On Fri, Jul 19, 2013, Leon Brits wrote: > Hi all, > > I want/need to create a PKCS12 file which contains more than one key pair and > some CA certs. As far as I understand from the spec this is possible, but the > OpenSSL API does not seem to support this, since only the CAs can be passed > as a list: > > PKCS12 *PKCS12_create(char *pass, char *name, EVP_PKEY *pkey, X509 *cert, > STACK_OF(X509) *ca, ....) >
It's not possible with that API but it can be done with the more complex PKCS#12 APIs. A reasonable example of their use is the function PKCS12_create itself in crypto/pkcs12/p12_crt.c Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
