_OPENSSL-openssl}"' + export 'EASYRSA_OPENSSL=openssl' + return + set_var EASYRSA_PKI C:/Users/lev/easy-rsa/pki + '[' -z 'EASYRSA_PKI C:/Users/lev/easy-rsa/pki' ] + '[' -z ] + eval 'export "EASYRSA_PKI"="${EASYRSA_PKI-C:/Users/lev/easy-rsa/pki}"' + export 'EASYRSA_PKI=erut-w11' + return + set_var EASYRSA_DN cn_only + '[' -z 'EASYRSA_DN cn_only' ] + '[' -z ] + eval 'export "EASYRSA_DN"="${EASYRSA_DN-cn_only}"' + export 'EASYRSA_DN=cn_only' + return + set_var EASYRSA_REQ_COUNTRY US + '[' -z 'EASYRSA_REQ_COUNTRY US' ] + '[' -z ] + eval 'export "EASYRSA_REQ_COUNTRY"="${EASYRSA_REQ_COUNTRY-US}"' + export 'EASYRSA_REQ_COUNTRY=US' + return + set_var EASYRSA_REQ_PROVINCE California + '[' -z 'EASYRSA_REQ_PROVINCE California' ] + '[' -z ] + eval 'export "EASYRSA_REQ_PROVINCE"="${EASYRSA_REQ_PROVINCE-California}"' + export 'EASYRSA_REQ_PROVINCE=California' + return + set_var EASYRSA_REQ_CITY 'San Francisco' + '[' -z 'EASYRSA_REQ_CITY San Francisco' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CITY"="${EASYRSA_REQ_CITY-San Francisco}"' + export 'EASYRSA_REQ_CITY=San Francisco' + return + set_var EASYRSA_REQ_ORG 'Copyleft Certificate Co' + '[' -z 'EASYRSA_REQ_ORG Copyleft Certificate Co' ] + '[' -z ] + eval 'export "EASYRSA_REQ_ORG"="${EASYRSA_REQ_ORG-Copyleft Certificate Co}"' + export 'EASYRSA_REQ_ORG=Copyleft Certificate Co' + return + set_var EASYRSA_REQ_EMAIL me@example.net + '[' -z 'EASYRSA_REQ_EMAIL me@example.net' ] + '[' -z ] + eval 'export "EASYRSA_REQ_EMAIL"="${EASYRSA_REQ_EMAIL-me@example.net}"' + export 'EASYRSA_REQ_EMAIL=me@example.net' + return + set_var EASYRSA_REQ_OU 'My Organizational Unit' + '[' -z 'EASYRSA_REQ_OU My Organizational Unit' ] + '[' -z ] + eval 'export "EASYRSA_REQ_OU"="${EASYRSA_REQ_OU-My Organizational Unit}"' + export 'EASYRSA_REQ_OU=My Organizational Unit' + return + set_var EASYRSA_REQ_SERIAL + '[' -z 'EASYRSA_REQ_SERIAL ' ] + '[' -z ] + eval 'export "EASYRSA_REQ_SERIAL"="${EASYRSA_REQ_SERIAL-}"' + export 'EASYRSA_REQ_SERIAL=' + return + set_var EASYRSA_ALGO rsa + '[' -z 'EASYRSA_ALGO rsa' ] + '[' -z ] + eval 'export "EASYRSA_ALGO"="${EASYRSA_ALGO-rsa}"' + export 'EASYRSA_ALGO=rsa' + return + set_var EASYRSA_KEY_SIZE 2048 + '[' -z 'EASYRSA_KEY_SIZE 2048' ] + '[' -z ] + eval 'export "EASYRSA_KEY_SIZE"="${EASYRSA_KEY_SIZE-2048}"' + export 'EASYRSA_KEY_SIZE=2048' + return + : + set_var EASYRSA_CA_EXPIRE 3650 + '[' -z 'EASYRSA_CA_EXPIRE 3650' ] + '[' -z ] + eval 'export "EASYRSA_CA_EXPIRE"="${EASYRSA_CA_EXPIRE-3650}"' + export 'EASYRSA_CA_EXPIRE=3650' + return + set_var EASYRSA_CERT_EXPIRE 825 + '[' -z 'EASYRSA_CERT_EXPIRE 825' ] + '[' -z ] + eval 'export "EASYRSA_CERT_EXPIRE"="${EASYRSA_CERT_EXPIRE-825}"' + export 'EASYRSA_CERT_EXPIRE=825' + return + set_var EASYRSA_PRE_EXPIRY_WINDOW 90 + '[' -z 'EASYRSA_PRE_EXPIRY_WINDOW 90' ] + '[' -z ] + eval 'export "EASYRSA_PRE_EXPIRY_WINDOW"="${EASYRSA_PRE_EXPIRY_WINDOW-90}"' + export 'EASYRSA_PRE_EXPIRY_WINDOW=90' + return + set_var EASYRSA_CRL_DAYS 180 + '[' -z 'EASYRSA_CRL_DAYS 180' ] + '[' -z ] + eval 'export "EASYRSA_CRL_DAYS"="${EASYRSA_CRL_DAYS-180}"' + export 'EASYRSA_CRL_DAYS=180' + return + set_var EASYRSA_NS_SUPPORT no + '[' -z 'EASYRSA_NS_SUPPORT no' ] + '[' -z ] + eval 'export "EASYRSA_NS_SUPPORT"="${EASYRSA_NS_SUPPORT-no}"' + export 'EASYRSA_NS_SUPPORT=no' + return + set_var EASYRSA_NS_COMMENT 'Easy-RSA (~VER~) Generated Certificate' + '[' -z 'EASYRSA_NS_COMMENT Easy-RSA (~VER~) Generated Certificate' ] + '[' -z ] + eval 'export "EASYRSA_NS_COMMENT"="${EASYRSA_NS_COMMENT-Easy-RSA (~VER~) Generated Certificate}"' + export 'EASYRSA_NS_COMMENT=Easy-RSA (~VER~) Generated Certificate' + return + set_var EASYRSA_TEMP_DIR erut-w11 + '[' -z 'EASYRSA_TEMP_DIR erut-w11' ] + '[' -z ] + eval 'export "EASYRSA_TEMP_DIR"="${EASYRSA_TEMP_DIR-erut-w11}"' + export 'EASYRSA_TEMP_DIR=erut-w11' + return + set_var EASYRSA_REQ_CN ChangeMe + '[' -z 'EASYRSA_REQ_CN ChangeMe' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CN"="${EASYRSA_REQ_CN-ChangeMe}"' + export 'EASYRSA_REQ_CN=ChangeMe' + return + set_var EASYRSA_DIGEST sha256 + '[' -z 'EASYRSA_DIGEST sha256' ] + '[' -z ] + eval 'export "EASYRSA_DIGEST"="${EASYRSA_DIGEST-sha256}"' + export 'EASYRSA_DIGEST=sha256' + return + set_var EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf + '[' -z 'EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SAFE_CONF"="${EASYRSA_SAFE_CONF-erut-w11/safessl-easyrsa.cnf}"' + export 'EASYRSA_SAFE_CONF=erut-w11/safessl-easyrsa.cnf' + return + set_var EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM + '[' -z 'EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM' ] + '[' -z ] + eval 'export "EASYRSA_KDC_REALM"="${EASYRSA_KDC_REALM-CHANGEME.EXAMPLE.COM}"' + export 'EASYRSA_KDC_REALM=CHANGEME.EXAMPLE.COM' + return + set_var EASYRSA_MAX_TEMP 4 + '[' -z 'EASYRSA_MAX_TEMP 4' ] + '[' -z ] + eval 'export "EASYRSA_MAX_TEMP"="${EASYRSA_MAX_TEMP-4}"' + export 'EASYRSA_MAX_TEMP=4' + return + validate_default_vars + unset -v unexpected_error + '[' ] + '[' ] + '[' -z ] + return + mutual_exclusions + '[' ] + '[' ] + '[' ] + '[' ] + '[' win '=' win ] + echo C:/Users/lev/easy-rsa + grep -q '/Prog.*/OpenVPN/easy-rsa' + verbose 'mutual_exclusions: COMPLETED' + '[' ] + return 0 + locate_support_files + ssl_cnf_file=openssl-easyrsa.cnf + x509_types_dir=x509-types + '[' -e erut-w11/x509-types ] + '[' -e erut-w11/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + set_var EASYRSA_EXT_DIR 'C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' -z 'EASYRSA_EXT_DIR C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + '[' -z ] + eval 'export "EASYRSA_EXT_DIR"="${EASYRSA_EXT_DIR-C:/Program Files/OpenVPN/easy-rsa/x509-types}"' + export 'EASYRSA_EXT_DIR=C:/Program Files/OpenVPN/easy-rsa/x509-types' + return + verbose '> Found x509 dir: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' ] + return 0 + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + set_var EASYRSA_SSL_CONF 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' -z 'EASYRSA_SSL_CONF C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SSL_CONF"="${EASYRSA_SSL_CONF-C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf}"' + export 'EASYRSA_SSL_CONF=C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + return + verbose '> Found SSL cnf: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' ] + return 0 + '[' -e /usr/local/share/easy-rsa/x509-types ] + '[' -e /usr/local/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /usr/share/easy-rsa/x509-types ] + '[' -e /usr/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /etc/easy-rsa/x509-types ] + '[' -e /etc/easy-rsa/openssl-easyrsa.cnf ] + verbose '> EASYRSA_EXT_DIR: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' ] + return 0 + verbose '> EASYRSA_SSL_CONF: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' ] + return 0 + verbose 'locate_support_files: COMPLETED' + '[' ] + return 0 + verify_ssl_lib + '[' ] + verify_ssl_lib_ok=1 + unset -v openssl_v3 + OPENSSL_CONF=/dev/null openssl version + val='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_version='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_lib=openssl + osslv_major='3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + osslv_major=3 + openssl_v3=1 + no_password=-noenc + verbose 'verify_ssl_lib(): Using SSL: * openssl OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + '[' ] + return 0 + '[' ] + verify_working_env + verbose 'verify_working_env: BEGIN' + '[' ] + return 0 + '[' ] + '[' -d erut-w11 ] + verbose 'verify_working_env: COMPLETED Handover-to: ' + '[' ] + return 0 + cmd_help + easyrsa_help_title='Usage: easyrsa [ OPTIONS.. ] [ cmd-opts.. ]' + unset -v text err_text opts text_only + usage + print ' Easy-RSA 3 usage and overview Usage: easyrsa [ OPTIONS.. ] [ cmd-opts.. ] To get detailed usage and help for a command, use: ./easyrsa help COMMAND For a list of global-options, use: ./easyrsa help options For a list of utility commands, use: ./easyrsa help util A list of commands is shown below: init-pki [ cmd-opts ] build-ca [ cmd-opts ] gen-dh gen-req [ cmd-opts ] sign-req [ cmd-opts ] build-client-full [ cmd-opts ] build-server-full [ cmd-opts ] build-serverClient-full [ cmd-opts ] inline revoke [ cmd-opts ] renew revoke-renewed [ cmd-opts ] gen-crl update-db show-req [ cmd-opts ] show-cert [ cmd-opts ] show-ca [ cmd-opts ] show-crl show-expire (Optional) show-revoke (Optional) show-renew (Optional) verify-cert import-req export-p1 [ cmd-opts ] export-p7 [ cmd-opts ] export-p8 [ cmd-opts ] export-p12 [ cmd-opts ] set-pass [ cmd-opts ] write [ cmd-opts ]' + printf '%s\n' ' Easy-RSA 3 usage and overview Usage: easyrsa [ OPTIONS.. ] [ cmd-opts.. ] To get detailed usage and help for a command, use: ./easyrsa help COMMAND For a list of global-options, use: ./easyrsa help options For a list of utility commands, use: ./easyrsa help util A list of commands is shown below: init-pki [ cmd-opts ] build-ca [ cmd-opts ] gen-dh gen-req [ cmd-opts ] sign-req [ cmd-opts ] build-client-full [ cmd-opts ] build-server-full [ cmd-opts ] build-serverClient-full [ cmd-opts ] inline revoke [ cmd-opts ] renew revoke-renewed [ cmd-opts ] gen-crl update-db show-req [ cmd-opts ] show-cert [ cmd-opts ] show-ca [ cmd-opts ] show-crl show-expire (Optional) show-revoke (Optional) show-renew (Optional) verify-cert import-req export-p1 [ cmd-opts ] export-p7 [ cmd-opts ] export-p8 [ cmd-opts ] export-p12 [ cmd-opts ] set-pass [ cmd-opts ] write [ cmd-opts ]' Easy-RSA 3 usage and overview Usage: easyrsa [ OPTIONS.. ] [ cmd-opts.. ] To get detailed usage and help for a command, use: ./easyrsa help COMMAND For a list of global-options, use: ./easyrsa help options For a list of utility commands, use: ./easyrsa help util A list of commands is shown below: init-pki [ cmd-opts ] build-ca [ cmd-opts ] gen-dh gen-req [ cmd-opts ] sign-req [ cmd-opts ] build-client-full [ cmd-opts ] build-server-full [ cmd-opts ] build-serverClient-full [ cmd-opts ] inline revoke [ cmd-opts ] renew revoke-renewed [ cmd-opts ] gen-crl update-db show-req [ cmd-opts ] show-cert [ cmd-opts ] show-ca [ cmd-opts ] show-crl show-expire (Optional) show-revoke (Optional) show-renew (Optional) verify-cert import-req export-p1 [ cmd-opts ] export-p7 [ cmd-opts ] export-p8 [ cmd-opts ] export-p12 [ cmd-opts ] set-pass [ cmd-opts ] write [ cmd-opts ] + text_only=1 + work_dir=C:/Users/lev/easy-rsa + pki_dir=erut-w11 + verify_ca_init test + help_note='Run easyrsa without commands for usage and command help.' + '[' '!' -f erut-w11/ca.crt ] + '[' '!' -p erut-w11/ca.crt ] + '[' test '=' test ] + return 1 + CA_status=' CA status: CA has not been built' + '[' ] + unset -v ivmsg + print ' DIRECTORY STATUS (commands would take effect on these locations) EASYRSA: C:/Users/lev/easy-rsa PKI: erut-w11 vars-file: Missing or undefined x509-types: C:/Program Files/OpenVPN/easy-rsa/x509-types CA status: CA has not been built ' + printf '%s\n' ' DIRECTORY STATUS (commands would take effect on these locations) EASYRSA: C:/Users/lev/easy-rsa PKI: erut-w11 vars-file: Missing or undefined x509-types: C:/Program Files/OpenVPN/easy-rsa/x509-types CA status: CA has not been built ' DIRECTORY STATUS (commands would take effect on these locations) EASYRSA: C:/Users/lev/easy-rsa PKI: erut-w11 vars-file: Missing or undefined x509-types: C:/Program Files/OpenVPN/easy-rsa/x509-types CA status: CA has not been built + cleanup ok + '[' -f ] + '[' ] + '[' ] + '[' ] + : + trap - 0 1 2 3 6 15 + '[' ] + '[' ok '=' 2 ] + '[' ok '=' ok ] + verbose 'Exit: Final Success = true' + '[' ] + return 0 + exit 0 EasyRSA Shell # easyrsa --pki=erut-w11 init-pki + EASYRSA_version='~VER~' + NL=' ' + print 'DEBUG: EasyRSA: Windows protected write access' + printf '%s\n' 'DEBUG: EasyRSA: Windows protected write access' DEBUG: EasyRSA: Windows protected write access + '[' ] + umask 077 + trap 'cleanup $?' EXIT + trap 'exit 1' 1 + trap 'exit 2' 2 + trap 'exit 3' 3 + trap 'exit 6' 6 + trap 'exit 15' 15 + detect_host + unset -v easyrsa_ver_test easyrsa_host_os easyrsa_host_test easyrsa_win_git_bash + '[' Windows_NT ] + easyrsa_host_test=Windows_NT + easyrsa_ksh='@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' + '[' '=' '@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' ] + unset -v easyrsa_ksh + '[' Windows_NT ] + easyrsa_host_os=win + easyrsa_uname=Windows_NT + easyrsa_shell=/bin/sh + '[' ] + easyrsa_ver_test= + '[' ] + host_out='Host: dev' + host_out='Host: dev | win | Windows_NT | /bin/sh' + host_out='Host: dev | win | Windows_NT | /bin/sh' + unset -v easyrsa_ver_test easyrsa_host_test + unset -v verify_ssl_lib_ok secured_session working_safe_ssl_conf working_safe_org_conf makesafeconf alias_days prohibit_no_pass invalid_vars do_build_full