quiche/common/platform/default/quiche_platform_impl/quiche_default_proof_providers_impl.cc - quiche.git - Git at Google

 // Copyright 2022 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "quiche_platform_impl/quiche_default_proof_providers_impl.h"

 #include <fstream>
 #include <iostream>
 #include <string>
 #include <utility>

 #include "quiche/quic/core/crypto/certificate_view.h"
 #include "quiche/quic/core/crypto/proof_source.h"
 #include "quiche/quic/core/crypto/proof_source_x509.h"
 #include "quiche/quic/core/crypto/proof_verifier.h"
 #include "quiche/common/platform/api/quiche_logging.h"
 #include "quiche_platform_impl/quiche_command_line_flags_impl.h"

 DEFINE_QUICHE_COMMAND_LINE_FLAG_IMPL(std::string, certificate_file, "",
                                      "Path to the certificate chain.");

 DEFINE_QUICHE_COMMAND_LINE_FLAG_IMPL(std::string, key_file, "",
                                      "Path to the pkcs8 private key.");

 namespace quiche {

 // TODO(vasilvv): implement this in order for the CLI tools to work.
 std::unique_ptr<quic::ProofVerifier> CreateDefaultProofVerifierImpl(
     const std::string& /*host*/) {
   return nullptr;
 }

 std::unique_ptr<quic::ProofSource> CreateDefaultProofSourceImpl() {
   std::string certificate_file =
       quiche::GetQuicheCommandLineFlag(FLAGS_certificate_file);
   if (certificate_file.empty()) {
     QUICHE_LOG(FATAL) << "QUIC ProofSource needs a certificate file, but "
                          "--certificate_file was empty.";
   }

   std::string key_file = quiche::GetQuicheCommandLineFlag(FLAGS_key_file);
   if (key_file.empty()) {
     QUICHE_LOG(FATAL)
         << "QUIC ProofSource needs a private key, but --key_file was empty.";
   }

   std::ifstream cert_stream(certificate_file, std::ios::binary);
   std::vector<std::string> certs =
       quic::CertificateView::LoadPemFromStream(&cert_stream);
   if (certs.empty()) {
     QUICHE_LOG(FATAL)
         << "Failed to load certificate chain from --certificate_file="
         << certificate_file;
   }

   std::ifstream key_stream(key_file, std::ios::binary);
   std::unique_ptr<quic::CertificatePrivateKey> private_key =
       quic::CertificatePrivateKey::LoadPemFromStream(&key_stream);
   if (private_key == nullptr) {
     QUICHE_LOG(FATAL) << "Failed to load private key from --key_file="
                       << key_file;
   }

   QuicheReferenceCountedPointer<quic::ProofSource::Chain> chain(
       new quic::ProofSource::Chain({certs}));
   return quic::ProofSourceX509::Create(chain, std::move(*private_key));
 }

 }  // namespace quiche
	// Copyright 2022 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "quiche_platform_impl/quiche_default_proof_providers_impl.h"

	#include <fstream>
	#include <iostream>
	#include <string>
	#include <utility>

	#include "quiche/quic/core/crypto/certificate_view.h"
	#include "quiche/quic/core/crypto/proof_source.h"
	#include "quiche/quic/core/crypto/proof_source_x509.h"
	#include "quiche/quic/core/crypto/proof_verifier.h"
	#include "quiche/common/platform/api/quiche_logging.h"
	#include "quiche_platform_impl/quiche_command_line_flags_impl.h"

	DEFINE_QUICHE_COMMAND_LINE_FLAG_IMPL(std::string, certificate_file, "",
	"Path to the certificate chain.");

	DEFINE_QUICHE_COMMAND_LINE_FLAG_IMPL(std::string, key_file, "",
	"Path to the pkcs8 private key.");

	namespace quiche {

	// TODO(vasilvv): implement this in order for the CLI tools to work.
	std::unique_ptr<quic::ProofVerifier> CreateDefaultProofVerifierImpl(
	const std::string& /host/) {
	return nullptr;
	}

	std::unique_ptr<quic::ProofSource> CreateDefaultProofSourceImpl() {
	std::string certificate_file =
	quiche::GetQuicheCommandLineFlag(FLAGS_certificate_file);
	if (certificate_file.empty()) {
	QUICHE_LOG(FATAL) << "QUIC ProofSource needs a certificate file, but "
	"--certificate_file was empty.";
	}

	std::string key_file = quiche::GetQuicheCommandLineFlag(FLAGS_key_file);
	if (key_file.empty()) {
	QUICHE_LOG(FATAL)
	<< "QUIC ProofSource needs a private key, but --key_file was empty.";
	}

	std::ifstream cert_stream(certificate_file, std::ios::binary);
	std::vector<std::string> certs =
	quic::CertificateView::LoadPemFromStream(&cert_stream);
	if (certs.empty()) {
	QUICHE_LOG(FATAL)
	<< "Failed to load certificate chain from --certificate_file="
	<< certificate_file;
	}

	std::ifstream key_stream(key_file, std::ios::binary);
	std::unique_ptr<quic::CertificatePrivateKey> private_key =
	quic::CertificatePrivateKey::LoadPemFromStream(&key_stream);
	if (private_key == nullptr) {
	QUICHE_LOG(FATAL) << "Failed to load private key from --key_file="
	<< key_file;
	}

	QuicheReferenceCountedPointer<quic::ProofSource::Chain> chain(
	new quic::ProofSource::Chain({certs}));
	return quic::ProofSourceX509::Create(chain, std::move(*private_key));
	}

	} // namespace quiche