32ce2c0794
- CVE-2019-11494: Submission-login crashed with signal 11 due to null pointer access when authentication was aborted by disconnecting. - CVE-2019-11499: Submission-login crashed when authentication was started over TLS secured channel and invalid authentication message was sent.
37 lines
1.0 KiB
Plaintext
37 lines
1.0 KiB
Plaintext
$OpenBSD: patch-doc_mkcert_sh,v 1.9 2019/05/02 22:06:13 sthen Exp $
|
|
|
|
Index: doc/mkcert.sh
|
|
--- doc/mkcert.sh.orig
|
|
+++ doc/mkcert.sh
|
|
@@ -6,19 +6,13 @@
|
|
umask 077
|
|
OPENSSL=${OPENSSL-openssl}
|
|
SSLDIR=${SSLDIR-/etc/ssl}
|
|
-OPENSSLCONFIG=${OPENSSLCONFIG-dovecot-openssl.cnf}
|
|
+OPENSSLCONFIG=${OPENSSLCONFIG-${SSLDIR}/dovecot-openssl.cnf}
|
|
|
|
-CERTDIR=$SSLDIR/certs
|
|
KEYDIR=$SSLDIR/private
|
|
|
|
-CERTFILE=$CERTDIR/dovecot.pem
|
|
+CERTFILE=$SSLDIR/dovecotcert.pem
|
|
KEYFILE=$KEYDIR/dovecot.pem
|
|
|
|
-if [ ! -d $CERTDIR ]; then
|
|
- echo "$SSLDIR/certs directory doesn't exist"
|
|
- exit 1
|
|
-fi
|
|
-
|
|
if [ ! -d $KEYDIR ]; then
|
|
echo "$SSLDIR/private directory doesn't exist"
|
|
exit 1
|
|
@@ -34,7 +28,7 @@ if [ -f $KEYFILE ]; then
|
|
exit 1
|
|
fi
|
|
|
|
-$OPENSSL req -new -x509 -nodes -config $OPENSSLCONFIG -out $CERTFILE -keyout $KEYFILE -days 365 || exit 2
|
|
+$OPENSSL req -new -x509 -nodes -config $OPENSSLCONFIG -out $CERTFILE -keyout $KEYFILE -days 730 || exit 2
|
|
chmod 0600 $KEYFILE
|
|
echo
|
|
$OPENSSL x509 -subject -fingerprint -noout -in $CERTFILE || exit 2
|