diff options
Diffstat (limited to 'src/cli/ocsp.cpp')
| -rw-r--r-- | src/cli/ocsp.cpp | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/src/cli/ocsp.cpp b/src/cli/ocsp.cpp new file mode 100644 index 000000000..e5b42b076 --- /dev/null +++ b/src/cli/ocsp.cpp @@ -0,0 +1,53 @@ +/* +* (C) 2014,2015 Jack Lloyd +* +* Botan is released under the Simplified BSD License (see license.txt) +*/ + +#include "apps.h" + +#if defined(BOTAN_HAS_OCSP) + +#include <botan/x509cert.h> +#include <botan/certstor.h> +#include <botan/x509path.h> +#include <botan/ocsp.h> + +using namespace Botan; + +namespace { + +int ocsp_check(const std::vector<std::string> &args) + { + if(args.size() != 2) + { + std::cout << "Usage: " << args[0] << " subject.pem issuer.pem" << std::endl; + return 2; + } + + X509_Certificate subject(args[1]); + X509_Certificate issuer(args[2]); + + Certificate_Store_In_Memory cas; + cas.add_certificate(issuer); + OCSP::Response resp = OCSP::online_check(issuer, subject, &cas); + + auto status = resp.status_for(issuer, subject); + + if(status == Certificate_Status_Code::VERIFIED) + { + std::cout << "OCSP check OK" << std::endl; + return 0; + } + else + { + std::cout << "OCSP check failed " << Path_Validation_Result::status_string(status) << std::endl; + return 1; + } + } + +REGISTER_APP(ocsp_check); + +} + +#endif |