error_build_full_cleanup internal_batch mv_temp_error easyrsa_exit_with_error error_info legacy_file_over_write + prompt_restore=0 + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--pki + val=erut-w11 + '[' --pki '=' erut-w11 ] + '[' erut-w11 ] + export 'EASYRSA_PKI=erut-w11' + '[' ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=init-pki + val=init-pki + '[' init-pki '=' init-pki ] + is_empty=1 + '[' init-pki ] + break + cmd=init-pki + '[' init-pki ] + shift + unset -v require_pki require_ca quiet_vars + : + select_vars + '[' ] + '[' erut-w11 ] + '[' -e erut-w11/vars ] + '[' ] + '[' -e C:/Users/lev/easy-rsa/pki/vars ] + '[' -e C:/Users/lev/easy-rsa/vars ] + '[' -z ] + verbose 'select_vars: No vars' + '[' ] + return 0 + return 1 + verbose 'No Easy-RSA '"'"'vars'"'"' configuration file exists!' + '[' ] + return 0 + default_vars + set_var EASYRSA C:/Users/lev/easy-rsa + '[' -z 'EASYRSA C:/Users/lev/easy-rsa' ] + '[' -z ] + eval 'export "EASYRSA"="${EASYRSA-C:/Users/lev/easy-rsa}"' + export 'EASYRSA=C:/Users/lev/easy-rsa' + return + set_var EASYRSA_OPENSSL openssl + '[' -z 'EASYRSA_OPENSSL openssl' ] + '[' -z ] + eval 'export "EASYRSA_OPENSSL"="${EASYRSA_OPENSSL-openssl}"' + export 'EASYRSA_OPENSSL=openssl' + return + set_var EASYRSA_PKI C:/Users/lev/easy-rsa/pki + '[' -z 'EASYRSA_PKI C:/Users/lev/easy-rsa/pki' ] + '[' -z ] + eval 'export "EASYRSA_PKI"="${EASYRSA_PKI-C:/Users/lev/easy-rsa/pki}"' + export 'EASYRSA_PKI=erut-w11' + return + set_var EASYRSA_DN cn_only + '[' -z 'EASYRSA_DN cn_only' ] + '[' -z ] + eval 'export "EASYRSA_DN"="${EASYRSA_DN-cn_only}"' + export 'EASYRSA_DN=cn_only' + return + set_var EASYRSA_REQ_COUNTRY US + '[' -z 'EASYRSA_REQ_COUNTRY US' ] + '[' -z ] + eval 'export "EASYRSA_REQ_COUNTRY"="${EASYRSA_REQ_COUNTRY-US}"' + export 'EASYRSA_REQ_COUNTRY=US' + return + set_var EASYRSA_REQ_PROVINCE California + '[' -z 'EASYRSA_REQ_PROVINCE California' ] + '[' -z ] + eval 'export "EASYRSA_REQ_PROVINCE"="${EASYRSA_REQ_PROVINCE-California}"' + export 'EASYRSA_REQ_PROVINCE=California' + return + set_var EASYRSA_REQ_CITY 'San Francisco' + '[' -z 'EASYRSA_REQ_CITY San Francisco' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CITY"="${EASYRSA_REQ_CITY-San Francisco}"' + export 'EASYRSA_REQ_CITY=San Francisco' + return + set_var EASYRSA_REQ_ORG 'Copyleft Certificate Co' + '[' -z 'EASYRSA_REQ_ORG Copyleft Certificate Co' ] + '[' -z ] + eval 'export "EASYRSA_REQ_ORG"="${EASYRSA_REQ_ORG-Copyleft Certificate Co}"' + export 'EASYRSA_REQ_ORG=Copyleft Certificate Co' + return + set_var EASYRSA_REQ_EMAIL me@example.net + '[' -z 'EASYRSA_REQ_EMAIL me@example.net' ] + '[' -z ] + eval 'export "EASYRSA_REQ_EMAIL"="${EASYRSA_REQ_EMAIL-me@example.net}"' + export 'EASYRSA_REQ_EMAIL=me@example.net' + return + set_var EASYRSA_REQ_OU 'My Organizational Unit' + '[' -z 'EASYRSA_REQ_OU My Organizational Unit' ] + '[' -z ] + eval 'export "EASYRSA_REQ_OU"="${EASYRSA_REQ_OU-My Organizational Unit}"' + export 'EASYRSA_REQ_OU=My Organizational Unit' + return + set_var EASYRSA_REQ_SERIAL + '[' -z 'EASYRSA_REQ_SERIAL ' ] + '[' -z ] + eval 'export "EASYRSA_REQ_SERIAL"="${EASYRSA_REQ_SERIAL-}"' + export 'EASYRSA_REQ_SERIAL=' + return + set_var EASYRSA_ALGO rsa + '[' -z 'EASYRSA_ALGO rsa' ] + '[' -z ] + eval 'export "EASYRSA_ALGO"="${EASYRSA_ALGO-rsa}"' + export 'EASYRSA_ALGO=rsa' + return + set_var EASYRSA_KEY_SIZE 2048 + '[' -z 'EASYRSA_KEY_SIZE 2048' ] + '[' -z ] + eval 'export "EASYRSA_KEY_SIZE"="${EASYRSA_KEY_SIZE-2048}"' + export 'EASYRSA_KEY_SIZE=2048' + return + : + set_var EASYRSA_CA_EXPIRE 3650 + '[' -z 'EASYRSA_CA_EXPIRE 3650' ] + '[' -z ] + eval 'export "EASYRSA_CA_EXPIRE"="${EASYRSA_CA_EXPIRE-3650}"' + export 'EASYRSA_CA_EXPIRE=3650' + return + set_var EASYRSA_CERT_EXPIRE 825 + '[' -z 'EASYRSA_CERT_EXPIRE 825' ] + '[' -z ] + eval 'export "EASYRSA_CERT_EXPIRE"="${EASYRSA_CERT_EXPIRE-825}"' + export 'EASYRSA_CERT_EXPIRE=825' + return + set_var EASYRSA_PRE_EXPIRY_WINDOW 90 + '[' -z 'EASYRSA_PRE_EXPIRY_WINDOW 90' ] + '[' -z ] + eval 'export "EASYRSA_PRE_EXPIRY_WINDOW"="${EASYRSA_PRE_EXPIRY_WINDOW-90}"' + export 'EASYRSA_PRE_EXPIRY_WINDOW=90' + return + set_var EASYRSA_CRL_DAYS 180 + '[' -z 'EASYRSA_CRL_DAYS 180' ] + '[' -z ] + eval 'export "EASYRSA_CRL_DAYS"="${EASYRSA_CRL_DAYS-180}"' + export 'EASYRSA_CRL_DAYS=180' + return + set_var EASYRSA_NS_SUPPORT no + '[' -z 'EASYRSA_NS_SUPPORT no' ] + '[' -z ] + eval 'export "EASYRSA_NS_SUPPORT"="${EASYRSA_NS_SUPPORT-no}"' + export 'EASYRSA_NS_SUPPORT=no' + return + set_var EASYRSA_NS_COMMENT 'Easy-RSA (~VER~) Generated Certificate' + '[' -z 'EASYRSA_NS_COMMENT Easy-RSA (~VER~) Generated Certificate' ] + '[' -z ] + eval 'export "EASYRSA_NS_COMMENT"="${EASYRSA_NS_COMMENT-Easy-RSA (~VER~) Generated Certificate}"' + export 'EASYRSA_NS_COMMENT=Easy-RSA (~VER~) Generated Certificate' + return + set_var EASYRSA_TEMP_DIR erut-w11 + '[' -z 'EASYRSA_TEMP_DIR erut-w11' ] + '[' -z ] + eval 'export "EASYRSA_TEMP_DIR"="${EASYRSA_TEMP_DIR-erut-w11}"' + export 'EASYRSA_TEMP_DIR=erut-w11' + return + set_var EASYRSA_REQ_CN ChangeMe + '[' -z 'EASYRSA_REQ_CN ChangeMe' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CN"="${EASYRSA_REQ_CN-ChangeMe}"' + export 'EASYRSA_REQ_CN=ChangeMe' + return + set_var EASYRSA_DIGEST sha256 + '[' -z 'EASYRSA_DIGEST sha256' ] + '[' -z ] + eval 'export "EASYRSA_DIGEST"="${EASYRSA_DIGEST-sha256}"' + export 'EASYRSA_DIGEST=sha256' + return + set_var EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf + '[' -z 'EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SAFE_CONF"="${EASYRSA_SAFE_CONF-erut-w11/safessl-easyrsa.cnf}"' + export 'EASYRSA_SAFE_CONF=erut-w11/safessl-easyrsa.cnf' + return + set_var EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM + '[' -z 'EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM' ] + '[' -z ] + eval 'export "EASYRSA_KDC_REALM"="${EASYRSA_KDC_REALM-CHANGEME.EXAMPLE.COM}"' + export 'EASYRSA_KDC_REALM=CHANGEME.EXAMPLE.COM' + return + set_var EASYRSA_MAX_TEMP 4 + '[' -z 'EASYRSA_MAX_TEMP 4' ] + '[' -z ] + eval 'export "EASYRSA_MAX_TEMP"="${EASYRSA_MAX_TEMP-4}"' + export 'EASYRSA_MAX_TEMP=4' + return + validate_default_vars + unset -v unexpected_error + '[' ] + '[' ] + '[' -z ] + return + mutual_exclusions + '[' ] + '[' ] + '[' ] + '[' ] + '[' win '=' win ] + echo C:/Users/lev/easy-rsa + grep -q '/Prog.