ccee56beee
The JS API supports two operations which have never been implemented in the iOS counterpart: - generate a new certificate - use this certificate when creating a new PeerConnection Both functions are illustrated in the generateCertificate example code: - https://developer.mozilla.org/en-US/docs/Web/API/RTCPeerConnection/generateCertificate Currently, on iOS, a new certificate is automatically generated for every PeerConnection with no programmatic way to set a specific certificate. Work sponsored by |pipe| Bug: webrtc:9498 Change-Id: Ic1936c3de8b8bd18aef67c784727b72f90e7157c Reviewed-on: https://webrtc-review.googlesource.com/87303 Commit-Queue: Steve Anton <steveanton@webrtc.org> Reviewed-by: Kári Helgason <kthelgason@webrtc.org> Reviewed-by: Steve Anton <steveanton@webrtc.org> Cr-Commit-Position: refs/heads/master@{#24276}
71 lines
2.5 KiB
Plaintext
71 lines
2.5 KiB
Plaintext
/*
|
|
* Copyright 2018 The WebRTC project authors. All Rights Reserved.
|
|
*
|
|
* Use of this source code is governed by a BSD-style license
|
|
* that can be found in the LICENSE file in the root of the source
|
|
* tree. An additional intellectual property rights grant can be found
|
|
* in the file PATENTS. All contributing project authors may
|
|
* be found in the AUTHORS file in the root of the source tree.
|
|
*/
|
|
|
|
#import "WebRTC/RTCCertificate.h"
|
|
#import "WebRTC/RTCLogging.h"
|
|
|
|
#include "rtc_base/logging.h"
|
|
#include "rtc_base/rtccertificategenerator.h"
|
|
#include "rtc_base/sslidentity.h"
|
|
|
|
@implementation RTCCertificate
|
|
|
|
@synthesize private_key = _private_key;
|
|
@synthesize certificate = _certificate;
|
|
|
|
- (id)copyWithZone:(NSZone *)zone {
|
|
id copy = [[[self class] alloc] initWithPrivateKey:[self.private_key copyWithZone:zone]
|
|
certificate:[self.certificate copyWithZone:zone]];
|
|
return copy;
|
|
}
|
|
|
|
- (instancetype)initWithPrivateKey:(NSString *)private_key certificate:(NSString *)certificate {
|
|
if (self = [super init]) {
|
|
_private_key = [private_key copy];
|
|
_certificate = [certificate copy];
|
|
}
|
|
return self;
|
|
}
|
|
|
|
+ (nullable RTCCertificate *)generateCertificateWithParams:(NSDictionary *)params {
|
|
rtc::KeyType keyType = rtc::KT_ECDSA;
|
|
NSString *keyTypeString = [params valueForKey:@"name"];
|
|
if (keyTypeString && [keyTypeString isEqualToString:@"RSASSA-PKCS1-v1_5"]) {
|
|
keyType = rtc::KT_RSA;
|
|
}
|
|
|
|
NSNumber *expires = [params valueForKey:@"expires"];
|
|
rtc::scoped_refptr<rtc::RTCCertificate> cc_certificate = nullptr;
|
|
if (expires != nil) {
|
|
uint64_t expirationTimestamp = [expires unsignedLongLongValue];
|
|
cc_certificate = rtc::RTCCertificateGenerator::GenerateCertificate(rtc::KeyParams(keyType),
|
|
expirationTimestamp);
|
|
} else {
|
|
cc_certificate =
|
|
rtc::RTCCertificateGenerator::GenerateCertificate(rtc::KeyParams(keyType), absl::nullopt);
|
|
}
|
|
if (!cc_certificate) {
|
|
RTCLogError(@"Failed to generate certificate.");
|
|
return nullptr;
|
|
}
|
|
// grab PEMs and create an NS RTCCerticicate
|
|
rtc::RTCCertificatePEM pem = cc_certificate->ToPEM();
|
|
std::string pem_private_key = pem.private_key();
|
|
std::string pem_certificate = pem.certificate();
|
|
RTC_LOG(LS_INFO) << "CERT PEM ";
|
|
RTC_LOG(LS_INFO) << pem_certificate;
|
|
|
|
RTCCertificate *cert = [[RTCCertificate alloc] initWithPrivateKey:@(pem_private_key.c_str())
|
|
certificate:@(pem_certificate.c_str())];
|
|
return cert;
|
|
}
|
|
|
|
@end
|