SOURCES: easy-rsa2.patch - no bash specifics inside, use plain /bi...

glen glen at pld-linux.org
Tue Jun 20 17:10:44 CEST 2006 

Author: glen                         Date: Tue Jun 20 15:10:44 2006 GMT
Module: SOURCES                       Tag: HEAD
---- Log message:
- no bash specifics inside, use plain /bin/sh shell

---- Files affected:
SOURCES:
   easy-rsa2.patch (1.2 -> 1.3) 

---- Diffs:

================================================================
Index: SOURCES/easy-rsa2.patch
diff -u SOURCES/easy-rsa2.patch:1.2 SOURCES/easy-rsa2.patch:1.3
--- SOURCES/easy-rsa2.patch:1.2	Wed Mar 22 13:01:19 2006
+++ SOURCES/easy-rsa2.patch	Tue Jun 20 17:10:38 2006
@@ -1,7 +1,10 @@
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-ca	2005-11-02 20:42:38.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-ca	2006-03-02 16:34:06.000000000 +0200
-@@ -4,5 +4,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-ca	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-ca	2006-06-20 18:07:58.836973652 +0300
+@@ -1,8 +1,8 @@
+-#!/bin/bash
++#!/bin/sh
+ 
+ #
  # Build a root certificate
  #
  
@@ -9,10 +12,11 @@
 -"$EASY_RSA/pkitool" --interact --initca $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --initca $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-dh	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-dh	2006-03-02 16:34:06.000000000 +0200
-@@ -2,6 +2,9 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-dh	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-dh	2006-06-20 18:08:01.257028006 +0300
+@@ -1,7 +1,10 @@
+-#!/bin/bash
++#!/bin/sh
  
  # Build Diffie-Hellman parameters for the server side
  # of an SSL/TLS connection.
@@ -22,10 +26,12 @@
  
  if [ -d $KEY_DIR ] && [ $KEY_SIZE ]; then
      openssl dhparam -out ${KEY_DIR}/dh${KEY_SIZE}.pem ${KEY_SIZE}
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-inter	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-inter	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-inter	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-inter	2006-06-20 18:08:03.467077642 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Make an intermediate CA certificate/private key pair using a locally generated
  # root certificate.
  
@@ -33,10 +39,12 @@
 -"$EASY_RSA/pkitool" --interact --inter $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --inter $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-key	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-key	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-key	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-key	2006-06-20 18:07:54.086866966 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Make a certificate/private key pair using a locally generated
  # root certificate.
  
@@ -44,10 +52,12 @@
 -"$EASY_RSA/pkitool" --interact $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-key-pass	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-key-pass	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-key-pass	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-key-pass	2006-06-20 18:07:44.566653144 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Similar to build-key, but protect the private key
  # with a password.
  
@@ -55,10 +65,13 @@
 -"$EASY_RSA/pkitool" --interact --pass $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --pass $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-key-pkcs12	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-key-pkcs12	2006-03-02 16:34:06.000000000 +0200
-@@ -4,5 +4,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-key-pkcs12	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-key-pkcs12	2006-06-20 18:07:40.856569816 +0300
+@@ -1,8 +1,8 @@
+-#!/bin/bash
++#!/bin/sh
+ 
+ # Make a certificate/private key pair using a locally generated
  # root certificate and convert it to a PKCS #12 file including the
  # the CA certificate as well.
  
@@ -66,21 +79,25 @@
 -"$EASY_RSA/pkitool" --interact --pkcs12 $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --pkcs12 $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-key-server	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-key-server	2006-03-02 16:34:06.000000000 +0200
-@@ -6,5 +6,5 @@
- # Explicitly set nsCertType to server using the "server"
- # extension in the openssl.cnf file.
+--- openvpn-2.0.5/easy-rsa/2.0/build-key-server	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-key-server	2006-06-20 18:07:42.576608448 +0300
+@@ -1,4 +1,4 @@
+-#!/bin/bash
++#!/bin/sh
  
+ # Make a certificate/private key pair using a locally generated
+ # root certificate.
+@@ -9,2 +9,2 @@
 -export EASY_RSA="${EASY_RSA:-.}"
 -"$EASY_RSA/pkitool" --interact --server $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --server $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-req	2005-11-02 20:42:38.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-req	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-req	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-req	2006-06-20 18:07:57.116935021 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Build a certificate signing request and private key.  Use this
  # when your root certificate and key is not available locally.
  
@@ -88,10 +105,12 @@
 -"$EASY_RSA/pkitool" --interact --csr $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --csr $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/build-req-pass	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/build-req-pass	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/build-req-pass	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/build-req-pass	2006-06-20 18:07:48.716746354 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Like build-req, but protect your private key
  # with a password.
  
