+docdir=""

+ --docdir=PATH Sets the directory for documentation and test

+ scripts. [DATADIR/doc]

+ --docdir=*)

+ docdir=${flag#--docdir=}

+ ;;

+if [ -z "$docdir" ]; then

+ docdir="$datadir/doc"

+fi

+

+#define DOCDIR "$docdir"

+# Copyright (c) 2010-2014 Samuel Lidén Borell <samuel@kodafritt.se>

+DOCDIR=`../configure --internal--get-define=DOCDIR`

+ # Man page

+ # Localization

+ # Test scripts

+ install -d $(DOCDIR)/fribid

+ install -d $(DOCDIR)/fribid/examples

+ install -m 644 examples/README $(DESTDIR)$(DOCDIR)/fribid/examples/

+ install -m 644 examples/README.sv $(DESTDIR)$(DOCDIR)/fribid/examples/

+ install -m 644 examples/common.sh $(DESTDIR)$(DOCDIR)/fribid/examples/

+ install -m 755 examples/sign.sh $(DESTDIR)$(DOCDIR)/fribid/examples/

+ install -m 755 examples/reqcert.sh $(DESTDIR)$(DOCDIR)/fribid/examples/

+ rm -f $(DESTDIR)$(DOCDIR)/fribid/examples/README

+ rm -f $(DESTDIR)$(DOCDIR)/fribid/examples/README.sv

+ rm -f $(DESTDIR)$(DOCDIR)/fribid/examples/common.sh

+ rm -f $(DESTDIR)$(DOCDIR)/fribid/examples/sign.sh

+ rm -f $(DESTDIR)$(DOCDIR)/fribid/examples/reqcert.sh

+ [ ! -d $(DESTDIR)$(DOCDIR)/fribid/examples ] || rmdir $(DESTDIR)$(DOCDIR)/fribid/examples

+ [ ! -d $(DESTDIR)$(DOCDIR)/fribid ] || rmdir $(DESTDIR)$(DOCDIR)/fribid

+This directory contains scripts that can be used for testing that FriBID

+works properly. The scripts do not check the validity of certificates

+and can't generate valid certificates, only test certificates. The

+following scripts are available:

+

+

+sign.sh - This script tests signature generation. You need to to have a

+certificate to successfully run this test, but even if you don't have

+any certificate you should still get a certificate selection and

+password entry dialog.

+

+reqcert.sh - This script tests a "certificate request", which is the

+first step of getting a certificate. You should get window where you can

+choose a password, and after running the script you should have a test

+file in "~/cbt". The second step can currently not be tested with these

+scripts.

+Denna katalog innehåller testskript som kan användas för att testa att

+FriBID fungerar korrekt. Skripten kontrollerar dock inte giltigheten hos

+certifikaten, och kan inte heller skapa giltiga certifikat, utan enbart

+testcertifikat. Följande skript finns tillgängliga:

+

+sign.sh - Detta skript testar skapande av signaturer. Du behöver ha ett

+certifikat (en e-legitimation) för att köra testet, men oavsett så ska

+det dyka upp ett fönster där man får välja certifikat och ange lösenord

+när man kör skriptet.

+

+reqcert.sh - Detta skript testar en "certifikatförfrågan", vilket är det

+första steget vid hämtning av en e-legitimation. Du bör få upp ett

+fönster där du får välja ett lösenord, och efter att ha kört testet ska

+det dyka upp en testfil i "~/cbt". Det andra steget vid hämtning av en

+e-legitimation kan för närvarande inte testas med dessa skript.

+#!/bin/sh

+#

+# Copyright (c) 2014 Samuel Lidén Borell <samuel@kodafritt.se>

+#

+# Permission is hereby granted, free of charge, to any person obtaining a copy

+# of this software and associated documentation files (the "Software"), to deal

+# in the Software without restriction, including without limitation the rights

+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

+# copies of the Software, and to permit persons to whom the Software is

+# furnished to do so, subject to the following conditions:

+#

+# The above copyright notice and this permission notice shall be included in

+# all copies or substantial portions of the Software.

+#

+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN

+# THE SOFTWARE.

+#

+

+# Defaults

+multiarch="`gcc -print-multiarch 2>/dev/null`"

+if ( [ ! -h /usr/lib64 ] && [ -f /usr/lib64/libc.so ] && [ ! -d /usr/lib32 ] ) ||

+ ( [ ! -h /lib64 ] && [ -f /lib64/libc.so.6 ] && [ ! -d /usr/lib32 ] ); then

+ # RedHat etc.

