Hello, > To change the Common Name attribute (or any attribute, really), you > have to re-sign the new certificate. > > I'd think that you would need d2i_*, i2d_*, X509_*, and whatever else > is necessary to actually sign the data... then load the newly-signed > data as the certificate. > > You should look at the source code for openssl ca to see what it does. Or in file apps/x509.c, in function x509_certify() - looks promising :-)
Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]