1 #include "simpleOpensslSigner.h"
5 #include <openssl/ssl.h>
6 #include <openssl/err.h>
7 #include <openssl/bio.h>
8 #include <openssl/bn.h>
9 #include <openssl/engine.h>
10 #include <openssl/x509v3.h>
14 std::shared_ptr<int> SimpleOpensslSigner::lib_ref(
15 new int( SSL_library_init() ),
20 std::shared_ptr<X509> loadX509FromFile( std::string filename ) {
21 FILE* f = fopen( filename.c_str(), "r" );
24 return std::shared_ptr<X509>();
27 X509* key = PEM_read_X509( f, NULL, NULL, 0 );
31 return std::shared_ptr<X509>();
34 return std::shared_ptr<X509>(
41 std::shared_ptr<EVP_PKEY> loadPkeyFromFile( std::string filename ) {
42 FILE* f = fopen( filename.c_str(), "r" );
45 return std::shared_ptr<EVP_PKEY>();
48 EVP_PKEY* key = PEM_read_PrivateKey( f, NULL, NULL, 0 );
52 return std::shared_ptr<EVP_PKEY>();
55 return std::shared_ptr<EVP_PKEY>(
57 []( EVP_PKEY * ref ) {
62 std::shared_ptr<X509> SimpleOpensslSigner::caCert = loadX509FromFile( "assured.crt" );
64 std::shared_ptr<EVP_PKEY> SimpleOpensslSigner::caKey = loadPkeyFromFile( "assured.key" );
66 void SimpleOpensslSigner::sign( std::shared_ptr<TBSCertificate> cert ) {
68 throw "CA-key not found";
71 std::shared_ptr<X509Req> req = X509Req::parse( cert->csr_content );
73 int i = req->verify();
76 throw "Signature problems ... ";
78 throw "Signature did not match";
80 std::cerr << "Signature ok" << std::endl;
83 // Construct the Certificate
84 X509Cert c = X509Cert();
85 std::shared_ptr<X509> retsh = std::shared_ptr<X509>( X509_new(), X509_free );
86 X509* ret = retsh.get();
89 throw "Creating X509 failed.";
92 c.setIssuerNameFrom( caCert );
93 c.setPubkeyFrom( req );
94 c.setSerialNumber( 4711 );
95 c.setTimes( 0, 1000 * 60 * 60 * 24 * 10 );
96 c.setExtensions( caCert );
98 std::string output = c.sign( caKey );
100 std::cout << "Certificate:" << std::endl << output << std::endl;