You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
256 lines
6.8 KiB
256 lines
6.8 KiB
#!/usr/bin/env node
|
|
|
|
/**
|
|
* Modules
|
|
*/
|
|
|
|
var fs = require('fs');
|
|
var url = require('url');
|
|
var http = require('http');
|
|
var path = require('path');
|
|
var Stream = require('stream').Stream;
|
|
var StringDecoder = require('string_decoder').StringDecoder;
|
|
|
|
/**
|
|
* Mozilla Root Cert URL
|
|
*/
|
|
|
|
var certUrl = 'https://raw.githubusercontent.com/joyent/node/master/src/node_root_certs.h';
|
|
|
|
/**
|
|
* Get Root Certs
|
|
*/
|
|
|
|
function getRootCerts(callback) {
|
|
return request(certUrl, function(err, res, body) {
|
|
if (err) return callback(err);
|
|
body = body.replace(/,\s*$/, '');
|
|
body = 'var certs = {\n' + body + '\n};\n';
|
|
body = body.replace(/^"/gm, '+ "');
|
|
body = body.replace(/^\+ "-----B/gm, '"-----B');
|
|
body = body.replace(/\/\*([^*]+)\*\/\n(?=")/g, function(_, name) {
|
|
var key = name.trim();
|
|
return '// ' + key + '\n'
|
|
+ '"' + key + '":\n';
|
|
});
|
|
body += ''
|
|
+ '\n'
|
|
+ '// Use hash table for efficiency:\n'
|
|
+ 'var trusted = Object.keys(certs).reduce(function(trusted, key) {\n'
|
|
+ ' var pem = certs[key];\n'
|
|
+ ' pem = pem.replace(/-----BEGIN CERTIFICATE-----/g, "");\n'
|
|
+ ' pem = pem.replace(/-----END CERTIFICATE-----/g, "");\n'
|
|
+ ' pem = pem.replace(/\\s+/g, "");\n'
|
|
+ ' trusted[pem] = key;\n'
|
|
+ ' return trusted;\n'
|
|
+ '}, {});\n'
|
|
+ '\n'
|
|
+ 'function getTrusted(pem) {\n'
|
|
+ ' pem = parsePEM(pem)[0].pem;\n'
|
|
+ ' if (!Object.prototype.hasOwnProperty.call(trusted, pem)) return;\n'
|
|
+ ' return trusted[pem];\n'
|
|
+ '}\n'
|
|
+ '\n'
|
|
+ 'function getCert(name) {\n'
|
|
+ ' name = name.replace(/^\s+|\s+$/g, "");\n'
|
|
+ ' if (!Object.prototype.hasOwnProperty.call(certs, name)) return;\n'
|
|
+ ' return certs[name];\n'
|
|
+ '}\n'
|
|
+ '\n'
|
|
+ 'function parsePEM(pem) {\n'
|
|
+ ' pem = pem + "";\n'
|
|
+ ' var concatted = pem.trim().split(/-----BEGIN [^\\-\\r\\n]+-----/);\n'
|
|
+ ' if (concatted.length > 2) {\n'
|
|
+ ' return concatted.reduce(function(out, pem) {\n'
|
|
+ ' if (!pem) return out;\n'
|
|
+ ' pem = parsePEM(pem)[0].pem;\n'
|
|
+ ' if (pem) out.push(pem);\n'
|
|
+ ' return out;\n'
|
|
+ ' }, []);\n'
|
|
+ ' }\n'
|
|
+ ' pem = pem.replace(/-----BEGIN [^\\-\\r\\n]+-----/, "");\n'
|
|
+ ' pem = pem.replace(/-----END [^\\-\\r\\n]+-----/, "");\n'
|
|
+ ' var parts = pem.trim().split(/(?:\\r?\\n){2,}/);\n'
|
|
+ ' var headers = {};\n'
|
|
+ ' if (parts.length > 1) {\n'
|
|
+ ' headers = parts[0].trim().split(/[\\r\\n]/).reduce(function(out, line) {\n'
|
|
+ ' var parts = line.split(/:[ \\t]+/);\n'
|
|
+ ' var key = parts[0].trim().toLowerCase();\n'
|
|
+ ' var value = (parts.slice(1).join("") || "").trim();\n'
|
|
+ ' out[key] = value;\n'
|
|
+ ' return out;\n'
|
|
+ ' }, {});\n'
|
|
+ ' pem = parts.slice(1).join("");\n'
|
|
+ ' }\n'
|
|
+ ' pem = pem.replace(/\\s+/g, "");\n'
|
|
+' var der = pem\n'
|
|
+ ' ? new Buffer(pem, "base64")\n'
|
|
+ ' : null;\n'
|
|
+ ' return [{\n'
|
|
+ ' headers: headers,\n'
|
|
+ ' pem: pem,\n'
|
|
+ ' der: der,\n'
|
|
+ ' body: der || new Buffer([0])\n'
|
|
+ ' }];\n'
|
|
+ '}\n'
|
|
+ '\n'
|
|
+ 'exports.certs = certs;\n'
|
|
+ 'exports.trusted = trusted;\n'
|
|
+ 'exports.getCert = getCert;\n'
|
|
+ 'exports.getTrusted = getTrusted;\n';
|
|
+ 'exports.parsePEM = parsePEM;\n';
|
|
return callback(null, body);
|
|
});
|
|
}
|
|
|
|
/**
|
|
