11320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// Copyright 2014 The Chromium Authors. All rights reserved. 21320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// Use of this source code is governed by a BSD-style license that can be 31320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// found in the LICENSE file. 41320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 51320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "net/cert/sha256_legacy_support_win.h" 61320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 71320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "base/memory/ref_counted.h" 81320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "net/base/test_data_directory.h" 91320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "net/cert/x509_certificate.h" 101320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "net/test/cert_test_util.h" 111320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci#include "testing/gtest/include/gtest/gtest.h" 121320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 131320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tuccinamespace net { 141320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 151320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tuccinamespace sha256_interception { 161320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 171320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tuccinamespace { 181320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 191320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// Verifies that SHA-256 signatures can be validated through the interception. 201320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// Although this is only needed on legacy platforms, the test is run on all 211320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// Windows platforms to make sure that the CryptoAPI<->NSS integration does not 221320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci// regress. 231320f92c476a1ad9d19dba2a48c72b75566198e9Primiano TucciTEST(Sha256Interception, HandlesSHA2) { 241320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci base::FilePath certs_dir = GetTestCertsDirectory(); 251320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 261320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci scoped_refptr<X509Certificate> server_cert = 271320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci ImportCertFromFile(certs_dir, "sha256.pem"); 281320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci ASSERT_NE(static_cast<X509Certificate*>(NULL), server_cert.get()); 291320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 301320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci CryptVerifyCertificateSignatureExFunc cert_verify_signature_ptr = 311320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci reinterpret_cast<CryptVerifyCertificateSignatureExFunc>( 321320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci ::GetProcAddress(::GetModuleHandle(L"crypt32.dll"), 331320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci "CryptVerifyCertificateSignatureEx")); 341320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci ASSERT_TRUE(cert_verify_signature_ptr); 351320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 361320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci BOOL rv = CryptVerifyCertificateSignatureExHook( 371320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci cert_verify_signature_ptr, NULL, X509_ASN_ENCODING, 381320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci CRYPT_VERIFY_CERT_SIGN_SUBJECT_CERT, 391320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci const_cast<void*>(reinterpret_cast<const void*>( 401320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci server_cert->os_cert_handle())), 411320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci CRYPT_VERIFY_CERT_SIGN_ISSUER_CERT, 421320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci const_cast<void*>(reinterpret_cast<const void*>( 431320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci server_cert->os_cert_handle())), 441320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 0, NULL); 451320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci EXPECT_EQ(TRUE, rv); 461320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci} 471320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 481320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci} // namespace 491320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 501320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci} // namespace sha256_interception 511320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci 521320f92c476a1ad9d19dba2a48c72b75566198e9Primiano Tucci} // namespace net