On Mon, Jan 07, 2008, Bobby Krupczak wrote: > Hi! > > I am writing a distributed application that will use SSL for privacy > and authentication. The app will use its own CA to generate and sign > certs. > > On initial startup, I'd like the application to generate its own cert > and sign it using C-functions rather than invoking the openssl > command. Doing so make the install and initial setup more robust. > > I saw a message from 1/11/2006 in the mailing list archive. I've been > tracing through apps/req.c for a while but the code is a tad bit > difficult to trace through. > > Are there any sample programs, documents, psuedo-code, etc. that would > outline the necessary c-functions and args to generate a cert request > and then sign it using an accompanying CA using the C-functions in the > ssl lib? >
There are some examples which do part of what you want in demos/x509. Those create a certificate request and a self signed certificate. There isn't a signing example but it isn't that much harder than the self signed case. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
