From 3d73740c027ee86d5a6d10f5a0b1dc0bbc67c434 Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Sun, 1 Jan 2017 23:19:31 +0100
Subject: Fix handle non-EC maildomain cert.

---
 letsencrypt.sh/cron.weekly/local-letsencrypt.sh | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/letsencrypt.sh/cron.weekly/local-letsencrypt.sh b/letsencrypt.sh/cron.weekly/local-letsencrypt.sh
index 0c84001..8a6bef2 100755
--- a/letsencrypt.sh/cron.weekly/local-letsencrypt.sh
+++ b/letsencrypt.sh/cron.weekly/local-letsencrypt.sh
@@ -2,6 +2,13 @@
 #
 # Renew letsencrypt certificates
 
-set -e
+set -eu
 
+# update certdomain certs
 letsencrypt.sh --cron
+
+# update non-EC maildomain cert if resolvable and not clashing with certdomain
+maildomain=$(cat /etc/local-REDPILL/$(cat /etc/local-ORG/realm)/mailhost)
+[ -z "$maildomain" ] \
+	|| grep ^"$maildomain" /etc/letsencrypt.sh/domains.txt \
+	|| letsencrypt.sh --cron --domain "$maildomain" --algo rsa
-- 
cgit v1.2.3