// Copyright 2013 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "net/test/ct_test_util.h" #include #include #include #include #include "base/base64.h" #include "base/strings/string_number_conversions.h" #include "base/strings/string_util.h" #include "base/strings/stringprintf.h" #include "net/base/hex_utils.h" #include "net/cert/ct_serialization.h" #include "net/cert/merkle_tree_leaf.h" #include "net/cert/signed_tree_head.h" #include "net/cert/x509_certificate.h" namespace net::ct { namespace { // The following test vectors are from // http://code.google.com/p/certificate-transparency const char kDefaultDerCert[] = "308202ca30820233a003020102020106300d06092a864886f70d01010505003055310b3009" "06035504061302474231243022060355040a131b4365727469666963617465205472616e73" "706172656e6379204341310e300c0603550408130557616c65733110300e06035504071307" "4572772057656e301e170d3132303630313030303030305a170d3232303630313030303030" "305a3052310b30090603550406130247423121301f060355040a1318436572746966696361" "7465205472616e73706172656e6379310e300c0603550408130557616c65733110300e0603" "55040713074572772057656e30819f300d06092a864886f70d010101050003818d00308189" "02818100b1fa37936111f8792da2081c3fe41925008531dc7f2c657bd9e1de4704160b4c9f" "19d54ada4470404c1c51341b8f1f7538dddd28d9aca48369fc5646ddcc7617f8168aae5b41" "d43331fca2dadfc804d57208949061f9eef902ca47ce88c644e000f06eeeccabdc9dd2f68a" "22ccb09dc76e0dbc73527765b1a37a8c676253dcc10203010001a381ac3081a9301d060355" "1d0e041604146a0d982a3b62c44b6d2ef4e9bb7a01aa9cb798e2307d0603551d2304763074" "80145f9d880dc873e654d4f80dd8e6b0c124b447c355a159a4573055310b30090603550406" "1302474231243022060355040a131b4365727469666963617465205472616e73706172656e" "6379204341310e300c0603550408130557616c65733110300e060355040713074572772057" "656e82010030090603551d1304023000300d06092a864886f70d010105050003818100171c" "d84aac414a9a030f22aac8f688b081b2709b848b4e5511406cd707fed028597a9faefc2eee" "2978d633aaac14ed3235197da87e0f71b8875f1ac9e78b281749ddedd007e3ecf50645f8cb" "f667256cd6a1647b5e13203bb8582de7d6696f656d1c60b95f456b7fcf338571908f1c6972" "7d24c4fccd249295795814d1dac0e6"; const char kDefaultIssuerKeyHash[] = "02adddca08b8bf9861f035940c940156d8350fdff899a6239c6bd77255b8f8fc"; const char kDefaultDerTbsCert[] = "30820233a003020102020107300d06092a864886f70d01010505003055310b300906035504" "061302474231243022060355040a131b4365727469666963617465205472616e7370617265" "6e6379204341310e300c0603550408130557616c65733110300e0603550407130745727720" "57656e301e170d3132303630313030303030305a170d3232303630313030303030305a3052" "310b30090603550406130247423121301f060355040a131843657274696669636174652054" "72616e73706172656e6379310e300c0603550408130557616c65733110300e060355040713" "074572772057656e30819f300d06092a864886f70d010101050003818d0030818902818100" "beef98e7c26877ae385f75325a0c1d329bedf18faaf4d796bf047eb7e1ce15c95ba2f80ee4" "58bd7db86f8a4b252191a79bd700c38e9c0389b45cd4dc9a120ab21e0cb41cd0e72805a410" "cd9c5bdb5d4927726daf1710f60187377ea25b1a1e39eed0b88119dc154dc68f7da8e30caf" "158a33e6c9509f4a05b01409ff5dd87eb50203010001a381ac3081a9301d0603551d0e0416" "04142031541af25c05ffd8658b6843794f5e9036f7b4307d0603551d230476307480145f9d" "880dc873e654d4f80dd8e6b0c124b447c355a159a4573055310b3009060355040613024742" "31243022060355040a131b4365727469666963617465205472616e73706172656e63792043" "41310e300c0603550408130557616c65733110300e060355040713074572772057656e8201" "0030090603551d1304023000"; const