Hi!
> Err start again :-) Oops, sorry, I didn't see thread about it. > Purpose checking is done automatically in the newer releases of OpenSSL > as part of the client certificate verify process, including checking >extendedKeyUsage. > > Several checks take place, currently documented in the x509 manual page. > > If you want to perform the checks yourself you can all X509_check_purpose() on the certificate. > > If you still want to get the OIDs in extendedKeyUsage then you can call > the X509 extension routines documented in doc/openssl.txt, > X509_get_ext_d2i() will return a STACK_OF(ASN1_OBJECT) for extended key > usage. There's some documentation about manipulating an ASN1_OBJECT > structure in the older SSLeay docs in doc/ssleay.txt Thank you very much. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