*/OpenVPN/easy-rsa' + verbose 'mutual_exclusions: COMPLETED' + '[' ] + return 0 + locate_support_files + ssl_cnf_file=openssl-easyrsa.cnf + x509_types_dir=x509-types + '[' -e erut-w11/x509-types ] + '[' -e erut-w11/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + set_var EASYRSA_EXT_DIR 'C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' -z 'EASYRSA_EXT_DIR C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + '[' -z ] + eval 'export "EASYRSA_EXT_DIR"="${EASYRSA_EXT_DIR-C:/Program Files/OpenVPN/easy-rsa/x509-types}"' + export 'EASYRSA_EXT_DIR=C:/Program Files/OpenVPN/easy-rsa/x509-types' + return + verbose '> Found x509 dir: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' ] + return 0 + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + set_var EASYRSA_SSL_CONF 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' -z 'EASYRSA_SSL_CONF C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SSL_CONF"="${EASYRSA_SSL_CONF-C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf}"' + export 'EASYRSA_SSL_CONF=C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + return + verbose '> Found SSL cnf: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' ] + return 0 + '[' -e /usr/local/share/easy-rsa/x509-types ] + '[' -e /usr/local/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /usr/share/easy-rsa/x509-types ] + '[' -e /usr/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /etc/easy-rsa/x509-types ] + '[' -e /etc/easy-rsa/openssl-easyrsa.cnf ] + verbose '> EASYRSA_EXT_DIR: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' ] + return 0 + verbose '> EASYRSA_SSL_CONF: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' ] + return 0 + verbose 'locate_support_files: COMPLETED' + '[' ] + return 0 + verify_ssl_lib + '[' ] + verify_ssl_lib_ok=1 + unset -v openssl_v3 + OPENSSL_CONF=/dev/null openssl version + val='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_version='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_lib=openssl + osslv_major='3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + osslv_major=3 + openssl_v3=1 + no_password=-noenc + verbose 'verify_ssl_lib(): Using SSL: * openssl OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + '[' ] + return 0 + '[' ] + verify_working_env + verbose 'verify_working_env: BEGIN' + '[' ] + return 0 + '[' ] + '[' -d erut-w11 ] + verbose 'verify_working_env: COMPLETED Handover-to: init-pki' + '[' ] + return 0 + init_pki + reset=hard + '[' ] + '[' -e erut-w11 ] + mkdir erut-w11 + '[' -d erut-w11 ] + mkdir erut-w11/issued + '[' -d erut-w11/issued ] + mkdir erut-w11/private + '[' -d erut-w11/private ] + mkdir erut-w11/reqs + '[' -d erut-w11/reqs ] + mkdir erut-w11/inline + '[' -d erut-w11/inline ] + write vars erut-w11 + write_recursion=1 + '[' 1 -gt 2 ] + write_type=vars + write_dir=erut-w11 + write_file= + '[' erut-w11 ] + write_file=erut-w11/vars.example + '[' erut-w11 ] + '[' -d erut-w11 ] + '[' -f erut-w11/vars.example ] + '[' erut-w11/vars.example ] + create_legacy_stream vars + return 1 + die 'write failed' + print ' Easy-RSA error: write failed ' + printf '%s\n' ' Easy-RSA error: write failed ' Easy-RSA error: write failed + '[' ] + show_host + '[' ] + print_version + OPENSSL_CONF=/dev/null openssl version + ssl_version='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + cat EasyRSA Version Information Version: ~VER~ Generated: ~DATE~ SSL Lib: OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023) Git Commit: ~GITHEAD~ Source Repo: https://github.com/OpenVPN/easy-rsa + print 'Host: dev | win | Windows_NT | /bin/sh' + printf '%s\n' 'Host: dev | win | Windows_NT | /bin/sh' Host: dev | win | Windows_NT | /bin/sh + '[' ] + return 0 + exit 1 + cleanup 1 + '[' -f ] + '[' ] + '[' ] + '[' ] + : + trap - 0 1 2 3 6 15 + '[' ] + '[' 1 '=' 2 ] + '[' 1 '=' ok ] + verbose 'Exit: Final Fail = true' + '[' ] + return 0 + exit 1 EasyRSA Shell # easyrsa --pki=erut-w11 --verbose --batch --nopass build-ca + EASYRSA_version='~VER~' + NL=' ' + print 'DEBUG: EasyRSA: Windows protected write access' + printf '%s\n' 'DEBUG: EasyRSA: Windows protected write access' DEBUG: EasyRSA: Windows protected write access + '[' ] + umask 077 + trap 'cleanup $?' EXIT + trap 'exit 1' 1 + trap 'exit 2' 2 + trap 'exit 3' 3 + trap 'exit 6' 6 + trap 'exit 15' 15 + detect_host + unset -v easyrsa_ver_test easyrsa_host_os easyrsa_host_test easyrsa_win_git_bash + '[' Windows_NT ] + easyrsa_host_test=Windows_NT + easyrsa_ksh='@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' + '[' '=' '@(#)MIRBSD KSH R39-w32-beta14 $Date: 2013/06/28 21:28:57 $' ] + unset -v easyrsa_ksh + '[' Windows_NT ] + easyrsa_host_os=win + easyrsa_uname=Windows_NT + easyrsa_shell=/bin/sh + '[' ] + easyrsa_ver_test= + '[' ] + host_out='Host: dev' + host_out='Host: dev | win | Windows_NT | /bin/sh' + host_out='Host: dev | win | Windows_NT | /bin/sh' + unset -v easyrsa_ver_test easyrsa_host_test + unset -v verify_ssl_lib_ok secured_session working_safe_ssl_conf working_safe_org_conf makesafeconf alias_days prohibit_no_pass invalid_vars do_build_full error_build_full_cleanup internal_batch mv_temp_error easyrsa_exit_with_error error_info legacy_file_over_write + prompt_restore=0 + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--pki + val=erut-w11 + '[' --pki '=' erut-w11 ] + '[' erut-w11 ] + export 'EASYRSA_PKI=erut-w11' + '[' ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--verbose + val=--verbose + '[' --verbose '=' --verbose ] + is_empty=1 + '[' --verbose ] + empty_ok=1 + export 'EASYRSA_VERBOSE=1' + '[' 1 ] + '[' 1 ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--batch + val=--batch + '[' --batch '=' --batch ] + is_empty=1 + '[' --batch ] + empty_ok=1 + export 'EASYRSA_BATCH=1' + '[' 1 ] + '[' 1 ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=--nopass + val=--nopass + '[' --nopass '=' --nopass ] + is_empty=1 + '[' --nopass ] + empty_ok=1 + export 'EASYRSA_NO_PASS=1' + '[' 1 ] + '[' 1 ] + '[' ] + shift + : + unset -v opt val is_empty empty_ok number_only zero_allowed + opt=build-ca + val=build-ca + '[' build-ca '=' build-ca ] + is_empty=1 + '[' build-ca ] + break + cmd=build-ca + '[' build-ca ] + shift + unset -v require_pki require_ca quiet_vars + require_pki=1 + : + select_vars + '[' ] + '[' erut-w11 ] + '[' -e erut-w11/vars ] + '[' ] + '[' -e C:/Users/lev/easy-rsa/pki/vars ] + '[' -e C:/Users/lev/easy-rsa/vars ] + '[' -z ] + verbose 'select_vars: No