main.go

package main

import (
	"crypto/x509"
	"encoding/pem"
	"fmt"
	"log"
	"os"
	certpair "pkcs-generator/modules/cert-pairs"
	"slices"

	"fyne.io/fyne/v2"
	"fyne.io/fyne/v2/app"
	"fyne.io/fyne/v2/container"
	"fyne.io/fyne/v2/dialog"
	"fyne.io/fyne/v2/layout"
	"fyne.io/fyne/v2/storage"
	"fyne.io/fyne/v2/widget"
)

var (
	windowSize fyne.Size = fyne.NewSize(700, 500)

	keyTextFilter []string = []string{".key", ".txt", ".pem"}
	crtTextFilter []string = []string{".crt", ".cer", ".txt", ".pem"}
)

func main() {
	a := app.NewWithID("nl.systemec.pkcs12-generator")
	w := a.NewWindow("Systemec PKCS12-Generator")
	w.Resize(windowSize)

	var keyPath, certPath string

	// Labels to show selected filenames
	fileLabel1 := widget.NewLabel("No file selected")
	fileLabel2 := widget.NewLabel("No file selected")

	radioLabel1 := widget.NewLabel("Select which Sectigo Intermediate")

	// Certificate Keyfile
	keyBtn := widget.NewButton("Upload Private Key File", func() {
		keyDiag := dialog.NewFileOpen(func(r fyne.URIReadCloser, err error) {
			if r != nil {
				fileLabel1.SetText(r.URI().Name())
				keyPath = r.URI().Path()
				r.Close()
			}
		}, w)
		keyFilter := storage.NewExtensionFileFilter(keyTextFilter)
		keyDiag.SetFilter(keyFilter)

		keyDiag.Resize(windowSize)
		keyDiag.Show()
	})

	// Certificate file
	certBtn := widget.NewButton("Upload Certificate File", func() {
		// Use NewFileOpen to get the dialog object
		certDiag := dialog.NewFileOpen(func(r fyne.URIReadCloser, err error) {
			if r != nil {
				fileLabel2.SetText(r.URI().Name())
				certPath = r.URI().Path()
				r.Close()
			}
		}, w)
		certFilter := storage.NewExtensionFileFilter(crtTextFilter)
		certDiag.SetFilter(certFilter)

		// Resize the dialog
		certDiag.Resize(windowSize)
		certDiag.Show()
	})

	// Certificate Intermediate selector
	// Basic in form but can easily be expanded.
	var sectigo2025 bool
	caRadio := widget.NewRadioGroup([]string{"New Sectigo (2025-03-22+)", "Old Sectigo (2025-03-22-)"}, func(selected string) {
		switch selected {
		case "New Sectigo (2025+)":
			sectigo2025 = true
		case "Old Sectigo (2025-)":
			sectigo2025 = false
		default: //Fallback
			sectigo2025 = true
		}
	})
	caRadio.SetSelected("New Sectigo (2025+)") // default

	// Make a text grid to display text.
	grid := widget.NewTextGrid()
	grid.SetText("Status will appear here.")

	actionBtn := widget.NewButton("Generate", func() {
		files := []string{keyPath, certPath}

		// The following structure is basic but can easily be expanded to fit more pairs
		// 0 = ROOT
		// 1 = CA
		// As per spec in the certpair module.
		var certPair []string
		if sectigo2025 {
			certPair = certpair.SectigoNewChain
		} else {
			certPair = certpair.SectigoOldChain
		}

		allPresent := true
		if slices.Contains(files, "") {
			allPresent = false
		}

		if !allPresent {
			fmt.Println("One or more files missing!")
			return
		}

		respText, pfxData := integrityCheckAndGo(keyPath, certPath, certPair[1], certPair[0])

		if pfxData == nil {
			log.Println(respText)
			grid.SetText(respText)
			return
		}

		// Show Save File dialog immediately
		svDialog := dialog.NewFileSave(
			func(writer fyne.URIWriteCloser, err error) {
				if err != nil {
					dialog.ShowError(err, w)
					return
				}
				if writer == nil {
					// User cancelled
					return
				}

