ESP32 and OpenVPN Certificate Authority

[16aa00]

Hi,

I need to generate RSA private key and certificate signing request in ESP32 and send the csr file to OpenVPN certificate authority for signature. OpenVPN certificate authority is docker container running in my local machine.

I am not able to generate RSA private key and certificate signing request in ESP32. Has anyone come across such issue? If so then could you please help me how to progress. Also please let me know whether this is possible or not?

I am already able to generate the private key, certificate signing request and sign the csr in OpenVPN CA ( using ./build-key client) but now I need to generate the key and csr file in ESP32 and sign it separately by OpenVPN CA to generate the public certificate.

Any help will be much appreciated!!!

Thanks

[ESP_Angus]

I am not able to generate RSA private key and certificate signing request in ESP32.

What have you tried so far which is not working?

You should be able to use the mbedTLS APIs to generate an RSA key pair and a CSR. MbedTLS project ships with example programs to do this (on a desktop OS), via the mbedTLS APIs. You can find the full mbedTLS source under the components/mbedtls/mbedtls directory in ESP-IDF. You won't be able to use the example programs as-is, but you should be able to adapt the code from these into an ESP-IDF project.

For more details, see the links in this mbedTLS forum answer:
https://forums.mbed.com/t/how-to-genera ... ecc/3195/2