projects / thirdparty / hostap.git / blame
| Commit | Line | Data |
|---|---|---|
| 6fc6879b JM |
1 | /* |
| 2 | * Testing tool for X.509v3 routines | |
| 3 | * Copyright (c) 2006-2007, Jouni Malinen <j@w1.fi> | |
| 4 | * | |
| 0f3d578e JM |
5 | * This software may be distributed under the terms of the BSD license. |
| 6 | * See README for more details. | |
| 6fc6879b JM |
7 | */ |
| 8 | ||
| 9 | #include "includes.h" | |
| 10 | ||
| 11 | #include "common.h" | |
| 12 | #include "tls/asn1.h" | |
| 13 | #include "tls/x509v3.h" | |
| 14 | ||
| 6fc6879b JM |
15 | |
| 16 | int main(int argc, char *argv[]) | |
| 17 | { | |
| 18 | char *buf; | |
| 19 | size_t len; | |
| 20 | struct x509_certificate *certs = NULL, *last = NULL, *cert; | |
| 21 | int i, reason; | |
| 22 | ||
| 23 | wpa_debug_level = 0; | |
| 24 | ||
| 25 | if (argc < 3 || strcmp(argv[1], "-v") != 0) { | |
| 26 | printf("usage: test_x509v3 -v <cert1.der> <cert2.der> ..\n"); | |
| 27 | return -1; | |
| 28 | } | |
| 29 | ||
| 30 | for (i = 2; i < argc; i++) { | |
| 31 | printf("Reading: %s\n", argv[i]); | |
| 32 | buf = os_readfile(argv[i], &len); | |
| 33 | if (buf == NULL) { | |
| 34 | printf("Failed to read '%s'\n", argv[i]); | |
| 35 | return -1; | |
| 36 | } | |
| 37 | ||
| 38 | cert = x509_certificate_parse((u8 *) buf, len); | |
| 39 | if (cert == NULL) { | |
| 40 | printf("Failed to parse X.509 certificate\n"); | |
| 41 | return -1; | |
| 42 | } | |
| 43 | ||
| 44 | free(buf); | |
| 45 | ||
| 46 | if (certs == NULL) | |
| 47 | certs = cert; | |
| 48 | else | |
| 49 | last->next = cert; | |
| 50 | last = cert; | |
| 51 | } | |
| 52 | ||
| 53 | printf("\n\nValidating certificate chain\n"); | |
| 717cc12f | 54 | if (x509_certificate_chain_validate(last, certs, &reason, 0) < 0) { |
| 6fc6879b JM |
55 | printf("\nCertificate chain validation failed: %d\n", reason); |
| 56 | return -1; | |
| 57 | } | |
| 58 | printf("\nCertificate chain is valid\n"); | |
| 59 | ||
| 60 | return 0; | |
| 61 | } |