1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
|
# -*- coding: UTF-8 -*-
import subprocess
from datetime import datetime
def update_tsg_ca():
try:
subprocess.check_call(["cp", "tango_ca_v3_trust_ca.cer", "/etc/pki/ca-trust/source/anchors/"])
subprocess.check_call(["update-ca-trust"])
subprocess.check_call(["chmod", "777", "/etc/pki/ca-trust/source/anchors/tango_ca_v3_trust_ca.cer"])
# with open('/etc/pki/tls/certs/ca-bundle.crt', 'r', encoding='utf-8') as file:
# content = file.read()
# if "TSG CA" not in content:
# # 读取证书文件内容
# with open(tsg_ca_file, 'r', encoding='utf-8') as cert_file:
# cert_content = cert_file.read()
# # 将证书内容追加到ca-bundle.crt文件中
# with open('/etc/pki/tls/certs/ca-bundle.crt', 'a', encoding='utf-8') as ca_bundle:
# ca_bundle.write(cert_content)
# ca_bundle.write('\n')
# # 更新证书信任库
# # subprocess.run(['sudo', 'update-ca-trust', 'extract'])
# print(datetime.now().strftime("%Y-%m-%d %H:%M:%S"), str(datetime.now().microsecond)[:3], "Update TSG CA successfully.")
# else:
# print(datetime.now().strftime("%Y-%m-%d %H:%M:%S"), str(datetime.now().microsecond)[:3], "TSG CA was found in ca-bundle.crt, so no content was appended.")
print(datetime.now().strftime("%Y-%m-%d %H:%M:%S"), str(datetime.now().microsecond)[:3], "Update TSG CA successfully.")
except:
print(datetime.now().strftime("%Y-%m-%d %H:%M:%S"), str(datetime.now().microsecond)[:3], "Fail to update TSG CA.")
if __name__ == '__main__':
update_tsg_ca()
|