				_, writeErr := writer.Write(pfxData)
				if writeErr != nil {
					dialog.ShowError(writeErr, w)
					return
				}

				writer.Close()

				var dnText string = "PKCS file saved to: " + writer.URI().Path()

				log.Println(dnText)
				grid.SetText(dnText)
			}, w)
		svDialog.Resize(windowSize)

		svDialog.SetFileName("certificate_store.pfx")
		svDialog.SetFilter(storage.NewExtensionFileFilter([]string{".pfx"}))

		svDialog.Show()
	})

	cancelBtn := widget.NewButton("Exit", func() {
		fmt.Println("Quitting...")
		os.Exit(0)
	})

	// CREATE LAYOUTS

	bottom := container.NewHBox(
		actionBtn,          // left
		layout.NewSpacer(), // flexible space
		cancelBtn,          // right
	)

	centerContent := container.NewVBox(
		widget.NewLabel("Select relevant files."),
		container.New(layout.NewGridLayout(2), keyBtn, fileLabel1),
		container.New(layout.NewGridLayout(2), certBtn, fileLabel2),
		widget.NewLabel("\n"),
		container.New(layout.NewGridLayout(2), radioLabel1, caRadio),
		layout.NewSpacer(),  // optional flexible space
		grid,                // Add the referenced text grid container
		widget.NewLabel(""), // Add empty line for space
	)

	content := container.NewBorder(
		nil,      // top
		bottom,   // bottom
		nil, nil, // left, right
		centerContent,
	)

	w.SetContent(content)
	w.ShowAndRun()
}

func readFile(path string) []byte {
	rawData, err := os.ReadFile(path)
	if err != nil {
		fmt.Printf("Error reading contents of %s, %e", path, err)
		return nil
	} else {
		return rawData
	}
}

func parsePrivateKey(keyData []byte) any {
	block, _ := pem.Decode(keyData)
	if block == nil {
		log.Fatal("failed to decode key PEM")
	}

	privateKey, err := x509.ParsePKCS8PrivateKey(block.Bytes)
	if err != nil {
		log.Fatal(err)
	}

	return privateKey
}

func parseX509(certData []byte) *x509.Certificate {
	block, _ := pem.Decode(certData)
	if block == nil {
		log.Fatal("failed to parse PEM block")
	}

	cert, err := x509.ParseCertificate(block.Bytes)
	if err != nil {
		log.Fatal(err)
	}
	return cert
}

func integrityCheckAndGo(keyPath, certPath, caCertString, caRootString string) (string, []byte) {
	if _, err := os.Stat(keyPath); err != nil {
		fmt.Printf("Error checking Private Keyfile, %e", err)
		return "Error...", nil
	}

	if _, err := os.Stat(certPath); err != nil {
		fmt.Printf("Error checking Certificate file, %e", err)
		return "Error...", nil
	}

	keyData := readFile(keyPath)   // Read the private key file (PEM/DER)
	certData := readFile(certPath) // Read the certificate file (PEM/DER)

	key := parsePrivateKey(keyData) // Convert bytes to Go private key object
	cert := parseX509(certData)     // Convert bytes to Go x509.Certificate
	caCert := parseX509([]byte(caCertString))
	rootCert := parseX509([]byte(caRootString))

	checkPublicKey(cert) // Print the information about the key

	if checkCertKeyPair(cert.PublicKey, key) {
		log.Println("Private key matches certificate")
	} else {
		return "Private key does NOT match certificate", nil
	}

	caCertList := []*x509.Certificate{caCert, rootCert}

	return generatePKCS12(key, cert, caCertList)
}
feat; init commit 2025-11-20 16:57:34 +01:00			`package main`

			`import (`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`"crypto/x509"`
			`"encoding/pem"`
			`"fmt"`
			`"log"`
			`"os"`
feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`certpair "pkcs-generator/modules/cert-pairs"`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`"slices"`

			`"fyne.io/fyne/v2"`
			`"fyne.io/fyne/v2/app"`
			`"fyne.io/fyne/v2/container"`
			`"fyne.io/fyne/v2/dialog"`
			`"fyne.io/fyne/v2/layout"`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`"fyne.io/fyne/v2/storage"`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`"fyne.io/fyne/v2/widget"`
feat; init commit 2025-11-20 16:57:34 +01:00			`)`

chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`var (`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`windowSize fyne.Size = fyne.NewSize(700, 500)`

