Blame - rtc_base/sslfingerprint.cc - webrtc.googlesource.com/src

blob: b40810955ef191ea2444bc6b6d163e156090079a [file] [log] [blame]

henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	1	/*
				2	* Copyright 2012 The WebRTC Project Authors. All rights reserved.
				3	*
				4	* Use of this source code is governed by a BSD-style license
				5	* that can be found in the LICENSE file in the root of the source
				6	* tree. An additional intellectual property rights grant can be found
				7	* in the file PATENTS. All contributing project authors may
				8	* be found in the AUTHORS file in the root of the source tree.
				9	*/
				10
Mirko Bonadei	92ea95e	2017-09-15 06:47:31 +0200	[diff] [blame]	11	#include "rtc_base/sslfingerprint.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	12
				13	#include <ctype.h>
				14	#include <string>
				15
Mirko Bonadei	92ea95e	2017-09-15 06:47:31 +0200	[diff] [blame]	16	#include "rtc_base/logging.h"
				17	#include "rtc_base/messagedigest.h"
				18	#include "rtc_base/stringencode.h"
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	19
				20	namespace rtc {
				21
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	22	std::unique_ptr<SSLFingerprint> SSLFingerprint::Create(
				23	const std::string& algorithm,
				24	const rtc::SSLIdentity& identity) {
				25	return Create(algorithm, identity.certificate());
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	26	}
				27
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	28	std::unique_ptr<SSLFingerprint> SSLFingerprint::Create(
				29	const std::string& algorithm,
				30	const rtc::SSLCertificate& cert) {
Peter Boström	0c4e06b	2015-10-07 12:23:21 +0200	[diff] [blame]	31	uint8_t digest_val[64];
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	32	size_t digest_len;
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	33	bool ret = cert.ComputeDigest(algorithm, digest_val, sizeof(digest_val),
				34	&digest_len);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	35	if (!ret) {
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	36	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	37	}
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	38	return absl::make_unique<SSLFingerprint>(
				39	algorithm, ArrayView<const uint8_t>(digest_val, digest_len));
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	40	}
				41
				42	SSLFingerprint* SSLFingerprint::CreateFromRfc4572(
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	43	const std::string& algorithm,
				44	const std::string& fingerprint) {
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	45	return CreateUniqueFromRfc4572(algorithm, fingerprint).release();
				46	}
				47
				48	std::unique_ptr<SSLFingerprint> SSLFingerprint::CreateUniqueFromRfc4572(
				49	const std::string& algorithm,
				50	const std::string& fingerprint) {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	51	if (algorithm.empty() \|\| !rtc::IsFips180DigestAlgorithm(algorithm))
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	52	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	53
				54	if (fingerprint.empty())
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	55	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	56
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	57	char value[rtc::MessageDigest::kMaxSize];
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	58	size_t value_len = rtc::hex_decode_with_delimiter(
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	59	value, sizeof(value), fingerprint.c_str(), fingerprint.length(), ':');
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	60	if (!value_len)
deadbeef	37f5ecf	2017-02-27 14:06:41 -0800	[diff] [blame]	61	return nullptr;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	62
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	63	return absl::make_unique<SSLFingerprint>(
				64	algorithm,
				65	ArrayView<const uint8_t>(reinterpret_cast<uint8_t*>(value), value_len));
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	66	}
				67
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	68	std::unique_ptr<SSLFingerprint> SSLFingerprint::CreateFromCertificate(
				69	const RTCCertificate& cert) {
deadbeef	8662f94	2017-01-20 21:20:51 -0800	[diff] [blame]	70	std::string digest_alg;
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	71	if (!cert.ssl_certificate().GetSignatureDigestAlgorithm(&digest_alg)) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	72	RTC_LOG(LS_ERROR)
				73	<< "Failed to retrieve the certificate's digest algorithm";
deadbeef	8662f94	2017-01-20 21:20:51 -0800	[diff] [blame]	74	return nullptr;
				75	}
				76
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	77	std::unique_ptr<SSLFingerprint> fingerprint =
				78	Create(digest_alg, *cert.identity());
deadbeef	8662f94	2017-01-20 21:20:51 -0800	[diff] [blame]	79	if (!fingerprint) {
Mirko Bonadei	675513b	2017-11-09 11:09:25 +0100	[diff] [blame]	80	RTC_LOG(LS_ERROR) << "Failed to create identity fingerprint, alg="
				81	<< digest_alg;
deadbeef	8662f94	2017-01-20 21:20:51 -0800	[diff] [blame]	82	}
				83	return fingerprint;
				84	}
				85
Peter Boström	0c4e06b	2015-10-07 12:23:21 +0200	[diff] [blame]	86	SSLFingerprint::SSLFingerprint(const std::string& algorithm,
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	87	ArrayView<const uint8_t> digest_view)
				88	: algorithm(algorithm), digest(digest_view.data(), digest_view.size()) {}
				89
				90	SSLFingerprint::SSLFingerprint(const std::string& algorithm,
Peter Boström	0c4e06b	2015-10-07 12:23:21 +0200	[diff] [blame]	91	const uint8_t* digest_in,
				92	size_t digest_len)
Steve Anton	cc21e61	2018-10-10 20:00:19 -0700	[diff] [blame]	93	: SSLFingerprint(algorithm,
				94	ArrayView<const uint8_t>(digest_in, digest_len)) {}
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	95
				96	SSLFingerprint::SSLFingerprint(const SSLFingerprint& from)
				97	: algorithm(from.algorithm), digest(from.digest) {}
				98
				99	bool SSLFingerprint::operator==(const SSLFingerprint& other) const {
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	100	return algorithm == other.algorithm && digest == other.digest;
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	101	}
				102
				103	std::string SSLFingerprint::GetRfc4572Fingerprint() const {
				104	std::string fingerprint =
Karl Wiberg	9478437	2015-04-20 14:03:07 +0200	[diff] [blame]	105	rtc::hex_encode_with_delimiter(digest.data<char>(), digest.size(), ':');
Yves Gerey	665174f	2018-06-19 15:03:05 +0200	[diff] [blame]	106	std::transform(fingerprint.begin(), fingerprint.end(), fingerprint.begin(),
				107	::toupper);
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	108	return fingerprint;
				109	}
				110
mikescarlett	e774867	2016-04-29 20:20:54 -0700	[diff] [blame]	111	std::string SSLFingerprint::ToString() const {
henrike@webrtc.org	f048872	2014-05-13 18:00:26 +0000	[diff] [blame]	112	std::string fp_str = algorithm;
				113	fp_str.append(" ");
				114	fp_str.append(GetRfc4572Fingerprint());
				115	return fp_str;
				116	}
				117
				118	} // namespace rtc