fix https://github.com/Neilpang/acme.sh/issues/1062

change back to use openssl for tls mode.
2017-10-08 19:45:50 +08:00 · 2017-10-08 19:45:50 +08:00 · 5f6e3da766
parent 4ef1159666
commit 5f6e3da766
1 changed files with 11 additions and 3 deletions
--- a/acme.sh
+++ b/acme.sh
@ -2054,7 +2054,12 @@ _starttlsserver() {
    return 1
  fi

-  __S_OPENSSL="socat"
+  __S_OPENSSL="${ACME_OPENSSL_BIN:-openssl} s_server -www -cert $TLS_CERT  -key $TLS_KEY "
+  if [ "$opaddr" ]; then
+    __S_OPENSSL="$__S_OPENSSL -accept $opaddr:$port"
+  else
+    __S_OPENSSL="$__S_OPENSSL -accept $port"
+  fi

  _debug Le_Listen_V4 "$Le_Listen_V4"
  _debug Le_Listen_V6 "$Le_Listen_V6"
@ -2065,9 +2070,12 @@ _starttlsserver() {
  fi

  _debug "$__S_OPENSSL"
+  if [ "$DEBUG" ] && [ "$DEBUG" -ge "2" ]; then
+    $__S_OPENSSL -tlsextdebug &
+  else
+    $__S_OPENSSL >/dev/null 2>&1 &
+  fi

-  #todo listen address
-  $__S_OPENSSL openssl-listen:$port,cert=$TLS_CERT,key=$TLS_KEY,verify=0,reuseaddr,fork SYSTEM:"sleep 0.5; echo HTTP/1.1 200 OK'; echo ; echo  $content; echo;" &
  serverproc="$!"
  sleep 1
  _debug serverproc "$serverproc"