[email protected] | e54d0af | 2012-03-03 01:07:15 | [diff] [blame] | 1 | // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 2 | // Use of this source code is governed by a BSD-style license that can be |
| 3 | // found in the LICENSE file. |
| 4 | |
[email protected] | 6e7845ae | 2013-03-29 21:48:11 | [diff] [blame] | 5 | #ifndef NET_TEST_CERT_TEST_UTIL_H_ |
| 6 | #define NET_TEST_CERT_TEST_UTIL_H_ |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 7 | |
[email protected] | 32765f8 | 2010-12-16 00:01:37 | [diff] [blame] | 8 | #include <string> |
| 9 | |
[email protected] | 3b63f8f4 | 2011-03-28 01:54:15 | [diff] [blame] | 10 | #include "base/memory/ref_counted.h" |
[email protected] | 6e7845ae | 2013-03-29 21:48:11 | [diff] [blame] | 11 | #include "net/cert/x509_cert_types.h" |
| 12 | #include "net/cert/x509_certificate.h" |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 13 | |
[email protected] | 83e1ae3 | 2014-07-18 10:57:07 | [diff] [blame] | 14 | #if defined(USE_NSS) |
| 15 | #include "base/memory/scoped_ptr.h" |
| 16 | |
| 17 | // From <pk11pub.h> |
| 18 | typedef struct PK11SlotInfoStr PK11SlotInfo; |
| 19 | #endif |
| 20 | |
[email protected] | a3ef483 | 2013-02-02 05:12:33 | [diff] [blame] | 21 | namespace base { |
[email protected] | 864b136 | 2010-08-19 03:49:38 | [diff] [blame] | 22 | class FilePath; |
[email protected] | a3ef483 | 2013-02-02 05:12:33 | [diff] [blame] | 23 | } |
[email protected] | 864b136 | 2010-08-19 03:49:38 | [diff] [blame] | 24 | |
[email protected] | 83e1ae3 | 2014-07-18 10:57:07 | [diff] [blame] | 25 | namespace crypto { |
| 26 | class RSAPrivateKey; |
| 27 | } |
| 28 | |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 29 | namespace net { |
| 30 | |
[email protected] | 7d015e4 | 2012-03-14 16:15:12 | [diff] [blame] | 31 | class EVRootCAMetadata; |
| 32 | |
[email protected] | 83e1ae3 | 2014-07-18 10:57:07 | [diff] [blame] | 33 | #if defined(USE_NSS) |
| 34 | // Imports a private key from file |key_filename| in |dir|. The file must |
| 35 | // contain a PKCS#8 PrivateKeyInfo in DER encoding. The key is imported to |
| 36 | // |slot|. |
| 37 | scoped_ptr<crypto::RSAPrivateKey> ImportSensitiveKeyFromFile( |
| 38 | const base::FilePath& dir, |
| 39 | const std::string& key_filename, |
| 40 | PK11SlotInfo* slot); |
[email protected] | cc9b29fb | 2014-08-02 11:52:26 | [diff] [blame^] | 41 | |
| 42 | bool ImportClientCertToSlot(const scoped_refptr<X509Certificate>& cert, |
| 43 | PK11SlotInfo* slot); |
| 44 | |
| 45 | scoped_refptr<X509Certificate> ImportClientCertAndKeyFromFile( |
| 46 | const base::FilePath& dir, |
| 47 | const std::string& cert_filename, |
| 48 | const std::string& key_filename, |
| 49 | PK11SlotInfo* slot); |
[email protected] | 83e1ae3 | 2014-07-18 10:57:07 | [diff] [blame] | 50 | #endif |
| 51 | |
| 52 | // Imports all of the certificates in |cert_file|, a file in |certs_dir|, into a |
| 53 | // CertificateList. |
[email protected] | a3ef483 | 2013-02-02 05:12:33 | [diff] [blame] | 54 | CertificateList CreateCertificateListFromFile(const base::FilePath& certs_dir, |
[email protected] | e54d0af | 2012-03-03 01:07:15 | [diff] [blame] | 55 | const std::string& cert_file, |
| 56 | int format); |
| 57 | |
[email protected] | 1f11d6f | 2013-11-24 22:33:00 | [diff] [blame] | 58 | // Imports all of the certificates in |cert_file|, a file in |certs_dir|, into |
| 59 | // a new X509Certificate. The first certificate in the chain will be used for |
| 60 | // the returned cert, with any additional certificates configured as |
| 61 | // intermediate certificates. |
| 62 | scoped_refptr<X509Certificate> CreateCertificateChainFromFile( |
| 63 | const base::FilePath& certs_dir, |
| 64 | const std::string& cert_file, |
| 65 | int format); |
| 66 | |
| 67 | // Imports a single certificate from |cert_file|. |
[email protected] | 42fdb45 | 2012-11-01 12:44:40 | [diff] [blame] | 68 | // |certs_dir| represents the test certificates directory. |cert_file| is the |
[email protected] | 32765f8 | 2010-12-16 00:01:37 | [diff] [blame] | 69 | // name of the certificate file. If cert_file contains multiple certificates, |
| 70 | // the first certificate found will be returned. |
[email protected] | a3ef483 | 2013-02-02 05:12:33 | [diff] [blame] | 71 | scoped_refptr<X509Certificate> ImportCertFromFile(const base::FilePath& certs_dir, |
[email protected] | 32765f8 | 2010-12-16 00:01:37 | [diff] [blame] | 72 | const std::string& cert_file); |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 73 | |
[email protected] | 7d015e4 | 2012-03-14 16:15:12 | [diff] [blame] | 74 | // ScopedTestEVPolicy causes certificates marked with |policy|, issued from a |
| 75 | // root with the given fingerprint, to be treated as EV. |policy| is expressed |
| 76 | // as a string of dotted numbers: i.e. "1.2.3.4". |
| 77 | // This should only be used in unittests as adding a CA twice causes a CHECK |
| 78 | // failure. |
| 79 | class ScopedTestEVPolicy { |
| 80 | public: |
| 81 | ScopedTestEVPolicy(EVRootCAMetadata* ev_root_ca_metadata, |
[email protected] | ede0321 | 2012-09-07 12:52:26 | [diff] [blame] | 82 | const SHA1HashValue& fingerprint, |
[email protected] | 7d015e4 | 2012-03-14 16:15:12 | [diff] [blame] | 83 | const char* policy); |
| 84 | ~ScopedTestEVPolicy(); |
| 85 | |
| 86 | private: |
[email protected] | ede0321 | 2012-09-07 12:52:26 | [diff] [blame] | 87 | SHA1HashValue fingerprint_; |
[email protected] | 7d015e4 | 2012-03-14 16:15:12 | [diff] [blame] | 88 | EVRootCAMetadata* const ev_root_ca_metadata_; |
| 89 | }; |
| 90 | |
[email protected] | c81d9dcc | 2010-03-17 00:51:44 | [diff] [blame] | 91 | } // namespace net |
| 92 | |
[email protected] | 6e7845ae | 2013-03-29 21:48:11 | [diff] [blame] | 93 | #endif // NET_TEST_CERT_TEST_UTIL_H_ |