48 lines
1.0 KiB
Plaintext
48 lines
1.0 KiB
Plaintext
|
#!/bin/bash
|
||
|
## @licence MIT <http://opensource.org/licenses/MIT>
|
||
|
## @author Copyright (C) 2015 Robin Schneider <ypid@riseup.net>
|
||
|
|
||
|
set -e
|
||
|
|
||
|
if [ -z "$OPENVPN" ]; then
|
||
|
export OPENVPN="$PWD"
|
||
|
fi
|
||
|
if ! source "$OPENVPN/ovpn_env.sh"; then
|
||
|
echo "Could not source $OPENVPN/ovpn_env.sh."
|
||
|
exit 1
|
||
|
fi
|
||
|
|
||
|
TARGET="$OPENVPN/server"
|
||
|
if [ -n "$1" ]; then
|
||
|
TARGET="$1"
|
||
|
fi
|
||
|
mkdir -p "${TARGET}"
|
||
|
|
||
|
## Ensure that no other keys then the one for the server is present.
|
||
|
rm -rf "$TARGET/pki/private" "$TARGET/pki/issued"
|
||
|
|
||
|
FILES=(
|
||
|
"openvpn.conf"
|
||
|
"ovpn_env.sh"
|
||
|
"pki/private/${OVPN_CN}.key"
|
||
|
"pki/issued/${OVPN_CN}.crt"
|
||
|
"pki/dh.pem"
|
||
|
"pki/ta.key"
|
||
|
"pki/ca.crt"
|
||
|
"ccd"
|
||
|
)
|
||
|
|
||
|
if [ -f "${OPENVPN}/pki/crl.pem" ]; then
|
||
|
FILES+=("pki/crl.pem")
|
||
|
fi
|
||
|
|
||
|
# Ensure the ccd directory exists, even if empty
|
||
|
mkdir -p "ccd"
|
||
|
|
||
|
# rsync isn't available to keep size down
|
||
|
# cp --parents isn't in busybox version
|
||
|
# hack the directory structure with tar
|
||
|
tar cf - -C "${OPENVPN}" "${FILES[@]}" | tar xvf - -C "${TARGET}"
|
||
|
|
||
|
echo "Created the openvpn configuration for the server: $TARGET"
|