1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #include "net/base/openssl_private_key_store.h"
7 #include <openssl/evp.h>
8 #include <openssl/mem.h>
9 #include <openssl/x509.h>
11 #include "base/logging.h"
12 #include "base/memory/singleton.h"
13 #include "crypto/openssl_util.h"
14 #include "net/android/network_library.h"
15 #include "net/ssl/scoped_openssl_types.h"
19 bool OpenSSLPrivateKeyStore::StoreKeyPair(const GURL
& url
,
21 // Always clear openssl errors on exit.
22 crypto::OpenSSLErrStackTracer
err_trace(FROM_HERE
);
24 // Important: Do not use i2d_PublicKey() here, which returns data in
25 // PKCS#1 format, use i2d_PUBKEY() which returns it as DER-encoded
26 // SubjectPublicKeyInfo (X.509), as expected by the platform.
27 unsigned char* public_key
= NULL
;
28 int public_len
= i2d_PUBKEY(pkey
, &public_key
);
30 // Important: Do not use i2d_PrivateKey() here, it returns data
31 // in a format that is incompatible with what the platform expects.
32 unsigned char* private_key
= NULL
;
34 ScopedPKCS8_PRIV_KEY_INFO
pkcs8(EVP_PKEY2PKCS8(pkey
));
36 private_len
= i2d_PKCS8_PRIV_KEY_INFO(pkcs8
.get(), &private_key
);
38 if (public_len
> 0 && private_len
> 0) {
39 ret
= android::StoreKeyPair(
40 static_cast<const uint8_t*>(public_key
), public_len
,
41 static_cast<const uint8_t*>(private_key
), private_len
);
43 LOG_IF(ERROR
, !ret
) << "StoreKeyPair failed. pub len = " << public_len
44 << " priv len = " << private_len
;
45 OPENSSL_free(public_key
);
46 OPENSSL_free(private_key
);
