pax
/
cloudservices
forked from engineering/cloudservices
1
0
Fork 0
Code Pull Requests Activity

add checkCertificate go

refactor/models
Matthew 2019-12-22 16:49:21 -05:00
parent 1452ae0c9e
commit b964d4f8d8
No known key found for this signature in database
GPG Key ID: 766BE43AE75F7559
1 changed files with 96 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

96
src/go/checkCertificate.go Normal file
View File

@ -0,0 +1,96 @@
// ignore this error
package main
import (
"crypto/sha1"
"crypto/x509"
"encoding/hex"
"encoding/json"
"encoding/pem"
"encoding/xml"
"fmt"
"io/ioutil"
"os"
)
// HandleError handles an error by panicing.
func HandleError(e error) {
if e != nil {
panic(e)
}
}
func main() {
type CertificateAbstract struct {
SignatureAlgorithm string
PublicKeyAlgorithm string
ExtendedKeyUsage []string
PolicyIdentifiers []string
FingerPrint string
}
type CompleteCertificate struct {
XMLName xml.Name `xml:"CertificateParse"`
RawParse *x509.Certificate
AbstractParse CertificateAbstract
}
certificateFile, err := ioutil.ReadFile(os.Args[1])
HandleError(err)
certificatePemDecode, _ := pem.Decode(certificateFile)
if certificatePemDecode == nil {
fmt.Println("Can't do that.")
os.Exit(1)
}
certificateParse, err := x509.ParseCertificate(certificatePemDecode.Bytes)
HandleError(err)
policyIdentifiers := []string{}
extendedKeyUsages := []string{}
for _, value := range certificateParse.PolicyIdentifiers {
policyIdentifiers = append(policyIdentifiers, value.String())
}
for _, value := range certificateParse.ExtKeyUsage {
switch value {
case 0:
extendedKeyUsages = append(extendedKeyUsages, "All/Any Usages")
break
case 1:
extendedKeyUsages = append(extendedKeyUsages, "TLS Web Server Authentication")
break
case 2:
extendedKeyUsages = append(extendedKeyUsages, "TLS Web Client Authentication")
break
case 3:
extendedKeyUsages = append(extendedKeyUsages, "Code Signing")
break
case 4:
extendedKeyUsages = append(extendedKeyUsages, "E-mail Protection (S/MIME)")
default:
break
}
}
sum := sha1.Sum(certificateParse.Raw)
certificateStruct := CompleteCertificate{
RawParse: certificateParse,
AbstractParse: CertificateAbstract{
SignatureAlgorithm: certificateParse.SignatureAlgorithm.String(),
PublicKeyAlgorithm: certificateParse.PublicKeyAlgorithm.String(),
PolicyIdentifiers: policyIdentifiers,
ExtendedKeyUsage: extendedKeyUsages,
FingerPrint: hex.EncodeToString(sum[:]),
},
}
if len(os.Args) >= 3 {
if os.Args[2] == "json" {
data, err := json.MarshalIndent(certificateStruct, "", " ")
HandleError(err)
fmt.Printf("%v\n", string(data))
} else if os.Args[2] == "xml" {
data, err := xml.MarshalIndent(certificateStruct, "", " ")
HandleError(err)
fmt.Printf("%v\n", string(data))
}
} else {
data, err := json.MarshalIndent(certificateStruct, "", " ")
HandleError(err)
fmt.Printf("%v\n", string(data))
}
}