I'm facing the following problem: When I try to create the Authority Key Identifier extension, the following function returns NULL: ext = X509V3_EXT_conf_nid(NULL, &ctx, NID_authority_key_identifier,"keyid:always"); I did set "ctx" using : X509V3_set_ctx(&ctx, caCert, cert, NULL, NULL, 0); , where "cert" is the certificate I'm creating, and "caCert" was initialized using : BIO_reset(bio); BIO_puts(bio, (char *)cacert); caCert = PEM_read_bio_X509(bio, NULL, NULL, NULL); , where "cacert" contains the CA certificate in PEM format. Can anyone tell me what I'm doing wrong ? The creation of all the other extensions (like subject_key_identifier, key_usage and crl_distribution_points) works fine, and I did manage to extract the Publik Key from the CA certificate in order to sign the new certificate using X509_sign (witch means the certificate is valid). Any input would be helpful. Thanks ! > ---------------------- > Arthur Wongtschowski > SCOPUS Tecnologia S.A. > Segurança de Sistemas > Fone : 55 11 3909-3479 > [EMAIL PROTECTED] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
