> This question forwarded to openssl-users. > > > I need to add a new object in issuer and subject's DN. > It is dmd object with 2.5.6.20 OID. > The naming of this object is realised with dmdName (2.5.4.54 OID). > This dmdName can occur many times in the DN. > > Could you tell me if it's existe or how i can add this object in openssl ? >
It depends on what you want to do. Is the spec which defines that component publically available? Adding the OID(s) isn't hard. If you just want them to be visible to the OpenSSL 'ca' and 'req' utilities or the 'openssl' utility in general you can add them to openssl.cnf. If you want them to be visible to the OpenSSL library in general you need to add them to objects.txt and recompile OpenSSL and any application statically linked to it. However adding an appropriate component to a DN may be harder or *much* harder. If the component is a simple strin type of a DirectoryName type there aren't any problems. If it is something more complex such as a constructed type (e.g. SEQUENCE) then that's harder because OpenSSL currently only handles string types in DN components and changing that isn't easy. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
