1*3f982cf4SFabien Sanglard // Copyright 2019 The Chromium Authors. All rights reserved.
2*3f982cf4SFabien Sanglard // Use of this source code is governed by a BSD-style license that can be
3*3f982cf4SFabien Sanglard // found in the LICENSE file.
4*3f982cf4SFabien Sanglard
5*3f982cf4SFabien Sanglard #include "util/crypto/certificate_utils.h"
6*3f982cf4SFabien Sanglard
7*3f982cf4SFabien Sanglard #include <openssl/bio.h>
8*3f982cf4SFabien Sanglard #include <openssl/bn.h>
9*3f982cf4SFabien Sanglard #include <openssl/rsa.h>
10*3f982cf4SFabien Sanglard #include <openssl/x509.h>
11*3f982cf4SFabien Sanglard
12*3f982cf4SFabien Sanglard #include <chrono>
13*3f982cf4SFabien Sanglard
14*3f982cf4SFabien Sanglard #include "gtest/gtest.h"
15*3f982cf4SFabien Sanglard #include "platform/api/time.h"
16*3f982cf4SFabien Sanglard #include "platform/base/error.h"
17*3f982cf4SFabien Sanglard #include "util/std_util.h"
18*3f982cf4SFabien Sanglard
19*3f982cf4SFabien Sanglard namespace openscreen {
20*3f982cf4SFabien Sanglard namespace {
21*3f982cf4SFabien Sanglard
22*3f982cf4SFabien Sanglard constexpr char kName[] = "test.com";
23*3f982cf4SFabien Sanglard constexpr auto kDuration = std::chrono::seconds(31556952);
24*3f982cf4SFabien Sanglard
TEST(CertificateUtilTest,CreatesValidCertificate)25*3f982cf4SFabien Sanglard TEST(CertificateUtilTest, CreatesValidCertificate) {
26*3f982cf4SFabien Sanglard bssl::UniquePtr<EVP_PKEY> pkey = GenerateRsaKeyPair();
27*3f982cf4SFabien Sanglard ASSERT_TRUE(pkey);
28*3f982cf4SFabien Sanglard
29*3f982cf4SFabien Sanglard ErrorOr<bssl::UniquePtr<X509>> certificate =
30*3f982cf4SFabien Sanglard CreateSelfSignedX509Certificate(kName, kDuration, *pkey);
31*3f982cf4SFabien Sanglard ASSERT_TRUE(certificate.is_value());
32*3f982cf4SFabien Sanglard
33*3f982cf4SFabien Sanglard // Validate the generated certificate.
34*3f982cf4SFabien Sanglard EXPECT_NE(0, X509_verify(certificate.value().get(), pkey.get()));
35*3f982cf4SFabien Sanglard }
36*3f982cf4SFabien Sanglard
TEST(CertificateUtilTest,ExportsAndImportsCertificate)37*3f982cf4SFabien Sanglard TEST(CertificateUtilTest, ExportsAndImportsCertificate) {
38*3f982cf4SFabien Sanglard bssl::UniquePtr<EVP_PKEY> pkey = GenerateRsaKeyPair();
39*3f982cf4SFabien Sanglard ASSERT_TRUE(pkey);
40*3f982cf4SFabien Sanglard ErrorOr<bssl::UniquePtr<X509>> certificate =
41*3f982cf4SFabien Sanglard CreateSelfSignedX509Certificate(kName, kDuration, *pkey);
42*3f982cf4SFabien Sanglard ASSERT_TRUE(certificate.is_value());
43*3f982cf4SFabien Sanglard
44*3f982cf4SFabien Sanglard ErrorOr<std::vector<uint8_t>> exported =
45*3f982cf4SFabien Sanglard ExportX509CertificateToDer(*certificate.value());
46*3f982cf4SFabien Sanglard ASSERT_TRUE(exported.is_value()) << exported.error();
47*3f982cf4SFabien Sanglard EXPECT_FALSE(exported.value().empty());
48*3f982cf4SFabien Sanglard
49*3f982cf4SFabien Sanglard ErrorOr<bssl::UniquePtr<X509>> imported =
50*3f982cf4SFabien Sanglard ImportCertificate(exported.value().data(), exported.value().size());
51*3f982cf4SFabien Sanglard ASSERT_TRUE(imported.is_value()) << imported.error();
52*3f982cf4SFabien Sanglard ASSERT_TRUE(imported.value().get());
53*3f982cf4SFabien Sanglard
54*3f982cf4SFabien Sanglard // Validate the imported certificate.
55*3f982cf4SFabien Sanglard EXPECT_NE(0, X509_verify(imported.value().get(), pkey.get()));
56*3f982cf4SFabien Sanglard }
57*3f982cf4SFabien Sanglard
58*3f982cf4SFabien Sanglard } // namespace
59*3f982cf4SFabien Sanglard } // namespace openscreen
60