Hello,
I am trying to add a certificate policies extension in CSR. For this I am
using the openssl sample function mkreq() in file
openssl/demos/x509/openssl/demos/x509/mkreq.c
This the line of code I added:
add_ext(exts, NID_certificate_policies, 1.3.6.1);
Unfortunately it causes a
Hi,
Am 09.09.2013 10:37, schrieb phildoch:
Hello,
I am trying to add a certificate policies extension in CSR. For this I am
using the openssl sample function mkreq() in file
openssl/demos/x509/openssl/demos/x509/mkreq.c
What do you want it for? What does it mean that the certificate
Oh I see. Can you point to a documentation where it is defined which
extensions a certificate requestor is allowed to add and which should be
added by the CA only?
Thanks.
--
View this message in context:
The requestor is allowed to ask for any extension it wants.
The CA will do its job, ignore those requested extensions, and place the
good ones in the certificate. It can also change the subject name
contained in the certificate.
--
Erwann ABALEA
Le 09/09/2013 11:21, phildoch a écrit :
Oh I
Ok. So meanwhile, unless it will be proven that is is illegal, let's say that
for any reason the Certificate requester wants to add a certificate
policies extension in the CSR.
Is this syntax correct:?
add_ext(exts, NID_certificate_policies, 1.3.6.1);
(based on function mkreq() in file
Am 09.09.2013 12:13, schrieb phildoch:
Ok. So meanwhile, unless it will be proven that is is illegal,
Looking at the IETF RFCs, none that I found explicitly or implicitly
indicated a meaningful use of the certificate policies entry in a CSR.
On the other hand the semantics of this entry means
Hi,
The client and server that I have in my project runs in a simple 1 socket,
blocking mode environment. The model
is that of a typical producer-consumer one. The client produces data, sends
it to the server. The server
consumes it. Once in a while, the server sends a control message to the
Hello,
I have compiled net-snmp-5.5.2 with openssl-1.0.1e, and find it can not
success in windows OS.
At last I realize net-snmp-5.5.2 is not compatible with openssl-1.0.1e.
So I want to know which version of net-snmp is right under openssl-1.0.1e
environment.
Hope your quick answer, thank
Hello, I am trying to understand if CAdES is supported in OpenSSL 1.0.1e.
I don't find nay trace of it, neither positively nor negatively. Maybe I
misunderstood the relationship between CAdES and CMS...
Can anyone help me please to understand if CAdES is going to be added to
openssl, or if I am
