>You supply the relevant certificate(s) or requests in the X509V3_CTX
>structure using X509V3_set_ctx().
Works great.... and I finally found out what X509V3_CTX is for :-)
A small "practical" problem:
When creating a CA certificate I'm not sure how to add
authorityKeyIdentifier to this cert, since X509V3_set_ctx() takes a X509*.
But I don't have a X509* yet, as the CA cert is selfsigned and I'm in the
process of creating it.
All I have at that moment is the private/public key.
Any ideas?
>> I would, however, like to add a crlReason extension
>For CRL reason the structure is ASN1_ENUMERATED.
Thanks....it worked.
Just curious.....
All these different ways of creating extensions, is it something that you
just know by experience or is there somehow even I can figure out what
approach to use?
I seem to get stuck, everytime I'm trying to handle a new extension.
Regards,
Kim Hellan
KMD / KMD-CA
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
