1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/security/manager/ssl/tests/unit/test_cert_version/generate.py Wed Dec 31 06:09:35 2014 +0100
1.3 @@ -0,0 +1,77 @@
1.4 +#!/usr/bin/python
1.5 +# -*- Mode: python; c-basic-offset: 4; indent-tabs-mode: nil; tab-width: 40 -*-
1.6 +# vim: set filetype=python
1.7 +
1.8 +# This Source Code Form is subject to the terms of the Mozilla Public
1.9 +# License, v. 2.0. If a copy of the MPL was not distributed with this
1.10 +# file, You can obtain one at http://mozilla.org/MPL/2.0/.
1.11 +
1.12 +import tempfile, os, sys
1.13 +
1.14 +libpath = os.path.abspath('../psm_common_py')
1.15 +sys.path.append(libpath)
1.16 +import CertUtils
1.17 +
1.18 +srcdir = os.getcwd()
1.19 +db = tempfile.mkdtemp()
1.20 +
1.21 +def generate_child_cert(db_dir, dest_dir, noise_file, name, ca_nick,
1.22 + cert_version, do_bc, is_ee):
1.23 + return CertUtils.generate_child_cert(db_dir, dest_dir, noise_file, name,
1.24 + ca_nick, cert_version, do_bc, is_ee, '')
1.25 +
1.26 +def generate_ee_family(db_dir, dest_dir, noise_file, ca_name):
1.27 + name = "v1_ee-"+ ca_name;
1.28 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 1, False, True)
1.29 + name = "v1_bc_ee-"+ ca_name;
1.30 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 1, True, True)
1.31 +
1.32 + name = "v2_ee-"+ ca_name;
1.33 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 2, False, True)
1.34 + name = "v2_bc_ee-"+ ca_name;
1.35 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 2, True, True)
1.36 +
1.37 + name = "v3_missing_bc_ee-"+ ca_name;
1.38 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 3, False, True)
1.39 + name = "v3_bc_ee-"+ ca_name;
1.40 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 3, True, True)
1.41 +
1.42 + name = "v4_bc_ee-"+ ca_name;
1.43 + generate_child_cert(db_dir, dest_dir, noise_file, name, ca_name, 4, True, True)
1.44 +
1.45 +def generate_intermediates_and_ee_set(db_dir, dest_dir, noise_file, ca_name):
1.46 + name = "v1_int-" + ca_name;
1.47 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 1, False, False)
1.48 + generate_ee_family(db, srcdir, noise_file, name)
1.49 + name = "v1_int_bc-" + ca_name;
1.50 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 1, True, False)
1.51 + generate_ee_family(db, srcdir, noise_file, name)
1.52 +
1.53 + name = "v2_int-" + ca_name;
1.54 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 2, False, False)
1.55 + generate_ee_family(db, srcdir, noise_file, name)
1.56 + name = "v2_int_bc-" + ca_name;
1.57 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 2, True, False)
1.58 + generate_ee_family(db, srcdir, noise_file, name)
1.59 +
1.60 + name = "v3_int_missing_bc-" + ca_name;
1.61 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 3, False, False)
1.62 + generate_ee_family(db, srcdir, noise_file, name)
1.63 + name = "v3_int-" + ca_name;
1.64 + generate_child_cert(db, srcdir, noise_file, name, ca_name, 3, True, False)
1.65 + generate_ee_family(db, srcdir, noise_file, name)
1.66 +
1.67 +def generate_ca(db_dir, dest_dir, noise_file, name, version, do_bc):
1.68 + CertUtils.generate_ca_cert(db_dir, dest_dir, noise_file, name, version, do_bc)
1.69 + generate_intermediates_and_ee_set(db_dir, dest_dir, noise_file, name)
1.70 +
1.71 +def generate_certs():
1.72 + [noise_file, pwd_file] = CertUtils.init_nss_db(db)
1.73 + generate_ca(db, srcdir, noise_file, "v1_ca", 1, False )
1.74 + generate_ca(db, srcdir, noise_file, "v1_ca_bc", 1, True)
1.75 + generate_ca(db, srcdir, noise_file, "v2_ca", 2, False )
1.76 + generate_ca(db, srcdir, noise_file, "v2_ca_bc", 2, True)
1.77 + generate_ca(db, srcdir, noise_file, "v3_ca", 3, True )
1.78 + generate_ca(db, srcdir, noise_file, "v3_ca_missing_bc", 3, False)
1.79 +
1.80 +generate_certs();
