adding certificate policies extension in CSR
I am trying to add a "certificate policies" extension in CSR using openssl
(version 1.0.1.e).
1) Is the certificate requester allowed to deal with certificate policies
or only CA should do it?
2) Based on function mkreq() in file
openssl/demos/x509/openssl/demos/x509/mkreq.c, I added the following line:
add_ext(exts, NID_certificate_policies, "1.3.6.1");
Unfortunately it lead to a segmentation fault. Is the syntax correct? Any
clue what is wrong?
Thanks
No comments:
Post a Comment