OLD | NEW |
| (Empty) |
1 #!/bin/bash | |
2 # | |
3 # Copyright (C) 2010 The Android Open Source Project | |
4 # | |
5 # Licensed under the Apache License, Version 2.0 (the "License"); | |
6 # you may not use this file except in compliance with the License. | |
7 # You may obtain a copy of the License at | |
8 # | |
9 # http://www.apache.org/licenses/LICENSE-2.0 | |
10 # | |
11 # Unless required by applicable law or agreed to in writing, software | |
12 # distributed under the License is distributed on an "AS IS" BASIS, | |
13 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | |
14 # See the License for the specific language governing permissions and | |
15 # limitations under the License. | |
16 # | |
17 | |
18 # | |
19 # Android testssl.sh driver script for openssl's testssl | |
20 # | |
21 # based on openssl's test/testss script and test/Makefile's test_ssl target | |
22 # | |
23 | |
24 set -e | |
25 trap "echo Exiting on unexpected error." ERR | |
26 | |
27 device=/sdcard/android.testssl | |
28 | |
29 digest='-sha1' | |
30 reqcmd="adb shell /system/bin/openssl req" | |
31 x509cmd="adb shell /system/bin/openssl x509 $digest" | |
32 | |
33 CAkey="$device/keyCA.ss" | |
34 CAcert="$device/certCA.ss" | |
35 CAreq="$device/reqCA.ss" | |
36 CAconf="$device/CAss.cnf" | |
37 | |
38 Uconf="$device/Uss.cnf" | |
39 Ureq="$device/reqU.ss" | |
40 Ukey="$device/keyU.ss" | |
41 Ucert="$device/certU.ss" | |
42 | |
43 echo | |
44 echo "setting up" | |
45 adb remount | |
46 adb shell rm -r $device | |
47 adb shell mkdir $device | |
48 | |
49 echo | |
50 echo "pushing test files to device" | |
51 adb push . $device | |
52 | |
53 echo | |
54 echo "make a certificate request using 'req'" | |
55 adb shell "echo \"string to make the random number generator think it has entrop
y\" >> $device/.rnd" | |
56 req_new='-new' | |
57 $reqcmd -config $CAconf -out $CAreq -keyout $CAkey $req_new | |
58 | |
59 echo | |
60 echo "convert the certificate request into a self signed certificate using 'x509
'" | |
61 $x509cmd -CAcreateserial -in $CAreq -days 30 -req -out $CAcert -signkey $CAkey -
extfile $CAconf -extensions v3_ca | |
62 | |
63 echo | |
64 echo "make a user certificate request using 'req'" | |
65 $reqcmd -config $Uconf -out $Ureq -keyout $Ukey $req_new | |
66 | |
67 echo | |
68 echo "sign user certificate request with the just created CA via 'x509'" | |
69 $x509cmd -CAcreateserial -in $Ureq -days 30 -req -out $Ucert -CA $CAcert -CAkey
$CAkey -extfile $Uconf -extensions v3_ee | |
70 | |
71 echo | |
72 echo "running testssl" | |
73 ./testssl $Ukey $Ucert $CAcert | |
74 | |
75 echo | |
76 echo "cleaning up" | |
77 adb shell rm -r $device | |
OLD | NEW |