CGNICO/UnrealEngine
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c11d382a6f0acddb0bc1e95ab9bc5f8fc3570b55
UnrealEngine/Engine/Source/Programs/Shared/EpicGames.Core/CertificateUtils.cs
Jeffreytsai1004 c11d382a6f ue5-main
2025-05-18 13:04:45 +08:00

54 lines
2.2 KiB
C#
Raw Blame History

// Copyright Epic Games, Inc. All Rights Reserved.
using System;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Text.RegularExpressions;
namespace EpicGames.Core
{
/// <summary>
/// Utility methods for certificates
/// </summary>
public static class CertificateUtils
{
/// <summary>
/// Create a self signed cert for the agent
/// </summary>
/// <param name="dnsName"></param>
/// <param name="friendlyName">Friendly name for the certificate</param>
/// <returns></returns>
public static byte[] CreateSelfSignedCert(string dnsName, string friendlyName)
{
dnsName = Regex.Replace(dnsName, @"^[a-zA-Z]+://", "");
dnsName = Regex.Replace(dnsName, "/.*$", "");
using (RSA algorithm = RSA.Create(2048))
{
X500DistinguishedName distinguishedName = new X500DistinguishedName($"CN={dnsName}");
CertificateRequest request = new CertificateRequest(distinguishedName, algorithm, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
request.CertificateExtensions.Add(new X509BasicConstraintsExtension(false, false, 0, true));
request.CertificateExtensions.Add(new X509KeyUsageExtension(X509KeyUsageFlags.KeyEncipherment | X509KeyUsageFlags.DigitalSignature, true));
request.CertificateExtensions.Add(new X509EnhancedKeyUsageExtension([new Oid("1.3.6.1.5.5.7.3.1")], true));
SubjectAlternativeNameBuilder alternativeNameBuilder = new SubjectAlternativeNameBuilder();
alternativeNameBuilder.AddDnsName(dnsName);
request.CertificateExtensions.Add(alternativeNameBuilder.Build(true));
// NB: MacOS requires 825 days or fewer (https://support.apple.com/en-us/HT210176)
using (X509Certificate2 certificate = request.CreateSelfSigned(new DateTimeOffset(DateTime.UtcNow.AddDays(-1)), new DateTimeOffset(DateTime.UtcNow.AddDays(800))))
{
if (RuntimeInformation.IsOSPlatform(OSPlatform.Windows))
{
certificate.FriendlyName = friendlyName;
}
byte[] privateCertData = certificate.Export(X509ContentType.Pkcs12); // Note: Need to reimport this to use immediately, otherwise key is ephemeral
return privateCertData;
}
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink