DevEdocs
diff --git a/‎ManagedOpenSsl.XML
Lines changed: 6 additions & 1 deletion b/‎ManagedOpenSsl.XML
Lines changed: 6 additions & 1 deletion
diff --git a/‎ManagedOpenSsl/Native.cs
Lines changed: 2 additions & 2 deletions b/‎ManagedOpenSsl/Native.cs
Lines changed: 2 additions & 2 deletions
diff --git a/‎ManagedOpenSsl/X509CertificateAuthority.cs
Lines changed: 22 additions & 5 deletions b/‎ManagedOpenSsl/X509CertificateAuthority.cs
Lines changed: 22 additions & 5 deletions
diff --git a/‎bin/Debug/openssl.cnf
Lines changed: 51 additions & 0 deletions b/‎bin/Debug/openssl.cnf
Lines changed: 51 additions & 0 deletions
diff --git a/‎sandbox/Program.cs
Lines changed: 4 additions & 4 deletions b/‎sandbox/Program.cs
Lines changed: 4 additions & 4 deletions
diff --git a/‎test/Program.cs
Lines changed: 3 additions & 1 deletion b/‎test/Program.cs
Lines changed: 3 additions & 1 deletion
diff --git a/‎test/TestX509.cs
Lines changed: 55 additions & 0 deletions b/‎test/TestX509.cs
Lines changed: 55 additions & 0 deletions
@@ -1,4 +1,4 @@
-// Copyright (c) 2006-2007 Frank Laub
+// Copyright (c) 2006-2008 Frank Laub
 // All rights reserved.
 
 // Redistribution and use in source and binary forms, with or without
@@ -30,69 +30,6 @@
 
 namespace OpenSSL
 {
-	//#region DSAParameters
-	//public class DSAParameters : Base, IDisposable
-	//{
-	//    public DSAParameters(BIO bio) 
-	//        : base(Native.ExpectNonNull(Native.PEM_read_bio_DSAparams(bio.Handle, IntPtr.Zero, null, IntPtr.Zero)), true)
-	//    {
-	//    }
-
-	//    public DSAParameters(string pem)
-	//        : this(new BIO(pem))
-	//    {
-	//    }
-
-	//    public DSAParameters(int bits)
-	//        : base(Native.ExpectNonNull(Native.DSA_generate_parameters(
-	//            bits,
-	//            null,
-	//            0,
-	//            IntPtr.Zero,
-	//            IntPtr.Zero,
-	//            IntPtr.Zero,
-	//            IntPtr.Zero)), true)
-	//    {
-	//    }
-
-	//    internal IntPtr TakeOwnership()
-	//    {
-	//        IntPtr ptr = this.ptr;
-	//        this.ptr = IntPtr.Zero;
-	//        return ptr;
-	//    }
-
-	//    public string PEM
-	//    {
-	//        get
-	//        {
-	//            using (BIO bio = BIO.MemoryBuffer())
-	//            {
-	//                this.Write(bio);
-	//                return bio.ReadString();
-	//            }
-	//        }
-	//    }
-
-	//    public void Write(BIO bio)
-	//    {
-	//        Native.ExpectSuccess(Native.PEM_write_bio_DSAparams(bio.Handle, this.ptr));
-	//    }
-
-	//    public override void Print(BIO bio)
-	//    {
-	//        Native.ExpectSuccess(Native.DSAparams_print(bio.Handle, this.ptr));
-	//    }
-
-	//    #region IDisposable Members
-	//    public override void OnDispose()
-	//    {
-	//        Native.DSA_free(this.ptr);
-	//    }
-	//    #endregion
-	//}
-	//#endregion
-
 	/// <summary>
 	/// Wraps the DSA_* functions
 	/// </summary>
@@ -141,7 +78,7 @@ internal DSA(IntPtr ptr, bool owner) : base(ptr, owner) {}
 		/// <summary>
 		/// Calls DSA_new() then DSA_generate_parameters_ex()
 		/// </summary>
-		public DSA()
+		public DSA(bool generateKeys)
 			: base(Native.ExpectNonNull(Native.DSA_new()), true)
 		{
 			Native.ExpectSuccess(Native.DSA_generate_parameters_ex(
@@ -152,6 +89,8 @@ public DSA()
 				out this.h,
 				null)
 			);
+			if (generateKeys)
+				this.GenerateKeys();
 		}
 
 		/// <summary>
 
@@ -1,4 +1,4 @@
-// Copyright (c) 2006-2007 Frank Laub
+// Copyright (c) 2006-2008 Frank Laub
 // All rights reserved.
 
