Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e7ecab4a3b
Branches Tags
krackattacks
/
tests
/
test-x509v3.c

test-x509v3.c 1.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. /*
    2. 

  2.  * Testing tool for X.509v3 routines
    3. 

  3.  * Copyright (c) 2006-2007, Jouni Malinen <j@w1.fi>
    4. 

  4.  *
    5. 

  5.  * This software may be distributed under the terms of the BSD license.
    6. 

  6.  * See README for more details.
    7. 

  7.  */
    8. 

  8. 

  9. #include "includes.h"
    10. 

  10. 

  11. #include "common.h"
    12. 

  12. #include "tls/asn1.h"
    13. 

  13. #include "tls/x509v3.h"
    14. 

  14. 

  15. extern int wpa_debug_level;
    16. 

  16. 

  17. 

  18. int main(int argc, char *argv[])
    19. 

  19. {
    20. 

  20. 	char *buf;
    21. 

  21. 	size_t len;
    22. 

  22. 	struct x509_certificate *certs = NULL, *last = NULL, *cert;
    23. 

  23. 	int i, reason;
    24. 

  24. 

  25. 	wpa_debug_level = 0;
    26. 

  26. 

  27. 	if (argc < 3 || strcmp(argv[1], "-v") != 0) {
    28. 

  28. 		printf("usage: test_x509v3 -v <cert1.der> <cert2.der> ..\n");
    29. 

  29. 		return -1;
    30. 

  30. 	}
    31. 

  31. 

  32. 	for (i = 2; i < argc; i++) {
    33. 

  33. 		printf("Reading: %s\n", argv[i]);
    34. 

  34. 		buf = os_readfile(argv[i], &len);
    35. 

  35. 		if (buf == NULL) {
    36. 

  36. 			printf("Failed to read '%s'\n", argv[i]);
    37. 

  37. 			return -1;
    38. 

  38. 		}
    39. 

  39. 

  40. 		cert = x509_certificate_parse((u8 *) buf, len);
    41. 

  41. 		if (cert == NULL) {
    42. 

  42. 			printf("Failed to parse X.509 certificate\n");
    43. 

  43. 			return -1;
    44. 

  44. 		}
    45. 

  45. 

  46. 		free(buf);
    47. 

  47. 

  48. 		if (certs == NULL)
    49. 

  49. 			certs = cert;
    50. 

  50. 		else
    51. 

  51. 			last->next = cert;
    52. 

  52. 		last = cert;
    53. 

  53. 	}
    54. 

  54. 

  55. 	printf("\n\nValidating certificate chain\n");
    56. 

  56. 	if (x509_certificate_chain_validate(last, certs, &reason, 0) < 0) {
    57. 

  57. 		printf("\nCertificate chain validation failed: %d\n", reason);
    58. 

  58. 		return -1;
    59. 

  59. 	}
    60. 

  60. 	printf("\nCertificate chain is valid\n");
    61. 

  61. 

  62. 	return 0;
    63. 

  63. }
    64.