pem-diff: Learn about precertificates

2 files changed, 26 insertions, 10 deletions

diff --git a/bin-src/util/oid.go b/bin-src/util/oid.go
deleted file mode 100644
index b9fee4c..0000000
--- a/bin-src/util/oid.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package util
-
-import (
-	"encoding/asn1"
-)
-
-var (
-	OID_RFC6962_SCTs   = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 2}
-	OID_RFC6962_Poison = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 3}
-)
diff --git a/bin-src/util/rfc6962.go b/bin-src/util/rfc6962.go
new file mode 100644
index 0000000..46a531b
--- /dev/null
+++ b/bin-src/util/rfc6962.go
@@ -0,0 +1,26 @@
+package util
+
+import (
+	"crypto/x509"
+	"encoding/asn1"
+
+	//"fmt"
+	//"os"
+)
+
+var (
+	oidSCTs                 = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 2}
+	oidPrecertificatePoison = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 3}
+)
+
+func IsPrecertificate(certX509 *x509.Certificate) bool {
+	for _, ext := range certX509.Extensions {
+		//fmt.Fprintln(os.Stderr, "ext", ext)	
+		if ext.Id.Equal(oidPrecertificatePoison) {
+			//fmt.Fprintln(os.Stderr, "t")
+			return true
+		}
+	}
+	//fmt.Fprintln(os.Stderr, "f")
+	return false
+}