From b7679c9878cb9108678a5ce44b86980920e64ca2 Mon Sep 17 00:00:00 2001 From: root Date: Fri, 4 Oct 2024 00:08:47 +0200 Subject: [PATCH] install_dehydrated.sh: fix error gvreating TLSA 3 0 1 eecord. --- install_dehydrated.sh | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/install_dehydrated.sh b/install_dehydrated.sh index 7a950c4..80298d3 100755 --- a/install_dehydrated.sh +++ b/install_dehydrated.sh @@ -2089,12 +2089,11 @@ if [[ -n "\$_successfully_created_hosts" ]] ; then if ! \${generate_tlsa_301} ; then echo_skipped else - tlsa_record_311=\$( + tlsa_record_301=\$( printf "_%s._tcp.%s. \$ttl_301 IN TLSA 3 0 1 %s\\n" \\ \${_tmp_arr[1]} \\ \${_tmp_arr[0]} \\ \$(openssl x509 -in ${DH_BASE_DIR}/certs/\${_tmp_arr[0]}/cert.pem -noout -pubkey | - openssl pkey -pubin -outform DER | openssl dgst -sha256 -binary | hexdump -ve '/1 "%02x"') ) @@ -2114,7 +2113,7 @@ if [[ -n "\$_successfully_created_hosts" ]] ; then # - \$verbose && echononl " Add/Renew Record in concerning zone file.." ssh -q -p \$dane_ssh_port -i \$dane_ssh_key \${dane_ssh_user}@\${dane_nameserver} \\ - "sudo \$renew_tlsa_record \$tlsa_record_311 > /dev/null 2>&1" + "sudo \$renew_tlsa_record \$tlsa_record_301 > /dev/null 2>&1" ret_val=\$? case \$ret_val in 0)