+ multilib="lib64"

+elif [ -n "$multiarch" ]; then

+ # New Debian with multiarch

+ multilib="lib/$multiarch"

+else

+ # Old Debian and 32-bit RedHat

+ multilib="lib"

+fi

+

+if [ -x "/usr/local/$multilib/fribid/sign" ]; then

+ path="/usr/local/$multilib/fribid"

+elif [ -x "/usr/$multilib/fribid/sign" ]; then

+ path="/usr/$multilib/fribid"

+else

+ path=""

+fi

+

+mode=normal

+output=""

+fuzz_seed=""

+

+# Parse command line

+

+while [ "$#" -gt 0 ]; do

+ opt="$1"

+ case "$opt" in

+ --valgrind|-V)

+ mode=valgrind;;

+ --valgrind-zzuf-p12|--valgrind-zzuf-pkcs12|-P)

+ mode=valgrind-zzuf-pkcs12;;

+ --valgrind-zzuf-x509|-X)

+ mode=valgrind-zzuf-x509;;

+ -o)

+ output="$2"

+ shift;;

+ -s)

+ fuzz_seed="$2"

+ shift;;

+ --help|-h)

+ cat <<EOF

+Usage: $0 [options] [fribid-lib-path]

+

+Options:

+ --valgrind, -V

+ Run FriBID under Valgrind, but without leak checking.

+ --valgrind-zzuf-pkcs12, -P

+ Run FriBID under zzuf (a fuzzer) and fuzz PKCS#12 input.

+ --valgrind-zzuf-x509, -P

+ Run FriBID under zzuf (a fuzzer) and fuzz X509 input.

+ Applicable to the "storecerts" command only.

+ -o FILE

+ Write signature or request output to the given file.

+ -s NUMBER

+ Seed number to pass to fuzzer's psuedo-random generator.

+ --help, -h

+ Show this help text.

+

+The path is autodetected by default to /usr/lib/fribid or similar. If you

+want to run FriBID from the source tree, you can specify the path to the

+"client" directory.

+

+EOF

+ exit 0;;

+ --)

+ break;;

+ -*)

+ echo "$0: invalid option: $1" >&2

+ exit 1;;

+ *)

+ path="$1";;

+ esac

+ shift

+done

+

+while [ "$#" -gt 0 ]; do

+ path="$1"

+done

+

+# Check options

+if [ -z "$path" ]; then

+ echo "Couldn't find the fribid \"sign\" executable. Please specify the path manually!" >&2

+ exit 1

+fi

+

+if [ -z "$fuzz_seed" ]; then

+ fuzz_seed=0

+elif [ "x$mode" != "xvalgrind-zzuf-pkcs12" -a "x$mode" != "xvalgrind-zzuf-x509" ]; then

+ echo "The fuzz seed option can only be used with the zzuf options." >&2

+ exit 1

+fi

+

+

+# IPC commands

+sendint() { echo "$*;"; }

+sendstring() { echo "${#1};$1"; }

+

+SignCommand() { sendint 3; }

+CreateRequest() { sendint 4; }

+StoreCertsCommand() { sendint 5; }

+

+MoreData() { sendint 1; }

+EndOfData() { sendint 0; }

+

+# Runs the FriBID executable

+run() {

+ exe="$1"

+ shift

+ case "$mode" in

+ valgrind|valgrind-zzuf-x509)

+ valgrind --leak-check=no -q "$path/$exe" $*;;

+ valgrind-zzuf-pkcs12)

+ valgrind --leak-check=no -q --trace-children=yes zzuf -s "$zzuf_seed" -I '.*\.[pP]12' "$path/$exe" $*;;

+ normal)

+ "$path/$exe" $*;;

+ esac

+}

+

+shorthash() {

+ if [ -z "$1" ]; then

+ # Empty string

+ echo "<empty>"

+ elif which sha1sum > /dev/null 2>&1; then

+ # Linux

+ echo "$1" | sha1sum | head -c 5

+ elif which sha1 > /dev/null 2>&1; then

+ # BSD

+ echo "$1" | sha1

+ else

+ echo "<command not available>"

+ fi

+}

+#!/bin/sh

+#

+# Copyright (c) 2014 Samuel Lidén Borell <samuel@kodafritt.se>

+#

+# Permission is hereby granted, free of charge, to any person obtaining a copy

+# of this software and associated documentation files (the "Software"), to deal

+# in the Software without restriction, including without limitation the rights

+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

+# copies of the Software, and to permit persons to whom the Software is

+# furnished to do so, subject to the following conditions:

+#

+# The above copyright notice and this permission notice shall be included in

+# all copies or substantial portions of the Software.