* Helpers
|
|
*/
|
|
|
|
function request(options, callback) {
|
|
if (typeof options === 'string' || options.hostname) {
|
|
options = { uri: options };
|
|
}
|
|
|
|
var uri = options.uri || options.url
|
|
, body = options.json
|
|
? JSON.stringify(options.json)
|
|
: options.body || '';
|
|
|
|
if (typeof uri !== 'object') {
|
|
uri = url.parse(uri);
|
|
}
|
|
|
|
if (options.qs) {
|
|
var query = uri.query ? qs.parse(uri.query) : {};
|
|
Object.keys(options.qs).forEach(function(key) {
|
|
query[key] = options.qs[key];
|
|
});
|
|
uri.path = uri.pathname + '?' + qs.stringify(query);
|
|
}
|
|
|
|
var protocol = uri.protocol === 'https:'
|
|
? require('https')
|
|
: http;
|
|
|
|
options.method = options.method || (body ? 'POST' : 'GET');
|
|
options.method = options.method.toUpperCase();
|
|
options.headers = options.headers || {};
|
|
|
|
options.headers['Accept'] = options.headers['Accept'] || 'text/plain; charset=utf-8';
|
|
|
|
if (options.json) {
|
|
options.headers['Content-Type'] = 'application/json; charset=utf-8';
|
|
options.headers['Accept'] = 'application/json';
|
|
}
|
|
|
|
if (options.method !== 'GET' && options.method !== 'HEAD') {
|
|
options.headers['Content-Length'] = Buffer.byteLength(body);
|
|
}
|
|
|
|
var opt = {
|
|
auth: uri.auth,
|
|
host: uri.hostname,
|
|
port: uri.port || (protocol === http ? 80 : 443),
|
|
path: uri.path,
|
|
method: options.method,
|
|
headers: options.headers
|
|
};
|
|
|
|
|
|
var req = protocol.request(opt)
|
|
, response = new Stream;
|
|
|
|
req.on('error', function(err) {
|
|
if (callback) {
|
|
callback(err);
|
|
} else {
|
|
response.emit('error', err);
|
|
}
|
|
});
|
|
|
|
req.on('response', function(res) {
|
|
var decoder = new StringDecoder('utf8')
|
|
, done = false
|
|
, body = '';
|
|
|
|
function end() {
|
|
if (done) return;
|
|
done = true;
|
|
if (callback) {
|
|
res.body = body;
|
|
if (options.json) {
|
|
try {
|
|
body = JSON.parse(body);
|
|
} catch (e) {
|
|
;
|
|
}
|
|
}
|
|
callback(null, res, body);
|
|
} else {
|
|
response.emit('end');
|
|
}
|
|
res.socket.removeListener('error', error);
|
|
res.socket.removeListener('end', end);
|
|
}
|
|
|
|
function error(err) {
|
|
res.destroy();
|
|
if (callback) {
|
|
callback(err);
|
|
} else {
|
|
response.emit('error', err);
|
|
}
|
|
}
|
|
|
|
res.on('data', function(data) {
|
|
if (callback) {
|
|
body += decoder.write(data);
|
|
} else {
|
|
response.emit('data', data);
|
|
}
|
|
});
|
|
|
|
res.on('error', error);
|
|
res.socket.on('error', error);
|
|
|
|
res.on('end', end);
|
|
// An agent socket's `end` sometimes
|
|
// wont be emitted on the response.
|
|
res.socket.on('end', end);
|
|
});
|
|
|
|
req.end(body);
|
|
|
|
return response;
|
|
}
|
|
|
|
/**
|
|
* Execute
|
|
*/
|
|
|
|
function main(argv, callback) {
|
|
if (!callback) {
|
|
callback = argv;
|
|
argv = null;
|
|
}
|
|
console.log('Retrieving root certs from: %s', certUrl);
|
|
return getRootCerts(function(err, certs) {
|
|
var file = path.resolve(__dirname, '..', 'lib', 'common', 'RootCerts.js');
|
|
return fs.writeFile(file, certs, function(err) {
|
|
if (err) return callback(err);
|
|
console.log('Root cert code generated at: %s.', file);
|
|
return callback();
|
|
});
|
|
});
|
|
}
|
|
|
|
if (!module.parent) {
|
|
process.title = 'root-certs';
|
|
main(process.argv.slice(), function(err, code) {
|
|
if (err) throw err;
|
|
return process.exit(code || 0);
|
|
});
|
|
} else {
|
|
module.exports = main;
|
|
}
|
|
|