Hi Martin,
So the reason might not actually be the missing signature on the original CSR, you think? Should the CA sign the Role after issuing the cert, then? This is the only way, the nCipher or OpenSC module could be responsible for this problem, I think.
If we issue a cert then we first create the cert and second create some signatures for the role and the CRIN. Perhaps we must run openca-sv within the wrapper like openssl. Please see the functions sign, verify, encrypt and decrypt in OpenSSL.pm (src/modules/openca-openssl/).
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