vars' + '[' 1 ] + printf '%s\n' ' > select_vars: No vars' > select_vars: No vars + return 1 + verbose 'No Easy-RSA '"'"'vars'"'"' configuration file exists!' + '[' 1 ] + printf '%s\n' ' > No Easy-RSA '"'"'vars'"'"' configuration file exists!' > No Easy-RSA 'vars' configuration file exists! + default_vars + set_var EASYRSA C:/Users/lev/easy-rsa + '[' -z 'EASYRSA C:/Users/lev/easy-rsa' ] + '[' -z ] + eval 'export "EASYRSA"="${EASYRSA-C:/Users/lev/easy-rsa}"' + export 'EASYRSA=C:/Users/lev/easy-rsa' + return + set_var EASYRSA_OPENSSL openssl + '[' -z 'EASYRSA_OPENSSL openssl' ] + '[' -z ] + eval 'export "EASYRSA_OPENSSL"="${EASYRSA_OPENSSL-openssl}"' + export 'EASYRSA_OPENSSL=openssl' + return + set_var EASYRSA_PKI C:/Users/lev/easy-rsa/pki + '[' -z 'EASYRSA_PKI C:/Users/lev/easy-rsa/pki' ] + '[' -z ] + eval 'export "EASYRSA_PKI"="${EASYRSA_PKI-C:/Users/lev/easy-rsa/pki}"' + export 'EASYRSA_PKI=erut-w11' + return + set_var EASYRSA_DN cn_only + '[' -z 'EASYRSA_DN cn_only' ] + '[' -z ] + eval 'export "EASYRSA_DN"="${EASYRSA_DN-cn_only}"' + export 'EASYRSA_DN=cn_only' + return + set_var EASYRSA_REQ_COUNTRY US + '[' -z 'EASYRSA_REQ_COUNTRY US' ] + '[' -z ] + eval 'export "EASYRSA_REQ_COUNTRY"="${EASYRSA_REQ_COUNTRY-US}"' + export 'EASYRSA_REQ_COUNTRY=US' + return + set_var EASYRSA_REQ_PROVINCE California + '[' -z 'EASYRSA_REQ_PROVINCE California' ] + '[' -z ] + eval 'export "EASYRSA_REQ_PROVINCE"="${EASYRSA_REQ_PROVINCE-California}"' + export 'EASYRSA_REQ_PROVINCE=California' + return + set_var EASYRSA_REQ_CITY 'San Francisco' + '[' -z 'EASYRSA_REQ_CITY San Francisco' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CITY"="${EASYRSA_REQ_CITY-San Francisco}"' + export 'EASYRSA_REQ_CITY=San Francisco' + return + set_var EASYRSA_REQ_ORG 'Copyleft Certificate Co' + '[' -z 'EASYRSA_REQ_ORG Copyleft Certificate Co' ] + '[' -z ] + eval 'export "EASYRSA_REQ_ORG"="${EASYRSA_REQ_ORG-Copyleft Certificate Co}"' + export 'EASYRSA_REQ_ORG=Copyleft Certificate Co' + return + set_var EASYRSA_REQ_EMAIL me@example.net + '[' -z 'EASYRSA_REQ_EMAIL me@example.net' ] + '[' -z ] + eval 'export "EASYRSA_REQ_EMAIL"="${EASYRSA_REQ_EMAIL-me@example.net}"' + export 'EASYRSA_REQ_EMAIL=me@example.net' + return + set_var EASYRSA_REQ_OU 'My Organizational Unit' + '[' -z 'EASYRSA_REQ_OU My Organizational Unit' ] + '[' -z ] + eval 'export "EASYRSA_REQ_OU"="${EASYRSA_REQ_OU-My Organizational Unit}"' + export 'EASYRSA_REQ_OU=My Organizational Unit' + return + set_var EASYRSA_REQ_SERIAL + '[' -z 'EASYRSA_REQ_SERIAL ' ] + '[' -z ] + eval 'export "EASYRSA_REQ_SERIAL"="${EASYRSA_REQ_SERIAL-}"' + export 'EASYRSA_REQ_SERIAL=' + return + set_var EASYRSA_ALGO rsa + '[' -z 'EASYRSA_ALGO rsa' ] + '[' -z ] + eval 'export "EASYRSA_ALGO"="${EASYRSA_ALGO-rsa}"' + export 'EASYRSA_ALGO=rsa' + return + set_var EASYRSA_KEY_SIZE 2048 + '[' -z 'EASYRSA_KEY_SIZE 2048' ] + '[' -z ] + eval 'export "EASYRSA_KEY_SIZE"="${EASYRSA_KEY_SIZE-2048}"' + export 'EASYRSA_KEY_SIZE=2048' + return + : + set_var EASYRSA_CA_EXPIRE 3650 + '[' -z 'EASYRSA_CA_EXPIRE 3650' ] + '[' -z ] + eval 'export "EASYRSA_CA_EXPIRE"="${EASYRSA_CA_EXPIRE-3650}"' + export 'EASYRSA_CA_EXPIRE=3650' + return + set_var EASYRSA_CERT_EXPIRE 825 + '[' -z 'EASYRSA_CERT_EXPIRE 825' ] + '[' -z ] + eval 'export "EASYRSA_CERT_EXPIRE"="${EASYRSA_CERT_EXPIRE-825}"' + export 'EASYRSA_CERT_EXPIRE=825' + return + set_var EASYRSA_PRE_EXPIRY_WINDOW 90 + '[' -z 'EASYRSA_PRE_EXPIRY_WINDOW 90' ] + '[' -z ] + eval 'export "EASYRSA_PRE_EXPIRY_WINDOW"="${EASYRSA_PRE_EXPIRY_WINDOW-90}"' + export 'EASYRSA_PRE_EXPIRY_WINDOW=90' + return + set_var EASYRSA_CRL_DAYS 180 + '[' -z 'EASYRSA_CRL_DAYS 180' ] + '[' -z ] + eval 'export "EASYRSA_CRL_DAYS"="${EASYRSA_CRL_DAYS-180}"' + export 'EASYRSA_CRL_DAYS=180' + return + set_var EASYRSA_NS_SUPPORT no + '[' -z 'EASYRSA_NS_SUPPORT no' ] + '[' -z ] + eval 'export "EASYRSA_NS_SUPPORT"="${EASYRSA_NS_SUPPORT-no}"' + export 'EASYRSA_NS_SUPPORT=no' + return + set_var EASYRSA_NS_COMMENT 'Easy-RSA (~VER~) Generated Certificate' + '[' -z 'EASYRSA_NS_COMMENT Easy-RSA (~VER~) Generated Certificate' ] + '[' -z ] + eval 'export "EASYRSA_NS_COMMENT"="${EASYRSA_NS_COMMENT-Easy-RSA (~VER~) Generated Certificate}"' + export 'EASYRSA_NS_COMMENT=Easy-RSA (~VER~) Generated Certificate' + return + set_var EASYRSA_TEMP_DIR erut-w11 + '[' -z 'EASYRSA_TEMP_DIR erut-w11' ] + '[' -z ] + eval 'export "EASYRSA_TEMP_DIR"="${EASYRSA_TEMP_DIR-erut-w11}"' + export 'EASYRSA_TEMP_DIR=erut-w11' + return + set_var EASYRSA_REQ_CN ChangeMe + '[' -z 'EASYRSA_REQ_CN ChangeMe' ] + '[' -z ] + eval 'export "EASYRSA_REQ_CN"="${EASYRSA_REQ_CN-ChangeMe}"' + export 'EASYRSA_REQ_CN=ChangeMe' + return + set_var EASYRSA_DIGEST sha256 + '[' -z 'EASYRSA_DIGEST sha256' ] + '[' -z ] + eval 'export "EASYRSA_DIGEST"="${EASYRSA_DIGEST-sha256}"' + export 'EASYRSA_DIGEST=sha256' + return + set_var EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf + '[' -z 'EASYRSA_SAFE_CONF erut-w11/safessl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SAFE_CONF"="${EASYRSA_SAFE_CONF-erut-w11/safessl-easyrsa.cnf}"' + export 'EASYRSA_SAFE_CONF=erut-w11/safessl-easyrsa.cnf' + return + set_var EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM + '[' -z 'EASYRSA_KDC_REALM CHANGEME.EXAMPLE.COM' ] + '[' -z ] + eval 'export "EASYRSA_KDC_REALM"="${EASYRSA_KDC_REALM-CHANGEME.EXAMPLE.COM}"' + export 'EASYRSA_KDC_REALM=CHANGEME.EXAMPLE.COM' + return + set_var EASYRSA_MAX_TEMP 4 + '[' -z 'EASYRSA_MAX_TEMP 4' ] + '[' -z ] + eval 'export "EASYRSA_MAX_TEMP"="${EASYRSA_MAX_TEMP-4}"' + export 'EASYRSA_MAX_TEMP=4' + return + validate_default_vars + unset -v unexpected_error + '[' ] + '[' ] + '[' -z ] + return + mutual_exclusions + '[' ] + '[' ] + '[' ] + '[' ] + '[' win '=' win ] + echo C:/Users/lev/easy-rsa + grep -q '/Prog.