schleedej/admin-tools
0
0
Fork 0
forked from URZ/admin-tools
Code Pull Requests Activity

Fix issue with CRL in ca-certificates.crt

Browse Source
This commit is contained in:
Daniel von Obernitz
2023-09-20 11:05:41 +02:00
parent 86a7bd57f7
commit c98ab8361d
1 changed files with 12 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
UpdateCRL.sh
View File

@@ -33,7 +33,7 @@ function ERROR {
########################################################### ###########################################################
PATHCRL=/usr/local/share/ca-certificates PATHCRL=/etc/ssl/crl
CRL=(UniHGW-CRL GEANT-RSA-CRL GEANT-ECC-CRL) CRL=(UniHGW-CRL GEANT-RSA-CRL GEANT-ECC-CRL)
PATHSSL=/etc/ssl/certs PATHSSL=/etc/ssl/certs
LASTRUN=/var/lib/runtime/$(basename "$0" .sh).lastrun LASTRUN=/var/lib/runtime/$(basename "$0" .sh).lastrun
@@ -78,13 +78,23 @@ do
fi fi
# Move CRL to final destination path # Move CRL to final destination path
if ! mv -f "/tmp/$CRL.pem" "$PATHCRL/$CRL.crt"; then if ! mv -f "/tmp/$CRL.pem" "$PATHCRL/$CRL.pem"; then
ERROR "Could not move CRL to $PATHCRL!" ERROR "Could not move CRL to $PATHCRL!"
ERR=1 ERR=1
rm -f "/tmp/$CRL.pem" rm -f "/tmp/$CRL.pem"
continue continue
fi fi
# Link CRL
if [[ ! -L "$PATHSSL"/"$CRL.pem" ]]; then
if ! ln -s "$PATHCRL"/"$CRL.pem" "$PATHSSL"/"$CRL.pem"; then
ERROR "Could not create CRL link to $PATHSSL!"
ERR=1
rm -f "$PATHCRL"/"$CRL.pem" "$PATHSSL"/"$CRL.pem"
continue
fi
fi
INFO "$CRL successfully updated" INFO "$CRL successfully updated"
done done