			`keyTextFilter []string = []string{".key", ".txt", ".pem"}`
			`crtTextFilter []string = []string{".crt", ".cer", ".txt", ".pem"}`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`)`

feat; init commit 2025-11-20 16:57:34 +01:00			`func main() {`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`a := app.NewWithID("nl.systemec.pkcs12-generator")`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`w := a.NewWindow("Systemec PKCS12-Generator")`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`w.Resize(windowSize)`
feat: add more code and features 2025-11-21 16:55:38 +01:00
			`var keyPath, certPath string`

			`// Labels to show selected filenames`
			`fileLabel1 := widget.NewLabel("No file selected")`
			`fileLabel2 := widget.NewLabel("No file selected")`

			`radioLabel1 := widget.NewLabel("Select which Sectigo Intermediate")`

			`// Certificate Keyfile`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`keyBtn := widget.NewButton("Upload Private Key File", func() {`
			`keyDiag := dialog.NewFileOpen(func(r fyne.URIReadCloser, err error) {`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`if r != nil {`
			`fileLabel1.SetText(r.URI().Name())`
			`keyPath = r.URI().Path()`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`r.Close()`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`
			`}, w)`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`keyFilter := storage.NewExtensionFileFilter(keyTextFilter)`
			`keyDiag.SetFilter(keyFilter)`

chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`keyDiag.Resize(windowSize)`
			`keyDiag.Show()`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`})`

			`// Certificate file`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`certBtn := widget.NewButton("Upload Certificate File", func() {`
			`// Use NewFileOpen to get the dialog object`
			`certDiag := dialog.NewFileOpen(func(r fyne.URIReadCloser, err error) {`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`if r != nil {`
			`fileLabel2.SetText(r.URI().Name())`
			`certPath = r.URI().Path()`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`r.Close()`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`
			`}, w)`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`certFilter := storage.NewExtensionFileFilter(crtTextFilter)`
			`certDiag.SetFilter(certFilter)`

chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`// Resize the dialog`
			`certDiag.Resize(windowSize)`
			`certDiag.Show()`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`})`

feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`// Certificate Intermediate selector`
			`// Basic in form but can easily be expanded.`
			`var sectigo2025 bool`
chore: update labels 2025-11-24 16:55:16 +01:00			`caRadio := widget.NewRadioGroup([]string{"New Sectigo (2025-03-22+)", "Old Sectigo (2025-03-22-)"}, func(selected string) {`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`switch selected {`
			`case "New Sectigo (2025+)":`
feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`sectigo2025 = true`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`case "Old Sectigo (2025-)":`
feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`sectigo2025 = false`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`default: //Fallback`
feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`sectigo2025 = true`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`
			`})`
			`caRadio.SetSelected("New Sectigo (2025+)") // default`

feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`// Make a text grid to display text.`
			`grid := widget.NewTextGrid()`
			`grid.SetText("Status will appear here.")`
feat: add more code and features 2025-11-21 16:55:38 +01:00
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`actionBtn := widget.NewButton("Generate", func() {`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`files := []string{keyPath, certPath}`

feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`// The following structure is basic but can easily be expanded to fit more pairs`
			`// 0 = ROOT`
			`// 1 = CA`
			`// As per spec in the certpair module.`
			`var certPair []string`
			`if sectigo2025 {`
			`certPair = certpair.SectigoNewChain`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`} else {`
feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`certPair = certpair.SectigoOldChain`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`

			`allPresent := true`
			`if slices.Contains(files, "") {`
			`allPresent = false`
			`}`

			`if !allPresent {`
			`fmt.Println("One or more files missing!")`
			`return`
			`}`

feat: add dedicated modules 2025-11-24 19:51:04 +01:00			`respText, pfxData := integrityCheckAndGo(keyPath, certPath, certPair[1], certPair[0])`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00
chore: update labels 2025-11-24 16:55:16 +01:00			`if pfxData == nil {`
			`log.Println(respText)`
			`grid.SetText(respText)`
			`return`
			`}`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00
			`// Show Save File dialog immediately`
			`svDialog := dialog.NewFileSave(`
			`func(writer fyne.URIWriteCloser, err error) {`
			`if err != nil {`
			`dialog.ShowError(err, w)`
			`return`
			`}`
			`if writer == nil {`
			`// User cancelled`
			`return`
			`}`

			`_, writeErr := writer.Write(pfxData)`
			`if writeErr != nil {`
			`dialog.ShowError(writeErr, w)`
			`return`
			`}`