+#

+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN

+# THE SOFTWARE.

+#

+

+. "`dirname "$0"`/common.sh"

+

+{

+

+# Send command header

+CreateRequest

+sendstring 'https://example.com/' # URL

+sendstring 'example.com' # Hostname

+sendstring '198.51.100.200' # IP of example.com

+

+# Password policy

+sendint 12 # Minimum length

+sendint 4 # Minimum number of non-digits

+sendint 1 # Minimum number of digits

+

+# PKCS10

+MoreData

+ sendint 1 # KeyUsage

+ sendint 2048 # KeySize

+ sendstring 'CN=TEST PERSON,OID.2.5.4.41=(090102 12.30) TEST PERSON - BankID på fil,SN=197711223334,G=TEST,S=PERSON' # SubjectDN

+ sendint 0 # Include full DN

+MoreData

+ sendint 2 # KeyUsage

+ sendint 2048 # KeySize

+ sendstring 'CN=TEST PERSON,OID.2.5.4.41=(090102 12.30) TEST PERSON - BankID på fil,SN=197711223334,G=TEST,S=PERSON' # SubjectDN

+ sendint 1 # Include full DN

+EndOfData

+

+# CMC

+sendstring 'Not Applicable'

+sendstring true

+

+# Prevent EOF

+echo 'hack'

+

+} | run sign --internal--ipc=10 | tr ';' '\n' | {

+

+#### Parse response ####

+read error

+read requestLength

+read request

+sha="`shorthash $request`"

+

+echo "error=$error, length=$requestLength, sha1=$sha"

+if [ -n "$output" ]; then

+ echo "$request" | base64 -d > "$output"

+fi

+

+}

+

+#!/bin/sh

+#

+# Copyright (c) 2014 Samuel Lidén Borell <samuel@kodafritt.se>

+#

+# Permission is hereby granted, free of charge, to any person obtaining a copy

+# of this software and associated documentation files (the "Software"), to deal

+# in the Software without restriction, including without limitation the rights

+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

+# copies of the Software, and to permit persons to whom the Software is

+# furnished to do so, subject to the following conditions:

+#

+# The above copyright notice and this permission notice shall be included in

+# all copies or substantial portions of the Software.

+#

+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN

+# THE SOFTWARE.

+#

+

+. "`dirname "$0"`/common.sh"

+

+{

+

+# Send command header

+SignCommand

+sendstring 'https://example.com/' # URL

+sendstring 'example.com' # Hostname

+sendstring '198.51.100.200' # IP of example.com

+

+# Send common data

+sendstring 'MTIzNDU2Nzg5' # nonce

+sendint 0 # server time (optional)

+sendstring '' # policies (optional)

+sendstring '' # subject filter (optional)

+

+# Send data to be signed

+sendstring 'UTF-8' # message encoding

+sendstring 'VGVzdAo=' # visible message

+sendstring '' # hidden data (optional)

+

+# Prevent EOF

+echo 'hack'

+

+} | run sign --internal--ipc=10 | tr ';' '\n' | {

+

+#### Parse response ####

+read error

+read sigLength

+read signature

+sha="`shorthash $signature`"

+

+echo "error=$error, length=$sigLength, sha1=$sha"

+if [ -n "$output" ]; then

+ echo "$signature" | base64 -d > "$output"

+fi

+

+}

+

+.LP

+If the web site above would not work for some reason (e.g. in case the browser plugin is not working), there are also test scripts that can be run from the terminal in /usr/share/doc/fribid/examples/, /usr/local/share/doc/fribid/examples/ or an equivalent directory. If the scripts work but the web site does not, then there's very likely a problem with either the plugin or the browser.

+.LP

+Om webbsidan ovan mot förmodan inte skulle fungera (t.ex. ifall webbläsarpluginen inte fungerar), så finns det även testskript man kan köra från terminalen i /usr/share/doc/fribid/examples/, /usr/local/share/doc/fribid/examples/ eller motsvarande katalog. Om enbart skripten fungerar men inte webbsidan gör det, så är det antagligen ett problem med pluginen eller webbläsaren.