2 This file is part of GNUnet.
3 (C) 2011 Christian Grothoff (and other contributing authors)
5 GNUnet is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published
7 by the Free Software Foundation; either version 3, or (at your
8 option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with GNUnet; see the file COPYING. If not, write to the
17 Free Software Foundation, Inc., 59 Temple Place - Suite 330,
18 Boston, MA 02111-1307, USA.
22 * @file transport/gnunet-transport-certificate-creation.c
23 * @brief create certificate for HTTPS transport
28 #include "gnunet_disk_lib.h"
29 #include "gnunet_os_lib.h"
33 removecerts (const char *file1,
36 if (GNUNET_DISK_file_test (file1) == GNUNET_YES)
41 if (GNUNET_DISK_file_test (file2) == GNUNET_YES)
50 main (int argc, char **argv)
52 struct GNUNET_OS_Process *openssl;
53 enum GNUNET_OS_ProcessStatusType status_type;
59 removecerts (argv[1], argv[2]);
60 /* Create RSA Private Key */
61 /* openssl genrsa -out $1 1024 2> /dev/null */
62 openssl = GNUNET_OS_start_process (NULL, NULL,
65 "genrsa", "-out", argv[1], "1024",
69 if (GNUNET_OS_process_wait (openssl) != GNUNET_OK)
71 GNUNET_OS_process_kill (openssl, SIGTERM);
72 removecerts (argv[1], argv[2]);
75 if (GNUNET_OS_process_status (openssl, &status_type, &code) != GNUNET_OK)
77 GNUNET_OS_process_kill (openssl, SIGTERM);
78 removecerts (argv[1], argv[2]);
81 if (status_type != GNUNET_OS_PROCESS_EXITED || code != 0)
83 GNUNET_OS_process_kill (openssl, SIGTERM);
84 removecerts (argv[1], argv[2]);
87 GNUNET_OS_process_close (openssl);
89 /* Create a self-signed certificate in batch mode using rsa key*/
90 /* openssl req -batch -days 365 -out $2 -new -x509 -key $1 2> /dev/null */
91 openssl = GNUNET_OS_start_process (NULL, NULL,
94 "req", "-batch", "-days", "365",
95 "-out", argv[2], "-new", "-x509", "-key", argv[1],
99 if (GNUNET_OS_process_wait (openssl) != GNUNET_OK)
101 GNUNET_OS_process_kill (openssl, SIGTERM);
102 removecerts (argv[1], argv[2]);
105 if (GNUNET_OS_process_status (openssl, &status_type, &code) != GNUNET_OK)
107 GNUNET_OS_process_kill (openssl, SIGTERM);
108 removecerts (argv[1], argv[2]);
111 if (status_type != GNUNET_OS_PROCESS_EXITED || code != 0)
113 GNUNET_OS_process_kill (openssl, SIGTERM);
114 removecerts (argv[1], argv[2]);
117 GNUNET_OS_process_close (openssl);
118 CHMOD (argv[1], 0400);
119 CHMOD (argv[2], 0400);
123 /* end of gnunet-transport-certificate-creation.c */