echelon/i2p.i2p
1
0
Fork 0
forked from I2P_Developers/i2p.i2p
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

extend checkcerts.sh to print bits and hash information

Browse Source
This commit is contained in:
kytv
2015-02-18 22:36:33 +00:00
parent 6d58f9a354
commit f217af2deb
1 changed files with 24 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
tests/scripts/checkcerts.sh
View File

@ -20,7 +20,7 @@ SOON=60
date2julian() { date2julian() {
# Julian date conversion adapted from a post (its code released into the public # Julian date conversion adapted from a post (its code released into the public
# domain) by Tapani Tarvainen to comp.unix.shell (1998) for portability # domain) by Tapani Tarvainen to comp.unix.shell 1998)) for portability
# (e.g. using 'expr' instead of requiring Bash, ksh, or zsh). # (e.g. using 'expr' instead of requiring Bash, ksh, or zsh).
# $1 = Month # $1 = Month
# $2 = Day # $2 = Day
@ -90,7 +90,7 @@ getmonth() {
checkcert() { checkcert() {
if [ $OPENSSL ]; then if [ $OPENSSL ]; then
# OpenSSL's format: Mar 7 16:08:35 2022 GMT # OpenSSL's format: Mar 7 16:08:35 2022 GMT
DATA=$(openssl x509 -enddate -noout -in $1| cut -d'=' -f2-) DATA=$(openssl x509 -enddate -noout -in $1 | cut -d'=' -f2-)
else else
# Certtool's format: Mon Mar 07 16:08:35 UTC 2022 # Certtool's format: Mon Mar 07 16:08:35 UTC 2022
DATA=$(certtool -i < "$1" | sed -e '/Not\sAfter/!d' -e 's/^.*:\s\(.*\)/\1/') DATA=$(certtool -i < "$1" | sed -e '/Not\sAfter/!d' -e 's/^.*:\s\(.*\)/\1/')
@ -101,6 +101,26 @@ checkcert() {
echo $DATA echo $DATA
} }
get_bits() {
if [ $OPENSSL ]; then
BITS=$(openssl x509 -text -noout -in $1 | sed -e '/Public-Key/!d' \
-e 's/\s\+Public-Key: (\([0-9]\+\) bit)/\1 bits/')
else
BITS=$(certtool -i < $1 | sed -e '/^.*Algorithm Security Level/!d' \
-e 's/.*(\([0-9]\+\) bits).*/\1 bits/')
fi
}
get_sigtype() {
if [ $OPENSSL ]; then
TYPE=$(openssl x509 -text -noout -in $1 | sed -e '/Signature Algorithm/!d' \
-e 's/\s\+Signature Algorithm:\s\+\(.\+\)/\1/' | head -n1)
else
TYPE=$(certtool -i < $1 | sed -e '/^.*Signature Algorithm:/!d' \
-e 's/.*:\s\+\(.*\)/\1/')
fi
}
print_status() { print_status() {
if [ $DAYS -ge $SOON ]; then if [ $DAYS -ge $SOON ]; then
echo "Expires in $DAYS days ($EXPIRES)" echo "Expires in $DAYS days ($EXPIRES)"
@ -164,6 +184,8 @@ do
else else
compute_dates compute_dates
fi fi
get_bits $i && get_sigtype $i
printf '%s - %s\n\n' "$BITS" "$TYPE"
if grep '\s$' $i > /dev/null 2>&1; then if grep '\s$' $i > /dev/null 2>&1; then
echo "********* Trailing whitespace found in file $i *********" echo "********* Trailing whitespace found in file $i *********"
FAIL=1 FAIL=1