jakob/myshellconfig
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add certificate validity check in startagent

Browse source
This commit is contained in:
Jakobus Schürz 2021-05-19 23:31:28 +02:00
parent 52626b5a09
commit b85250cd11
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
bin/startagent
View file

@ -277,6 +277,9 @@ agent-load-identity-keys () {
echo "pubkey without privkey: $pubkey"
pubkeysonly+=($pubkey)
fi
[ -e "${pubkey%.pub}-cert.pub" ] && \
[ $(date +%s -d $(ssh-keygen -L -f "${pubkey%.pub}-cert.pub"|awk '$1 == "Valid:"{print $5}')) -le $(date +%s -d NOW) ] \
|| logwarn "CERTIFICATE IS NOT VALID ANYMORE: ${pubkey%.pub}-cert.pub"
done
loginfo "pubkeysonly: ${pubkeysonly[@]} (count: ${#pubkeysonly[*]})"