From 4d31dcaff6f2840b4951232e58e6ae8cf8c570e9 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Zolt=C3=A1n=20Felleg?= <zoltan.felleg@userrendszerhaz.hu>
Date: Fri, 14 Mar 2025 07:49:06 +0100
Subject: [PATCH] Updated pki.in (added letsencrypt deploy hook).

---
 sources/pki.in/c3d/mode.txt                   |  1 +
 .../install-data/etc/rsyslog.d/remote.conf    |  5 +++
 .../usr/local/bin/letsencrypt_deploy_hook.sh  | 37 +++++++++++++++++++
 3 files changed, 43 insertions(+)
 create mode 100644 sources/pki.in/c3d/postinstall/install-data/etc/rsyslog.d/remote.conf
 create mode 100644 sources/pki.in/c3d/postinstall/install-data/usr/local/bin/letsencrypt_deploy_hook.sh

diff --git a/sources/pki.in/c3d/mode.txt b/sources/pki.in/c3d/mode.txt
index a7e9357..e1880a8 100644
--- a/sources/pki.in/c3d/mode.txt
+++ b/sources/pki.in/c3d/mode.txt
@@ -2,5 +2,6 @@
 755 firstboot/scripts/*.sh
 755 postinstall/install-data/root/certbot.sh
 600 postinstall/install-data/root/rfc2136.ini
+755 postinstall/install-data/usr/local/bin/letsencrypt_deploy_hook.sh
 755 postinstall/scripts/*.sh
 755 preinstall/scripts/*.sh
diff --git a/sources/pki.in/c3d/postinstall/install-data/etc/rsyslog.d/remote.conf b/sources/pki.in/c3d/postinstall/install-data/etc/rsyslog.d/remote.conf
new file mode 100644
index 0000000..2c2b980
--- /dev/null
+++ b/sources/pki.in/c3d/postinstall/install-data/etc/rsyslog.d/remote.conf
@@ -0,0 +1,5 @@
+module(load="omrelp")
+
+if $programname == "certbot" then {
+    action(type="omrelp" target="log.in.useribm.hu" port="2514")
+}
diff --git a/sources/pki.in/c3d/postinstall/install-data/usr/local/bin/letsencrypt_deploy_hook.sh b/sources/pki.in/c3d/postinstall/install-data/usr/local/bin/letsencrypt_deploy_hook.sh
new file mode 100644
index 0000000..27db05a
--- /dev/null
+++ b/sources/pki.in/c3d/postinstall/install-data/usr/local/bin/letsencrypt_deploy_hook.sh
@@ -0,0 +1,37 @@
+#!/bin/sh
+
+
+CURRENT_TS=$(date +%s)
+FAILEDS_FILE=/tmp/failed_domains.txt
+RENEWEDS_FILE=/tmp/renewed_domains.txt
+LETSENCRYPT_PATH=/etc/letsencrypt
+LINEAGE_FILE=$LETSENCRYPT_PATH/lineage.txt
+RENEW_DATES_FILE=$LETSENCRYPT_PATH/renew_dates.txt
+
+
+touch $LINEAGE_FILE
+grep "^${RENEWED_LINEAGE}$" $LINEAGE_FILE >/dev/null
+RC=$?
+if [ $RC -eq 0 ]
+then
+    rm --force \
+        $LINEAGE_FILE \
+        $FAILEDS_FILE $RENEWEDS_FILE
+fi
+
+echo "$RENEWED_LINEAGE" >>$LINEAGE_FILE
+if [ -n "$RENEWED_DOMAINS" ]
+then
+    echo "$CURRENT_TS $RENEWED_DOMAINS" >>$RENEWEDS_FILE
+fi
+if [ -n "$FAILED_DOMAINS" ]
+then
+    echo "$CURRENT_TS $FAILED_DOMAINS" >>$FAILEDS_FILE
+fi
+
+LINEAGE_COUNT=$(cat $LINEAGE_FILE | wc -l)
+RENEW_CONF_COUNT=$(ls $LETSENCRYPT_PATH/renewal | wc -l)
+if [ $LINEAGE_COUNT -eq $RENEW_CONF_COUNT ]
+then
+    echo "$(date)" >>$RENEW_DATES_FILE
+fi
-- 
2.54.0