Re: [Openca-Users] bug when reading pkcs#10 requests

[Johnny Gonzalez]

Hello dalini, thanks for your answer, here my
comments:

 --- Ives Steglich <[EMAIL PROTECTED]>
escribió:

> Johnny Gonzalez wrote:
> > Hello everybody,
> > Please Help me on these matters I'm in a hurry :-(
> >
> have u tried to use them with openssl by itself?
> have u make them known to openssl in the
> configfiles?
Yep, I configured OpenSSL the same way I configured
OpenCA, using the same OIDs In the configurarion file
(openssl.cnf) and in OpenCA I have a config file named
depending on our politics (I don't have user.cnf but
Natural.cnf, etc), after using the same request file,
to issue my certificates with OpenSSL they get no
garbage in the new OIDs. 


> 
> in worst case you have to code a little bit openssl
> to extend it ;)

Have you tryed to insert new OIDs without problems??
I'm digging in the code, but I don't really know where
is this garbage getting added yet :-(

> 
> but the #130 is strange - have u grepped the code
> for it?

I don't know how can I do a grep because, AFAIK, the
information is taken from the pkcs#10 request, I guess
I can make a script to look for the garbage characters
and delete them, but I guess this isn't as easy as
that. Checking the code I have noted that if I edit
the request in the RA, I can delete this garbage
characters, this action (click on Edit Request)
executes the command: editCSR and sends it as
parameters: dataType=NEW_REQUEST, text with a header
and the request in PEM format and key = 3872 (the CSR
req_key)

After Editting the request it executes the command:
changeCSR with all the fields after the changes. Do
you know if it is "easy" to create a path in the perl
code that looks for the garbage characters (seen from
the web interface: 
2, where 2 is the real data) and
remove them?.


> maybe a typo in the openca-doce - just an wild idea
> 

a typo in the openca-doce, what do you mean with
openca-doce??


Thanks again,
Johnny
> 
> greetings
> dalini
> 
> 
>
-------------------------------------------------------
> This SF.Net email is sponsored by the 'Do More With
> Dual!' webinar happening
> July 14 at 8am PDT/11am EDT. We invite you to
> explore the latest in dual
> core and dual graphics technology at this free one
> hour event hosted by HP, 
> AMD, and NVIDIA.  To register visit
> http://www.hp.com/go/dualwebinar
> _______________________________________________
> Openca-Users mailing list
> Openca-Users@lists.sourceforge.net
>
https://lists.sourceforge.net/lists/listinfo/openca-users
> 



                
______________________________________________ 
Renovamos el Correo Yahoo! 
Nuevos servicios, más seguridad 
http://correo.yahoo.es


-------------------------------------------------------
This SF.Net email is sponsored by the 'Do More With Dual!' webinar happening
July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual
core and dual graphics technology at this free one hour event hosted by HP, 
AMD, and NVIDIA.  To register visit http://www.hp.com/go/dualwebinar
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users