首頁 探索 說明
註冊 登入
root
/
ebpf
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: 0075ad0f6c
分支列表 標籤列表
ebpf
/
pkg
/
go.opentelemetry.io
/
otel
/
exporters
/
otlp
/
otlptrace
/
otlptracehttp
/
certificate_test.go

certificate_test.go 2.4 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. // Copyright The OpenTelemetry Authors
    2. 

  2. //
    3. 

  3. // Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. // you may not use this file except in compliance with the License.
    5. 

  5. // You may obtain a copy of the License at
    6. 

  6. //
    7. 

  7. //     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. //
    9. 

  9. // Unless required by applicable law or agreed to in writing, software
    10. 

  10. // distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. // See the License for the specific language governing permissions and
    13. 

  13. // limitations under the License.
    14. 

  14. 

  15. package otlptracehttp_test
    16. 

  16. 

  17. import (
    18. 

  18. 	"bytes"
    19. 

  19. 	"crypto/ecdsa"
    20. 

  20. 	"crypto/elliptic"
    21. 

  21. 	"crypto/rand"
    22. 

  22. 	"crypto/x509"
    23. 

  23. 	"crypto/x509/pkix"
    24. 

  24. 	"encoding/pem"
    25. 

  25. 	"math/big"
    26. 

  26. 	"net"
    27. 

  27. 	"time"
    28. 

  28. )
    29. 

  29. 

  30. type pemCertificate struct {
    31. 

  31. 	Certificate []byte
    32. 

  32. 	PrivateKey  []byte
    33. 

  33. }
    34. 

  34. 

  35. // Based on https://golang.org/src/crypto/tls/generate_cert.go,
    36. 

  36. // simplified and weakened.
    37. 

  37. func generateWeakCertificate() (*pemCertificate, error) {
    38. 

  38. 	priv, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
    39. 

  39. 	if err != nil {
    40. 

  40. 		return nil, err
    41. 

  41. 	}
    42. 

  42. 	keyUsage := x509.KeyUsageDigitalSignature
    43. 

  43. 	notBefore := time.Now()
    44. 

  44. 	notAfter := notBefore.Add(time.Hour)
    45. 

  45. 	serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
    46. 

  46. 	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
    47. 

  47. 	if err != nil {
    48. 

  48. 		return nil, err
    49. 

  49. 	}
    50. 

  50. 	template := x509.Certificate{
    51. 

  51. 		SerialNumber: serialNumber,
    52. 

  52. 		Subject: pkix.Name{
    53. 

  53. 			Organization: []string{"otel-go"},
    54. 

  54. 		},
    55. 

  55. 		NotBefore:             notBefore,
    56. 

  56. 		NotAfter:              notAfter,
    57. 

  57. 		KeyUsage:              keyUsage,
    58. 

  58. 		ExtKeyUsage:           []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth},
    59. 

  59. 		BasicConstraintsValid: true,
    60. 

  60. 		DNSNames:              []string{"localhost"},
    61. 

  61. 		IPAddresses:           []net.IP{net.IPv6loopback, net.IPv4(127, 0, 0, 1)},
    62. 

  62. 	}
    63. 

  63. 	derBytes, err := x509.CreateCertificate(rand.Reader, &template, &template, &priv.PublicKey, priv)
    64. 

  64. 	if err != nil {
    65. 

  65. 		return nil, err
    66. 

  66. 	}
    67. 

  67. 	certificateBuffer := new(bytes.Buffer)
    68. 

  68. 	if err := pem.Encode(certificateBuffer, &pem.Block{Type: "CERTIFICATE", Bytes: derBytes}); err != nil {
    69. 

  69. 		return nil, err
    70. 

  70. 	}
    71. 

  71. 	privDERBytes, err := x509.MarshalPKCS8PrivateKey(priv)
    72. 

  72. 	if err != nil {
    73. 

  73. 		return nil, err
    74. 

  74. 	}
    75. 

  75. 	privBuffer := new(bytes.Buffer)
    76. 

  76. 	if err := pem.Encode(privBuffer, &pem.Block{Type: "PRIVATE KEY", Bytes: privDERBytes}); err != nil {
    77. 

  77. 		return nil, err
    78. 

  78. 	}
    79. 

  79. 	return &pemCertificate{
    80. 

  80. 		Certificate: certificateBuffer.Bytes(),
    81. 

  81. 		PrivateKey:  privBuffer.Bytes(),
    82. 

  82. 	}, nil
    83. 

  83. }
    84.