Skip to content

erwan2212/TinySSL

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

65 Commits

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

_make.cmd

_make.cmd

 
 

ca.crt

ca.crt

 
 

libeay32.dll

libeay32.dll

 
 

libeay32.pas

libeay32.pas

 
 

opensslutils.pas

opensslutils.pas

 
 

request.crt

request.crt

 
 

request.csr

request.csr

 
 

ssleay32.dll

ssleay32.dll

 
 

ssleay32.pas

ssleay32.pas

 
 

tinySSL.exe

tinySSL.exe

 
 

tinySSL.lpi

tinySSL.lpi

 
 

tinySSL.lpr

tinySSL.lpr

 
 

tinySSL.lps

tinySSL.lps

 
 

tinyssl.ini

tinyssl.ini

 
 

utils.pas

utils.pas

 
 

Repository files navigation

TinySSL


TinySSL, aka playing with openssl library (libeay32).

--cn= cn
--alt= alternate name
--ca= true|false (default: false)
--password= password
--privatekey= path to a privatekey file
--publickey= path to a publickey file, not needed if you have the privatekey
--cert= path to a certificate
--debug= true|false (default: false)
--filename= local filename
--print_cert print cert details
--print_private print cert details
--genkey generate rsa keys public.pem and private.pem
--encrypt encrypt a file using public.pem, read from filename
--decrypt decrypt a file using private.pem, read from filename
--mkcert make a self sign root cert, read from privatekey (option) & write to filename.crt and
filename.key
--mkreq make a certificate service request, read from privatekey & write to filename.csr
filename.key (if privatekey not specified)
--signreq make a certificate from a csr, read from filename and cert, write to filename.crt
--set-password set password from a private key,read from privatekey and password (optional) - if no
password, will remove the existing password
--dertopem convert a binary/der private key or cert to base 64 pem format, read from cert or
privatekey, write to cert.crt or privatekey.key
--pemtoder convert a base 64 pem format to binary/der private key or cert, read from cert or
privatekey, write to cert.der or privatekey.der
--p12topem convert a pfx to pem, read from cert, write to cert.crt and cert.key
--pemtop12 convert a pem to pfx, read from cert and privatekey, write to cert.pfx
--p7topem convert a p7b to pem, read from cert, write to cert.crt
--pemtop7 convert a pem to p7b, read from cert, write to cert.p7b


Example : create a root ca (reusing a previous key), create a csr (reusing a previous key) and generate a certificate (that will work in latest chrome).


rem if you want to reuse an existing key and therefore renew instead of recreate
tinySSL.exe --mkcert --debug=true --privatekey=ca.key --password=password --filename=ca.crt --ca=true
rem recreate, not renew
rem tinySSL.exe --mkcert --debug=true --filename=ca.crt --ca=true
rem renew, not recreate
tinySSL.exe --mkreq --debug=true --filename=request.csr --privatekey=request.key
rem recreate, not renew
rem tinySSL.exe --mkreq --debug=true --filename=request.csr
tinySSL.exe --signreq --debug=true --alt="DNS:*.groupe.fr" --password=password --filename=request.csr --cert=ca.crt

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages