BTW, when I want to extract this DNS (e.g. in the case of
authentication/identity validation)
as a char* string, I'm trying this:
GENERAL_NAME* gen = X509_get_ext_d2i (cert, NID_dNSDomain, NULL, NULL);
if (gen && gen->type == GEN_DNS) {
char* buf = i2s_ASN1_OCTET_STRING(X509V3_EXT_get_nid(NID_dNSDomain),
(gen->d.dNSName) );
...
}
Everything goes OK with obtaining GENERAL_NAME* structure and it's GEN_DNS
type check,
until the point of conversion. The 'buf' stays NULL, even when replacing the
X509V3_EXT_METHOD*
with NID_subject_alt_name or just NULL.
Many people talk about such a task of extracting dNSName, but could anybody
show it?
Regards, --plef--
--
View this message in context:
http://www.nabble.com/Wildcard-ssl-certificate-using-subjectAltName-t1103260.html#a3302896
Sent from the OpenSSL - User forum at Nabble.com.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
