set -e
set -u
set -o pipefail
-[[ -n "${ZSH_VERSION:-}" ]] && set -o SH_WORD_SPLIT && set +o FUNCTION_ARGZERO && set -o NULL_GLOB
-[[ -z "${ZSH_VERSION:-}" ]] && shopt -s nullglob
+[[ -n "${ZSH_VERSION:-}" ]] && set -o SH_WORD_SPLIT && set +o FUNCTION_ARGZERO && set -o NULL_GLOB && set -o noglob
+[[ -z "${ZSH_VERSION:-}" ]] && shopt -s nullglob && set -f
umask 077 # paranoid umask, we're creating private keys
# Generate certificates for all domains found in domains.txt. Check if existing certificate are about to expire
ORIGIFS="${IFS}"
IFS=$'\n'
- [[ -n "${ZSH_VERSION:-}" ]] && set -o noglob || set -f
for line in $(<"${DOMAINS_TXT}" tr -d '\r' | awk '{print tolower($0)}' | _sed -e 's/^[[:space:]]*//g' -e 's/[[:space:]]*$//g' -e 's/[[:space:]]+/ /g' -e 's/([^ ])>/\1 >/g' -e 's/> />/g' | (grep -vE '^(#|$)' || true)); do
- [[ -n "${ZSH_VERSION:-}" ]] && set +o noglob || set +f
reset_configvars
IFS="${ORIGIFS}"
alias="$(grep -Eo '>[^ ]+' <<< "${line}" || true)"
# shellcheck disable=SC2086
if [[ ! "${skip}" = "yes" ]]; then
update_ocsp="yes"
- [[ -n "${ZSH_VERSION:-}" ]] && set -o noglob || set -f
if [[ "${PARAM_KEEP_GOING:-}" = "yes" ]]; then
sign_domain "${certdir}" ${domain} ${morenames} &
wait $! || true
else
sign_domain "${certdir}" ${domain} ${morenames}
fi
- [[ -n "${ZSH_VERSION:-}" ]] && set +o noglob || set +f
fi
if [[ "${OCSP_FETCH}" = "yes" ]]; then
fi
fi
done
- [[ -n "${ZSH_VERSION:-}" ]] && set +o noglob || set +f
reset_configvars
# remove temporary domains.txt file if used
mkdir "${BASEDIR}/archive"
fi
+ # Allow globbing
+ [[ -n "${ZSH_VERSION:-}" ]] && set +o noglob || set +f
+
# Loop over all certificate directories
for certdir in "${CERTDIR}/"*; do
# Skip if entry is not a folder
projects / thirdparty / dehydrated.git / commitdiff
