-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Sent with Proton Mail secure email.
------- Original Message -------
On Wednesday, March 8th, 2023 at 14:30, Bo Berglund <bo.bergl...@gmail.com>
wrote:
> On Wed, 08 Mar 2023 01:45:40 +0000, tincantech via Openvpn-users
> openvpn-users@lists.sourceforge.net wrote:
>
>
>
> > Appears to be correct.
>
>
> So now I have finally attacked the existing easy-rsa dir by doing this:
>
> 1) Copied the whole dir to easyrsa3 and renamed the source dir to easyrsa2
>
> 2) Removed some old script files I had written and are no longer useful.
>
> 3) Copied in the easyrsa3 files retrieved via svn as described earlier
> and then moved the easyrsa script to ~/bin/ so as to put it on path.
>
> 4) Failed to edit the vars file! <== ! see below
>
> 5) Ran the command: EASYRSA_TEMP_DIR="$PWD" VERBOSE=1 easyrsa upgrade pki
>
> This failed luckily with these messages:
>
> cp: cannot stat '/home/bosse/openvpn/easy-rsa/keys/index.txt': No such file or
> directory
>
> and
>
> ERROR: Failed to copy /home/bosse/openvpn/easy-rsa/keys/index.txt to
> /home/bosse/openvpn/easyrsa3/pki
>
>
> Turns out that in the vars file was a directive:
> export EASY_RSA="/home/bosse/openvpn/easy-rsa"
>
> Which in this case after renaming easy-rsa to easyrsa2 was nowhere to be
> found.
> If this rename had not been the case then I guess easyrsa would have operated
> on
> the original v2 dir rather than the copy to be upgraded to v3.
>
> After I changed the export to the new dir the conversion went smoothly and
> clients with and without passwords created in the new dir could connect fine.
>
> So if a migration to version 3 is done on a copy of the version2 dir then it
> is important to edit the vars file in that dir to point it to the new dir.
>
> Using this instead would probably be better:
>
> export EASY_RSA="$PWD"
>
EasyRSA v3 does not use (and should not allow) 'export foo=bar'.
There is a line in 'vars' which is:
#set_var EASYRSA "${0%/*}"
and should remain that way, unless you know what you are doing.
The script assigns EASYRSA internally, if this remains unset in 'vars'.
How 'export' got into your 'vars' file, I cannot say.
Regards
R
-----BEGIN PGP SIGNATURE-----
Version: ProtonMail
wsBzBAEBCAAnBQJkCLklCRBPl5z2a5C4nRYhBAm8PURno41yecVVVU+XnPZr
kLidAAAo9AgAxgkrcTQoGaXi7NhvfOD0AVqAIusDWBzgjxCWCIEaZTKWjhth
HRcSeB9indemchEP7NpZ5TF4ckv77XXBSm0FoijDFwUVk+sVX3wfXSfH/7N6
5PuXVqc59j8o8RmMKieExM/4Nh2pa3/QMzLMxEkZsjYJCrJuNgfvwhcYjKM5
WAlz5kwQ9pTqfdlFoW7BCWtAlh5QuthOK253DVX4xRd+Abr8PyNKXvVK3XLv
ncuIvcWbU0VauexyvEHohuTGg/dRiAmQWZVvbNqFHJF38rMX40SfXxZCt0bu
p8ZjShQ9KlnOk86tCSds1fHVi8b6r0w99lr2H75iHGstmvvmQMwA1Q==
=1OPH
-----END PGP SIGNATURE-----
publickey - tincantech@protonmail.com - 0x09BC3D44.asc
Description: application/pgp-keys
publickey - tincantech@protonmail.com - 0x09BC3D44.asc.sig
Description: PGP signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
