summaryrefslogtreecommitdiff
path: root/app/src/main/java/se/leap/bitmaskclient/base/utils/CertificateHelper.java
blob: 1120273400d150f80a0e04edd254dfd3c628be62 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

package se.leap.bitmaskclient.base.utils;

import androidx.annotation.NonNull;
import androidx.annotation.VisibleForTesting;

import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateEncodingException;
import java.security.cert.X509Certificate;

import de.blinkt.openvpn.core.NativeUtils;

public class CertificateHelper {

    public interface CertificateHelperInterface {
        String getFingerprintFromCertificate(X509Certificate certificate, String encoding) throws NoSuchAlgorithmException, CertificateEncodingException;

    }

    public static class DefaultCertificateHelper implements CertificateHelperInterface {

        public String byteArrayToHex(byte[] input) {
            int readBytes = input.length;
            StringBuffer hexData = new StringBuffer();
            int onebyte;
            for (int i = 0; i < readBytes; i++) {
                onebyte = ((0x000000ff & input[i]) | 0xffffff00);
                hexData.append(Integer.toHexString(onebyte).substring(6));
            }
            return hexData.toString();
        }

        /**
         * Calculates the hexadecimal representation of a sha256/sha1 fingerprint of a certificate
         *
         * @param certificate
         * @param encoding
         * @return
         * @throws NoSuchAlgorithmException
         * @throws CertificateEncodingException
         */
        @Override
        public String getFingerprintFromCertificate(X509Certificate certificate, String encoding) throws NoSuchAlgorithmException, CertificateEncodingException {
            byte[] byteArray = MessageDigest.getInstance(encoding).digest(certificate.getEncoded());
            return byteArrayToHex(byteArray);
        }
    }

    private static CertificateHelperInterface instance = new DefaultCertificateHelper();

    @VisibleForTesting
    public CertificateHelper(CertificateHelperInterface helperInterface) {
        if (!NativeUtils.isUnitTest()) {
            throw new IllegalStateException("CertificateHelper injected with CertificateHelperInterface outside of an unit test");
        }
        instance = helperInterface;
    }

    @NonNull
    public static String getFingerprintFromCertificate(X509Certificate certificate, String encoding) throws NoSuchAlgorithmException, CertificateEncodingException {
        return instance.getFingerprintFromCertificate(certificate, encoding);
    }

}
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-19 15:35:37 +0000