fix #3745: handle overridden TLS key location

author Fabian Grünbichler <f.gruenbichler@proxmox.com>

Fri, 17 Dec 2021 12:57:31 +0000 (13:57 +0100)

committer Thomas Lamprecht <t.lamprecht@proxmox.com>

Thu, 13 Jan 2022 12:42:58 +0000 (13:42 +0100)
author Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fri, 17 Dec 2021 12:57:31 +0000 (13:57 +0100)
committer Thomas Lamprecht <t.lamprecht@proxmox.com>
Thu, 13 Jan 2022 12:42:58 +0000 (13:42 +0100)
diff --git a/PVE/Service/pveproxy.pm b/PVE/Service/pveproxy.pm

index 61424d77a2c70723b8237523b9b0313770836333..b746ebf12c187ff2e740bc78cfa4196d20e0a289 100755 (executable)
--- a/PVE/Service/pveproxy.pm
+++ b/PVE/Service/pveproxy.pm
@@ -131,9 +131,13 @@ sub init {
      if (defined($proxyconf->{DHPARAMS})) {
         $self->{server_config}->{ssl}->{dh_file} = $proxyconf->{DHPARAMS};
      }
-    if (-f '/etc/pve/local/pveproxy-ssl.pem' && -f '/etc/pve/local/pveproxy-ssl.key') {
+    my $custom_key_path = '/etc/pve/local/pveproxy-ssl.key';
+    if (defined($proxyconf->{TLS_KEY_FILE})) {
+       $custom_key_path = $proxyconf->{TLS_KEY_FILE};
+    }
+    if (-f '/etc/pve/local/pveproxy-ssl.pem' && -f $custom_key_path) {
         $self->{server_config}->{ssl}->{cert_file} = '/etc/pve/local/pveproxy-ssl.pem';
-       $self->{server_config}->{ssl}->{key_file} = '/etc/pve/local/pveproxy-ssl.key';
+       $self->{server_config}->{ssl}->{key_file} = $custom_key_path;
         syslog('info', 'Using \'/etc/pve/local/pveproxy-ssl.pem\' as certificate for the web interface.');
      }
  }
author	Fabian Grünbichler <f.gruenbichler@proxmox.com>
	Fri, 17 Dec 2021 12:57:31 +0000 (13:57 +0100)
committer	Thomas Lamprecht <t.lamprecht@proxmox.com>
	Thu, 13 Jan 2022 12:42:58 +0000 (13:42 +0100)