// Copyright 2017 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "net/ssl/client_cert_identity_test_util.h" #include #include #include "base/files/file_path.h" #include "base/files/file_util.h" #include "net/ssl/openssl_private_key.h" #include "net/ssl/ssl_private_key.h" #include "net/ssl/test_ssl_private_key.h" #include "net/test/cert_test_util.h" #include "third_party/boringssl/src/include/openssl/bytestring.h" #include "third_party/boringssl/src/include/openssl/evp.h" namespace net { FakeClientCertIdentity::FakeClientCertIdentity( scoped_refptr cert, scoped_refptr key) : ClientCertIdentity(std::move(cert)), key_(std::move(key)) {} FakeClientCertIdentity::~FakeClientCertIdentity() = default; // static std::unique_ptr FakeClientCertIdentity::CreateFromCertAndKeyFiles( const base::FilePath& dir, const std::string& cert_filename, const std::string& key_filename) { scoped_refptr cert = net::ImportCertFromFile(dir, cert_filename); if (!cert) return nullptr; std::string pkcs8; if (!base::ReadFileToString(dir.AppendASCII(key_filename), &pkcs8)) return nullptr; CBS cbs; CBS_init(&cbs, reinterpret_cast(pkcs8.data()), pkcs8.size()); bssl::UniquePtr pkey(EVP_parse_private_key(&cbs)); if (!pkey || CBS_len(&cbs) != 0) return nullptr; scoped_refptr ssl_private_key = WrapOpenSSLPrivateKey(std::move(pkey)); if (!ssl_private_key) return nullptr; return std::make_unique(cert, ssl_private_key); } // static std::unique_ptr FakeClientCertIdentity::CreateFromCertAndFailSigning( const base::FilePath& dir, const std::string& cert_filename) { scoped_refptr cert = net::ImportCertFromFile(dir, cert_filename); if (!cert) return nullptr; return std::make_unique( cert, CreateFailSigningSSLPrivateKey()); } std::unique_ptr FakeClientCertIdentity::Copy() { return std::make_unique(certificate(), key_); } void FakeClientCertIdentity::AcquirePrivateKey( base::OnceCallback)> private_key_callback) { std::move(private_key_callback).Run(key_); } ClientCertIdentityList FakeClientCertIdentityListFromCertificateList( const CertificateList& certs) { ClientCertIdentityList result; for (const auto& cert : certs) { result.push_back(std::make_unique(cert, nullptr)); } return result; } } // namespace net