|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [MirageOS-devel] csrs and self-signed certs for TLS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA384 Hey, On 06/12/2015 10:10, Mindy wrote: > We don't have a nice way to generate certificate signing requests > or self-signed certificates ourselves yet, right? I'm writing up > a thing on getting HTTPS up and running with mirage-seal and those > are places where I have to say "invoke openssl or your favorite > alternative, but we got nothin' for you". > > If I'm incorrect, I'd appreciate a pointer on where to go looking. > :) It is currently not possible to generate certificate signing requests (as defined in PKCS10), but generation of self-signed certificates is possible (not in released X.509, only on master): https://github.com/mirleft/ocaml-x509/blob/master/lib/x509.mli#L117-L140 I'll try to add generation of CSRs to X.509 this weekend. Hannes -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCQAGBQJVerU7AAoJELyJZYjffCjuNZoQAJX5l4LG8cmV9l3pL+kBDbl0 clJePHWYEvurLHnthwjjbEVXxnG6EKdU9UaPtRM9yAy5xuth62nklRUft2dIthbF atLHWQ+dY0dYSJGsGznzASx/GZiu8Mf9r1lo7zOs4/ERURUa7Ri5UgrdEQPwkKr7 92F12DJXH/ODAmdXYgduWd7VB3kj7rixkXPYbOda5ykGrXWM+4JHyzySvOXPkrw1 eVijXKGd+sNo1r9OIecEzQd19ipPCdGMzX4STSdd1jwp8YD+An5mdwMgoBK/Ajph xcvw73jMzlPpdwCHA8v0CS/hjc9Org6HYpyhw/kkNBj8tS8eMG86GlHGPgGFEHp3 FezkYXXyktBTh+MCWRonlSQrRNBEdxEQaakmNhOkbU4kSzvvYUQOTCbrbD45fDRs 41yhOQbfpfjbNXB3mm+KmbF0QeiLPtIY+v1S60UK9lwQIBiHh9Lu2wXG/NQH5H2y b4whkRCcr58TePEHT2yZC//bORjoTAqXnb5BnxcaBBljjSAE5wDFajzV2x7qEeu3 7fLgN6S0BahGDT+lxELrtBM64A73hc2R9wHZn7ZzGoF6AAmlsQsZVTYoiB8J1pn1 op3peeJn4HRqXHanacU7awHuP4dxiDitWKHHYFr4oV7niCQAXyCMk/SblIiuHaEl 2kOdQRcqp89bC2+RQG7g =iTqZ -----END PGP SIGNATURE----- _______________________________________________ MirageOS-devel mailing list MirageOS-devel@xxxxxxxxxxxxxxxxxxxx http://lists.xenproject.org/cgi-bin/mailman/listinfo/mirageos-devel
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |