How to create a CA, issue server/client certificates and test?

cloudflare / keyless

Cloudflare's Keyless SSL Server Reference Implementation

Other

276 stars 78 forks source link

How to create a CA, issue server/client certificates and test? #108

Open crasyangel opened 7 years ago

crasyangel commented 7 years ago

I check these: http://theheat.dk/blog/?p=1023 http://stackoverflow.com/questions/21297139/how-do-you-sign-certificate-signing-request-with-your-certification-authority

But testclient always fail: KSSL_OP_RSA_DECRYPT (0x877fe0) test failure

and, what is correct way to create ecdsa key and make cert?

crasyangel commented 7 years ago

http://note.youdao.com/share/?id=a4f1f19251c9c677fbd1af5bae7ef7f9 done

Rufaida94 commented 7 years ago

Hi, thank you so much, this is super helpful. but I am wondering if you are generating the correct number of certificates and keys with this? the elliptic curve certificate and keys for the server seem to be missing.