Hi all, I need to generate some problematic cert so as to test whether my app will reject these certs or not. Such x509 cert are like without Issuer field, Version field, or etc. Is there any command line available to do the job? Or alternatively I can use c++ to parse in a valid cert, do some modification, and parse out.
I tried to clear some pointer of a valid X509 structure and wrote out. Sometime OpenSSL will reject the modified cert (like Issuer ptr cleared), and sometime wont (in the case of Version ptr cleared). I wonder while parsing a x509 cert, which component OpenSSL takes as compulsory, and which are optional? Is my procedure correct? Thanks all. Peter Lin ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
