ESP32 and OpenVPN Certificate Authority

16aa00
Posts: 11
Joined: Tue Sep 04, 2018 12:03 pm

ESP32 and OpenVPN Certificate Authority

Postby 16aa00 » Tue Sep 04, 2018 1:40 pm

Hi,

I need to generate RSA private key and certificate signing request in ESP32 and send the csr file to OpenVPN certificate authority for signature. OpenVPN certificate authority is docker container running in my local machine.

I am not able to generate RSA private key and certificate signing request in ESP32. Has anyone come across such issue? If so then could you please help me how to progress. Also please let me know whether this is possible or not?

I am already able to generate the private key, certificate signing request and sign the csr in OpenVPN CA ( using ./build-key client) but now I need to generate the key and csr file in ESP32 and sign it separately by OpenVPN CA to generate the public certificate.

Any help will be much appreciated!!!

Thanks

ESP_Angus
Posts: 2344
Joined: Sun May 08, 2016 4:11 am

Re: ESP32 and OpenVPN Certificate Authority

Postby ESP_Angus » Wed Sep 05, 2018 3:04 am

I am not able to generate RSA private key and certificate signing request in ESP32.
What have you tried so far which is not working?

You should be able to use the mbedTLS APIs to generate an RSA key pair and a CSR. MbedTLS project ships with example programs to do this (on a desktop OS), via the mbedTLS APIs. You can find the full mbedTLS source under the components/mbedtls/mbedtls directory in ESP-IDF. You won't be able to use the example programs as-is, but you should be able to adapt the code from these into an ESP-IDF project.

For more details, see the links in this mbedTLS forum answer:
https://forums.mbed.com/t/how-to-genera ... ecc/3195/2

Who is online

Users browsing this forum: karunt and 129 guests