wok-4.x annotate cacerts/stuff/remove-expired-certs.sh @ rev 12473

Up openssl 1.0.2u, zlib 1.2.13, tar 1.34, add cacerts, fix git receipt
author Stanislas Leduc <shann@slitaz.org>
date Sat Mar 04 08:15:16 2023 +0000 (15 months ago)
parents
children
rev   line source
shann@12473 1 #!/bin/sh
shann@12473 2 # Begin remove-expired-certs.sh
shann@12473 3 #
shann@12473 4 # Version 20120211
shann@12473 5
shann@12473 6 # Make sure the date is parsed correctly on all systems
shann@12473 7 mydate()
shann@12473 8 {
shann@12473 9 local y=$( echo $1 | cut -d" " -f4 )
shann@12473 10 local M=$( echo $1 | cut -d" " -f1 )
shann@12473 11 local d=$( echo $1 | cut -d" " -f2 )
shann@12473 12 local m
shann@12473 13
shann@12473 14 if [ ${d} -lt 10 ]; then d="0${d}"; fi
shann@12473 15
shann@12473 16 case $M in
shann@12473 17 Jan) m="01";;
shann@12473 18 Feb) m="02";;
shann@12473 19 Mar) m="03";;
shann@12473 20 Apr) m="04";;
shann@12473 21 May) m="05";;
shann@12473 22 Jun) m="06";;
shann@12473 23 Jul) m="07";;
shann@12473 24 Aug) m="08";;
shann@12473 25 Sep) m="09";;
shann@12473 26 Oct) m="10";;
shann@12473 27 Nov) m="11";;
shann@12473 28 Dec) m="12";;
shann@12473 29 esac
shann@12473 30
shann@12473 31 certdate="${y}${m}${d}"
shann@12473 32 }
shann@12473 33
shann@12473 34 OPENSSL=/usr/bin/openssl
shann@12473 35 DIR=$DESTDIR/etc/ssl/certs
shann@12473 36
shann@12473 37 if [ $# -gt 0 ]; then
shann@12473 38 DIR="$1"
shann@12473 39 fi
shann@12473 40
shann@12473 41 certs=$( find ${DIR} -type f -name "*.pem" -o -name "*.crt" )
shann@12473 42 today=$( date +%Y%m%d )
shann@12473 43
shann@12473 44 for cert in $certs; do
shann@12473 45 notafter=$( $OPENSSL x509 -enddate -in "${cert}" -noout )
shann@12473 46 date=$( echo ${notafter} | sed 's/^notAfter=//' )
shann@12473 47 mydate "$date"
shann@12473 48
shann@12473 49 if [ ${certdate} -lt ${today} ]; then
shann@12473 50 echo "${cert} expired on ${certdate}! Removing..."
shann@12473 51 rm -f "${cert}"
shann@12473 52 fi
shann@12473 53 done