Package: easy-rsa Version: 2.2.2-1 Severity: normal
The patch applied to allow for subject alternate names doesn't work because of an argument number check right before it (and it also uses tabs for identation). The culprit are lines 291 up to 303 where the script exits if the amount of arguments is not equal to 1 (lines 291 to 294) if [ $# -ne 1 ]; then usage exit 1 else and immediately bellow, the script handles additional arguments as alternate host names. KEY_CN="$1" KEY_ALTNAMES="DNS:$1" shift while [ "x$1" != "x" ] do KEY_ALTNAMES="${KEY_ALTNAMES},DNS:$1" shift done By replacing the argument check with one that only fails when the number of arguments is less than 1, everything should work just fine if [ $# -lt 1 ]; then usage exit 1 else I'd include a patch but I the above mentioned functionality is already provided by a patch. -- System Information: Debian Release: 8.9 APT prefers oldstable-updates APT policy: (500, 'oldstable-updates'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages easy-rsa depends on: ii openssl 1.0.1t-1+deb8u6 Versions of packages easy-rsa recommends: ii opensc 0.14.0-2 easy-rsa suggests no packages. -- no debconf information