*/OpenVPN/easy-rsa' + verbose 'mutual_exclusions: COMPLETED' + '[' 1 ] + printf '%s\n' ' > mutual_exclusions: COMPLETED' > mutual_exclusions: COMPLETED + locate_support_files + ssl_cnf_file=openssl-easyrsa.cnf + x509_types_dir=x509-types + '[' -e erut-w11/x509-types ] + '[' -e erut-w11/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e C:/Users/lev/easy-rsa/x509-types ] + '[' -e C:/Users/lev/easy-rsa/openssl-easyrsa.cnf ] + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + set_var EASYRSA_EXT_DIR 'C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' -z 'EASYRSA_EXT_DIR C:/Program Files/OpenVPN/easy-rsa/x509-types' ] + '[' -z ] + eval 'export "EASYRSA_EXT_DIR"="${EASYRSA_EXT_DIR-C:/Program Files/OpenVPN/easy-rsa/x509-types}"' + export 'EASYRSA_EXT_DIR=C:/Program Files/OpenVPN/easy-rsa/x509-types' + return + verbose '> Found x509 dir: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' 1 ] + printf '%s\n' ' > > Found x509 dir: C:/Program Files/OpenVPN/easy-rsa/x509-types' > > Found x509 dir: C:/Program Files/OpenVPN/easy-rsa/x509-types + '[' -e 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + set_var EASYRSA_SSL_CONF 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' -z 'EASYRSA_SSL_CONF C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + '[' -z ] + eval 'export "EASYRSA_SSL_CONF"="${EASYRSA_SSL_CONF-C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf}"' + export 'EASYRSA_SSL_CONF=C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + return + verbose '> Found SSL cnf: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' 1 ] + printf '%s\n' ' > > Found SSL cnf: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' > > Found SSL cnf: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf + '[' -e /usr/local/share/easy-rsa/x509-types ] + '[' -e /usr/local/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /usr/share/easy-rsa/x509-types ] + '[' -e /usr/share/easy-rsa/openssl-easyrsa.cnf ] + '[' -e /etc/easy-rsa/x509-types ] + '[' -e /etc/easy-rsa/openssl-easyrsa.cnf ] + verbose '> EASYRSA_EXT_DIR: C:/Program Files/OpenVPN/easy-rsa/x509-types' + '[' 1 ] + printf '%s\n' ' > > EASYRSA_EXT_DIR: C:/Program Files/OpenVPN/easy-rsa/x509-types' > > EASYRSA_EXT_DIR: C:/Program Files/OpenVPN/easy-rsa/x509-types + verbose '> EASYRSA_SSL_CONF: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + '[' 1 ] + printf '%s\n' ' > > EASYRSA_SSL_CONF: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' > > EASYRSA_SSL_CONF: C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf + verbose 'locate_support_files: COMPLETED' + '[' 1 ] + printf '%s\n' ' > locate_support_files: COMPLETED' > locate_support_files: COMPLETED + verify_ssl_lib + '[' ] + verify_ssl_lib_ok=1 + unset -v openssl_v3 + OPENSSL_CONF=/dev/null openssl version + val='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_version='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + ssl_lib=openssl + osslv_major='3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + osslv_major=3 + openssl_v3=1 + no_password=-noenc + verbose 'verify_ssl_lib(): Using SSL: * openssl OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + '[' 1 ] + printf '%s\n' ' > verify_ssl_lib(): Using SSL: * openssl OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' > verify_ssl_lib(): Using SSL: * openssl OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023) + '[' ] + verify_working_env + verbose 'verify_working_env: BEGIN' + '[' 1 ] + printf '%s\n' ' > verify_working_env: BEGIN' > verify_working_env: BEGIN + '[' 1 ] + verify_pki_init + help_note='Run easyrsa without commands for usage and command help.' + '[' erut-w11 ] + '[' -d erut-w11 ] + '[' -d erut-w11/private ] + '[' -d erut-w11/reqs ] + unset -v help_note + '[' -z ] + secure_session + '[' ] + '[' erut-w11 ] + '[' -d erut-w11 ] + : + session= + easyrsa_random 4 session + OPENSSL_CONF=/dev/null openssl rand -hex 4 + rand_hex=75c3dec1 + '[' session ] + force_set_var session 75c3dec1 + '[' -z ] + unset -v session + set_var session 75c3dec1 + '[' -z 'session 75c3dec1' ] + '[' -z ] + eval 'export "session"="${session-75c3dec1}"' + export 'session=75c3dec1' + return + return + unset -v rand_hex + return 0 + secured_session=erut-w11/75c3dec1 + mkdir erut-w11/75c3dec1 + unset -v mktemp_counter OPENSSL_CONF safe_ssl_cnf_tmp working_safe_ssl_conf + easyrsa_err_log=erut-w11/75c3dec1/error.log + verbose 'secure_session: CREATED: erut-w11/75c3dec1' + '[' 1 ] + printf '%s\n' ' > secure_session: CREATED: erut-w11/75c3dec1' > secure_session: CREATED: erut-w11/75c3dec1 + return + write_easyrsa_ssl_cnf_tmp + '[' -f 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' ] + verbose 'write_easyrsa_ssl_cnf_tmp: SSL config EXISTS' + '[' 1 ] + printf '%s\n' ' > write_easyrsa_ssl_cnf_tmp: SSL config EXISTS' > write_easyrsa_ssl_cnf_tmp: SSL config EXISTS + known_file_317=13ca05f031d58c5e2912652b33099ce9ac05f49595e5d5fe96367229e3ce070c + known_file_315=87d51ca0db1cc0ac3cc2634792fc5576e0034ebf9d546de11674b897514f3afb + known_file_310=5455947df40f01f845bf79c1e89f102c628faaa65d71a6512d0e17bdd183feb0 + known_file_308=1cc6a1de93ca357b5c364aa0fa2c4beaf97425686fa1976d436fa31f550641aa + known_heredoc_320=82439f1860838e28f6270d5d06b1771756db777861e19bf9edc21222f86a310d + OPENSSL_CONF=/dev/null + openssl dgst -sha256 -r 'C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + file_hash='13ca05f031d58c5e2912652b33099ce9ac05f49595e5d5fe96367229e3ce070c *C:/Program Files/OpenVPN/easy-rsa/openssl-easyrsa.cnf' + file_hash=13ca05f031d58c5e2912652b33099ce9ac05f49595e5d5fe96367229e3ce070c + hash_is_unknown= + unset -v file_hash known_heredoc_320 known_file_317 known_file_315 known_file_310 known_file_308 + '[' ] + verbose 'write_easyrsa_ssl_cnf_tmp: SSL config IGNORED' + '[' 1 ] + printf '%s\n' ' > write_easyrsa_ssl_cnf_tmp: SSL config IGNORED' > write_easyrsa_ssl_cnf_tmp: SSL config IGNORED + ssl_cnf_tmp= + easyrsa_mktemp ssl_cnf_tmp + '[' 1 '=' 1 ] + '[' erut-w11/75c3dec1 ] + mktemp_counter=1 + t=erut-w11/75c3dec1/temp.1 + shotfile=erut-w11/75c3dec1/temp.1.x + '[' -e erut-w11/75c3dec1/temp.1.x ] + printf + want_tmp_file=erut-w11/75c3dec1/temp.1.1 + '[' 4 -gt 1 ] + '[' -e erut-w11/75c3dec1/temp.1.1 ] + '[' win '=' win ] + set -o noclobber + mv erut-w11/75c3dec1/temp.1.x erut-w11/75c3dec1/temp.1.1 + force_set_var ssl_cnf_tmp erut-w11/75c3dec1/temp.1.1 + '[' -z ] + unset -v ssl_cnf_tmp + set_var ssl_cnf_tmp erut-w11/75c3dec1/temp.1.1 + '[' -z 'ssl_cnf_tmp erut-w11/75c3dec1/temp.1.1' ] + '[' -z ] + eval 'export "ssl_cnf_tmp"="${ssl_cnf_tmp-erut-w11/75c3dec1/temp.1.1}"' + export 'ssl_cnf_tmp=erut-w11/75c3dec1/temp.1.1' + return + return + verbose 'easyrsa_mktemp: ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.1.1' + '[' 1 ] + printf '%s\n' ' > easyrsa_mktemp: ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.1.1' > easyrsa_mktemp: ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.1.1 + '[' win '=' win ] + set +o noclobber + unset -v want_tmp_file