keygen_handler_nss.cc revision 5821806d5e7f356e8fa4b058a389a808ea183019
15821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)// Copyright (c) 2011 The Chromium Authors. All rights reserved. 25821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)// Use of this source code is governed by a BSD-style license that can be 35821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)// found in the LICENSE file. 45821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 55821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "net/base/keygen_handler.h" 65821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 75821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "base/logging.h" 85821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "crypto/crypto_module_blocking_password_delegate.h" 95821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "crypto/nss_util.h" 105821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "crypto/nss_util_internal.h" 115821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "crypto/scoped_nss_types.h" 125821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)#include "net/third_party/mozilla_security_manager/nsKeygenHandler.h" 135821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 145821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)// PSM = Mozilla's Personal Security Manager. 155821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)namespace psm = mozilla_security_manager; 165821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 175821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)namespace net { 185821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 195821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)std::string KeygenHandler::GenKeyAndSignChallenge() { 205821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) // Ensure NSS is initialized. 215821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) crypto::EnsureNSSInit(); 225821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 235821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) // TODO(mattm): allow choosing which slot to generate and store the key. 245821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) crypto::ScopedPK11Slot slot(crypto::GetPrivateNSSKeySlot()); 255821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) if (!slot.get()) { 265821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) LOG(ERROR) << "Couldn't get private key slot from NSS!"; 275821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) return std::string(); 285821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) } 295821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 305821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) // Authenticate to the token. 315821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) if (SECSuccess != PK11_Authenticate(slot.get(), PR_TRUE, 325821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) crypto_module_password_delegate_.get())) { 335821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) LOG(ERROR) << "Couldn't authenticate to private key slot!"; 345821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) return std::string(); 355821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) } 365821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 375821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) return psm::GenKeyAndSignChallenge(key_size_in_bits_, challenge_, url_, 385821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) slot.get(), stores_key_); 395821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)} 405821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 415821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)void KeygenHandler::set_crypto_module_password_delegate( 425821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) crypto::CryptoModuleBlockingPasswordDelegate* delegate) { 435821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) crypto_module_password_delegate_.reset(delegate); 445821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)} 455821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles) 465821806d5e7f356e8fa4b058a389a808ea183019Torne (Richard Coles)} // namespace net 47