groove/routeros-scripts-main
1
0
Fork 0
mirror of https://github.com/eworm-de/routeros-scripts.git synced 2026-01-13 12:39:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

check-certificates: handle builtin certificate in chain

Browse source 
This includes an ugly workaround to keep it compatible with old RouterOS
versions... For now.
This commit is contained in:
Christian Hesse 2026-01-12 08:37:12 +01:00
parent 54af7fd024
commit 5481787869
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
check-certificates.rsc
View file

@ -117,6 +117,12 @@
:local Return "";
:for I from=0 to=5 do={
:set Return ($Return . [ $ParseKeyValueStore ($CertVal->"issuer") ]->"CN");
:local CertSettings [ /certificate/settings/get ];
:if (([ :len ($CertSettings->"builtin-trust-anchors") ] > 0 || \
[ :len ($CertSettings->"builtin-trust-store") ] > 0) && \
[[ :parse (":return [ :len [ /certificate/builtin/find where skid=\"" . ($CertVal->"akid") . "\" ] ]") ]] > 0) do={
:return $Return;
}
:set CertVal [ /certificate/get [ find where skid=($CertVal->"akid") ] ];
:if (($CertVal->"akid") = "" || ($CertVal->"akid") = ($CertVal->"skid")) do={
:return $Return;