From: "Dr. Stephen Henson" <[EMAIL PROTECTED]>
Sent: Friday, February 16, 2007 1:58 AM
On Fri, Feb 16, 2007, Andrew Brampton wrote:
The validity period is a mandatory field for an X509 object. Without this
it
isn't a valid certificate. That's why it wont dup.
Steve.
I understand it isn't a valid certificate, but I was able to duplicate it
when other mandatory fields were missing (such as the subject, or the
issuer, or the public key).
I was hitting this problem was I wanted to duplicate a half created
certificate. So I had set up the subject, the issuer, the public key, then
wanted to make a copy, then I was setting validity on each certificate.
So if it the behaviour is to not duplicate an invalid certificate, then
maybe it should be changed so it won't duplicate until everything required
is set. But I think its far more useful to duplicate a invalid certificate
regardless of which fields had to be set.
thanks
Andrew
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
