xref: /aosp_15_r20/external/libchrome/crypto/nss_key_util_unittest.cc (revision 635a864187cb8b6c713ff48b7e790a6b21769273) 
1*635a8641SAndroid Build Coastguard Worker // Copyright 2015 The Chromium Authors. All rights reserved.
2*635a8641SAndroid Build Coastguard Worker // Use of this source code is governed by a BSD-style license that can be
3*635a8641SAndroid Build Coastguard Worker // found in the LICENSE file.
4*635a8641SAndroid Build Coastguard Worker 
5*635a8641SAndroid Build Coastguard Worker #include "crypto/nss_key_util.h"
6*635a8641SAndroid Build Coastguard Worker 
7*635a8641SAndroid Build Coastguard Worker #include <keyhi.h>
8*635a8641SAndroid Build Coastguard Worker #include <pk11pub.h>
9*635a8641SAndroid Build Coastguard Worker #include <stdint.h>
10*635a8641SAndroid Build Coastguard Worker 
11*635a8641SAndroid Build Coastguard Worker #include <vector>
12*635a8641SAndroid Build Coastguard Worker 
13*635a8641SAndroid Build Coastguard Worker #include "crypto/nss_util.h"
14*635a8641SAndroid Build Coastguard Worker #include "crypto/scoped_nss_types.h"
15*635a8641SAndroid Build Coastguard Worker #include "testing/gtest/include/gtest/gtest.h"
16*635a8641SAndroid Build Coastguard Worker 
17*635a8641SAndroid Build Coastguard Worker namespace crypto {
18*635a8641SAndroid Build Coastguard Worker 
19*635a8641SAndroid Build Coastguard Worker class NSSKeyUtilTest : public testing::Test {
20*635a8641SAndroid Build Coastguard Worker  public:
SetUp()21*635a8641SAndroid Build Coastguard Worker   void SetUp() override {
22*635a8641SAndroid Build Coastguard Worker     EnsureNSSInit();
23*635a8641SAndroid Build Coastguard Worker 
24*635a8641SAndroid Build Coastguard Worker     internal_slot_.reset(PK11_GetInternalSlot());
25*635a8641SAndroid Build Coastguard Worker     ASSERT_TRUE(internal_slot_);
26*635a8641SAndroid Build Coastguard Worker   }
27*635a8641SAndroid Build Coastguard Worker 
internal_slot()28*635a8641SAndroid Build Coastguard Worker   PK11SlotInfo* internal_slot() { return internal_slot_.get(); }
29*635a8641SAndroid Build Coastguard Worker 
30*635a8641SAndroid Build Coastguard Worker  private:
31*635a8641SAndroid Build Coastguard Worker   ScopedPK11Slot internal_slot_;
32*635a8641SAndroid Build Coastguard Worker };
33*635a8641SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,GenerateRSAKeyPairNSS)34*635a8641SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, GenerateRSAKeyPairNSS) {
35*635a8641SAndroid Build Coastguard Worker   const int kKeySizeBits = 1024;
36*635a8641SAndroid Build Coastguard Worker 
37*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
38*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
39*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), kKeySizeBits,
40*635a8641SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
41*635a8641SAndroid Build Coastguard Worker                                     &private_key));
42*635a8641SAndroid Build Coastguard Worker 
43*635a8641SAndroid Build Coastguard Worker   EXPECT_EQ(rsaKey, SECKEY_GetPublicKeyType(public_key.get()));
44*635a8641SAndroid Build Coastguard Worker   EXPECT_EQ(rsaKey, SECKEY_GetPrivateKeyType(private_key.get()));
45*635a8641SAndroid Build Coastguard Worker   EXPECT_EQ((kKeySizeBits + 7) / 8,
46*635a8641SAndroid Build Coastguard Worker             PK11_GetPrivateModulusLen(private_key.get()));
47*635a8641SAndroid Build Coastguard Worker }
48*635a8641SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,FindNSSKeyFromPublicKeyInfo)49*635a8641SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, FindNSSKeyFromPublicKeyInfo) {
50*635a8641SAndroid Build Coastguard Worker   // Create an NSS keypair, which will put the keys in the user's NSSDB.
51*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
52*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
53*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), 512,
54*635a8641SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
55*635a8641SAndroid Build Coastguard Worker                                     &private_key));
56*635a8641SAndroid Build Coastguard Worker 
57*635a8641SAndroid Build Coastguard Worker   ScopedSECItem item(SECKEY_EncodeDERSubjectPublicKeyInfo(public_key.get()));
58*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(item);
59*635a8641SAndroid Build Coastguard Worker   std::vector<uint8_t> public_key_der(item->data, item->data + item->len);
60*635a8641SAndroid Build Coastguard Worker 
61*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key2 =
62*635a8641SAndroid Build Coastguard Worker       FindNSSKeyFromPublicKeyInfo(public_key_der);
63*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(private_key2);
64*635a8641SAndroid Build Coastguard Worker   EXPECT_EQ(private_key->pkcs11ID, private_key2->pkcs11ID);
65*635a8641SAndroid Build Coastguard Worker }
66*635a8641SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,FailedFindNSSKeyFromPublicKeyInfo)67*635a8641SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, FailedFindNSSKeyFromPublicKeyInfo) {
68*635a8641SAndroid Build Coastguard Worker   // Create an NSS keypair, which will put the keys in the user's NSSDB.
69*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
70*635a8641SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
71*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), 512,
72*635a8641SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
73*635a8641SAndroid Build Coastguard Worker                                     &private_key));
74*635a8641SAndroid Build Coastguard Worker 
75*635a8641SAndroid Build Coastguard Worker   ScopedSECItem item(SECKEY_EncodeDERSubjectPublicKeyInfo(public_key.get()));
76*635a8641SAndroid Build Coastguard Worker   ASSERT_TRUE(item);
77*635a8641SAndroid Build Coastguard Worker   std::vector<uint8_t> public_key_der(item->data, item->data + item->len);
78*635a8641SAndroid Build Coastguard Worker 
79*635a8641SAndroid Build Coastguard Worker   // Remove the keys from the DB, and make sure we can't find them again.
80*635a8641SAndroid Build Coastguard Worker   PK11_DestroyTokenObject(private_key->pkcs11Slot, private_key->pkcs11ID);
81*635a8641SAndroid Build Coastguard Worker   PK11_DestroyTokenObject(public_key->pkcs11Slot, public_key->pkcs11ID);
82*635a8641SAndroid Build Coastguard Worker 
83*635a8641SAndroid Build Coastguard Worker   EXPECT_FALSE(FindNSSKeyFromPublicKeyInfo(public_key_der));
84*635a8641SAndroid Build Coastguard Worker }
85*635a8641SAndroid Build Coastguard Worker 
86*635a8641SAndroid Build Coastguard Worker }  // namespace crypto
87