char kDefaultExtensions[] = "666f6f626172"; // "foobar" const char kTestDigitallySigned[] = "0403004730450220606e10ae5c2d5a1b0aed49dc4937f48de71a4e9784e9c208dfbfe9ef53" "6cf7f2022100beb29c72d7d06d61d06bdb38a069469aa86fe12e18bb7cc45689a2c0187ef5" "a5"; const char kTestSignedCertificateTimestamp[] = "00df1c2ec11500945247a96168325ddc5c7959e8f7c6d388fc002e0bbd3f74d7640000013d" "db27ded900000403004730450220606e10ae5c2d5a1b0aed49dc4937f48de71a4e9784e9c2" "08dfbfe9ef536cf7f2022100beb29c72d7d06d61d06bdb38a069469aa86fe12e18bb7cc456" "89a2c0187ef5a5"; const char kEcP256PublicKey[] = "3059301306072a8648ce3d020106082a8648ce3d0301070342000499783cb14533c0161a5a" "b45bf95d08a29cd0ea8dd4c84274e2be59ad15c676960cf0afa1074a57ac644b23479e5b3f" "b7b245eb4b420ef370210371a944beaceb"; const char kTestKeyId[] = "df1c2ec11500945247a96168325ddc5c7959e8f7c6d388fc002e0bbd3f74d764"; const int64_t kTestTimestamp = INT64_C(1396877277237); const char kTestSCTSignatureData[] = "30450220606e10ae5c2d5a1b0aed49dc4937f48de71a4e9784e9c208dfbfe9ef536cf7f202" "2100beb29c72d7d06d61d06bdb38a069469aa86fe12e18bb7cc45689a2c0187ef5a5"; const char kTestSCTPrecertSignatureData[] = "30450220482f6751af35dba65436be1fd6640f3dbf9a41429495924530288fa3e5e23e0602" "2100e4edc0db3ac572b1e2f5e8ab6a680653987dcf41027dfeffa105519d89edbf08"; // A well-formed OCSP response with fake SCT contents. Does not come from // http://code.google.com/p/certificate-transparency, does not pertain to any // of the test certs here, and is only used to test extracting the extension // contents from the response. const char kFakeOCSPResponse[] = "3082016e0a0100a08201673082016306092b060105050730010104820154308201503081ba" "a21604144edfdf5ff9c90ffacfca66e7fbc436bc39ee3fc7180f3230313030313031303630" "3030305a30818e30818b3049300906052b0e03021a050004141833a1e6a4f09577cca0e64c" "e7d145ca4b93700904144edfdf5ff9c90ffacfca66e7fbc436bc39ee3fc7021001aef99bde" "e0bb58c6f2b816bc3ae02f8000180f32303130303130313036303030305aa011180f323033" "30303130313036303030305aa11830163014060a2b06010401d67902040504060404746573" "74300d06092a864886f70d0101050500038181003586ffcf0794e64eb643d52a3d570a1c93" "836395986a2f792dd4e9c70b05161186c55c1658e0607dc9ec0d0924ac37fb99506c870579" "634be1de62ba2fced5f61f3b428f959fcee9bddf6f268c8e14c14fdf3b447786e638a5c8cc" "b610893df17a60e4cff30f4780aeffe0086ef19910f0d9cd7414bc93d1945686f88ad0a3c3" ; const char kFakeOCSPResponseCert[] = "3082022930820192a003020102021001aef99bdee0bb58c6f2b816bc3ae02f300d06092a86" "4886f70d01010505003015311330110603550403130a54657374696e67204341301e170d31" "30303130313036303030305a170d3332313230313036303030305a30373112301006035504" "0313093132372e302e302e31310b300906035504061302585831143012060355040a130b54" "657374696e67204f726730819d300d06092a864886f70d010101050003818b003081870281" "8100a71998f2930bfe73d031a87f133d2f378eeeeed52a77e44d0fc9ff6f07ff32cbf3da99" "9de4ed65832afcb0807f98787506539d258a0ce3c2c77967653099a9034a9b115a876c39a8" "c4e4ed4acd0c64095946fb39eeeb47a0704dbb018acf48c3a1c4b895fc409fb4a340a986b1" "afc45519ab9eca47c30185c771c64aa5ecf07d020103a35a3058303a06082b060105050701" "01010100042b3029302706082b06010505073001861b687474703a2f2f3132372e302e302e" "313a35353038312f6f637370301a0603551d200101000410300e300c060a2b06010401d679" "020401300d06092a864886f70d01010505000381810065e04fadd3484197f3412479d917e1" "9d8f7db57b526f2d0e4c046f86cebe643bf568ea0cd6570b228842aa057c6a7c79f209dfcd" "3419a4d93b1ecfb1c0224f33083c7d4da023499fbd00d81d6711ad58ffcf65f1545247fe9d" "83203425fd706b4fc5e797002af3d88151be5901eef56ec30aacdfc404be1bd35865ff1943" "2516"; const char kFakeOCSPResponseIssuerCert[] = "308201d13082013aa003020102020101300d06092a864886f70d0101050500301531133011" "0603550403130a54657374696e67204341301e170d3130303130313036303030305a170d33" "32313230313036303030305a3015311330110603550403130a54657374696e672043413081" "9d300d06092a864886f70d010101050003818b0030818702818100a71998f2930bfe73d031" "a87f133d2f378eeeeed52a77e44d0fc9ff6f07ff32cbf3da999de4ed65832afcb0807f9878" "7506539d258a0ce3c2c77967653099a9034a9b115a876c39a8c4e4ed4acd0c64095946fb39" "eeeb47a0704dbb018acf48c3a1c4b895fc409fb4a340a986b1afc45519ab9eca47c30185c7" "71c64aa5ecf07d020103a333303130120603551d130101ff040830060101ff020100301b06" "03551d200101000411300f300d060b2b06010401d6790201ce0f300d06092a864886f70d01" "01050500038181003f4936f8d00e83fbdde331f2c64335dcf7dec8b1a2597683edeed61af0" "fa862412fad848938fe7ab77f1f9a43671ff6fdb729386e26f49e7aca0c0ea216e5970d933" "3ea1e11df2ccb357a5fed5220f9c6239e8946b9b7517707631d51ab996833d58a022cff5a6" "2169ac9258ec110efee78da9ab4a641e3b3c9ee5e8bd291460"; const char kFakeOCSPExtensionValue[] = "74657374"; // "test" // For the sample STH const char kSampleSTHSHA256RootHash[] = "726467216167397babca293dca398e4ce6b621b18b9bc42f30c900d1f92ac1e4"; const char kSampleSTHTreeHeadSignature[] = "0403004730450220365a91a2a88f2b9332f41d8959fa7086da7e6d634b7b089bc9da066426" "6c7a20022100e38464f3c0fd066257b982074f7ac87655e0c8f714768a050b4be9a7b441cb" "d3"; size_t kSampleSTHTreeSize = 21u; } // namespace void GetX509CertSignedEntry(SignedEntryData* entry) { entry->type = ct::SignedEntryData::LOG_ENTRY_TYPE_X509; entry->leaf_certificate = HexDecode(kDefaultDerCert); } void GetX509CertTreeLeaf(MerkleTreeLeaf* tree_leaf) { tree_leaf->timestamp = base::Time::FromMillisecondsSinceUnixEpoch(kTestTimestamp); GetX509CertSignedEntry(&tree_leaf->signed_entry); tree_leaf->extensions = HexDecode(kDefaultExtensions); } std::string GetDerEncodedX509Cert() { return HexDecode(kDefaultDerCert); } void GetPrecertSignedEntry(SignedEntryData* entry) { entry->type = ct::SignedEntryData::LOG_ENTRY_TYPE_PRECERT; std::string issuer_hash(HexDecode(kDefaultIssuerKeyHash)); memcpy(entry->issuer_key_hash.data, issuer_hash.data(), issuer_hash.size()); entry->tbs_certificate = HexDecode(kDefaultDerTbsCert); } void GetPrecertTreeLeaf(MerkleTreeLeaf* tree_leaf) { tree_leaf->timestamp = base::Time::FromMillisecondsSinceUnixEpoch(kTestTimestamp); GetPrecertSignedEntry(&tree_leaf->signed_entry); tree_leaf->extensions = HexDecode(kDefaultExtensions); } std::string GetTestDigitallySigned() { return HexDecode(kTestDigitallySigned); } std::string GetTestSignedCertificateTimestamp() { return HexDecode(kTestSignedCertificateTimestamp); } std::string GetTestPublicKey() { return HexDecode(kEcP256PublicKey); } std::string