shotfile + return + write ssl-cnf + write_recursion=1 + '[' 1 -gt 2 ] + write_type=ssl-cnf + write_dir= + write_file= + set_openssl_easyrsa_cnf_vars unexpanded + conf_EASYRSA_dir='$dir' + conf_EASYRSA_PKI='$ENV::EASYRSA_PKI' + conf_EASYRSA_DIGEST='$ENV::EASYRSA_DIGEST' + conf_EASYRSA_KEY_SIZE='$ENV::EASYRSA_KEY_SIZE' + conf_EASYRSA_DIGEST='$ENV::EASYRSA_DIGEST' + conf_EASYRSA_DN='$ENV::EASYRSA_DN' + conf_EASYRSA_REQ_CN='$ENV::EASYRSA_REQ_CN' + conf_EASYRSA_REQ_COUNTRY='$ENV::EASYRSA_REQ_COUNTRY' + conf_EASYRSA_REQ_PROVINCE='$ENV::EASYRSA_REQ_PROVINCE' + conf_EASYRSA_REQ_CITY='$ENV::EASYRSA_REQ_CITY' + conf_EASYRSA_REQ_ORG='$ENV::EASYRSA_REQ_ORG' + conf_EASYRSA_REQ_OU='$ENV::EASYRSA_REQ_OU' + conf_EASYRSA_REQ_EMAIL='$ENV::EASYRSA_REQ_EMAIL' + conf_EASYRSA_REQ_SERIAL='$ENV::EASYRSA_REQ_SERIAL' + '[' ] + '[' ] + '[' ] + create_legacy_stream ssl-cnf + return 1 + write_recursion=0 + export 'EASYRSA_SSL_CONF=erut-w11/75c3dec1/temp.1.1' + verbose 'write_easyrsa_ssl_cnf_tmp: SSL config using temp-file' + '[' 1 ] + printf '%s\n' ' > write_easyrsa_ssl_cnf_tmp: SSL config using temp-file' > write_easyrsa_ssl_cnf_tmp: SSL config using temp-file + verify_algo_params + EASYRSA_ALGO_PARAMS=2048 + verbose 'verify_algo_params: Params verified for algo '"'"'rsa'"'" + '[' 1 ] + printf '%s\n' ' > verify_algo_params: Params verified for algo '"'"'rsa'"'" > verify_algo_params: Params verified for algo 'rsa' + '[' ] + verbose 'verify_working_env: COMPLETED Handover-to: build-ca' + '[' 1 ] + printf '%s\n' ' > verify_working_env: COMPLETED Handover-to: build-ca' > verify_working_env: COMPLETED Handover-to: build-ca + '[' -z ] + build_ca + cipher=-aes256 + unset -v sub_ca ssl_batch date_stamp x509 error_info ca_password_via_cmdline + '[' ] + out_key=erut-w11/private/ca.key + '[' ] + out_file=erut-w11/ca.crt + date_stamp=1 + x509=1 + '[' ] + '[' 1 ] + unset -v cipher + verify_ca_init test + help_note='Run easyrsa without commands for usage and command help.' + '[' '!' -f erut-w11/ca.crt ] + '[' '!' -p erut-w11/ca.crt ] + '[' test '=' test ] + return 1 + '[' -f erut-w11/private/ca.key ] + err_msg='Unable to create necessary PKI files (permissions?)' + mkdir erut-w11/revoked + '[' -d erut-w11/revoked ] + mkdir erut-w11/certs_by_serial + '[' -d erut-w11/certs_by_serial ] + mkdir erut-w11/revoked/certs_by_serial + '[' -d erut-w11/revoked/certs_by_serial ] + mkdir erut-w11/revoked/private_by_serial + '[' -d erut-w11/revoked/private_by_serial ] + mkdir erut-w11/revoked/reqs_by_serial + '[' -d erut-w11/revoked/reqs_by_serial ] + printf + printf '%s\n' 'unique_subject = no' + printf '%s\n' 01 + unset -v err_msg + '[' 1 ] + ssl_batch=1 + '[' ChangeMe '=' ChangeMe ] + '[' ] + export 'EASYRSA_REQ_CN=Easy-RSA CA' + '[' ] + out_key_tmp= + easyrsa_mktemp out_key_tmp + '[' 1 '=' 1 ] + '[' erut-w11/75c3dec1 ] + mktemp_counter=2 + t=erut-w11/75c3dec1/temp.2 + shotfile=erut-w11/75c3dec1/temp.2.x + '[' -e erut-w11/75c3dec1/temp.2.x ] + printf + want_tmp_file=erut-w11/75c3dec1/temp.2.1 + '[' 4 -gt 1 ] + '[' -e erut-w11/75c3dec1/temp.2.1 ] + '[' win '=' win ] + set -o noclobber + mv erut-w11/75c3dec1/temp.2.x erut-w11/75c3dec1/temp.2.1 + force_set_var out_key_tmp erut-w11/75c3dec1/temp.2.1 + '[' -z ] + unset -v out_key_tmp + set_var out_key_tmp erut-w11/75c3dec1/temp.2.1 + '[' -z 'out_key_tmp erut-w11/75c3dec1/temp.2.1' ] + '[' -z ] + eval 'export "out_key_tmp"="${out_key_tmp-erut-w11/75c3dec1/temp.2.1}"' + export 'out_key_tmp=erut-w11/75c3dec1/temp.2.1' + return + return + verbose 'easyrsa_mktemp: out_key_tmp OK: erut-w11/75c3dec1/temp.2.1' + '[' 1 ] + printf '%s\n' ' > easyrsa_mktemp: out_key_tmp OK: erut-w11/75c3dec1/temp.2.1' > easyrsa_mktemp: out_key_tmp OK: erut-w11/75c3dec1/temp.2.1 + '[' win '=' win ] + set +o noclobber + unset -v want_tmp_file shotfile + return + out_file_tmp= + easyrsa_mktemp out_file_tmp + '[' 1 '=' 1 ] + '[' erut-w11/75c3dec1 ] + mktemp_counter=3 + t=erut-w11/75c3dec1/temp.3 + shotfile=erut-w11/75c3dec1/temp.3.x + '[' -e erut-w11/75c3dec1/temp.3.x ] + printf + want_tmp_file=erut-w11/75c3dec1/temp.3.1 + '[' 4 -gt 1 ] + '[' -e erut-w11/75c3dec1/temp.3.1 ] + '[' win '=' win ] + set -o noclobber + mv erut-w11/75c3dec1/temp.3.x erut-w11/75c3dec1/temp.3.1 + force_set_var out_file_tmp erut-w11/75c3dec1/temp.3.1 + '[' -z ] + unset -v out_file_tmp + set_var out_file_tmp erut-w11/75c3dec1/temp.3.1 + '[' -z 'out_file_tmp erut-w11/75c3dec1/temp.3.1' ] + '[' -z ] + eval 'export "out_file_tmp"="${out_file_tmp-erut-w11/75c3dec1/temp.3.1}"' + export 'out_file_tmp=erut-w11/75c3dec1/temp.3.1' + return + return + verbose 'easyrsa_mktemp: out_file_tmp OK: erut-w11/75c3dec1/temp.3.1' + '[' 1 ] + printf '%s\n' ' > easyrsa_mktemp: out_file_tmp OK: erut-w11/75c3dec1/temp.3.1' > easyrsa_mktemp: out_file_tmp OK: erut-w11/75c3dec1/temp.3.1 + '[' win '=' win ] + set +o noclobber + unset -v want_tmp_file shotfile + return + '[' ] + '[' 1 ] + : + adjusted_ssl_cnf_tmp= + easyrsa_mktemp adjusted_ssl_cnf_tmp + '[' 1 '=' 1 ] + '[' erut-w11/75c3dec1 ] + mktemp_counter=4 + t=erut-w11/75c3dec1/temp.4 + shotfile=erut-w11/75c3dec1/temp.4.x + '[' -e erut-w11/75c3dec1/temp.4.x ] + printf + want_tmp_file=erut-w11/75c3dec1/temp.4.1 + '[' 4 -gt 1 ] + '[' -e erut-w11/75c3dec1/temp.4.1 ] + '[' win '=' win ] + set -o noclobber + mv erut-w11/75c3dec1/temp.4.x erut-w11/75c3dec1/temp.4.1 + force_set_var adjusted_ssl_cnf_tmp erut-w11/75c3dec1/temp.4.1 + '[' -z ] + unset -v adjusted_ssl_cnf_tmp + set_var adjusted_ssl_cnf_tmp erut-w11/75c3dec1/temp.4.1 + '[' -z 'adjusted_ssl_cnf_tmp erut-w11/75c3dec1/temp.4.1' ] + '[' -z ] + eval 'export "adjusted_ssl_cnf_tmp"="${adjusted_ssl_cnf_tmp-erut-w11/75c3dec1/temp.4.1}"' + export 'adjusted_ssl_cnf_tmp=erut-w11/75c3dec1/temp.4.1' + return + return + verbose 'easyrsa_mktemp: adjusted_ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.4.1' + '[' 1 ] + printf '%s\n' ' > easyrsa_mktemp: adjusted_ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.4.1' > easyrsa_mktemp: adjusted_ssl_cnf_tmp OK: erut-w11/75c3dec1/temp.4.1 + '[' win '=' win ] + set +o noclobber + unset -v want_tmp_file shotfile + return + awkscript='\ {if ( match($0, "^#%CA_X509_TYPES_EXTRA_EXTS%") ) { while ( getline<"/dev/stdin" ) {print} next } {print} }' + '[' -f 'C:/Program Files/OpenVPN/easy-rsa/x509-types/ca' ] + x509_ca_file='C:/Program Files/OpenVPN/easy-rsa/x509-types/ca' + '[' -f 'C:/Program