 // Redistribution and use in source and binary forms, with or without
@@ -1479,7 +1479,7 @@ public static IntPtr ExpectNonNull(IntPtr ptr)
 
 		public static int ExpectSuccess(int ret)
 		{
-			if (ret < 0)
+			if (ret <= 0)
 				throw new OpenSslException();
 			return ret;
 		}
 
@@ -1,4 +1,4 @@
-// Copyright (c) 2006-2007 Frank Laub
+// Copyright (c) 2006-2008 Frank Laub
 // All rights reserved.
 
 // Redistribution and use in source and binary forms, with or without
@@ -135,7 +135,7 @@ public int Next()
 	/// Duties include processing incoming X509 requests and responding
 	/// with signed X509 certificates, signed by this CA's private key.
 	/// </summary>
-	public class X509CertificateAuthority  
+	public class X509CertificateAuthority : IDisposable
 	{
 		private X509Certificate caCert;
 		private CryptoKey caKey;
@@ -156,16 +156,16 @@ public static X509CertificateAuthority SelfSigned(
 			Configuration cfg,
 			ISequenceNumber seq,
 			X509Name subject,
-            DateTime start,
+			DateTime start,
 			TimeSpan validity)
 		{
-			CryptoKey key = new CryptoKey(new DSA());
+			CryptoKey key = new CryptoKey(new DSA(true));
 			X509Certificate cert = new X509Certificate(
 				seq.Next(),
 				subject,
 				subject,
 				key,
-                start,
+				start,
 				start + validity);
 
 			if(cfg != null)
@@ -240,5 +240,22 @@ public X509Certificate ProcessRequest(X509Request request, DateTime startTime, D
 
 			return cert;
 		}
+
+		#region IDisposable Members
+
+		/// <summary>
+		/// Dispose the key, certificate, and the configuration
+		/// </summary>
+		public void Dispose()
+		{
+			if (this.caKey != null)
+				this.caKey.Dispose();
+			if (this.caCert != null)
+				this.caCert.Dispose();
+			if (this.cfg != null)
+				this.cfg.Dispose();
+		}
+
+		#endregion
 	}
 }
@@ -0,0 +1,51 @@
+#
+# OpenSSL configuration file.
+# This is mostly being used for generation of certificate requests.
+#
+
+# Extra OBJECT IDENTIFIER info:
+#oid_file		= $ENV::HOME/.oid
+oid_section		= new_oids
+
+[ new_oids ]
+# We can add new OIDs in here for use by 'ca' and 'req'.
+# Add a simple OID like this:
+# testoid1=1.2.3.4
+# Or use config file substitution like this:
+# testoid2=${testoid1}.5.6
+
+[ usr_cert ]
+# These extensions are added when 'ca' signs a request.
+keyUsage = nonRepudiation, digitalSignature
+#nsComment			= "OpenSSL Generated Certificate"
+# PKIX recommendations harmless if included in all certificates.
+subjectKeyIdentifier=hash
+authorityKeyIdentifier=keyid,issuer:always
+
+[ v3_req ]
+# Extensions to add to a certificate request
+#basicConstraints = CA:FALSE
+keyUsage = nonRepudiation, digitalSignature, keyEncipherment
+
+[ v3_ca ]
+# Extensions for a typical CA
+# PKIX recommendation.
+subjectKeyIdentifier=hash
+authorityKeyIdentifier=keyid:always,issuer:always
+basicConstraints = critical,CA:true
+keyUsage = cRLSign, keyCertSign
+
+[ crl_ext ]
+# CRL extensions.
+# Only issuerAltName and authorityKeyIdentifier make any sense in a CRL.
+# issuerAltName=issuer:copy
+authorityKeyIdentifier=keyid:always,issuer:always
+
+#[ proxy_cert_ext ]
+# These extensions should be added when creating a proxy certificate
+# PKIX recommendations harmless if included in all certificates.
+#subjectKeyIdentifier=hash
+#authorityKeyIdentifier=keyid,issuer:always
+
+# This really needs to be in place for it to be a proxy certificate.
+#proxyCertInfo=critical,language:id-ppl-anyLanguage,pathlen:3,policy:foo
@@ -1,4 +1,4 @@
-// Copyright (c) 2006-2007 Frank Laub
+// Copyright (c) 2006-2008 Frank Laub
 // All rights reserved.
 
