#!/bin/bash

CERTDIR=/etc/ssl/sys
FTP_PEM=/etc/ssl/private/pure-ftpd.pem

NL=$'\n'

if [ -e ${CERTDIR}/ftp-cert.pem -a -e ${CERTDIR}/ftp-key.pem ]; then

	newkey=`cat ${CERTDIR}/ftp-key.pem`
	newcert=`cat ${CERTDIR}/ftp-cert.pem`
	newpem="${newkey}${NL}${newcert}"

	if [ -f ${FTP_PEM} ]; then
		oldpem=`cat ${FTP_PEM}`
	else
		oldpem=""
	fi

	if [ "$newpem" != "$oldpem" ]; then
		echo "FTP SSL keys have changed, re-merging"
		echo "$newpem" > $FTP_PEM
	else
		echo "No change in FTP SSL keys"
		exit 0
	fi
else
	echo "WARNING: ${CERTDIR}/ftp-*.pem doesn't exist."
	exit 12
fi

exit 0