Hey,
I need some help understanding the EXTENSION ASN.1 type. I haven't
been able to find ANY information on how it works and what it
corresponds to in ASN.1 1988 syntax, and it's quite possible I'm
getting so tired that my eyes are crossing, rendering me virtually
dyslectic...
Anyhow, in X.509, the extension for the targets attribute in attribute
certificates is coded like this:
targetingInformation EXTENSION ::= {
SYNTAX SEQUENCE SIZE (1..MAX) OF Targets
IDENTIFIED BY id-ce-targetInformation }
Targets ::= SEQUENCE SIZE (1..MAX) OF Target
Target ::= CHOICE {
targetName [0] GeneralName,
targetGroup [1] GeneralName,
targetCert [2] TargetCert }
TargetCert ::= SEQUENCE {
targetCertificate IssuerSerial,
targetName GeneralName OPTIONAL,
certDigestInfo ObjectDigestInfo OPTIONAL }
I interpret that as the extension value being a
SEQUENCE OF SEQUENCE OF Target, but as I said, my understanding of the
EXTENSION type is nil, so I may be confused to the extreme.
However, the targetInformation type isn't defined at all in rfc 3281,
and if my interpretation above is correct, doesns't that constitute an
incompatibility of this extension?
If anyone can point me at a correct and understandable definition of
the EXTENSION type, I'd be extremely happy.
Cheers,
Richard
-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.
--
Richard Levitte [EMAIL PROTECTED]
http://richard.levitte.org/
"When I became a man I put away childish things, including
the fear of childishness and the desire to be very grown up."
-- C.S. Lewis
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager [EMAIL PROTECTED]
