Cheers,
Bob.Dr. Stephen Henson wrote:
On Mon, May 02, 2005, Bob Bramwell wrote:
I am trying to add two new OIDs to my configuration, and then specify that a certificate should contain such objects with values that I specify. After extensive RTFMing and a lot of time wading through the configuration code I still have not got a working setup. Can anyone provide an example?
What I have been trying is along the lines of the config file included below, and the complaint from openssl req is:
Error Loading extension section v3_req
28763:error:2207C081:X509 V3 routines:DO_EXT_CONF:unknown extension:v3_conf.c:128:
28763:error:2206B080:X509 V3 routines:X509V3_EXT_conf:error in extension:v3_conf.c:92:name=msOID2, value=V0.0
Is there any more complete documentation on the config file format? I have not yet found any "formal" explanation of constructs like:
certificatePolicies = ia5org,@policy
Yes, its in the X509v3_config manual page or:
http://www.openssl.org/docs/apps/x509v3_config.html
OpenSSL 0.9.8-dev supports a mini-ASN1 compiler which allows custom extensions
to be generated.
Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
-- Bob Bramwell Jasomi Networks (Canada) | This space Ph: 403 269 2938 x155 #310 602 11th Ave SW | intentionally FX: 403 269 2993 Calgary, AB, T2R 1J8 | left blank. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
