xref: /aosp_15_r20/external/cronet/crypto/nss_key_util_unittest.cc (revision 6777b5387eb2ff775bb5750e3f5d96f37fb7352b) 
1*6777b538SAndroid Build Coastguard Worker // Copyright 2015 The Chromium Authors
2*6777b538SAndroid Build Coastguard Worker // Use of this source code is governed by a BSD-style license that can be
3*6777b538SAndroid Build Coastguard Worker // found in the LICENSE file.
4*6777b538SAndroid Build Coastguard Worker 
5*6777b538SAndroid Build Coastguard Worker #include "crypto/nss_key_util.h"
6*6777b538SAndroid Build Coastguard Worker 
7*6777b538SAndroid Build Coastguard Worker #include <keyhi.h>
8*6777b538SAndroid Build Coastguard Worker #include <pk11pub.h>
9*6777b538SAndroid Build Coastguard Worker #include <stdint.h>
10*6777b538SAndroid Build Coastguard Worker 
11*6777b538SAndroid Build Coastguard Worker #include <vector>
12*6777b538SAndroid Build Coastguard Worker 
13*6777b538SAndroid Build Coastguard Worker #include "crypto/nss_util.h"
14*6777b538SAndroid Build Coastguard Worker #include "crypto/scoped_nss_types.h"
15*6777b538SAndroid Build Coastguard Worker #include "testing/gtest/include/gtest/gtest.h"
16*6777b538SAndroid Build Coastguard Worker 
17*6777b538SAndroid Build Coastguard Worker namespace crypto {
18*6777b538SAndroid Build Coastguard Worker 
19*6777b538SAndroid Build Coastguard Worker class NSSKeyUtilTest : public testing::Test {
20*6777b538SAndroid Build Coastguard Worker  public:
SetUp()21*6777b538SAndroid Build Coastguard Worker   void SetUp() override {
22*6777b538SAndroid Build Coastguard Worker     EnsureNSSInit();
23*6777b538SAndroid Build Coastguard Worker 
24*6777b538SAndroid Build Coastguard Worker     internal_slot_.reset(PK11_GetInternalSlot());
25*6777b538SAndroid Build Coastguard Worker     ASSERT_TRUE(internal_slot_);
26*6777b538SAndroid Build Coastguard Worker   }
27*6777b538SAndroid Build Coastguard Worker 
internal_slot()28*6777b538SAndroid Build Coastguard Worker   PK11SlotInfo* internal_slot() { return internal_slot_.get(); }
29*6777b538SAndroid Build Coastguard Worker 
30*6777b538SAndroid Build Coastguard Worker  private:
31*6777b538SAndroid Build Coastguard Worker   ScopedPK11Slot internal_slot_;
32*6777b538SAndroid Build Coastguard Worker };
33*6777b538SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,GenerateRSAKeyPairNSS)34*6777b538SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, GenerateRSAKeyPairNSS) {
35*6777b538SAndroid Build Coastguard Worker   const int kKeySizeBits = 1024;
36*6777b538SAndroid Build Coastguard Worker 
37*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
38*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
39*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), kKeySizeBits,
40*6777b538SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
41*6777b538SAndroid Build Coastguard Worker                                     &private_key));
42*6777b538SAndroid Build Coastguard Worker 
43*6777b538SAndroid Build Coastguard Worker   EXPECT_EQ(rsaKey, SECKEY_GetPublicKeyType(public_key.get()));
44*6777b538SAndroid Build Coastguard Worker   EXPECT_EQ(rsaKey, SECKEY_GetPrivateKeyType(private_key.get()));
45*6777b538SAndroid Build Coastguard Worker   EXPECT_EQ((kKeySizeBits + 7) / 8,
46*6777b538SAndroid Build Coastguard Worker             PK11_GetPrivateModulusLen(private_key.get()));
47*6777b538SAndroid Build Coastguard Worker }
48*6777b538SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,FindNSSKeyFromPublicKeyInfo)49*6777b538SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, FindNSSKeyFromPublicKeyInfo) {
50*6777b538SAndroid Build Coastguard Worker   // Create an NSS keypair, which will put the keys in the user's NSSDB.
51*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
52*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
53*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), 512,
54*6777b538SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
55*6777b538SAndroid Build Coastguard Worker                                     &private_key));
56*6777b538SAndroid Build Coastguard Worker 
57*6777b538SAndroid Build Coastguard Worker   ScopedSECItem item(SECKEY_EncodeDERSubjectPublicKeyInfo(public_key.get()));
58*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(item);
59*6777b538SAndroid Build Coastguard Worker   std::vector<uint8_t> public_key_der(item->data, item->data + item->len);
60*6777b538SAndroid Build Coastguard Worker 
61*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key2 =
62*6777b538SAndroid Build Coastguard Worker       FindNSSKeyFromPublicKeyInfo(public_key_der);
63*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(private_key2);
64*6777b538SAndroid Build Coastguard Worker   EXPECT_EQ(private_key->pkcs11ID, private_key2->pkcs11ID);
65*6777b538SAndroid Build Coastguard Worker }
66*6777b538SAndroid Build Coastguard Worker 
TEST_F(NSSKeyUtilTest,FailedFindNSSKeyFromPublicKeyInfo)67*6777b538SAndroid Build Coastguard Worker TEST_F(NSSKeyUtilTest, FailedFindNSSKeyFromPublicKeyInfo) {
68*6777b538SAndroid Build Coastguard Worker   // Create an NSS keypair, which will put the keys in the user's NSSDB.
69*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPublicKey public_key;
70*6777b538SAndroid Build Coastguard Worker   ScopedSECKEYPrivateKey private_key;
71*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(GenerateRSAKeyPairNSS(internal_slot(), 512,
72*6777b538SAndroid Build Coastguard Worker                                     false /* not permanent */, &public_key,
73*6777b538SAndroid Build Coastguard Worker                                     &private_key));
74*6777b538SAndroid Build Coastguard Worker 
75*6777b538SAndroid Build Coastguard Worker   ScopedSECItem item(SECKEY_EncodeDERSubjectPublicKeyInfo(public_key.get()));
76*6777b538SAndroid Build Coastguard Worker   ASSERT_TRUE(item);
77*6777b538SAndroid Build Coastguard Worker   std::vector<uint8_t> public_key_der(item->data, item->data + item->len);
78*6777b538SAndroid Build Coastguard Worker 
79*6777b538SAndroid Build Coastguard Worker   // Remove the keys from the DB, and make sure we can't find them again.
80*6777b538SAndroid Build Coastguard Worker   PK11_DestroyTokenObject(private_key->pkcs11Slot, private_key->pkcs11ID);
81*6777b538SAndroid Build Coastguard Worker   PK11_DestroyTokenObject(public_key->pkcs11Slot, public_key->pkcs11ID);
82*6777b538SAndroid Build Coastguard Worker 
83*6777b538SAndroid Build Coastguard Worker   EXPECT_FALSE(FindNSSKeyFromPublicKeyInfo(public_key_der));
84*6777b538SAndroid Build Coastguard Worker }
85*6777b538SAndroid Build Coastguard Worker 
86*6777b538SAndroid Build Coastguard Worker }  // namespace crypto
87