1
0
freeradius-server/freeradius-server-fix-cert-bootstrap.patch

53 lines
1.8 KiB
Diff

Index: freeradius-server-2.1.10/raddb/certs/Makefile
===================================================================
--- freeradius-server-2.1.10.orig/raddb/certs/Makefile
+++ freeradius-server-2.1.10/raddb/certs/Makefile
@@ -51,7 +51,7 @@ dh:
# Create a new self-signed CA certificate
#
######################################################################
-ca.key ca.pem: ca.cnf
+ca.key ca.pem:
openssl req -new -x509 -keyout ca.key -out ca.pem \
-days $(CA_DEFAULT_DAYS) -config ./ca.cnf
@@ -63,7 +63,7 @@ ca.der: ca.pem
# Create a new server certificate, signed by the above CA.
#
######################################################################
-server.csr server.key: server.cnf
+server.csr server.key:
openssl req -new -out server.csr -keyout server.key -config ./server.cnf
server.crt: server.csr ca.key ca.pem
@@ -85,7 +85,7 @@ server.vrfy: ca.pem
# certificate.
#
######################################################################
-client.csr client.key: client.cnf
+client.csr client.key:
openssl req -new -out client.csr -keyout client.key -config ./client.cnf
client.crt: client.csr ca.pem ca.key
Index: freeradius-server-2.1.10/raddb/certs/bootstrap
===================================================================
--- freeradius-server-2.1.10.orig/raddb/certs/bootstrap
+++ freeradius-server-2.1.10/raddb/certs/bootstrap
@@ -21,7 +21,9 @@ make -h > /dev/null 2>&1
#
if [ "$?" = "0" ]; then
make all
- exit $?
+ ret=$?
+ chgrp radiusd *
+ exit $ret
fi
#
@@ -79,3 +81,5 @@ fi
if [ ! -f client.crt ]; then
openssl ca -batch -keyfile ca.key -cert ca.pem -in client.csr -key `grep output_password ca.cnf | sed 's/.*=//;s/^ *//'` -out client.crt -extensions xpclient_ext -extfile xpextensions -config ./client.cnf
fi
+
+chgrp radiusd *