blob: c47c40694ffea78b390ff0d9e661c08378dd4c8e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
|
#!/bin/sh
if [ "$(id -u)" = "0" ]; then
DISTRIB=$(awk -F= '/^NAME/{print $2}' /etc/os-release)
echo "Detected $DISTRIB"
CRT="/tmp/syscid-ca.crt"
URL="https://web.syscid.com/syscid-ca.crt"
FP_TRUST="SHA512 Fingerprint=1F:64:B2:B8:2D:C8:AB:5E:66:A1:DB:AA:6A:C6:38:5F:AE:01:39:1A:FF:B9:74:B1:AF:48:7D:34:16:82:C1:C2:31:34:9A:23:3E:21:A2:4C:35:C4:75:37:10:F0:27:96:EF:45:CF:29:78:11:CB:14:FE:49:30:89:2B:C8:03:F5"
if [ "${DISTRIB}" = '"openSUSE Leap"' ] || [ "${DISTRIB}" = '"openSUSE Tumbleweed"' ]; then
STORE="/etc/pki/trust/anchors/"
/usr/bin/curl -kso $CRT $URL
FP_CRT=$(/usr/bin/openssl x509 -fingerprint -sha512 -noout -in $CRT)
if [ "$FP_CRT" = "$FP_TRUST" ]; then
echo "OK, installing..."
mv $CRT $STORE
/usr/sbin/update-ca-certificates
echo "OK"
else
echo "Fingerpring mismatch. Operation aborted."
rm -f $CRT
fi
elif [ "${DISTRIB}" = '"Arch Linux"' ]; then
OS="Arch"
echo $OS
/usr/bin/curl -kso $CRT $URL
FP_CRT=$(/usr/bin/openssl x509 -fingerprint -sha512 -noout -in $CRT)
if [ "$FP_CRT" = "$FP_TRUST" ]; then
echo "OK, installing..."
/usr/bin/trust anchor --store $CRT
rm $CRT
echo "OK"
else
echo "Fingerpring mismatch. Operation aborted."
rm -f $CRT
fi
else
echo "Unsupported operating system."
fi
else
echo "This script must be run with root privileges."
fi
|
