extern std::string serialPath;
std::string writeBackFile( uint32_t serial, std::string cert ) {
- std::string filename = "keys";
+ std::string filename = keyDir;
mkdir( filename.c_str(), 0755 );
filename += "/crt";
mkdir( filename.c_str(), 0755 );
}
log << "FINE: Found the CSR at '" << cert->csr << "'" << std::endl;
- cert->csr_content = readFile( cert->csr );
+ cert->csr_content = readFile( keyDir + "/../" + cert->csr );
log << "FINE: CSR is " << std::endl << cert->csr_content << std::endl;
std::shared_ptr<SignedCertificate> res = sign->sign( cert );
#include <iostream>
+#include <openssl/ssl.h>
+#include <openssl/bn.h>
+
RemoteSigner::RemoteSigner( std::shared_ptr<BIO> target, std::shared_ptr<SSL_CTX> ctx ) {
this->target = target;
this->ctx = ctx;
}
+
RemoteSigner::~RemoteSigner() {
}
try {
int length = conn->read( buffer.data(), buffer.size() );
- if( length == -1 ) {
- return std::shared_ptr<SignedCertificate>();
+ if( length <= 0 ) {
+ std::cout << "Error, no response data" << std::endl;
+ result = std::shared_ptr<SignedCertificate>();
+ break;
}
RecordHeader head;
}
}
+ if( result ) {
+ std::shared_ptr<BIO> bios( BIO_new( BIO_s_mem() ), BIO_free );
+ const char* buf = result->certificate.data();
+ unsigned int len = result->certificate.size();
+
+ while( len > 0 ) {
+ int dlen = BIO_write( bios.get(), buf, len );
+
+ if( dlen <= 0 ) {
+ throw "Memory error.";
+ }
+
+ len -= dlen;
+ buf += dlen;
+ }
+
+ std::shared_ptr<X509> pem( PEM_read_bio_X509( bios.get(), NULL, 0, NULL ) );
+
+ if( !pem ) {
+ throw "Pem was not readable";
+ }
+
+ std::shared_ptr<BIGNUM> ser( ASN1_INTEGER_to_BN( pem->cert_info->serialNumber, NULL ), BN_free );
+ std::shared_ptr<char> serStr(
+ BN_bn2hex( ser.get() ),
+ []( char* p ) {
+ OPENSSL_free( p );
+ } ); // OPENSSL_free is a macro...
+ result->serial = std::string( serStr.get() );
+ }
+
if( !SSL_shutdown( ssl.get() ) && !SSL_shutdown( ssl.get() ) ) { // need to close the connection twice
std::cout << "SSL shutdown failed" << std::endl;
}