From 9229ff93e524931ec01f0d4e11fc3766a3cca16e Mon Sep 17 00:00:00 2001
From: Andrey Arapov <andrey.arapov@nixaid.com>
Date: Tue, 10 Jul 2018 00:30:28 +0200
Subject: [PATCH] fixes

---
 gencert.sh | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/gencert.sh b/gencert.sh
index 74178ee..5042c57 100755
--- a/gencert.sh
+++ b/gencert.sh
@@ -170,18 +170,15 @@ keyUsage = critical, digitalSignature, keyEncipherment, keyCertSign
 [ v3_req_server ]
 basicConstraints = CA:FALSE
 keyUsage = critical, digitalSignature, keyEncipherment
-extendedKeyUsage = serverAuth
-subjectAltName = @alt_names
-[ alt_names ]"
+extendedKeyUsage = serverAuth"
 
-
-  if [ $ARG_NOSAN -ne 1 ]; then
+  if [ -z $ARG_NOSAN ]; then
     # Gather IPs for SAN
     
     i=1
     IPS="$(getent ahostsv4 $(hostname) | awk '{print $1}' |sort | uniq)"
     echo "[${ME}] Found these IPs: " ${IPS}
-    PAYLOAD="$(for IP in $IPS; do echo "IP.${i} = ${IP}" ; i=$((i + 1)); done)"
+    PAYLOAD="subjectAltName = @alt_names\n[ alt_names ]\n$(for IP in $IPS; do echo "IP.${i} = ${IP}" ; i=$((i + 1)); done)"
   fi
   
   printf "${OPENSSL_CONFIG_CONTENT}\n${PAYLOAD}\n" > "${OPENSSL_CONFIG}"