ca-certificates-schlittermann: comparison debian/postinst

equal deleted inserted replaced

-:e23951f3f974
+:a9462fce24e1
 # for details, see http://www.debian.org/doc/debian-policy/ or
 # the debian-policy package
 CONF=/etc/ca-certificates.conf
 DIR=/usr/share/ca-certificates
-CRTS=$DIR/schlittermann/*.crt
+CRTS=$(cd $DIR && ls schlittermann/*.crt)
 hash() { openssl x509 -noout -in "$1" -hash; }
 case "$1" in
 configure)
 	# aus der ca-certificates.conf entfernen
-	tmp=`mktemp`
+	echo "$CRTS" >> $CONF
-	grep -v '^schlittermann-ca\.crt$' $CONF > $tmp
+	update-ca-certificates --fresh
-	cp $tmp $CONF
-	rm -f $tmp
-	# zuerst mal gucken, ob's nicht zufällig schon in /etc/ssl/certs
+	# find schlittermann certs that are used somewhere
-	# mit rumliegt von früher
+	{
+	    echo '/etc/ssl/certs/schlittermann-ca.pem';
-	for CRT in $CRTS; do
+	    find /etc/ssl/certs -name '*schlittermann*' -not -type l -type f -printf '%p\n'
-	    CRT=$(basename $CRT)
+	} | sort -u | while read FILE; do
-	    HASH=`hash $DIR/$CRT 2>/dev/null || echo 0`
+		found=$(grep --exclude-dir '.hg' -rlF "$FILE" /etc) || continue
-	    echo "$DIR/$CRT: $HASH"
+		{
+		    echo "WARNING: \`$FILE' used in:"
-	    for p in /etc/ssl/certs/*.crt; do
+		    echo "$found"
-		test -e "$p" || { rm -f "$p"; continue; }   # dangling symlinks
+		    echo "Please replace this with \`$DIR/schlittermann/schlittermann-ca-bundle.pem'"
-		test "$HASH" = `hash "$p"` || continue
+		} | sed 's/^/### /' >&2
-		test -L "$p" || { rm -v "$p"; continue; }
-		test `readlink "$p"` = "$DIR/$CRT" || { rm "$p"; continue; }
 	    done
-	    grep -F -q "schlittermann/$CRT" "$CONF" || echo "schlittermann/$CRT" >> "$CONF"
-	done
-	update-ca-certificates
 ;;
 abort-upgrade|abort-remove|abort-deconfigure)
 ;;

changeset 15	a9462fce24e1
parent 8	75c45a13ac8c
child 20	1ca14c3e5022