make alpn-validation certificates and keys group readable (closes #754, fixes #753)

author Georg Altmann <george@george-net.de>

Sat, 15 Aug 2020 12:53:04 +0000 (14:53 +0200)

committer Lukas Schauer <lukas@schauer.so>

Thu, 10 Dec 2020 13:00:26 +0000 (14:00 +0100)
author Georg Altmann <george@george-net.de>
Sat, 15 Aug 2020 12:53:04 +0000 (14:53 +0200)
committer Lukas Schauer <lukas@schauer.so>
Thu, 10 Dec 2020 13:00:26 +0000 (14:00 +0100)
diff --git a/dehydrated b/dehydrated

index 7705aecead7162dbe2cd0fdb001768e97f2461e2..097c9110693a78c48d397d47513abc8bd7154778 100755 (executable)
--- a/dehydrated
+++ b/dehydrated
@@ -1279,6 +1279,7 @@ generate_alpn_certificate() {
    SUBJ="/CN=${altname}/"
    [[ "${OSTYPE:0:5}" = "MINGW" ]] && SUBJ="/${SUBJ}"
    _openssl req -x509 -new -sha256 -nodes -newkey rsa:2048 -keyout "${alpncertdir}/${altname}.key.pem" -out "${alpncertdir}/${altname}.crt.pem" -subj "${SUBJ}" -extensions SAN -config "${tmp_openssl_cnf}"
+  chmod g+r "${alpncertdir}/${altname}.key.pem" "${alpncertdir}/${altname}.crt.pem"
    rm -f "${tmp_openssl_cnf}"
  }
author	Georg Altmann <george@george-net.de>
	Sat, 15 Aug 2020 12:53:04 +0000 (14:53 +0200)
committer	Lukas Schauer <lukas@schauer.so>
	Thu, 10 Dec 2020 13:00:26 +0000 (14:00 +0100)