2023-06-22 08:21:42 -06:00
|
|
|
import * as cp from 'node:child_process';
|
|
|
|
import * as fs from 'node:fs';
|
|
|
|
import * as path from 'node:path';
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
const certificatePath = process.argv[2];
|
|
|
|
const outPath = process.argv[3];
|
|
|
|
const templatePath = path.resolve(__dirname, 'trust.xml');
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
const template = fs.readFileSync(templatePath, 'utf8');
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
const fingerprintResult = cp.spawnSync('openssl', ['x509', '-noout', '-fingerprint', '-sha1', '-in', certificatePath]);
|
2020-03-18 19:00:42 -06:00
|
|
|
if (fingerprintResult.status !== 0) {
|
2020-03-20 14:28:31 -06:00
|
|
|
console.error(fingerprintResult.stderr.toString());
|
|
|
|
process.exit(1);
|
2020-03-18 19:00:42 -06:00
|
|
|
}
|
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
const fingerprint = fingerprintResult.stdout.toString().replace(/^SHA1 Fingerprint=/, '').replace(/:/g, '').trim();
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
const serialResult = cp.spawnSync('openssl', ['x509', '-serial', '-noout', '-in', certificatePath]);
|
2020-03-18 19:00:42 -06:00
|
|
|
if (serialResult.status !== 0) {
|
2020-03-20 14:28:31 -06:00
|
|
|
console.error(serialResult.stderr.toString());
|
|
|
|
process.exit(1);
|
2020-03-18 19:00:42 -06:00
|
|
|
}
|
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
let serialHex = serialResult.stdout.toString().replace(/^serial=/, '').trim();
|
2020-03-18 19:00:42 -06:00
|
|
|
// Pad the serial number out to 18 hex chars
|
|
|
|
while (serialHex.length < 18) {
|
2020-03-20 14:28:31 -06:00
|
|
|
serialHex = `0${serialHex}`;
|
2020-03-18 19:00:42 -06:00
|
|
|
}
|
2020-03-20 14:28:31 -06:00
|
|
|
const serialB64 = Buffer.from(serialHex, 'hex').toString('base64');
|
2020-03-18 19:00:42 -06:00
|
|
|
|
|
|
|
const trust = template
|
|
|
|
.replace(/{{FINGERPRINT}}/g, fingerprint)
|
2020-03-20 14:28:31 -06:00
|
|
|
.replace(/{{SERIAL_BASE64}}/g, serialB64);
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
fs.writeFileSync(outPath, trust);
|
2020-03-18 19:00:42 -06:00
|
|
|
|
2020-03-20 14:28:31 -06:00
|
|
|
console.log('Generated Trust Settings');
|