revoke: Pass the correct certificate location to revoke function

Certificates moved to the 'pki/expired' directory do not require mirroring the PKI directory structure, one directory is adequate. Certificates moved to the 'pki/renewed' directory do require mirroring the PKI directory structure. This is inherited bahavior. Set the correct mirrrored directory for target certificates in the 'renewed' directory structure. Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
OpenVPN · Jul 23, 2024 · 24d5514 · 24d5514
1 parent f0b22c4
commit 24d5514
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
@@ -3171,7 +3171,7 @@ issued certificate:${NL}
 		# Revoking an issued cert forces req/key to be moved
 		move_req_and_key=1
 	;;
-	expired|renewed)
+	expired|renewed/issued)
 		# Revoke-expired/renewed cert means req/key can remain
 		move_req_and_key=
 	;;
@@ -5861,7 +5861,7 @@ case "$cmd" in
 		;;
 	revoke-renewed)
 		verify_working_env
-		cert_dir=renewed
+		cert_dir=renewed/issued
 		revoke "$@"
 		;;
 	renew)