Accueil Explorer Aide
S'inscrire Connexion
wareck
/
krackattacks
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 4b78669686
Branches Tags
krackattacks
/
tests
/
test-x509v3.c

test-x509v3.c 1.2 KB
Historique Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. /*
    2. 

  2.  * Testing tool for X.509v3 routines
    3. 

  3.  * Copyright (c) 2006-2007, Jouni Malinen <j@w1.fi>
    4. 

  4.  *
    5. 

  5.  * This software may be distributed under the terms of the BSD license.
    6. 

  6.  * See README for more details.
    7. 

  7.  */
    8. 

  8. 

  9. #include "includes.h"
    10. 

  10. 

  11. #include "common.h"
    12. 

  12. #include "tls/asn1.h"
    13. 

  13. #include "tls/x509v3.h"
    14. 

  14. 

  15. 

  16. int main(int argc, char *argv[])
    17. 

  17. {
    18. 

  18. 	char *buf;
    19. 

  19. 	size_t len;
    20. 

  20. 	struct x509_certificate *certs = NULL, *last = NULL, *cert;
    21. 

  21. 	int i, reason;
    22. 

  22. 

  23. 	wpa_debug_level = 0;
    24. 

  24. 

  25. 	if (argc < 3 || strcmp(argv[1], "-v") != 0) {
    26. 

  26. 		printf("usage: test_x509v3 -v <cert1.der> <cert2.der> ..\n");
    27. 

  27. 		return -1;
    28. 

  28. 	}
    29. 

  29. 

  30. 	for (i = 2; i < argc; i++) {
    31. 

  31. 		printf("Reading: %s\n", argv[i]);
    32. 

  32. 		buf = os_readfile(argv[i], &len);
    33. 

  33. 		if (buf == NULL) {
    34. 

  34. 			printf("Failed to read '%s'\n", argv[i]);
    35. 

  35. 			return -1;
    36. 

  36. 		}
    37. 

  37. 

  38. 		cert = x509_certificate_parse((u8 *) buf, len);
    39. 

  39. 		if (cert == NULL) {
    40. 

  40. 			printf("Failed to parse X.509 certificate\n");
    41. 

  41. 			return -1;
    42. 

  42. 		}
    43. 

  43. 

  44. 		free(buf);
    45. 

  45. 

  46. 		if (certs == NULL)
    47. 

  47. 			certs = cert;
    48. 

  48. 		else
    49. 

  49. 			last->next = cert;
    50. 

  50. 		last = cert;
    51. 

  51. 	}
    52. 

  52. 

  53. 	printf("\n\nValidating certificate chain\n");
    54. 

  54. 	if (x509_certificate_chain_validate(last, certs, &reason, 0) < 0) {
    55. 

  55. 		printf("\nCertificate chain validation failed: %d\n", reason);
    56. 

  56. 		return -1;
    57. 

  57. 	}
    58. 

  58. 	printf("\nCertificate chain is valid\n");
    59. 

  59. 

  60. 	return 0;
    61. 

  61. }
    62.