groove/routeros-scripts-main
1
0
Fork 0
mirror of https://github.com/eworm-de/routeros-scripts.git synced 2026-03-16 02:49:36 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
3433 commits 4 branches 250 tags 13 MiB
Commit graph

74 commits

Author SHA1 Message Date
Christian Hesse
22c3f70dab check-certificates: match status code in error message 
The message used to be:

    Fetch failed with status 404

... but changed recently:

    failure: Status 404, NOT FOUND

The new string is in RouterOS 7.22, and changed in what ever
beta or rc release. Let's just match the status code and hope
for the best.
 2026-03-12 11:35:41 +01:00
Christian Hesse
0d5ee6cf23 check-certificates: skip common-name if not available 2026-03-12 11:35:41 +01:00
Christian Hesse
68ed97205c check-certificates: update wording, indent output 2026-02-05 08:21:36 +01:00
Christian Hesse
d0f50142f5 check-certificates: show days valid in details 2026-02-05 08:21:36 +01:00
Christian Hesse
a7be27aea9 check-certificates: drop the compatibility workaround... 
... and make it depend in RouterOS 7.19 and its builtin certificates.
 2026-01-27 15:47:19 +01:00
Christian Hesse
b74e40dde1 check-certificates: better error handling and reporting for downloads 2026-01-22 14:27:37 +01:00
Christian Hesse
72660f21a5 check-certificates: print warning on $CertRenewUrl just once 2026-01-19 16:37:20 +01:00
Christian Hesse
330a616406 check-certificates: abort renew if "new" certificate is older... 
... and drop the condition on $CertRenewTime.
 2026-01-16 13:41:10 +01:00
Christian Hesse
0fee5cea3c check-certificates: move the warning below check for key 2026-01-16 13:41:10 +01:00
Christian Hesse
2b8dfec2f7 bump required RouterOS version for all scripts 2026-01-12 10:00:30 +01:00
Christian Hesse
e7a16ad279 check-certificates: give hint on possibly incomplete cert chain 2026-01-12 10:00:30 +01:00
Christian Hesse
5481787869 check-certificates: handle builtin certificate in chain 
This includes an ugly workaround to keep it compatible with old RouterOS
versions... For now.
 2026-01-12 10:00:30 +01:00
Christian Hesse
54af7fd024 check-certificates: drop workaround 
This revert commit 8de6995c4b.

The exact example given in the commit message of that commit works
as expected now:

[eworm@kalyke] > $InspectVar [ $ParseKeyValueStore  [ /certificate/get ISRG-Root-X2 issuer ] ];
-type-> array
  -key-> C
    -type-> str
    -len-> 2
    -value-> US
  -key-> CN
    -type-> str
    -len-> 12
    -value-> ISRG Root X2
  -key-> O
    -type-> str
    -len-> 32
    -value-> Internet Security Research Group
 2026-01-12 08:31:53 +01:00
Christian Hesse
623f96d94a update copyright for 2026 2026-01-01 13:50:07 +01:00
Christian Hesse
1f6c43d5ce check-certificates: show lock-with-ink-pen symbol in notification... 
... also for warning, but of course keep the warning sign.
 2025-11-25 17:23:01 +01:00
Christian Hesse
876505c36d check-certificates: define certificate use 2025-11-19 16:19:59 +01:00
Christian Hesse
090f25a82d check-certificates: add missing semicolon 2025-11-19 16:19:59 +01:00
Christian Hesse
4954a88695 check-certificates: check for global config to be ready 2025-05-08 09:51:07 +02:00
Christian Hesse
9b811e1ed2 check-certificates: fail if global functions do not become ready 2025-05-08 09:51:07 +02:00
Christian Hesse
e44a5384b7 check-certificates: use :onerror for outer block 2025-05-06 09:53:59 +02:00
Christian Hesse
14195c51ca check-certificates: try PKCS#12 before PEM... 
... as that is more likely to have a private key.

Is that true? 🤨
 2025-02-26 18:25:58 +01:00
Christian Hesse
e833dfcf25 check-certificates: simplify return from function... 
... and also break earch on success.
 2025-02-26 18:05:32 +01:00
Christian Hesse
512c54bd59 check-certificates: ... and even more 2025-02-26 18:05:32 +01:00
Christian Hesse
3d40b4419d check-certificates: add more debug output 2025-02-26 18:03:45 +01:00
Christian Hesse
a6d4e7e82c check-certificates: drop dot from type... 
... and add it in file name.
 2025-02-26 18:03:17 +01:00
Christian Hesse
f6c2225f68 check-certificates: catch and ignore import error 
Hmm... 🤨 When was that runtime error introduced? I *think* it
worked before.
 2025-02-26 13:57:51 +01:00
Christian Hesse
6570a84904 check-certificates: use $RmFile 2025-02-10 15:23:50 +01:00
Christian Hesse
4bfb591fa0 bump required RouterOS version for all scripts 2025-02-07 17:44:41 +01:00
Christian Hesse
3ad7ccd3d6 check-certificates: check to characters for star-dot 2025-02-03 10:05:35 +01:00
Christian Hesse
eabe3f6e95 check-certificates: pass real and modified name into function 2025-01-31 21:40:51 +01:00
Christian Hesse
75e5ddec52 check-certificates: do not rename the wrong certificate 2025-01-31 13:09:22 +01:00
Christian Hesse
44d0c852f1 check-certificates: try with "star." for renewal with wildcards 2025-01-31 12:14:05 +01:00
Christian Hesse
95b675f67e check-certificates: add dependencies on device-mode 2025-01-30 09:00:02 +01:00
Christian Hesse
1239ac3104 check-certificates: use short url rsc.eworm.de 2025-01-29 14:14:26 +01:00
Christian Hesse
9e3729c279 update copyright for 2025 2025-01-02 00:04:06 +01:00
Christian Hesse
00487f93d4 check-certificates: use $ExitError to indicate unintentional error 2024-12-09 11:49:50 +01:00
Christian Hesse
6fbafe76ba bump RouterOS requirement for all scripts and modules... 
... now that global-functions requires RouterOS 7.14 anyway.
 2024-07-16 13:50:22 +02:00
Christian Hesse
f3f7d3edc0 check-certificates: limit scope for $CertNew... 
... into block where certificate is replaced.

This should unbreak renewing with a certificate updated in place.
 2024-06-25 07:58:10 +02:00
Christian Hesse
009674b5bc bump RouterOS requirement for all scripts and modules... 
... now that global-functions requires RouterOS 7.13 anyway.
 2024-04-07 22:51:24 +02:00
Christian Hesse
4df1468e25 global-functions: rename $FetchUserAgent -> $FetchUserAgentStr 
... to make sure the function does not clash with the variable we had before,
as this causes issue with news and changes notification.
 2024-03-29 11:11:17 +01:00
Christian Hesse
81f1d9aa99 check-certificates: pass script name into local function 2024-03-20 13:55:55 +01:00
Christian Hesse
eb7919c1d8 global-functions: generate user agent string in function... 
... and add the caller and my shortened url.
 2024-03-16 23:10:47 +01:00
Christian Hesse
3625808749 check-certificates: switch to $LogPrint 2024-03-12 20:37:57 +01:00
Christian Hesse
b1e37c2734 check-certificates: drop main function, use :do with on-error 2024-03-12 15:27:15 +01:00
Christian Hesse
09393d3ef5 check-certificates: handle formatting of self signed cert 2024-03-12 15:27:15 +01:00
Christian Hesse
53ff8fbf97 check-certificates: exit block on failed import 2024-03-12 15:27:15 +01:00
Christian Hesse
1e8918fdaa global-functions: $ScriptLock: do not exit from global function 2024-03-12 15:27:15 +01:00
Christian Hesse
fc3fad5e87 check-certificates: move code into function 2024-03-04 17:04:45 +01:00
Christian Hesse
fb463419fe check-certificates: always quote the certificate name 2024-01-30 15:00:31 +01:00
Christian Hesse
a43202326b check-certificates: use :jobname to get script name 2024-01-30 00:52:21 +01:00