Move KeyChainTestActivity to CtsVerifier
The automatable parts of the test dealing with negative cases are
split over to KeyChainTest.
Bug: 19440165
Change-Id: I7357e89bf90f9e7baab7fccd2d5ee5d2e82dfa8d
diff --git a/apps/CtsVerifier/create_test_certs.sh b/apps/CtsVerifier/create_test_certs.sh
new file mode 100755
index 0000000..b59974a
--- /dev/null
+++ b/apps/CtsVerifier/create_test_certs.sh
@@ -0,0 +1,85 @@
+#!/bin/bash
+
+#
+# Creates or overwrites 3 files in ./res/raw:
+# - cacert.der
+# - userkey.der
+# - usercert.der
+#
+
+tmpdir=$(mktemp -d './XXXXXXXX')
+trap 'rm -r ${tmpdir}; echo; exit 1' EXIT INT QUIT
+
+# CA_default defined in openssl.cnf
+CA_DIR='demoCA'
+
+SUBJECT=\
+'/C=US'\
+'/ST=CA'\
+'/L=Mountain View'\
+'/O=Android'\
+'/CN=localhost'
+PASSWORD='androidtest'
+
+echo "Creating directory '$CA_DIR'..."
+mkdir -p "$tmpdir"/"$CA_DIR"/newcerts \
+ && echo '01' > "$tmpdir"/"$CA_DIR"/serial \
+ && touch "$tmpdir"/"$CA_DIR"/index.txt
+
+echo "Generating CA certificate..."
+(cd "$tmpdir" \
+ && openssl req \
+ -new \
+ -x509 \
+ -days 3650 \
+ -extensions v3_ca \
+ -keyout 'cakey.pem' \
+ -out 'cacert.pem' \
+ -subj "$SUBJECT" \
+ -passout 'pass:'"$PASSWORD" \
+ && openssl x509 \
+ -outform DER \
+ -in 'cacert.pem' \
+ -out 'cacert.der')
+
+echo "Generating user key..."
+(cd "$tmpdir" \
+ && openssl req \
+ -newkey rsa:2048 \
+ -sha256 \
+ -keyout 'userkey.pem' \
+ -nodes \
+ -days 3650 \
+ -out 'userkey.req' \
+ -subj "$SUBJECT" \
+ && openssl pkcs8 \
+ -topk8 \
+ -outform DER \
+ -in 'userkey.pem' \
+ -out 'userkey.der' \
+ -nocrypt)
+
+echo "Generating user certificate..."
+(cd "$tmpdir" \
+ && openssl ca \
+ -out 'usercert.pem' \
+ -in 'userkey.req' \
+ -cert 'cacert.pem' \
+ -keyfile 'cakey.pem' \
+ -days 3650 \
+ -passin 'pass:'"$PASSWORD" \
+ -batch \
+ && openssl x509 \
+ -outform DER \
+ -in 'usercert.pem' \
+ -out 'usercert.der')
+
+# Copy important files to raw resources directory
+cp \
+ "$tmpdir"/cacert.der \
+ "$tmpdir"/userkey.der \
+ "$tmpdir"/usercert.der \
+ 'res/raw/'
+
+echo "Finished"
+exit