Hi, All!
Suppose I have a SSL server and I want to check the purpose of the client certificate, which means that I need to check the enhancedKeyUsage contents. What I've done is enumerated the X509 extensions by X509_get_ext_count() and X509_get_ext(), found the enhancedKeyUsage by OID X509_EXTENSION_get_oid_buf() and got the X509_EXTENSION* pointer on it. Now I need to found the specified OID in this extension, for example, client authentication purpose with OID 1.3.6.1.5.5.7.3.1 How can I do it? I can get the ASN1_OBJECT* by X509_EXTENSION_get_object() and X509v3_pack_type_by_OBJ() returns me X509_EXT_PACK_UNKNOWN, so I need handle it like ASN1 octet string. On this point I'm stuck. What to do next? Thanks a lot. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
