blob: 4fc0f0ff3b1b9bd67eb5a6d8fc90496e751d72c9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
|
:
eval 'exec perl -S $0 ${1+"$@"}'
if $running_under_some_shell;
##
## Merge the local certificates
##
$date = `date`;
$date =~ s|\n$||;
open(BDL, ">>ksslcalist") || die;
open(CDL, ">>caroot/ca-bundle.crt") || die;
open(IDX, "<localcerts") || die;
while (<IDX>) {
$filename = $_;
chomp($filename);
stat($filename);
next if ! -r _;
print STDERR "Bundling: $filename\n";
$pem = `cat $filename`;
print CDL "\n$pem\n";
$pem =~ s|[\n\r]||g;
$pem =~ s|-----BEGIN CERTIFICATE-----||;
$pem =~ s|-----END CERTIFICATE-----||;
$subj = `openssl x509 -in $filename -inform PEM -noout -subject`;
$_ = $subj;
if ( /[Oo]bject/ || /[Cc]ode/ ) {
$codeSubj = 1;
} else {
$codeSubj = 0;
}
$subj =~ s|\n$||;
$subj =~ s/^subject= //;
$purpose = `openssl x509 -in $filename -inform PEM -noout -purpose`;
print BDL "\n";
print BDL "[$subj]\n";
print BDL "x509=$pem\n";
#
$_ = $purpose;
if ( /server CA : Yes\n/ || /client CA : Yes\n/ || (/Any Purpose CA : Yes\n/ && (/client : Yes\n/ || /server : Yes\n/ ))) {
print BDL "site=true\n";
} else {
print BDL "site=false\n";
}
#
if ( /MIME signing CA : Yes\n/ || /MIME encryption CA : Yes\n/ ) {
print BDL "email=true\n";
} else {
print BDL "email=false\n";
}
#
if ( /Any Purpose CA : Yes\n/ && $codeSubj == 1) {
print BDL "code=true\n";
} else {
print BDL "code=false\n";
}
}
close(BDL);
close(CDL);
close(IDX);
|