]> git.saurik.com Git - apple/security.git/blame - SecurityTests/clxutils/sslScripts/openssl/opensslTest
projects / apple / security.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Security-57031.1.35.tar.gz
[apple/security.git] / SecurityTests / clxutils / sslScripts / openssl / opensslTest
CommitLineData
d8f41ccd
A		 1#!/bin/csh
2# openssl/certtool compatibility
3#
4# openssl file arguments
5set CSR_FILE=new.cert.csr
6set PRIV_KEY_ENCR=privkey.pem
7set PRIV_RAW_KEY_PEM=new.key.pem
8set CERT_FILE_PEM=new.cert.pem
9set CERT_FILE_DER=new.cert.der
10#
11echo Preparing to delete $CSR_FILE $PRIV_KEY_ENCR $PRIV_RAW_KEY_PEM $CERT_FILE_PEM $CERT_FILE_DER
12echo Ctl-c to abort, or....
13doprompt
14rm -f $CSR_FILE $PRIV_KEY_ENCR $PRIV_RAW_KEY_PEM $CERT_FILE_PEM $CERT_FILE_DER
15#
16# 1. Create the key and request. This will require
17# some user interaction.
18#
19set cmd="openssl req -new"
20echo $cmd \> $CSR_FILE
21$cmd > $CSR_FILE || exit(1)
22echo ...$PRIV_KEY_ENCR contains encrypted signing key in PEM format.
23#
24# 2. Remove the passphrase from the key.
25#
26set cmd="openssl rsa -in $PRIV_KEY_ENCR -out $PRIV_RAW_KEY_PEM"
27echo $cmd
28$cmd || exit(1)
29echo ...$PRIV_RAW_KEY_PEM contains raw signing key in PEM format.
30#
31# 3. Convert request into signed cert.
32#
33set cmd="openssl x509 -in $CSR_FILE -out $CERT_FILE_PEM -req -signkey $PRIV_RAW_KEY_PEM -days 365"
34echo $cmd
35$cmd || exit(1)
36echo ...$CERT_FILE_PEM contains signing cert in PEM format.
37#
38# 4. convert cert to DER form for use by sslViewer
39#
40set cmd="openssl x509 -inform PEM -outform DER -in $CERT_FILE_PEM -out $CERT_FILE_DER"
41echo $cmd
42$cmd || exit(1)
43echo ...$CERT_FILE_DER contains cert in DER format.
44#
45echo preparing to run runServeView script. Ctl-c to abort, or....
46doprompt
47./runServeView || exit(1)
48#
49echo === COMPLETE ===
mirror of Security