From fc62f7f284387a180e42402e8706965a666efba7 Mon Sep 17 00:00:00 2001
From: lloyd <lloyd@randombit.net>
Date: Fri, 8 Apr 2011 14:57:49 +0000
Subject: More pubkey doc updates

---
 doc/examples/self_sig.cpp | 83 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 83 insertions(+)
 create mode 100644 doc/examples/self_sig.cpp

(limited to 'doc/examples/self_sig.cpp')

diff --git a/doc/examples/self_sig.cpp b/doc/examples/self_sig.cpp
new file mode 100644
index 000000000..6710cfb51
--- /dev/null
+++ b/doc/examples/self_sig.cpp
@@ -0,0 +1,83 @@
+/*
+* (C) 2003 Jack Lloyd
+*
+* Distributed under the terms of the Botan license
+*/
+
+/*
+Generate a 1024 bit RSA key, and then create a self-signed X.509v3
+certificate with that key. If the do_CA variable is set to true, then
+it will be marked for CA use, otherwise it will get extensions
+appropriate for use with a client certificate. The private key is
+stored as an encrypted PKCS #8 object in another file.
+*/
+
+#include <botan/botan.h>
+#include <botan/x509self.h>
+#include <botan/rsa.h>
+#include <botan/dsa.h>
+using namespace Botan;
+
+#include <iostream>
+#include <fstream>
+#include <memory>
+
+int main(int argc, char* argv[])
+   {
+   if(argc != 7)
+      {
+      std::cout << "Usage: " << argv[0]
+                << " passphrase [CA|user] name country_code organization email"
+                << std::endl;
+      return 1;
+      }
+
+   Botan::LibraryInitializer init;
+
+   std::string CA_flag = argv[2];
+   bool do_CA = false;
+
+   if(CA_flag == "CA") do_CA = true;
+   else if(CA_flag == "user") do_CA = false;
+   else
+      {
+      std::cout << "Bad flag for CA/user switch: " << CA_flag << std::endl;
+      return 1;
+      }
+
+   try
+      {
+      AutoSeeded_RNG rng;
+
+      RSA_PrivateKey key(rng, 1024);
+
+      std::ofstream priv_key("private.pem");
+      priv_key << PKCS8::PEM_encode(key, rng, argv[1]);
+
+      X509_Cert_Options opts;
+
+      opts.common_name = argv[3];
+      opts.country = argv[4];
+      opts.organization = argv[5];
+      opts.email = argv[6];
+      /* Fill in other values of opts here */
+
+      //opts.xmpp = "lloyd@randombit.net";
+
+      if(do_CA)
+         opts.CA_key();
+
+      X509_Certificate cert =
+         X509::create_self_signed_cert(opts, key, "SHA-256", rng);
+
+      std::ofstream cert_file("cert.pem");
+      cert_file << cert.PEM_encode();
+   }
+   catch(std::exception& e)
+      {
+      std::cout << "Exception: " << e.what() << std::endl;
+      return 1;
+      }
+
+   return 0;
+   }
-- 
cgit v1.2.3