Files/OpenVPN/easy-rsa/x509-types/COMMON' ] + x509_COMMON_file='C:/Program Files/OpenVPN/easy-rsa/x509-types/COMMON' + cat 'C:/Program Files/OpenVPN/easy-rsa/x509-types/ca' 'C:/Program Files/OpenVPN/easy-rsa/x509-types/COMMON' + awk '\ {if ( match($0, "^#%CA_X509_TYPES_EXTRA_EXTS%") ) { while ( getline<"/dev/stdin" ) {print} next } {print} }' erut-w11/75c3dec1/temp.1.1 + '[' ] + verbose 'build-ca: insert x509 and extensions OK' + '[' 1 ] + printf '%s\n' ' > build-ca: insert x509 and extensions OK' > build-ca: insert x509 and extensions OK + EASYRSA_SSL_CONF=erut-w11/75c3dec1/temp.4.1 + easyrsa_openssl genpkey -algorithm rsa -pkeyopt rsa_keygen_bits:2048 -out erut-w11/75c3dec1/temp.2.1 + openssl_command=genpkey + shift + verbose '> easyrsa_openssl - BEGIN genpkey' + '[' 1 ] + printf '%s\n' ' > > easyrsa_openssl - BEGIN genpkey' > > easyrsa_openssl - BEGIN genpkey + escape_hazard + '[' ] + '[' ] + '[' ] + verbose 'escape_hazard: RUN-ONCE' + '[' 1 ] + printf '%s\n' ' > escape_hazard: RUN-ONCE' > escape_hazard: RUN-ONCE + '[' ] + verbose 'escape_hazard: REPLACED by heredoc expansion' + '[' 1 ] + printf '%s\n' ' > escape_hazard: REPLACED by heredoc expansion' > escape_hazard: REPLACED by heredoc expansion + verbose 'escape_hazard: ABANDONED' + '[' 1 ] + printf '%s\n' ' > escape_hazard: ABANDONED' > escape_hazard: ABANDONED + return + expand_ssl_config + '[' ] + '[' ] + '[' ] + '[' openssl '=' libressl ] + '[' openssl '=' openssl ] + verbose 'expand_ssl_config: IGNORED' + '[' 1 ] + printf '%s\n' ' > expand_ssl_config: IGNORED' > expand_ssl_config: IGNORED + return + '[' -e ] + verbose '> easyrsa_openssl: No Safe SSL conf, FALLBACK to default' + '[' 1 ] + printf '%s\n' ' > > easyrsa_openssl: No Safe SSL conf, FALLBACK to default' > > easyrsa_openssl: No Safe SSL conf, FALLBACK to default + export 'OPENSSL_CONF=erut-w11/75c3dec1/temp.4.1' + '[' -z ] + '[' ] + openssl genpkey -algorithm rsa -pkeyopt rsa_keygen_bits:2048 -out erut-w11/75c3dec1/temp.2.1 ...+....+..+............+.+..+............+...+....+.........+............+...+++++++++++++++++++++++++++++++++++++++*.....+.....+...+....+...+...+..............+...+.......+..+.+.........+...+...+...+..+.......+...+++++++++++++++++++++++++++++++++++++++*...+......+.............+........................+...........+..........+..+...+.+.....+...+......+....+...+.....+.........+...+..................+.............+..............+.............+..+......+......+.+..+...+....+...+...........+..........+..+....+..............+.+...+..................+..+......+.+........+.+...........+..........+.....+.+.....+..........+.........+.....+..........+........+...+....+...++++++ .+..+.........+.+...+...........+.........+...............+...+....+......+........+............+...+.......+...+++++++++++++++++++++++++++++++++++++++*........+.+..+.+......+...........+....+++++++++++++++++++++++++++++++++++++++*.....+...+.+.........+..............+.......++++++ + return + '[' ] + '[' ] + '[' 1 ] + verbose 'build_ca: CA key has no password' + '[' 1 ] + printf '%s\n' ' > build_ca: CA key has no password' > build_ca: CA key has no password + easyrsa_openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc + openssl_command=req + shift + verbose '> easyrsa_openssl - BEGIN req' + '[' 1 ] + printf '%s\n' ' > > easyrsa_openssl - BEGIN req' > > easyrsa_openssl - BEGIN req + escape_hazard + '[' ] + '[' ] + '[' ] + verbose 'escape_hazard: RUN-ONCE' + '[' 1 ] + printf '%s\n' ' > escape_hazard: RUN-ONCE' > escape_hazard: RUN-ONCE + '[' ] + verbose 'escape_hazard: REPLACED by heredoc expansion' + '[' 1 ] + printf '%s\n' ' > escape_hazard: REPLACED by heredoc expansion' > escape_hazard: REPLACED by heredoc expansion + verbose 'escape_hazard: ABANDONED' + '[' 1 ] + printf '%s\n' ' > escape_hazard: ABANDONED' > escape_hazard: ABANDONED + return + expand_ssl_config + '[' ] + '[' ] + '[' ] + '[' openssl '=' libressl ] + '[' openssl '=' openssl ] + verbose 'expand_ssl_config: IGNORED' + '[' 1 ] + printf '%s\n' ' > expand_ssl_config: IGNORED' > expand_ssl_config: IGNORED + return + '[' -e ] + verbose '> easyrsa_openssl: No Safe SSL conf, FALLBACK to default' + '[' 1 ] + printf '%s\n' ' > > easyrsa_openssl: No Safe SSL conf, FALLBACK to default' > > easyrsa_openssl: No Safe SSL conf, FALLBACK to default + export 'OPENSSL_CONF=erut-w11/75c3dec1/temp.4.1' + '[' -z ] + '[' ] + openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc ----- Error: No objects specified in config file Error making certificate request + die 'easyrsa_openssl - Command has failed: * openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc' + print ' Easy-RSA error: easyrsa_openssl - Command has failed: * openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc ' + printf '%s\n' ' Easy-RSA error: easyrsa_openssl - Command has failed: * openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc ' Easy-RSA error: easyrsa_openssl - Command has failed: * openssl req -utf8 -new -key erut-w11/75c3dec1/temp.2.1 -keyout erut-w11/75c3dec1/temp.2.1 -out erut-w11/75c3dec1/temp.3.1 -batch -x509 -days 3650 -sha256 -noenc + '[' ] + show_host + '[' ] + print_version + OPENSSL_CONF=/dev/null openssl version + ssl_version='OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023)' + cat EasyRSA Version Information Version: ~VER~ Generated: ~DATE~ SSL Lib: OpenSSL 3.2.0 23 Nov 2023 (Library: OpenSSL 3.2.0 23 Nov 2023) Git Commit: ~GITHEAD~ Source Repo: https://github.com/OpenVPN/easy-rsa + print 'Host: dev | win | Windows_NT | /bin/sh' + printf '%s\n' 'Host: dev | win | Windows_NT | /bin/sh' Host: dev | win | Windows_NT | /bin/sh + '[' ] + return 0 + exit 1 + cleanup 1 + '[' -f erut-w11/75c3dec1/error.log ] + '[' ] + '[' ] + '[' erut-w11 ] + '[' -d erut-w11/75c3dec1 ] + '[' ] + '[' erut-w11/75c3dec1 ] + remove_secure_session + '[' erut-w11 ] + '[' -d erut-w11/75c3dec1 ] + rm -rf erut-w11/75c3dec1 + verbose 'remove_secure_session: DELETED: erut-w11/75c3dec1' + '[' 1 ] + printf '%s\n' ' > remove_secure_session: DELETED: erut-w11/75c3dec1' > remove_secure_session: DELETED: erut-w11/75c3dec1 + unset -v secured_session mktemp_counter OPENSSL_CONF safe_ssl_cnf_tmp working_safe_ssl_conf + return + : + trap - 0 1 2 3 6 15 + '[' ] + '[' 1 '=' 2 ] + '[' 1 '=' ok ] + verbose 'Exit: Final Fail = true' + '[' 1 ] + printf '%s\n' ' > Exit: Final Fail = true' > Exit: Final Fail = true + exit 1 EasyRSA Shell #