Checkout a mozilla release or fetch the tarball and look at mozilla/security/manager/ssl/src/nsCRLManager.cpp
bob
E Perlade wrote:
Hi
I was looking for a function to automatically import CRL(s) for a
given certificate. I didn't find one in nss API so i would implement
it outside API like this:
get the distribution points certificate extension to retrieve the URIs. download files and import it into the nss crl cache using CERT_ImportCRL.
Am i right with these steps?
The problem is retrieving distribution points. I need to know certificate extensions especially distribution points extension in its decoded form. So the function CERT_FindCRLDistributionPoints seems good to me moreover it calls CERT_DecodeCRLDistributionPoints, that's what I want. Unfortunately using this function outside nss results in an undifined symbol error during compilation. I found CERT_FindCRLDistributionPoints isn't declared in nss.def as a public API function. Is that a bug? Is there any other simple way retrieving distribution points URI from a CERTCertificate structure? Note: adding CERT_FindCRLDistributionPoints to nss.def file allow me to do what I want.
thanks
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
smime.p7s
Description: S/MIME Cryptographic Signature
