Home Explore Help
Register Sign In
Apq
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

use ${ACME_OPENSSL_BIN:-openssl} instead of openssl

(requested by @Neilpang in #3687)
Glenn Strauss 4 years ago
parent
c43c711f72
commit
8419b42e83
2 changed files with 10 additions and 10 deletions
Split View Show Diff Stats
  1. 5 5
      deploy/haproxy.sh
  2. 5 5
      deploy/lighttpd.sh

+ 5 - 5
deploy/haproxy.sh
View File 

@@ -195,7 +195,7 @@ haproxy_deploy() {
 
     _info "Updating OCSP stapling info"
 
     _debug _ocsp "${_ocsp}"
 
     _info "Extracting OCSP URL"
 
-    _ocsp_url=$(openssl x509 -noout -ocsp_uri -in "${_pem}")
 
+    _ocsp_url=$(${ACME_OPENSSL_BIN:-openssl} x509 -noout -ocsp_uri -in "${_pem}")
 
     _debug _ocsp_url "${_ocsp_url}"
 
 
     # Only process OCSP if URL was present
 
@@ -208,9 +208,9 @@ haproxy_deploy() {
 
       # Only process the certificate if we have a .issuer file
 
       if [ -r "${_issuer}" ]; then
 
         # Check if issuer cert is also a root CA cert
 
-        _subjectdn=$(openssl x509 -in "${_issuer}" -subject -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
+        _subjectdn=$(${ACME_OPENSSL_BIN:-openssl} x509 -in "${_issuer}" -subject -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
         _debug _subjectdn "${_subjectdn}"
 
-        _issuerdn=$(openssl x509 -in "${_issuer}" -issuer -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
+        _issuerdn=$(${ACME_OPENSSL_BIN:-openssl} x509 -in "${_issuer}" -issuer -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
         _debug _issuerdn "${_issuerdn}"
 
         _info "Requesting OCSP response"
 
         # If the issuer is a CA cert then our command line has "-CAfile" added
 
@@ -221,7 +221,7 @@ haproxy_deploy() {
 
         fi
 
         _debug _cafile_argument "${_cafile_argument}"
 
         # if OpenSSL/LibreSSL is v1.1 or above, the format for the -header option has changed
 
-        _openssl_version=$(openssl version | cut -d' ' -f2)
 
+        _openssl_version=$(${ACME_OPENSSL_BIN:-openssl} version | cut -d' ' -f2)
 
         _debug _openssl_version "${_openssl_version}"
 
         _openssl_major=$(echo "${_openssl_version}" | cut -d '.' -f1)
 
         _openssl_minor=$(echo "${_openssl_version}" | cut -d '.' -f2)
 
@@ -231,7 +231,7 @@ haproxy_deploy() {
 
           _header_sep=" "
 
         fi
 
         # Request the OCSP response from the issuer and store it
 
-        _openssl_ocsp_cmd="openssl ocsp \
 
+        _openssl_ocsp_cmd="${ACME_OPENSSL_BIN:-openssl} ocsp \
 
           -issuer \"${_issuer}\" \
 
           -cert \"${_pem}\" \
 
           -url \"${_ocsp_url}\" \

+ 5 - 5
deploy/lighttpd.sh
View File 

@@ -195,7 +195,7 @@ lighttpd_deploy() {
 
     _info "Updating OCSP stapling info"
 
     _debug _ocsp "${_ocsp}"
 
     _info "Extracting OCSP URL"
 
-    _ocsp_url=$(openssl x509 -noout -ocsp_uri -in "${_pem}")
 
+    _ocsp_url=$(${ACME_OPENSSL_BIN:-openssl} x509 -noout -ocsp_uri -in "${_pem}")
 
     _debug _ocsp_url "${_ocsp_url}"
 
 
     # Only process OCSP if URL was present
 
@@ -208,9 +208,9 @@ lighttpd_deploy() {
 
       # Only process the certificate if we have a .issuer file
 
       if [ -r "${_issuer}" ]; then
 
         # Check if issuer cert is also a root CA cert
 
-        _subjectdn=$(openssl x509 -in "${_issuer}" -subject -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
+        _subjectdn=$(${ACME_OPENSSL_BIN:-openssl} x509 -in "${_issuer}" -subject -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
         _debug _subjectdn "${_subjectdn}"
 
-        _issuerdn=$(openssl x509 -in "${_issuer}" -issuer -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
+        _issuerdn=$(${ACME_OPENSSL_BIN:-openssl} x509 -in "${_issuer}" -issuer -noout | cut -d'/' -f2,3,4,5,6,7,8,9,10)
 
         _debug _issuerdn "${_issuerdn}"
 
         _info "Requesting OCSP response"
 
         # If the issuer is a CA cert then our command line has "-CAfile" added
 
@@ -221,7 +221,7 @@ lighttpd_deploy() {
 
         fi
 
         _debug _cafile_argument "${_cafile_argument}"
 
         # if OpenSSL/LibreSSL is v1.1 or above, the format for the -header option has changed
 
-        _openssl_version=$(openssl version | cut -d' ' -f2)
 
+        _openssl_version=$(${ACME_OPENSSL_BIN:-openssl} version | cut -d' ' -f2)
 
         _debug _openssl_version "${_openssl_version}"
 
         _openssl_major=$(echo "${_openssl_version}" | cut -d '.' -f1)
 
         _openssl_minor=$(echo "${_openssl_version}" | cut -d '.' -f2)
 
@@ -231,7 +231,7 @@ lighttpd_deploy() {
 
           _header_sep=" "
 
         fi
 
         # Request the OCSP response from the issuer and store it
 
-        _openssl_ocsp_cmd="openssl ocsp \
 
+        _openssl_ocsp_cmd="${ACME_OPENSSL_BIN:-openssl} ocsp \
 
           -issuer \"${_issuer}\" \
 
           -cert \"${_pem}\" \
 
           -url \"${_ocsp_url}\" \