- Inside code signing
- Apple - Code Signing Guide
- Apple - iOS Code Signing Troubleshooting Index
- Apple - Maintaining Your Signing Identities and Certificates
Notes on Code Signing (Certs, Keys, etc.)
~/Library/MobileDevice/Provisioning Profiles
How to resign ipa files.
- https://github.com/felipesabino/provise/
- http://stackoverflow.com/questions/6896029/re-sign-ipa-iphone/6921689#6921689
- https://github.com/maciekish/iReSign
- https://github.com/talk-to/resign-ipa
- https://gist.github.com/mediabounds/1367348
https://github.com/chockenberry/Provisioning
Shell script
#Opens file in Xcode RANDOMFILENAME=/tmp/provision_$RANDOM.plist openssl smime -in "$1" -inform DER -verify > $RANDOMFILENAME open $RANDOMFILENAME
source: 360idev-jay-graves-provisioning-profiles-like-a-pro
-
Show public key fingerprint
ssh-keygen -l -f /etc/ssh/ssh_host_rsa_key.pub
The name comes from Privacy Enchanced Email. It can contain several certificates and even the private key.
Privacy-enchanced Electronic Mail - Wikipedia Link
-
Get text info about a CSR file
openssl req -noout -text -in csr-file-name.csr
-
'A CSR is useless once you have the cert'
-
Get information about a p12 file
keytool -list -v -keystore mykeystore.p12 -storetype PKCS12 -storepass 123456
openssl pkcs12 -in <my pkcs12 file>.p12 -nodes -passin pass:<passphrase, or blank> |openssl x509 -noout -fingerprint
-
Get private key from p12
openssl pkcs12 -in yourP12File.p12 -nocerts -out privateKey.pem
-
Get certificate from p12
openssl pkcs12 -in yourP12File.p12 -clcerts -nokeys -out publicCert.pem
Using keytool
to dump information about a p12 with CertAndKey
`keytool -list -v -storetype pkcs12 -keystore <keyStore.p12>`
-
Import public/private keys into Mac OS X Keychain (don't just double click them!)
security import priv_key.p12 -k ~/Library/Keychains/login.keychain
security import pub_key.pem -k ~/Library/Keychains/login.keychain
-
Verify a SHA-1 digest on OS X
openssl sha1 <file>