Package: easy-rsa
Version: 2.2.2-1
Severity: normal
The patch applied to allow for subject alternate names doesn't work because of
an argument number check right before it (and it also uses tabs for
identation).
The culprit are lines 291 up to 303 where the script exits if the amount of
arguments is not equal to 1 (lines 291 to 294)
if [ $# -ne 1 ]; then
usage
exit 1
else
and immediately bellow, the script handles additional arguments as alternate
host names.
KEY_CN="$1"
KEY_ALTNAMES="DNS:$1"
shift
while [ "x$1" != "x" ]
do
KEY_ALTNAMES="${KEY_ALTNAMES},DNS:$1"
shift
done
By replacing the argument check with one that only fails when the number of
arguments is less than 1, everything should work just fine
if [ $# -lt 1 ]; then
usage
exit 1
else
I'd include a patch but I the above mentioned functionality is already
provided by a patch.
-- System Information:
Debian Release: 8.9
APT prefers oldstable-updates
APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages easy-rsa depends on:
ii openssl 1.0.1t-1+deb8u6
Versions of packages easy-rsa recommends:
ii opensc 0.14.0-2
easy-rsa suggests no packages.
-- no debconf information
