Hi Micha,
Please don't mix 1.1 and 1.2 too in the dicsussion. You have two options:1. Implement the batch system like the normal CRR. This means that you must call the function revoke on the CA token. Please see OpenCA::OpenSSL->revoke for more details.2. Simply set the certificate state to REVOKE and call the function export_openssl_db (in crypto-utils.lib) with the correct parameters.
As having a CRR in batch does not have additional information (execpt that the batch was doing the job) I think that 2 is the faster solution, but 1 the "cleaner" one, because it uses only library commands....
Hmmmm.....
Confusion completed ? ;)
No - I am a cute guy :) Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
