Pi-hole/pivpn
Pi-hole/pivpn
1
0
Fork 0
mirror of https://github.com/pivpn/pivpn.git synced 2024-12-18 19:00:15 +00:00
Code Issues Projects Releases Packages Wiki Activity

Issue-171: Error using iOS OpenVPN

Browse source 
As @fyellin There is some chatter on other groups that some
OpenVPN implementations cannot handle client keys that are
encrypted with RSA.

If the client key is encrypted, we might re-encrypting the
current client key using 3DES.

This commit will convert user client key to 3DES in command
`pivpn -a`

P/S: All credits to @fyellin. Many thanks to him.
This commit is contained in:
Tuan M. Dang 2017-11-19 21:36:21 +07:00
parent 7ed7e4652e
commit 455b754c41
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
scripts/makeOVPN.sh
View file

@ -121,6 +121,17 @@ function keyPASS() {
expect eof expect eof
EOF EOF
#Convert key to des3
KEY_FILE="pki/private/${NAME}${KEY}"
expect << EOF
set timeout -1
spawn openssl rsa -in ${KEY_FILE} -des3 -out ${KEY_FILE}
expect "Enter pass phrase" { send "${PASSWD}\r" }
expect "Enter PEM pass phrase" { send "${PASSWD}\r" }
expect "Verifying - Enter PEM pass phrase" { send "${PASSWD}\r" }
expect eof
EOF
cd pki || exit cd pki || exit
} }