]> git.street.me.uk Git - andy/dehydrated.git/commitdiff
projects / andy / dehydrated.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 5c18948)
use "openssl dgst" instead of "openssl sha" (fixes #120)
authorLukas Schauer <lukas@schauer.so>
Fri, 5 Feb 2016 15:02:17 +0000 (16:02 +0100)
committerLukas Schauer <lukas@schauer.so>
Fri, 5 Feb 2016 15:02:17 +0000 (16:02 +0100)
letsencrypt.sh patch | blob | blame | history

diff --git a/letsencrypt.sh b/letsencrypt.sh
index 51b0fd34fbb097e0f26fbba834c1d89dccd3f966..b2eff4bc174241594657508607d40f07fc3aa9d5 100755 (executable)
--- a/letsencrypt.sh
+++ b/letsencrypt.sh
@@ -158,7 +158,7 @@ init_system() {
   pubExponent64="$(openssl rsa -in "${PRIVATE_KEY}" -noout -text | grep publicExponent | grep -oE "0x[a-f0-9]+" | cut -d'x' -f2 | hex2bin | urlbase64)"
   pubMod64="$(openssl rsa -in "${PRIVATE_KEY}" -noout -modulus | cut -d'=' -f2 | hex2bin | urlbase64)"
 
-  thumbprint="$(printf '{"e":"%s","kty":"RSA","n":"%s"}' "${pubExponent64}" "${pubMod64}" | openssl sha -sha256 -binary | urlbase64)"
+  thumbprint="$(printf '{"e":"%s","kty":"RSA","n":"%s"}' "${pubExponent64}" "${pubMod64}" | openssl dgst -sha256 -binary | urlbase64)"
 
   # If we generated a new private key in the step above we have to register it with the acme-server
   if [[ "${register_new_key}" = "yes" ]]; then
@@ -364,7 +364,7 @@ sign_csr() {
         ;;
       "dns-01")
         # Generate DNS entry content for dns-01 validation
-        keyauth_hook="$(printf '%s' "${keyauth}" | openssl sha -sha256 -binary | urlbase64)"
+        keyauth_hook="$(printf '%s' "${keyauth}" | openssl dgst -sha256 -binary | urlbase64)"
         ;;
     esac
 
ACME client