Hi Mag,
Thus wrote Mag (mag...@gmail.com):
> I'm interested in using custom OIDs for private application purposes.
> I've found the documentation to be deficient.
> For instance, in openssl.cnf it gives an example line of
> [ new_oids ]
> #testoid1=1.2.3.4
> When I uncomment that line I can't even tell what the effect is; e.g.,
> "openssl req ..." doesn't then prompt me for a testoid1 field. Just
> what is the effect of this supposed to be?
I think this only defines a name that you can refer to in the config
file, such as
# testoid2=${testoid1}.5.6
> Amongst my first questions is, when you add OIDs in this manner are
> you able to use the command line tool to supply values or does this
> require programmatic construction of certificates? (There's obviously
> the further question if yes of how the data is typed.)
My understanding is that this requires changes to the sourcecode. Either
you add your object to objects.txt and recompile openssl. Or you call
OBJ_create() from your application.
Others, please correct me if I'm wrong.
Best regards,
Martin
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
