Well...
It has nothing to do with the authKeyID->DERAuthCertIssuer!
It's the empty KeyID.
Look at this bug: http://bugzilla.mozilla.org/show_bug.cgi?id=250241
----- Emil
Emil Assarsson wrote:
Hi,
I get strange results using CERT_EncodeAuthKeyID if I use authCertIssuer. I add this as an extension to a certificate. When I look at the certificate it cannot parse the authority-key.
I use the code from certutil and certcgi as examples.
When I look (with openssl asn1parse) at the authKeyID->DERAuthCertIssuer (SECItem) the length seems to be too long. I have tried to derdump it but it fails.
BTW... I have tried to make a certificate with certutil with AKI but it does not work. I will file a buggrapport about this... But it could be the same problem.
... But hey I could be doing it all wrong.
---- Emil
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