 // Redistribution and use in source and binary forms, with or without
@@ -48,7 +48,7 @@ static void Main(string[] args)
 				DateTime.Now, 
 				TimeSpan.FromDays(365));
 
-			Identity comId = new Identity(new CryptoKey(new DSA()));
+			Identity comId = new Identity(new CryptoKey(new DSA(true)));
 			X509Request comReq = comId.CreateRequest("com");
 			X509Certificate comCert = root.ProcessRequest(comReq, DateTime.Now, DateTime.Now + TimeSpan.FromDays(365));
 
@@ -60,14 +60,14 @@ static void Main(string[] args)
 				new SimpleSerialNumber(), 
 				cfg);
 
-			Identity id1 = new Identity(new CryptoKey(new DSA()));
+			Identity id1 = new Identity(new CryptoKey(new DSA(true)));
 			X509Request req1 = id1.CreateRequest("1");
 			X509Certificate cert1 = com.ProcessRequest(
 				req1, 
 				DateTime.Now, 
 				DateTime.Now + TimeSpan.FromDays(365));
 
-			Identity id2 = new Identity(new CryptoKey(new DSA()));
+			Identity id2 = new Identity(new CryptoKey(new DSA(true)));
 			X509Request req2 = id2.CreateRequest("2");
 			X509Certificate cert2 = rogue.ProcessRequest(
 				req2, 
 
@@ -1,4 +1,4 @@
-// Copyright (c) 2006-2007 Frank Laub
+// Copyright (c) 2006-2008 Frank Laub
 // All rights reserved.
 
 // Redistribution and use in source and binary forms, with or without
@@ -27,6 +27,7 @@
 using System.Collections.Generic;
 using System.Text;
 using OpenSSL;
+using System.Threading;
 
 namespace test
 {
@@ -78,6 +79,7 @@ void AddNullCommand(SortedDictionary<string, ICommand> map, string name)
 			tests.Add("sha512", new TestSHA512());
 			tests.Add("rsa", new TestRSA());
 			tests.Add("rand", new TestRandom());
+			tests.Add("x509", new TestX509());
 
 			AddNullCommand(tests, "bf");
 			AddNullCommand(tests, "bn");
 
@@ -0,0 +1,55 @@
+// Copyright (c) 2006-2008 Frank Laub
+// All rights reserved.
+
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions
+// are met:
+// 1. Redistributions of source code must retain the above copyright
+//    notice, this list of conditions and the following disclaimer.
+// 2. Redistributions in binary form must reproduce the above copyright
+//    notice, this list of conditions and t
10000
he following disclaimer in the
+//    documentation and/or other materials provided with the distribution.
+// 3. The name of the author may not be used to endorse or promote products
+//    derived from this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+// IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+// OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+// IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+// INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+// NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+// THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+using System;
+using System.Collections.Generic;
+using System.Text;
+using OpenSSL;
+
+namespace test
+{
+	class TestX509 : ICommand
+	{
+		#region ICommand Members
+
+		public void Execute(string[] args)
+		{
+			using (Configuration cfg = new Configuration("openssl.cnf"))
+			{
+				using (X509CertificateAuthority root = X509CertificateAuthority.SelfSigned(
+					cfg,
+					new SimpleSerialNumber(),
+					"Root1",
+					DateTime.Now,
+					TimeSpan.FromDays(365)))
+				{
+					Console.WriteLine(root.Certificate);
+				}
+			}
+		}
+
+		#endregion
+	}
+}
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-// Copyright (c) 2006-2007 Frank Laub`
	`1`	`+// Copyright (c) 2006-2008 Frank Laub`
`2`	`2`	`// All rights reserved.`
`3`	`3`
`4`	`4`	`// Redistribution and use in source and binary forms, with or without`
`@@ -1479,7 +1479,7 @@ public static IntPtr ExpectNonNull(IntPtr ptr)`
`1479`	`1479`
`1480`	`1480`	`public static int ExpectSuccess(int ret)`
`1481`	`1481`	`{`
`1482`		`- if (ret < 0)`
	`1482`	`+ if (ret <= 0)`
`1483`	`1483`	`throw new OpenSslException();`
`1484`	`1484`	`return ret;`
`1485`	`1485`	`}`