GetTestPublicKeyId() { return HexDecode(kTestKeyId); } void GetX509CertSCT(scoped_refptr* sct_ref) { CHECK(sct_ref != nullptr); *sct_ref = base::MakeRefCounted(); SignedCertificateTimestamp *const sct(sct_ref->get()); sct->version = ct::SignedCertificateTimestamp::V1; sct->log_id = HexDecode(kTestKeyId); // Time the log issued a SCT for this certificate, which is // Fri Apr 5 10:04:16.089 2013 sct->timestamp = base::Time::UnixEpoch() + base::Milliseconds(INT64_C(1365181456089)); sct->extensions.clear(); sct->signature.hash_algorithm = ct::DigitallySigned::HASH_ALGO_SHA256; sct->signature.signature_algorithm = ct::DigitallySigned::SIG_ALGO_ECDSA; sct->signature.signature_data = HexDecode(kTestSCTSignatureData); } void GetPrecertSCT(scoped_refptr* sct_ref) { CHECK(sct_ref != nullptr); *sct_ref = base::MakeRefCounted(); SignedCertificateTimestamp *const sct(sct_ref->get()); sct->version = ct::SignedCertificateTimestamp::V1; sct->log_id = HexDecode(kTestKeyId); // Time the log issued a SCT for this Precertificate, which is // Fri Apr 5 10:04:16.275 2013 sct->timestamp = base::Time::UnixEpoch() + base::Milliseconds(INT64_C(1365181456275)); sct->extensions.clear(); sct->signature.hash_algorithm = ct::DigitallySigned::HASH_ALGO_SHA256; sct->signature.signature_algorithm = ct::DigitallySigned::SIG_ALGO_ECDSA; sct->signature.signature_data = HexDecode(kTestSCTPrecertSignatureData); } std::string GetDefaultIssuerKeyHash() { return HexDecode(kDefaultIssuerKeyHash); } std::string GetDerEncodedFakeOCSPResponse() { return HexDecode(kFakeOCSPResponse); } std::string GetFakeOCSPExtensionValue() { return HexDecode(kFakeOCSPExtensionValue); } std::string GetDerEncodedFakeOCSPResponseCert() { return HexDecode(kFakeOCSPResponseCert); } std::string GetDerEncodedFakeOCSPResponseIssuerCert() { return HexDecode(kFakeOCSPResponseIssuerCert); } // A sample, valid STH bool GetSampleSignedTreeHead(SignedTreeHead* sth) { sth->version = SignedTreeHead::V1; sth->timestamp = base::Time::UnixEpoch() + base::Milliseconds(kTestTimestamp); sth->tree_size = kSampleSTHTreeSize; std::string sha256_root_hash = GetSampleSTHSHA256RootHash(); memcpy(sth->sha256_root_hash, sha256_root_hash.c_str(), kSthRootHashLength); sth->log_id = GetTestPublicKeyId(); return GetSampleSTHTreeHeadDecodedSignature(&(sth->signature)); } bool GetSampleEmptySignedTreeHead(SignedTreeHead* sth) { sth->version = SignedTreeHead::V1; sth->timestamp = base::Time::UnixEpoch() + base::Milliseconds(INT64_C(1450443594920)); sth->tree_size = 0; std::string empty_root_hash = HexDecode( "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"); memcpy(sth->sha256_root_hash, empty_root_hash.c_str(), kSthRootHashLength); sth->log_id = GetTestPublicKeyId(); std::string tree_head_signature = HexDecode( "040300463044022046c26401de9416403da54762dc1f1687c38eafd791b15e484ab4c5f7" "f52721fe02201bf537a3bbea47109fc76c2273fe0f3349f493a07de9335c266330105fb0" "2a4a"); std::string_view sp(tree_head_signature); return DecodeDigitallySigned(&sp, &(sth->signature)) && sp.empty(); } bool GetBadEmptySignedTreeHead(SignedTreeHead* sth) { sth->version = SignedTreeHead::V1; sth->timestamp = base::Time::UnixEpoch() + base::Milliseconds(INT64_C(1450870952897)); sth->tree_size = 0; memset(sth->sha256_root_hash, 