Merge branch 'check-certificates' into next

2025-08-14 06:58:50 +02:00 · 2025-02-27 10:52:19 +01:00 · 2025-02-27 10:52:19 +01:00 · 24de060904
commit 24de060904
parent 53b13b295a 14195c51ca
1 changed files with 15 additions and 10 deletions
--- a/check-certificates.rsc
+++ b/check-certificates.rsc
@ -48,21 +48,26 @@
    :global UrlEncode;
    :global WaitForFile;
-    :local Return false;
+    :foreach Type in={ "p12"; "pem" } do={
      :local CertFileName ([ $UrlEncode $FetchName ] . "." . $Type);
      $LogPrint debug $ScriptName ("Trying type '" . $Type . "' for '" . $CertName . \
          "' (file '" . $CertFileName . "')...");
    :foreach Type in={ ".pem"; ".p12" } do={
      :local CertFileName ([ $UrlEncode $FetchName ] . $Type);
      :do {
        /tool/fetch check-certificate=yes-without-crl http-header-field=({ [ $FetchUserAgentStr $ScriptName ] }) \
            ($CertRenewUrl . $CertFileName) dst-path=$CertFileName as-value;
        $WaitForFile $CertFileName;
        :local DecryptionFailed true;
-        :foreach PassPhrase in=$CertRenewPass do={
+        :foreach I,PassPhrase in=$CertRenewPass do={
          :do {
            $LogPrint debug $ScriptName ("Trying " . $I . ". passphrase... ");
            :local Result [ /certificate/import file-name=$CertFileName passphrase=$PassPhrase as-value ];
            :if ($Result->"decryption-failures" = 0) do={
              $LogPrint debug $ScriptName ("Success!");
              :set DecryptionFailed false;
            }
          } on-error={ }
        }
        $RmFile $CertFileName;
@ -77,13 +82,13 @@
          $CertificateNameByCN [ /certificate/get $CertInChain common-name ];
        }
-        :set Return true;
+        :return true;
      } on-error={
        $LogPrint debug $ScriptName ("Could not download certificate file '" . $CertFileName . "'.");
      }
    }
-    :return $Return;
+    :return false;
  }
  :local FormatInfo do={