			`writer.Close()`

			`var dnText string = "PKCS file saved to: " + writer.URI().Path()`

			`log.Println(dnText)`
			`grid.SetText(dnText)`
			`}, w)`
			`svDialog.Resize(windowSize)`

			`svDialog.SetFileName("certificate_store.pfx")`
			`svDialog.SetFilter(storage.NewExtensionFileFilter([]string{".pfx"}))`

			`svDialog.Show()`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`})`

			`cancelBtn := widget.NewButton("Exit", func() {`
			`fmt.Println("Quitting...")`
			`os.Exit(0)`
			`})`

			`// CREATE LAYOUTS`

			`bottom := container.NewHBox(`
			`actionBtn, // left`
			`layout.NewSpacer(), // flexible space`
			`cancelBtn, // right`
			`)`

			`centerContent := container.NewVBox(`
			`widget.NewLabel("Select relevant files."),`
chore: code cleanup and changes 2025-11-21 22:04:52 +01:00			`container.New(layout.NewGridLayout(2), keyBtn, fileLabel1),`
			`container.New(layout.NewGridLayout(2), certBtn, fileLabel2),`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`widget.NewLabel("\n"),`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`container.New(layout.NewGridLayout(2), radioLabel1, caRadio),`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`layout.NewSpacer(), // optional flexible space`
			`grid, // Add the referenced text grid container`
			`widget.NewLabel(""), // Add empty line for space`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`)`

			`content := container.NewBorder(`
			`nil, // top`
			`bottom, // bottom`
			`nil, nil, // left, right`
			`centerContent,`
			`)`

			`w.SetContent(content)`
			`w.ShowAndRun()`
			`}`

			`func readFile(path string) []byte {`
			`rawData, err := os.ReadFile(path)`
			`if err != nil {`
			`fmt.Printf("Error reading contents of %s, %e", path, err)`
			`return nil`
			`} else {`
			`return rawData`
			`}`
			`}`

			`func parsePrivateKey(keyData []byte) any {`
			`block, _ := pem.Decode(keyData)`
			`if block == nil {`
			`log.Fatal("failed to decode key PEM")`
			`}`

			`privateKey, err := x509.ParsePKCS8PrivateKey(block.Bytes)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`

			`return privateKey`
			`}`

			`func parseX509(certData []byte) *x509.Certificate {`
			`block, _ := pem.Decode(certData)`
			`if block == nil {`
			`log.Fatal("failed to parse PEM block")`
			`}`

			`cert, err := x509.ParseCertificate(block.Bytes)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
			`return cert`
			`}`

feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`func integrityCheckAndGo(keyPath, certPath, caCertString, caRootString string) (string, []byte) {`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`if _, err := os.Stat(keyPath); err != nil {`
			`fmt.Printf("Error checking Private Keyfile, %e", err)`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`return "Error...", nil`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`

			`if _, err := os.Stat(certPath); err != nil {`
			`fmt.Printf("Error checking Certificate file, %e", err)`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`return "Error...", nil`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`

			`keyData := readFile(keyPath) // Read the private key file (PEM/DER)`
			`certData := readFile(certPath) // Read the certificate file (PEM/DER)`

			`key := parsePrivateKey(keyData) // Convert bytes to Go private key object`
			`cert := parseX509(certData) // Convert bytes to Go x509.Certificate`
			`caCert := parseX509([]byte(caCertString))`
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`rootCert := parseX509([]byte(caRootString))`
feat: add more code and features 2025-11-21 16:55:38 +01:00
			`checkPublicKey(cert) // Print the information about the key`

			`if checkCertKeyPair(cert.PublicKey, key) {`
chore: update labels 2025-11-24 16:55:16 +01:00			`log.Println("Private key matches certificate")`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`} else {`
chore: update labels 2025-11-24 16:55:16 +01:00			`return "Private key does NOT match certificate", nil`
feat: add more code and features 2025-11-21 16:55:38 +01:00			`}`

feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`caCertList := []*x509.Certificate{caCert, rootCert}`
feat: add more code and features 2025-11-21 16:55:38 +01:00
feat: make working certificate parser and pfx writer 2025-11-24 10:32:56 +01:00			`return generatePKCS12(key, cert, caCertList)`
feat; init commit 2025-11-20 16:57:34 +01:00			`}`