'f', kSthRootHashLength); sth->log_id = GetTestPublicKeyId(); std::string tree_head_signature = HexDecode( "04030046304402207cab04c62dee5d1cbc95fec30cd8417313f71587b75f133ad2e6f324" "74f164d702205e2f3a9bce46f87d7e20e951a4e955da3cb502f8717a22fabd7c5d7e1bef" "46ea"); std::string_view sp(tree_head_signature); return DecodeDigitallySigned(&sp, &(sth->signature)) && sp.empty(); } std::string GetSampleSTHSHA256RootHash() { return HexDecode(kSampleSTHSHA256RootHash); } std::string GetSampleSTHTreeHeadSignature() { return HexDecode(kSampleSTHTreeHeadSignature); } bool GetSampleSTHTreeHeadDecodedSignature(DigitallySigned* signature) { std::string tree_head_signature = HexDecode(kSampleSTHTreeHeadSignature); std::string_view sp(tree_head_signature); return DecodeDigitallySigned(&sp, signature) && sp.empty(); } std::string GetSampleSTHAsJson() { return CreateSignedTreeHeadJsonString(kSampleSTHTreeSize, kTestTimestamp, GetSampleSTHSHA256RootHash(), GetSampleSTHTreeHeadSignature()); } std::string CreateSignedTreeHeadJsonString(size_t tree_size, int64_t timestamp, std::string sha256_root_hash, std::string tree_head_signature) { std::string sth_json = std::string("{\"tree_size\":") + base::NumberToString(tree_size) + std::string(",\"timestamp\":") + base::NumberToString(timestamp); if (!sha256_root_hash.empty()) { std::string root_hash_b64 = base::Base64Encode(sha256_root_hash); sth_json += base::StringPrintf(",\"sha256_root_hash\":\"%s\"", root_hash_b64.c_str()); } if (!tree_head_signature.empty()) { std::string tree_head_signature_b64 = base::Base64Encode(tree_head_signature); sth_json += base::StringPrintf(",\"tree_head_signature\":\"%s\"", tree_head_signature_b64.c_str()); } sth_json += "}"; return sth_json; } std::string CreateConsistencyProofJsonString( const std::vector& raw_nodes) { std::string consistency_proof_json = std::string("{\"consistency\":["); for (auto it = raw_nodes.begin(); it != raw_nodes.end(); ++it) { std::string proof_node_b64 = base::Base64Encode(*it); consistency_proof_json += base::StringPrintf("\"%s\"", proof_node_b64.c_str()); if (it + 1 != raw_nodes.end()) consistency_proof_json += std::string(","); } consistency_proof_json += std::string("]}"); return consistency_proof_json; } std::string GetSCTListForTesting() { const std::string sct = ct::GetTestSignedCertificateTimestamp(); std::string sct_list; ct::EncodeSCTListForTesting({sct}, &sct_list); return sct_list; } std::string GetSCTListWithInvalidSCT() { std::string sct(ct::GetTestSignedCertificateTimestamp()); // Change a byte inside the Log ID part of the SCT so it does not match the // log used in the tests. sct[15] = 't'; std::string sct_list; ct::EncodeSCTListForTesting({sct}, &sct_list); return sct_list; } bool CheckForSingleVerifiedSCTInResult( const SignedCertificateTimestampAndStatusList& scts, const std::string& log_description) { return (scts.size() == 1 && scts[0].status == ct::SCT_STATUS_OK && scts[0].sct->log_description == log_description); } bool CheckForSCTOrigin(const SignedCertificateTimestampAndStatusList& scts, ct::SignedCertificateTimestamp::Origin origin) { for (const auto& sct_and_status : scts) if (sct_and_status.status == SCT_STATUS_OK && sct_and_status.sct->origin == origin) return true; return false; } } // namespace net::ct