1 files changed, 31 insertions, 0 deletions
diff --git a/examples/browser-export.sh b/examples/browser-export.sh
new file mode 100755
index 0000000..efb51de
--- /dev/null
+++ b/examples/browser-export.sh
@@ -0,0 +1,31 @@
+#!/bin/sh
+extract_certificate_and_private_key()
+{
+  passphrase_file=$(mktemp) || exit
+  echo asdf > $passphrase_file
+  local nssdb="$1" name="$2"
+  pk12util -d sql:"$nssdb"  -n "$name" -w "$passphrase_file" -o /dev/stdout |
+    openssl pkcs12 -passin file:"$passphrase_file" -nodes
+  rm "$passphrase_file"
+}
+extract_public_key()
+{
+  local nssdb="$1" name="$2"
+  certutil -d sql:"$nssdb"  -L -n "$name" -a | openssl x509 -pubkey -noout
+}
+for nssdb in "$HOME/.pki/nssdb" "$HOME"/.mozilla/firefox/*; do
+  [ -d "$nssdb" ] || continue
+  [ -e "$nssdb"/cert8.db -o -e "$nssdb"/cert9.db ] || continue
+  echo "nssdb=$nssdb" >&2
+  certutil -d sql:"$nssdb"  -L | sed -ne 's/ *.,.,.$//p' |
+    while read name; do
+#     certutil -d sql:"$nssdb" -K -n "$name"
+#     extract_public_key "$nssdb" "$name"
+      extract_certificate_and_private_key "$nssdb" "$name"
+    done
+done

diff --git a/examples/browser-export.sh b/examples/browser-export.sh new file mode 100755 index 0000000..efb51de --- /dev/null +++ b/examples/browser-export.sh
@@ -0,0 +1,31 @@
	1	#!/bin/sh
	2
	3	extract_certificate_and_private_key()
	4	{
	5	passphrase_file=$(mktemp) \|\| exit
	6	echo asdf > $passphrase_file
	7	local nssdb="$1" name="$2"
	8	pk12util -d sql:"$nssdb" -n "$name" -w "$passphrase_file" -o /dev/stdout \|
	9	openssl pkcs12 -passin file:"$passphrase_file" -nodes
	10	rm "$passphrase_file"
	11	}
	12
	13	extract_public_key()
	14	{
	15	local nssdb="$1" name="$2"
	16	certutil -d sql:"$nssdb" -L -n "$name" -a \| openssl x509 -pubkey -noout
	17	}
	18
	19	for nssdb in "$HOME/.pki/nssdb" "$HOME"/.mozilla/firefox/*; do
	20	[ -d "$nssdb" ] \|\| continue
	21	[ -e "$nssdb"/cert8.db -o -e "$nssdb"/cert9.db ] \|\| continue
	22	echo "nssdb=$nssdb" >&2
	23	certutil -d sql:"$nssdb" -L \| sed -ne 's/ *.,.,.$//p' \|
	24	while read name; do
	25
	26	# certutil -d sql:"$nssdb" -K -n "$name"
	27	# extract_public_key "$nssdb" "$name"
	28	extract_certificate_and_private_key "$nssdb" "$name"
	29
	30	done
	31	done