wok-4.x annotate cacerts/stuff/remove-expired-certs.sh @ rev 12473
Up openssl 1.0.2u, zlib 1.2.13, tar 1.34, add cacerts, fix git receipt
author | Stanislas Leduc <shann@slitaz.org> |
---|---|
date | Sat Mar 04 08:15:16 2023 +0000 (15 months ago) |
parents | |
children |
rev | line source |
---|---|
shann@12473 | 1 #!/bin/sh |
shann@12473 | 2 # Begin remove-expired-certs.sh |
shann@12473 | 3 # |
shann@12473 | 4 # Version 20120211 |
shann@12473 | 5 |
shann@12473 | 6 # Make sure the date is parsed correctly on all systems |
shann@12473 | 7 mydate() |
shann@12473 | 8 { |
shann@12473 | 9 local y=$( echo $1 | cut -d" " -f4 ) |
shann@12473 | 10 local M=$( echo $1 | cut -d" " -f1 ) |
shann@12473 | 11 local d=$( echo $1 | cut -d" " -f2 ) |
shann@12473 | 12 local m |
shann@12473 | 13 |
shann@12473 | 14 if [ ${d} -lt 10 ]; then d="0${d}"; fi |
shann@12473 | 15 |
shann@12473 | 16 case $M in |
shann@12473 | 17 Jan) m="01";; |
shann@12473 | 18 Feb) m="02";; |
shann@12473 | 19 Mar) m="03";; |
shann@12473 | 20 Apr) m="04";; |
shann@12473 | 21 May) m="05";; |
shann@12473 | 22 Jun) m="06";; |
shann@12473 | 23 Jul) m="07";; |
shann@12473 | 24 Aug) m="08";; |
shann@12473 | 25 Sep) m="09";; |
shann@12473 | 26 Oct) m="10";; |
shann@12473 | 27 Nov) m="11";; |
shann@12473 | 28 Dec) m="12";; |
shann@12473 | 29 esac |
shann@12473 | 30 |
shann@12473 | 31 certdate="${y}${m}${d}" |
shann@12473 | 32 } |
shann@12473 | 33 |
shann@12473 | 34 OPENSSL=/usr/bin/openssl |
shann@12473 | 35 DIR=$DESTDIR/etc/ssl/certs |
shann@12473 | 36 |
shann@12473 | 37 if [ $# -gt 0 ]; then |
shann@12473 | 38 DIR="$1" |
shann@12473 | 39 fi |
shann@12473 | 40 |
shann@12473 | 41 certs=$( find ${DIR} -type f -name "*.pem" -o -name "*.crt" ) |
shann@12473 | 42 today=$( date +%Y%m%d ) |
shann@12473 | 43 |
shann@12473 | 44 for cert in $certs; do |
shann@12473 | 45 notafter=$( $OPENSSL x509 -enddate -in "${cert}" -noout ) |
shann@12473 | 46 date=$( echo ${notafter} | sed 's/^notAfter=//' ) |
shann@12473 | 47 mydate "$date" |
shann@12473 | 48 |
shann@12473 | 49 if [ ${certdate} -lt ${today} ]; then |
shann@12473 | 50 echo "${cert} expired on ${certdate}! Removing..." |
shann@12473 | 51 rm -f "${cert}" |
shann@12473 | 52 fi |
shann@12473 | 53 done |