install_dehydrated.sh: fix error gvreating TLSA 3 0 1 eecord.

2024-10-04 00:08:47 +02:00 · 2024-10-04 00:08:47 +02:00 · b7679c9878
commit b7679c9878
parent d310f9f276
1 changed files with 2 additions and 3 deletions
--- a/install_dehydrated.sh
+++ b/install_dehydrated.sh
@ -2089,12 +2089,11 @@ if [[ -n "\$_successfully_created_hosts" ]] ; then
            if ! \${generate_tlsa_301} ; then
               echo_skipped
            else
-               tlsa_record_311=\$(
+               tlsa_record_301=\$(
                  printf "_%s._tcp.%s. \$ttl_301 IN TLSA 3 0 1 %s\\n" \\
                     \${_tmp_arr[1]} \\
                     \${_tmp_arr[0]} \\
                     \$(openssl x509 -in ${DH_BASE_DIR}/certs/\${_tmp_arr[0]}/cert.pem -noout -pubkey |
-                        openssl pkey -pubin -outform DER |
                        openssl dgst -sha256 -binary |
                        hexdump -ve '/1 "%02x"')
               )
@ -2114,7 +2113,7 @@ if [[ -n "\$_successfully_created_hosts" ]] ; then
               # -
               \$verbose && echononl "   Add/Renew Record in concerning zone file.."
               ssh -q -p \$dane_ssh_port -i \$dane_ssh_key \${dane_ssh_user}@\${dane_nameserver} \\
-                  "sudo \$renew_tlsa_record \$tlsa_record_311 > /dev/null 2>&1"
+                  "sudo \$renew_tlsa_record \$tlsa_record_301 > /dev/null 2>&1"
               ret_val=\$?
               case \$ret_val in
                  0)