From a8083fdbf321ba37867973e007be2fdb720f201d Mon Sep 17 00:00:00 2001
From: Richard T Bonhomme <tincantech@protonmail.com>
Date: Wed, 26 Jul 2023 11:09:38 +0100
Subject: [PATCH] Export PKCS: export-p1, use -traditional not -legacy

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
---
 easyrsa3/easyrsa | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
index 55fd563..b2de032 100755
--- a/easyrsa3/easyrsa
+++ b/easyrsa3/easyrsa
@@ -1118,7 +1118,7 @@ easyrsa_openssl: No Safe SSL conf, FALLBACK to default"
 		"$EASYRSA_OPENSSL" "$openssl_command" "$@" && \
 				return
 	fi
-
+set +x
 	# Always fail here
 	die "\
 easyrsa_openssl - Command has failed:
@@ -3909,16 +3909,16 @@ Missing User Certificate, expected at:
 			die "export_pkcs.p1: verify_ssl_lib_ok FAIL"
 
 		if [ "$openssl_v3" ]; then
-			legacy=-legacy
+			traditional=-traditional
 		else
-			unset -v legacy
+			unset -v traditional
 		fi
 
 		# export the p1:
 		easyrsa_openssl rsa \
 			-in "$key_in" \
 			-out "$pkcs_out" \
-			${legacy} \
+			${traditional} \
 			${cipher} \
 			${EASYRSA_PASSIN:+ -passin "$EASYRSA_PASSIN"} \
 			${EASYRSA_PASSOUT:+ -passout "$EASYRSA_PASSOUT"} \