android_packages_apps_Updater/gen-keystore.sh

#!/bin/bash

if [ $# -ne 4 ]; then
    echo "Usage: `basename $0` PRIVATE_KEY CERTIFICATE \\"
    echo "          KEY_ALIAS OUTPUT_KEYSTORE_PATH"
    echo
    echo "Example:"
    echo "  `basename $0` \\"
    echo "          ../../../build/target/product/security/testkey.pk8 \\"
    echo "          ../../../build/target/product/security/testkey.x509.pem \\"
    echo "          android testkey.jks"
    exit 0
fi

PRIVATE_KEY="$1"
CERTIFICATE="$2"
KEY_ALIAS="$3"
KEYSTORE_PATH="$4"

if [ -f "$KEYSTORE_PATH" ]; then
    echo "$KEYSTORE_PATH already exists"
    exit 1
fi

echo "The passwords will be stored in clear text"
read -p "Enter new keystore password: " -s KEYSTORE_PASSWORD
echo
read -p "Enter new key password: " -s KEY_PASSWORD
echo

tmpdir=`mktemp -d`
trap 'rm -rf $tmpdir;' 0

key="$tmpdir/platform.key"
pk12="$tmpdir/platform.pk12"
openssl pkcs8 -in "$PRIVATE_KEY" -inform DER -outform PEM -nocrypt -out "$key"
if [ $? -ne 0 ]; then
    exit 1
fi
openssl pkcs12 -export -in "$CERTIFICATE" -inkey "$key" -name "$KEY_ALIAS" \
    -out "$pk12" -password pass:"$KEY_PASSWORD"
if [ $? -ne 0 ]; then
    exit 1
fi

keytool -importkeystore \
    -srckeystore "$pk12" -srcstoretype pkcs12 -srcstorepass "$KEY_PASSWORD" \
    -destkeystore "$KEYSTORE_PATH" -deststorepass "$KEYSTORE_PASSWORD" \
    -destkeypass "$KEY_PASSWORD"
if [ $? -ne 0 ]; then
    exit 1
fi


echo
echo "Generating keystore.properties..."
if [ -f keystore.properties ]; then
    echo "keystore.properties already exists, overwrite it? [Y/n]"
    read reply
    if [ "$reply" = "n" -o "$reply" = "N" ]; then
        exit 0
    fi
fi

cat > keystore.properties <<EOF
keyAlias=$KEY_ALIAS
keyPassword=$KEY_PASSWORD
storeFile=$KEYSTORE_PATH
storePassword=$KEYSTORE_PASSWORD
EOF
gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`#!/bin/bash`
Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00
gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`if [ $# -ne 4 ]; then`
Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00			echo "Usage: `basename $0` PRIVATE_KEY CERTIFICATE \\"
gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`echo " KEY_ALIAS OUTPUT_KEYSTORE_PATH"`
Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00			`echo`
			`echo "Example:"`
			echo " `basename $0` \\"
			`echo " ../../../build/target/product/security/testkey.pk8 \\"`
			`echo " ../../../build/target/product/security/testkey.x509.pem \\"`
gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`echo " android testkey.jks"`
Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00			`exit 0`
			`fi`

			`PRIVATE_KEY="$1"`
			`CERTIFICATE="$2"`
gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`KEY_ALIAS="$3"`
			`KEYSTORE_PATH="$4"`
Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00
			`if [ -f "$KEYSTORE_PATH" ]; then`
			`echo "$KEYSTORE_PATH already exists"`
			`exit 1`
			`fi`

gen-keystore.sh: Don't pass the passwords as args Also mention that the password is saved in clear text. Change-Id: Ia7bf8b1b85193aa76b541dc5c6ee99a471d12f92 2018-04-09 03:41:30 -07:00			`echo "The passwords will be stored in clear text"`
			`read -p "Enter new keystore password: " -s KEYSTORE_PASSWORD`
			`echo`
			`read -p "Enter new key password: " -s KEY_PASSWORD`
			`echo`

Updater: Android Studio support See README-STUDIO.txt for more info. Change-Id: Ie673bba5618b0f00a585049cd85687a64db2b420 2017-11-30 14:41:00 -08:00			tmpdir=`mktemp -d`
			`trap 'rm -rf $tmpdir;' 0`

			`key="$tmpdir/platform.key"`
			`pk12="$tmpdir/platform.pk12"`
			`openssl pkcs8 -in "$PRIVATE_KEY" -inform DER -outform PEM -nocrypt -out "$key"`
			`if [ $? -ne 0 ]; then`
			`exit 1`
			`fi`
			`openssl pkcs12 -export -in "$CERTIFICATE" -inkey "$key" -name "$KEY_ALIAS" \`
			`-out "$pk12" -password pass:"$KEY_PASSWORD"`
			`if [ $? -ne 0 ]; then`
			`exit 1`
			`fi`

			`keytool -importkeystore \`
			`-srckeystore "$pk12" -srcstoretype pkcs12 -srcstorepass "$KEY_PASSWORD" \`
			`-destkeystore "$KEYSTORE_PATH" -deststorepass "$KEYSTORE_PASSWORD" \`
			`-destkeypass "$KEY_PASSWORD"`
			`if [ $? -ne 0 ]; then`
			`exit 1`
			`fi`


			`echo`
			`echo "Generating keystore.properties..."`
			`if [ -f keystore.properties ]; then`
			`echo "keystore.properties already exists, overwrite it? [Y/n]"`
			`read reply`
			`if [ "$reply" = "n" -o "$reply" = "N" ]; then`
			`exit 0`
			`fi`
			`fi`

			`cat > keystore.properties <<EOF`
			`keyAlias=$KEY_ALIAS`
			`keyPassword=$KEY_PASSWORD`
			`storeFile=$KEYSTORE_PATH`
			`storePassword=$KEYSTORE_PASSWORD`
			`EOF`