From: Kyungwook Tak <k.tak@samsung.com>
Date: Wed, 11 Nov 2015 05:52:10 +0000 (+0900)
Subject: Insert ssl table gname column as a subject hash
X-Git-Tag: accepted/tizen/mobile/20151112.232401~1^2
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=refs%2Fchanges%2F01%2F51601%2F1;p=platform%2Fcore%2Fsecurity%2Fcert-svc.git

Insert ssl table gname column as a subject hash

Change-Id: Ic57f2f8e126b0cc55bc4160348f42270b055a10c
Signed-off-by: Kyungwook Tak <k.tak@samsung.com>
---

diff --git a/etc/initialize_store_db.sh b/etc/initialize_store_db.sh
index 50b7df3..b726345 100755
--- a/etc/initialize_store_db.sh
+++ b/etc/initialize_store_db.sh
@@ -5,16 +5,17 @@ DB_PATH=$1
 CRT_PATH=$2
 
 ROOT_CERT_SQL=root-cert.sql
-MOZILLA_SSL_DIRECTORY=$TZ_SYS_SHARE/ca-certificates/mozilla
-TIZEN_SSL_DIRECTORY=$TZ_SYS_SHARE/ca-certificates/tizen
+SYSTEM_SSL_DIR=$TZ_SYS_ETC/ssl/certs
 
-function initialize_store_in_dir {
-	for i in `find $1/* -name '*'`
+function initialize_store {
+	for i in `find $SYSTEM_SSL_DIR/* -name '*'`
 	do
-		openssl x509 -in $i -outform PEM >> $CRT_PATH
-#		echo >> $CRT_PATH
+		gname=`echo $i | cut -f 5 -d '/'`
+		if [[ ! $gname =~ ^[0-9a-z]{8}\.[0-9]$ ]]; then
+			continue
+		fi
 
-		gname=`echo $i | cut -f 6 -d '/'`
+		cert=`openssl x509 -in $i -outform PEM`
 		filehash=`openssl x509 -in $i -hash -noout`
 		subjecthash=`openssl x509 -in $i -subject_hash_old -noout`
 
@@ -32,14 +33,15 @@ function initialize_store_in_dir {
 		commonname=${commonname:1} # cut first whitespace
 
 		echo "INSERT INTO ssl (gname, certificate, file_hash, subject_hash, common_name, enabled, is_root_app_enabled) values (\"$gname\", \"$cert\", \"$filehash\", \"$subjecthash\", \"$commonname\", 1, 1);" >> $ROOT_CERT_SQL
+
+		openssl x509 -in $i -outform PEM >> $CRT_PATH
 	done
 }
 
 touch $ROOT_CERT_SQL
 touch $CRT_PATH
 
-initialize_store_in_dir $MOZILLA_SSL_DIRECTORY
-initialize_store_in_dir $TIZEN_SSL_DIRECTORY
+initialize_store
 
 cat $ROOT_CERT_SQL | sqlite3 $DB_PATH
 rm $ROOT_CERT_SQL