Explicit cat invocation is more reliable

[zeasypki.git] / zeasypki

diff --git a/zeasypki b/zeasypki
index 995cfe0fb52eea7796df4f54746c1c97229a1568..a2e9a9c1fc4955d24a5c11a59cc7d00579e30aea 100755 (executable)
--- a/zeasypki
+++ b/zeasypki
@@ -4,7 +4,7 @@
 
 set -e
 
-KEY_ENCRYPT_RECIPIENT=${KEY_ENCRYPT_RECIPIENT:-CF60E89A59231E76E2636422AE1A8109E49857EF}
+KEY_ENCRYPT_RECIPIENT=${KEY_ENCRYPT_RECIPIENT:-12AD32689C660D426967FD75CB8205632107AD8A}
 COUNTRY=${COUNTRY:-RU}
 
 # Turn on PyGOST utilities
@@ -23,7 +23,7 @@ key_decrypt() {
 # ------------------------ >8 ------------------------
 
 usage() {
-    >&2 <<EOF
+    cat >&2 <<EOF
 Usage:
   \$ $ZSH_ARGZERO:t ca [ecdsa|gost] NAME -- new CA keypair
   \$ $ZSH_ARGZERO:t list-ca              -- list CA keypairs
@@ -57,7 +57,7 @@ ca_new_ecdsa() {
     local tmpl=`mktemp`
     local cert=`mktemp`
     trap "rm -f $key $tmpl $cert" HUP PIPE INT QUIT TERM EXIT
-    > $tmpl <<EOF
+    cat > $tmpl <<EOF
 dn = "cn=$domain,c=$COUNTRY"
 serial = 1
 expiration_days = 3650
@@ -93,7 +93,7 @@ ee_renew_ecdsa() {
     mapfile[$cakey]=$REPLY
     key_get ee/ecdsa/$ca/$domain
     mapfile[$key]=$REPLY
-    > $tmpl <<EOF
+    cat > $tmpl <<EOF
 dn = "cn=$domain,c=RU"
 expiration_days = 365
 signing_key
@@ -116,7 +116,7 @@ ee_renew_gost() {
     trap "rm -f $cakey $key $cert" HUP PIPE INT QUIT TERM EXIT
     key_get ca/gost/$ca
     mapfile[$cakey]=$REPLY
-    >> $cakey < ca/gost/$ca/cer.pem
+    cat >> $cakey < ca/gost/$ca/cer.pem
     key_get ee/gost/$ca/$domain
     mapfile[$key]=$REPLY
     cert-selfsigned-example.py \