izzy/UnrealEngineUWP
0
0
Fork 0
mirror of https://github.com/izzy2lost/UnrealEngineUWP.git synced 2026-03-26 18:15:20 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c2010d281269994deefcc86297a79247a9aeb34
UnrealEngineUWP/Engine/Source/Programs/Shared/EpicGames.Core/CertificateUtils.cs
Ben Marsh cda1b66bba Reformat EpicGames.Core according to standard coding conventions. 
#preflight 623cd2e84368f558e30b4a9e

[CL 19502309 by Ben Marsh in ue5-main branch]
2022-03-24 16:35:00 -04:00

50 lines
2.1 KiB
C#
Raw Blame History

// Copyright Epic Games, Inc. All Rights Reserved.
using System;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Text.RegularExpressions;
namespace EpicGames.Core
{
/// <summary>
/// Utility methods for certificates
/// </summary>
public static class CertificateUtils
{
/// <summary>
/// Create a self signed cert for the agent
/// </summary>
/// <param name="dnsName"></param>
/// <param name="friendlyName">Friendly name for the certificate</param>
/// <returns></returns>
public static byte[] CreateSelfSignedCert(string dnsName, string friendlyName)
{
dnsName = Regex.Replace(dnsName, @"^[a-zA-Z]+://", "");
dnsName = Regex.Replace(dnsName, "/.*$", "");
using (RSA algorithm = RSA.Create(2048))
{
X500DistinguishedName distinguishedName = new X500DistinguishedName($"CN={dnsName}");
CertificateRequest request = new CertificateRequest(distinguishedName, algorithm, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
request.CertificateExtensions.Add(new X509BasicConstraintsExtension(false, false, 0, true));
request.CertificateExtensions.Add(new X509KeyUsageExtension(X509KeyUsageFlags.KeyEncipherment | X509KeyUsageFlags.DigitalSignature, true));
request.CertificateExtensions.Add(new X509EnhancedKeyUsageExtension(new OidCollection { new Oid("1.3.6.1.5.5.7.3.1") }, true));
SubjectAlternativeNameBuilder alternativeNameBuilder = new SubjectAlternativeNameBuilder();
alternativeNameBuilder.AddDnsName(dnsName);
request.CertificateExtensions.Add(alternativeNameBuilder.Build(true));
// NB: MacOS requires 825 days or fewer (https://support.apple.com/en-us/HT210176)
using (X509Certificate2 certificate = request.CreateSelfSigned(new DateTimeOffset(DateTime.UtcNow.AddDays(-1)), new DateTimeOffset(DateTime.UtcNow.AddDays(800))))
{
certificate.FriendlyName = friendlyName;
byte[] privateCertData = certificate.Export(X509ContentType.Pkcs12); // Note: Need to reimport this to use immediately, otherwise key is ephemeral
return privateCertData;
}
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink