Darryl Wagoner wrote: > > Greetings, > > I am heading the open source TrustedQSL project for Amateur Radio which > is a subproject of the ARRL Logbook of The World project. I would like > to use OpenSSL as the base for TrustedQSL and have done so with my > prototype. The problem is that none of the docs cover the X.509 > routines. All of my PKI experience has been with non-standard certs > so I am kind of lost getting started with X.509 and some of the other > PKCS. > > Because of legal reason ie: import and usage of encryption softare > by some governments we really want a DSA solution, so we can claim > that it isn't crypto. >
The X509 routines, as you say aren't documented. It all depends on exactly what you want to do. One crude solution is to call the 'openssl' application and have it do the work. Alternatively a starting point would the the demos 'selfsign.c' which shows how to make a self signed certificate. The example is RSA but changing that to DSA isn't hard. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
