mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-11-27 05:21:51 +08:00
Code Issues Packages Projects Releases Wiki Activity
3208fc59db
openssl/demos/certs
History
Dr. Stephen Henson 18d7158809 Add certificate callback. If set this is called whenever a certificate 
is required by client or server. An application can decide which
certificate chain to present based on arbitrary criteria: for example
supported signature algorithms. Add very simple example to s_server.
This fixes many of the problems and restrictions of the existing client
certificate callback: for example you can now clear existing certificates
and specify the whole chain.
2012-06-29 14:24:42 +00:00
..
apps Add certificate callback. If set this is called whenever a certificate 2012-06-29 14:24:42 +00:00
ca.cnf add example for DH certificate generation 2012-01-25 16:33:39 +00:00
mkcerts.sh oops, revert unrelated changes 2012-02-09 15:43:58 +00:00
README

README 

There is often a need to generate test certificates automatically using
a script. This is often a cause for confusion which can result in incorrect
CA certificates, obsolete V1 certificates or duplicate serial numbers.
The range of command line options can be daunting for a beginner.

This is a simple example of how to generate certificates automatically
using scripts. Example creates a root CA, a server certificate signed by
the root, an intermediate CA signed by the root and finally a client 
certificate signed by the intermediate CA.