From c8e026e1ff3e1c8fe20aa3fc65abe5a40dacf3dd Mon Sep 17 00:00:00 2001
From: ayou <550244300@qq.com>
Date: Mon, 29 Sep 2025 22:35:31 +0800
Subject: [PATCH] =?UTF-8?q?feat:=20=E6=B7=BB=E5=8A=A0=E6=A3=80=E6=9F=A5=20?=
 =?UTF-8?q?git=20=E6=9C=8D=E5=8A=A1=E5=99=A8=20SSL/TLS=20=E7=8A=B6?=
 =?UTF-8?q?=E6=80=81=E7=9A=84=E8=84=9A=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 check.git.sh | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 check.git.sh

diff --git a/check.git.sh b/check.git.sh
new file mode 100644
index 0000000..33f6512
--- /dev/null
+++ b/check.git.sh
@@ -0,0 +1,31 @@
+#!/bin/bash
+DOMAIN="git.baqi.dev"
+PORT=443
+
+echo "🔍 检测 $DOMAIN:$PORT 的 SSL/TLS 状态..."
+echo "--------------------------------------------------"
+
+# 1. 显示证书链
+echo -e "\n📜 证书链信息:"
+openssl s_client -connect $DOMAIN:$PORT -servername $DOMAIN -showcerts </dev/null 2>/dev/null | openssl x509 -noout -issuer -subject -dates
+
+# 2. 检查证书过期时间
+echo -e "\n⏳ 证书有效期:"
+openssl s_client -connect $DOMAIN:$PORT -servername $DOMAIN </dev/null 2>/dev/null | openssl x509 -noout -dates
+
+# 3. 测试 TLS 协议兼容性
+for v in ssl3 tls1 tls1_1 tls1_2 tls1_3; do
+    echo -ne "\n⚡ 测试 $v ... "
+    result=$(openssl s_client -connect $DOMAIN:$PORT -servername $DOMAIN -$v </dev/null 2>&1)
+    if echo "$result" | grep -q "Cipher is"; then
+        echo "✅ 支持"
+    else
+        echo "❌ 不支持"
+    fi
+done
+
+# 4. 用 curl 模拟 git
+echo -e "\n🌐 使用 curl 模拟访问:"
+curl -vk https://$DOMAIN/ 2>&1 | grep "SSL" || echo "curl 请求正常"
+
+echo -e "\n✅ 检测完成。"