Hi I was looking for a function to automatically import CRL(s) for a given certificate. I didn't find one in nss API so i would implement it outside API like this: get the distribution points certificate extension to retrieve the URIs. download files and import it into the nss crl cache using CERT_ImportCRL.
Am i right with these steps? The problem is retrieving distribution points. I need to know certificate extensions especially distribution points extension in its decoded form. So the function CERT_FindCRLDistributionPoints seems good to me moreover it calls CERT_DecodeCRLDistributionPoints, that's what I want. Unfortunately using this function outside nss results in an undifined symbol error during compilation. I found CERT_FindCRLDistributionPoints isn't declared in nss.def as a public API function. Is that a bug? Is there any other simple way retrieving distribution points URI from a CERTCertificate structure? Note: adding CERT_FindCRLDistributionPoints to nss.def file allow me to do what I want. thanks _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
