converting a certificate to a certificate request
openssl x509 -x509toreq -in cert.pem -out req.pem -signkey key.pem
does not copy the extensions to the request
OpenSSL 1.0.2a
___
openssl-dev mailing list
To unsubscribe:
Hi. This issue is not present in 1.0.1k or earlier (my code has worked for
years), and is in 1.0.2 and 1.0.2a. I do not have any simple reproducer as
it comes from a moderately esoteric environment using asynchronous BIO
written for [Open]VMS.
The server initiates the SSL listening context
According to the manpage -textopt ca_default suppresses the signature:
ca_default
the value used by the ca utility, equivalent to no_issuer,
no_pubkey, no_header, no_version, no_sigdump and no_signame.
but openssl x509 -noout -in file.pem -text -certopt ca_default shows
both