net/data/ssl/scripts/client_authentication/generate-client-certificates.sh - Issue 12220104: Wire up SSL client authentication for OpenSSL/Android through the net/ stack

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/data/ssl/scripts/client_authentication/generate-client-certificates.sh

Issue 12220104: Wire up SSL client authentication for OpenSSL/Android through the net/ stack (Closed) Base URL: http://git.chromium.org/chromium/src.git@master

Patch Set: git cl try Created 7 years, 10 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « net/data/ssl/scripts/client_authentication/client_authentication.cnf ('k') | net/data/ssl/scripts/client_authentication/run-test-server.sh » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/data/ssl/scripts/client_authentication/generate-client-certificates.sh

diff --git a/net/data/ssl/scripts/client_authentication/generate-client-certificates.sh b/net/data/ssl/scripts/client_authentication/generate-client-certificates.sh

deleted file mode 100755

index f6daddfef80c03795948d73b0cfb789c32db5c63..0000000000000000000000000000000000000000

--- a/net/data/ssl/scripts/client_authentication/generate-client-certificates.sh

+++ /dev/null

@@ -1,79 +0,0 @@

-#!/bin/bash

-# Use of this source code is governed by a BSD-style license that can be

-# found in the LICENSE file.

-# This script generates certificates for the unittests in

-# net/base/client_cert_store_unittest.cc. The output files are versioned in

-# net/data/ssl/certificates (client_1.pem, client_2.pem).

-try () {

- echo "$@"

- $@ || exit 1

-# For each authority below a root ca certificate and one client certificate will

-# be created.

-authorities="1 2"

-try rm -rf out

-try mkdir out

-for id in $authorities

-do

- # Generate a private key for the root cert.

- try openssl genrsa -out out/root_$id.key 2048

- # Create a certificate signing request for the root cert.

- ID=$id \

- DISTINGUISHED_NAME=ca_dn \

- try openssl req \

- -new \

- -key out/root_$id.key \

- -out out/root_$id.csr \

- -config client_authentication.cnf

- # Sign the root cert.

- ID=$id \

- DISTINGUISHED_NAME=ca_dn \

- try openssl x509 \

- -req -days 3650 \

- -in out/root_$id.csr \

- -signkey out/root_$id.key \

- -out out/root_$id.pem

- -config client_authentication.cnf

- # Generate a private key for the client.

- try openssl genrsa -out out/client_$id.key 2048

- # Create a certificate signing request for the client cert.

- ID=$id \

- DISTINGUISHED_NAME=client_dn \

- try openssl req \

- -new \

- -key out/client_$id.key \

- -out out/client_$id.csr \

- -config client_authentication.cnf

- try touch out/$id-index.txt

- try echo 1 > out/$id-serial

- ID=$id \

- DISTINGUISHED_NAME=client_dn \

- try openssl ca \

- -batch \

- -in out/client_$id.csr \

- -cert out/root_$id.pem \

- -keyfile out/root_$id.key \

- -out out/client_$id.pem \

- -config client_authentication.cnf

- # Package the client cert and private key into a pkcs12 file.

- try openssl pkcs12 \

- -inkey out/client_$id.key \

- -in out/client_$id.pem \

- -out out/client_$id.p12 \

- -export \

- -passout pass:

-done