fix(packaging): convert CA key from SEC1 to PKCS#8 for Rust pm-ca parser (#71)

The Rust pm-ca crate (crates/pm-ca/src/ca.rs) only parses PKCS#8 format private keys. openssl ecparam -genkey produces SEC1 format (BEGIN EC PRIVATE KEY), which the Rust ring/RSA parser rejects with "parse CA private-key PEM", causing the service to crash-loop on startup. Proven on LPM: converting ca.key with openssl pkcs8 -topk8 -nocrypt and restarting patch-manager-web results in: Root CA loaded successfully Listening (HTTPS) on 0.0.0.0:443
2026-06-10 10:20:46 -05:00
parent f9ca15f7d9
commit 27716af5d7
6 changed files with 12 additions and 4 deletions
--- a/scripts/build-package.sh
+++ b/scripts/build-package.sh
@ -22,7 +22,7 @@ warn()  { echo -e "${YELLOW}[WARN]${NC}  $*"; }
 error() { echo -e "${RED}[ERROR]${NC} $*" >&2; exit 1; }

 PROJECT_ROOT="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
-VERSION="1.1.13"
+VERSION="1.1.14"
 RELEASE="1"
 PKG_NAME="linux-patch-manager"
 DEB_NAME="${PKG_NAME}_${VERSION}-${RELEASE}_amd64.deb"