mirror of
https://github.com/trezor/trezor-firmware.git
synced 2024-12-22 06:18:07 +00:00
core/tools: Add attestation certificate generator for FIDO2.
This commit is contained in:
parent
fca92d7344
commit
c57bc62a05
BIN
core/tools/codegen/fido/att_cert.der
Normal file
BIN
core/tools/codegen/fido/att_cert.der
Normal file
Binary file not shown.
5
core/tools/codegen/fido/att_priv_key.pem
Normal file
5
core/tools/codegen/fido/att_priv_key.pem
Normal file
@ -0,0 +1,5 @@
|
|||||||
|
-----BEGIN PRIVATE KEY-----
|
||||||
|
MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgcSasK/ZE3GGGrYPvH83xKle1z6IA
|
||||||
|
C4rQJ+lW6FTFCouhRANCAATZGL36ilSskukNqR/KeqJkVMDRczYxTd6DpUuGtd9O8FJlmh1v/LdG
|
||||||
|
fxrN24ozCAte7ZGJE/RDpSYbx3toYG/B
|
||||||
|
-----END PRIVATE KEY-----
|
11
core/tools/codegen/fido/ca_cert.pem
Normal file
11
core/tools/codegen/fido/ca_cert.pem
Normal file
@ -0,0 +1,11 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIBojCCAUmgAwIBAgIEBQQMPDAKBggqhkjOPQQDAjAuMSwwKgYDVQQDDCNUcmV6
|
||||||
|
b3IgRklETyBSb290IENBIFNlcmlhbCA4NDE1MTM1NjAgFw0yMDA0MDYwOTU1MTZa
|
||||||
|
GA8yMDcwMDQwNjA5NTUxNlowLjEsMCoGA1UEAwwjVHJlem9yIEZJRE8gUm9vdCBD
|
||||||
|
QSBTZXJpYWwgODQxNTEzNTYwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQqgKwF
|
||||||
|
9GKBxKtiKSf+nb8cnsRE24RnfqwnFReGORKlJ7Ms44eqs4MjCwwnnNonRQMVQvl5
|
||||||
|
0ml/JKATBdBZf7fxo1MwUTAdBgNVHQ4EFgQUeuRSY/knj14w6orFYFeXEeKPVSEw
|
||||||
|
HwYDVR0jBBgwFoAUeuRSY/knj14w6orFYFeXEeKPVSEwDwYDVR0TAQH/BAUwAwEB
|
||||||
|
/zAKBggqhkjOPQQDAgNHADBEAiBO6zcgpZxA4uK5son5zWzQSOdlwPoZNZYynHbd
|
||||||
|
q2qZ4gIgSdYR7RCOKEQY7vCVB9HeN/Pa/4pHodSBzo+3+WsM1Vk=
|
||||||
|
-----END CERTIFICATE-----
|
5
core/tools/codegen/fido/ca_priv_key.pem
Normal file
5
core/tools/codegen/fido/ca_priv_key.pem
Normal file
@ -0,0 +1,5 @@
|
|||||||
|
-----BEGIN PRIVATE KEY-----
|
||||||
|
MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgd755DC6Q0TT+DqUTD/ks7M0Rcl5s
|
||||||
|
IcLTp+DKtvLKvvChRANCAAQqgKwF9GKBxKtiKSf+nb8cnsRE24RnfqwnFReGORKlJ7Ms44eqs4Mj
|
||||||
|
CwwnnNonRQMVQvl50ml/JKATBdBZf7fx
|
||||||
|
-----END PRIVATE KEY-----
|
3
core/tools/codegen/fido/gen_att_cert.sh
Executable file
3
core/tools/codegen/fido/gen_att_cert.sh
Executable file
@ -0,0 +1,3 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
openssl req -new -key att_priv_key.pem -config openssl.cnf |
|
||||||
|
openssl x509 -req -CA ca_cert.pem -CAkey ca_priv_key.pem -out att_cert.der --outform DER -set_serial 54878404 -days 10957 -extfile openssl.cnf -extensions v3_req
|
13
core/tools/codegen/fido/openssl.cnf
Normal file
13
core/tools/codegen/fido/openssl.cnf
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
[req]
|
||||||
|
distinguished_name = req_distinguished_name
|
||||||
|
prompt = no
|
||||||
|
|
||||||
|
[req_distinguished_name]
|
||||||
|
C = CZ
|
||||||
|
O = SatoshiLabs, s.r.o.
|
||||||
|
OU = Authenticator Attestation
|
||||||
|
CN = Trezor FIDO EE Serial 54878404
|
||||||
|
|
||||||
|
[v3_req]
|
||||||
|
1.3.6.1.4.1.45724.1.1.4=ASN1:FORMAT:HEX,OCTETSTRING:d6d0bdc362eec4dbde8d7a656e4a4487
|
||||||
|
basicConstraints=critical,CA:FALSE
|
Loading…
Reference in New Issue
Block a user