Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[pki] pki-realm specify input format to convert DER to PEM
When the input format has been determined to be other than PEM, -in by itself fails to read the DER format file. -inform DER enables openssl to read the DER file and output a PEM format file as intermediate.pem.tmp (then immediately rename to intermediate.pem) Resolves issue where Let's Encrypt ACME certificates were issued and retrieved, but stored in DER format as intermediate.pem.tmp, and where conversion to PEM failed, leaving the /etc/pki/realm/example.org/acme directory containing: account_key.pem cert.pem ← good cert error.log ← no errors intermediate.pem.tmp ← DER format file openssl.conf request.pem and thus no usable ACME cert chain was prepared and pki was configured with private key and certificate instead. With this patch, the ACME certificate chain is complete and pki uses it. (cherry picked from commit a952be5)
- Loading branch information