@@ -99,10 +118,13 @@
 -"$EASY_RSA/pkitool" --interact --csr --pass $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --csr --pass $*
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/clean-all	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/clean-all	2006-03-02 16:34:06.000000000 +0200
-@@ -4,6 +4,10 @@
+--- openvpn-2.0.5/easy-rsa/2.0/clean-all	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/clean-all	2006-06-20 18:07:35.556450775 +0300
+@@ -1,9 +1,13 @@
+-#!/bin/bash
++#!/bin/sh
+ 
+ # Initialize the $KEY_DIR directory.
  # Note that this script does a
  # rm -rf on $KEY_DIR so be careful!
  
@@ -113,9 +135,14 @@
  if [ "$KEY_DIR" ]; then
      rm -rf "$KEY_DIR"
      mkdir "$KEY_DIR" && \
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/inherit-inter	2005-11-02 20:42:38.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/inherit-inter	2006-03-02 16:34:06.000000000 +0200
+--- openvpn-2.0.5/easy-rsa/2.0/inherit-inter	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/inherit-inter	2006-06-20 18:07:51.916818227 +0300
+@@ -1,4 +1,4 @@
+-#!/bin/bash
++#!/bin/sh
+ 
+ # Build a new PKI which is rooted on an intermediate certificate generated
+ # by ./build-inter or ./pkitool --inter from a parent PKI.  The new PKI should
 @@ -9,6 +9,10 @@
  # To build an intermediate CA, follow the same steps for a regular PKI but
  # replace ./build-key or ./pkitool --initca with this script.
@@ -127,11 +154,11 @@
  # The EXPORT_CA file will contain the CA certificate chain and should be
  # referenced by the OpenVPN "ca" directive in config files.  The ca.crt file
  # will only contain the local intermediate CA -- it's needed by the easy-rsa
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/list-crl	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/list-crl	2006-03-02 16:34:06.000000000 +0200
+--- openvpn-2.0.5/easy-rsa/2.0/list-crl	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/list-crl	2006-06-20 18:07:29.446313541 +0300
 @@ -1,6 +1,9 @@
- #!/bin/bash
+-#!/bin/bash
++#!/bin/sh
  
  # list revoked certificates
 +if [ -z "$EASY_RSA" ]; then
@@ -140,7 +167,6 @@
  
  CRL="${1:-crl.pem}"
  
-unchanged:
 --- openvpn-2.0.5/easy-rsa/2.0.orig/pkitool	2005-11-02 20:42:38.000000000 +0200
 +++ openvpn-2.0.5/easy-rsa/2.0/pkitool	2006-03-02 16:34:06.000000000 +0200
 @@ -34,6 +34,10 @@
@@ -154,10 +180,12 @@
  need_vars()
  {
      echo '  Please edit the vars script to reflect your configuration,'
-unchanged:
---- openvpn-2.0.5/easy-rsa/2.0.orig/sign-req	2005-11-02 20:42:39.000000000 +0200
-+++ openvpn-2.0.5/easy-rsa/2.0/sign-req	2006-03-02 16:34:06.000000000 +0200
-@@ -3,5 +3,5 @@
+--- openvpn-2.0.5/easy-rsa/2.0/sign-req	2006-03-02 16:34:06.000000000 +0200
++++ openvpn-2.0.7-bash/easy-rsa/2.0/sign-req	2006-06-20 18:07:38.856524895 +0300
+@@ -1,7 +1,7 @@
+-#!/bin/bash
++#!/bin/sh
+ 
  # Sign a certificate signing request (a .csr file)
  # with a local root certificate and key.
  
@@ -165,7 +193,6 @@
 -"$EASY_RSA/pkitool" --interact --sign $*
 +export EASY_RSA="${EASY_RSA:-/etc/easy-rsa}"
 +/usr/sbin/pkitool --interact --sign $*
-unchanged:
 --- openvpn-2.0.5/easy-rsa/2.0.orig/vars	2005-11-02 20:42:39.000000000 +0200
 +++ openvpn-2.0.5/easy-rsa/2.0/vars	2006-03-02 16:34:06.000000000 +0200
 @@ -12,7 +12,7 @@
@@ -187,8 +214,6 @@
  # Increase this to 2048 if you
  # are paranoid.  This will slow
  # down TLS negotiation performance
-only in patch2:
-unchanged:
 --- openvpn-2.0.5/easy-rsa/2.0/revoke-full	2005-11-02 20:42:39.000000000 +0200
 +++ /home/glen/revoke-full	2006-03-22 13:58:57.000000000 +0200
 @@ -2,6 +2,9 @@
@@ -219,3 +244,11 @@
  else
      echo 'Please source the vars script first (i.e. "source ./vars")'
      echo 'Make sure you have edited it to reflect your configuration.'
+--- openvpn-2.0.7/easy-rsa/2.0/revoke-full	2006-06-20 18:08:19.667441494 +0300
++++ openvpn-2.0.7-bash/easy-rsa/2.0/revoke-full	2006-06-20 18:07:46.746702107 +0300
+@@ -1,4 +1,4 @@
+-#!/bin/bash
++#!/bin/sh
+ 
+ # revoke a certificate, regenerate CRL,
+ # and verify revocation
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/SOURCES/easy-rsa2.patch?r1=1.2&r2=1.3&f=u

More information about the pld-cvs-commit mailing list